$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: 8AZbMQSWxjo1pl63vr6zMDyoj0fWo9cDPXMFQE6llEo= Subject key identifier: 53:D8:E4:9E:15:69:1C:EF:04:F0:9F:99:1B:FC:92:F1:E4:8D:C4:8B Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 060A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 0604 Signing time: Tue 12 Aug 2025 23:15:28 +0000 Manifest this update: Tue 12 Aug 2025 23:15:28 +0000 Manifest next update: Tue 19 Aug 2025 23:15:28 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: 44PeJYKPTYrkvcSZTSUHP2ikOdu+APXtZRw9jXV8iPo=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: ldWjzJ4l8BsIeHREFrvU51ElQcTYEq5MkB9HbZsC/bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1546 (0x60a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Aug 12 23:15:28 2025 GMT Not After : Aug 19 23:15:28 2025 GMT Subject: CN=689bcb10-e85d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cd:97:79:a8:5a:9e:b0:d4:88:e5:96:12:fe: 5a:7a:7b:7f:da:44:d3:07:96:e0:ea:e0:98:81:81: 5f:44:48:c6:f5:bc:09:0b:26:1f:34:4e:b8:8b:7e: a2:d1:f7:bb:31:ca:4d:f1:4c:81:86:7a:87:0a:25: 9b:ce:33:e8:27:4c:a5:2f:0e:4a:42:8a:03:d5:cb: c4:30:a2:67:4a:fb:dc:29:36:37:a1:65:78:3c:a9: 74:20:72:22:a1:f6:3b:0e:ac:20:bc:9c:b7:7d:21: 92:6c:2b:a0:07:c0:48:9d:19:9f:c1:13:c3:4b:f3: fb:48:00:fa:f4:a3:27:a2:55:9c:f2:dc:b8:94:42: bd:ff:dd:3f:12:1b:5e:16:ab:98:97:8e:80:fa:6c: cf:87:d2:5a:32:47:38:44:52:cd:25:2b:69:6d:61: 02:93:31:01:1b:2d:25:d1:b8:f4:dd:dc:ff:b1:0d: da:d4:49:64:0a:60:25:6a:8f:60:88:11:95:c6:38: 73:0b:70:5a:0d:c1:00:3e:03:bc:5e:53:0c:06:65: 68:b5:b9:8e:49:17:72:f2:cf:c6:07:5d:05:d5:34: 55:1a:29:3e:eb:9b:3a:f4:26:63:d3:ad:5c:e6:01: d7:db:5f:23:35:6e:29:99:2a:ec:35:8a:87:a5:d5: 67:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D8:E4:9E:15:69:1C:EF:04:F0:9F:99:1B:FC:92:F1:E4:8D:C4:8B X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ba:d5:81:c0:c7:ad:fb:9e:41:c1:b5:03:40:f9:6b:1d:f6: 81:7b:79:58:fa:27:8c:cc:42:af:72:c6:86:99:bc:7c:f1:2d: c2:c5:b3:f9:80:62:ac:77:57:7f:6e:54:71:e9:af:aa:30:6a: a2:d1:44:27:d9:68:a2:11:cb:2f:a0:4d:ed:a9:2c:bb:d4:c8: bd:c7:cd:f2:d2:26:3a:3b:4d:61:ec:02:e9:60:1f:70:79:46: 30:4c:62:6f:3e:e3:8f:d4:25:eb:ce:e2:30:9e:cc:d5:a8:20: 05:6f:69:48:1c:62:51:5a:ec:9b:8b:ff:e0:a5:e9:ed:4d:22: 58:08:70:64:91:96:cf:d1:1b:5a:fa:81:23:08:71:65:4f:54: 63:e0:bc:6c:66:dc:54:e8:46:c3:ac:1a:aa:4f:a1:3b:21:18: f6:56:bf:f2:d6:7b:f9:25:fb:fa:98:24:56:a7:98:b4:59:11: f8:8f:2f:34:72:e0:b2:8d:4f:d4:99:f3:3f:40:76:5c:ad:e1: 71:ab:b4:e0:c3:0f:c1:0a:39:c0:96:45:3f:c7:90:0d:3c:4d: d8:a4:0a:af:df:03:e2:e9:1d:df:8e:ff:87:3b:cc:90:58:11: 32:61:5c:56:12:78:b9:80:33:af:e5:82:af:51:cd:a3:19:9c: eb:3c:21:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUwODEyMjMxNTI4WhcNMjUwODE5MjMxNTI4WjAYMRYwFAYD VQQDEw02ODliY2IxMC1lODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAws2XeahanrDUiOWWEv5aent/2kTTB5bg6uCYgYFfREjG9bwJCyYfNE64i36i 0fe7McpN8UyBhnqHCiWbzjPoJ0ylLw5KQooD1cvEMKJnSvvcKTY3oWV4PKl0IHIi ofY7DqwgvJy3fSGSbCugB8BInRmfwRPDS/P7SAD69KMnolWc8ty4lEK9/90/Ehte FquYl46A+mzPh9JaMkc4RFLNJStpbWECkzEBGy0l0bj03dz/sQ3a1ElkCmAlao9g iBGVxjhzC3BaDcEAPgO8XlMMBmVotbmOSRdy8s/GB10F1TRVGik+65s69CZj061c 5gHX218jNW4pmSrsNYqHpdVncQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPY5J4V aRzvBPCfmRv8kvHkjcSLMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBputWBwMet+55BwbUDQPlrHfaBe3lY+ieMzEKvcsaGmbx88S3CxbP5 gGKsd1d/blRx6a+qMGqi0UQn2WiiEcsvoE3tqSy71Mi9x83y0iY6O01h7ALpYB9w eUYwTGJvPuOP1CXrzuIwnszVqCAFb2lIHGJRWuybi//gpentTSJYCHBkkZbP0Rta +oEjCHFlT1Rj4LxsZtxU6EbDrBqqT6E7IRj2Vr/y1nv5Jfv6mCRWp5i0WRH4jy80 cuCyjU/UmfM/QHZcreFxq7Tgww/BCjnAlkU/x5ANPE3YpAqv3wPi6R3fjv+HO8yQ WBEyYVxWEni5gDOv5YKvUc2jGZzrPCGB -----END CERTIFICATE-----Generated at Wed Aug 13 02:42:53 2025 by rpki-client