$ rpki-client -vvf rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft File: ltMlORFGzztdo_4Uaf7BKLS2jEk.mft (raw, json) Hash identifier: SJRNE+VWoHW6aYqMXGI924UIk6vRLXFTGmW99JaE2hg= Subject key identifier: 0D:2F:BD:2C:CD:17:10:9D:EB:37:4A:5D:A8:3F:71:F6:D9:CF:B2:FE Authority key identifier: 96:D3:25:39:11:46:CF:3B:5D:A3:FE:14:69:FE:C1:28:B4:B6:8C:49 Certificate issuer: /CN=A91E63E7/serialNumber=96D325391146CF3B5DA3FE1469FEC128B4B68C49 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft Manifest number: 99 Signing time: Tue 05 Aug 2025 06:53:16 +0000 Manifest this update: Tue 05 Aug 2025 06:53:16 +0000 Manifest next update: Tue 12 Aug 2025 06:53:16 +0000 Files and hashes: 1: ltMlORFGzztdo_4Uaf7BKLS2jEk.crl (hash: I7GMGgt0FXDXEsEzW/mKPPUSiruWvJDCYyCAaoFC/f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.crl rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E63E7, serialNumber=96D325391146CF3B5DA3FE1469FEC128B4B68C49 Validity Not Before: Aug 5 06:53:16 2025 GMT Not After : Aug 12 06:53:16 2025 GMT Subject: CN=6891aa5c-a1fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:21:4a:d2:fd:5c:96:a7:56:c4:4e:23:9e:eb: 85:18:27:fe:ba:cf:cc:d1:28:79:71:8d:23:9b:f4: e7:b2:0e:df:bf:e1:a0:14:fe:f4:25:27:1d:bd:6b: 3b:b3:51:8e:70:52:c5:2b:a5:e6:64:1b:9c:13:77: c5:ec:b3:e1:e3:61:a9:ca:b4:b6:cb:bd:51:ee:b4: b2:3f:be:16:7a:78:c4:24:27:c8:7c:66:e6:51:69: 8b:2b:3c:15:02:76:25:34:4b:4d:d0:4d:8e:89:01: 4d:a1:89:0f:e4:b0:ba:9a:f7:4c:e1:b6:06:3f:30: 76:f0:ec:b6:92:0f:ee:33:18:10:2a:a4:f4:7f:b1: d4:3c:2c:19:59:33:72:80:19:a9:ce:fe:64:f3:8d: 71:a5:84:0c:97:dd:29:32:52:3b:9f:69:16:86:92: 45:0c:e5:52:6a:04:4a:86:e2:a9:94:be:de:f8:c8: c6:b3:1a:c1:2f:4a:0d:ad:bf:98:87:93:00:17:9f: a4:8d:54:8b:42:b1:2f:ea:07:1c:4f:f4:69:2f:ba: db:38:2a:fe:ff:95:83:da:c0:28:a8:98:41:9b:2e: fa:42:29:4f:fa:38:af:f4:2e:a1:2f:c2:32:6e:27: 78:c0:0f:90:c3:57:ae:6b:e7:c2:f7:fb:6e:03:2a: 1d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:2F:BD:2C:CD:17:10:9D:EB:37:4A:5D:A8:3F:71:F6:D9:CF:B2:FE X509v3 Authority Key Identifier: keyid:96:D3:25:39:11:46:CF:3B:5D:A3:FE:14:69:FE:C1:28:B4:B6:8C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:a0:cf:f6:44:35:19:33:d0:12:61:46:f7:d6:7b:9f:ac:40: 93:fe:a2:80:a9:6b:9d:85:27:f4:db:a4:7b:a3:d4:75:9e:45: 25:7d:f6:be:45:d7:00:be:22:77:4b:9a:d3:bf:bb:4e:5e:e9: ce:9e:03:b2:42:8d:63:e8:e6:ba:fa:cd:1d:fc:e6:55:51:f4: 60:c7:5f:7c:26:23:70:f8:e7:fb:b4:65:0a:a4:f8:00:0c:d0: 15:5d:64:2a:2a:e3:eb:00:a6:c8:ae:cb:16:59:0d:a7:c9:8e: a8:5d:4f:dd:71:91:57:11:a5:a8:9f:ff:8d:34:af:b6:3a:af: a2:73:a8:ec:fb:9b:36:25:5a:0a:67:f3:5b:49:0b:29:dc:29: 86:67:43:ec:88:55:ab:ac:21:20:b8:e4:88:8e:2d:fe:01:4f: 57:bc:f7:52:79:fe:6f:76:e7:d9:6f:2e:28:00:1a:87:08:78: bb:90:17:6b:3f:69:2d:82:fb:bd:11:a4:e9:ed:e4:f9:2d:ca: fc:3d:6e:e2:93:3d:2a:50:16:d7:8a:03:91:c2:da:87:3c:39: 7a:d7:31:3e:32:30:7a:33:0d:5f:ff:64:03:56:d7:49:87:18: e6:12:46:b0:1f:13:b8:41:51:4f:29:fc:8d:39:0d:ef:aa:f5: 7f:66:e4:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYzRTcxMTAvBgNVBAUTKDk2RDMyNTM5MTE0NkNGM0I1REEzRkUxNDY5RkVDMTI4 QjRCNjhDNDkwHhcNMjUwODA1MDY1MzE2WhcNMjUwODEyMDY1MzE2WjAYMRYwFAYD VQQDEw02ODkxYWE1Yy1hMWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSFK0v1clqdWxE4jnuuFGCf+us/M0Sh5cY0jm/Tnsg7fv+GgFP70JScdvWs7 s1GOcFLFK6XmZBucE3fF7LPh42GpyrS2y71R7rSyP74WenjEJCfIfGbmUWmLKzwV AnYlNEtN0E2OiQFNoYkP5LC6mvdM4bYGPzB28Oy2kg/uMxgQKqT0f7HUPCwZWTNy gBmpzv5k841xpYQMl90pMlI7n2kWhpJFDOVSagRKhuKplL7e+MjGsxrBL0oNrb+Y h5MAF5+kjVSLQrEv6gccT/RpL7rbOCr+/5WD2sAoqJhBmy76QilP+jiv9C6hL8Iy bid4wA+Qw1eua+fC9/tuAyodtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0vvSzN FxCd6zdKXag/cfbZz7L+MB8GA1UdIwQYMBaAFJbTJTkRRs87XaP+FGn+wSi0toxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjNFNy80QUNCOEJGMDg4 NzExMUVGQTcwOEQxN0RDNEY5QUUwMi9sdE1sT1JGR3p6dGRvXzRVYWY3QktMUzJq RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x0TWxPUkZHenp0ZG9fNFVhZjdCS0xTMmpFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjNFNy80QUNCOEJGMDg4NzExMUVGQTcwOEQxN0RDNEY5QUUwMi9sdE1sT1JGR3p6 dGRvXzRVYWY3QktMUzJqRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxoM/2RDUZM9ASYUb31nufrECT/qKAqWudhSf026R7o9R1nkUlffa+ RdcAviJ3S5rTv7tOXunOngOyQo1j6Oa6+s0d/OZVUfRgx198JiNw+Of7tGUKpPgA DNAVXWQqKuPrAKbIrssWWQ2nyY6oXU/dcZFXEaWon/+NNK+2Oq+ic6js+5s2JVoK Z/NbSQsp3CmGZ0PsiFWrrCEguOSIji3+AU9XvPdSef5vdufZby4oABqHCHi7kBdr P2ktgvu9EaTp7eT5Lcr8PW7ikz0qUBbXigORwtqHPDl61zE+MjB6Mw1f/2QDVtdJ hxjmEkawHxO4QVFPKfyNOQ3vqvV/ZuT9 -----END CERTIFICATE-----Generated at Tue Aug 5 17:18:02 2025 by rpki-client