$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: tvvgpOu6n+yZjfU1tDwR08mUnGVNQmdhSeWbImJY8Hs= Subject key identifier: 3C:4E:67:2B:82:24:A8:84:8D:F4:ED:ED:60:90:A2:22:6C:A9:05:16 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 01F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 02F5 Signing time: Thu 07 Aug 2025 02:59:50 +0000 Manifest this update: Thu 07 Aug 2025 02:59:50 +0000 Manifest next update: Thu 14 Aug 2025 02:59:50 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: +A4rBrxepJg1lM7MnF2Cc19ZIDGrjklQkHyzWBkkSyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 502 (0x1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Aug 7 02:59:50 2025 GMT Not After : Aug 14 02:59:50 2025 GMT Subject: CN=689416a6-15e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:17:72:52:9c:40:76:0d:cd:ef:ce:80:d6:a5: 7b:a9:a0:c3:ad:2c:f0:6e:88:35:04:e9:e7:2d:8e: eb:ba:5f:47:df:f6:09:69:b7:83:04:84:c1:6f:02: 29:fb:28:f6:c2:72:4d:f4:62:c8:41:24:da:ab:67: de:63:3e:f8:6a:e6:d7:29:26:64:9f:36:5d:47:3e: 3b:10:bf:ca:ea:51:7b:32:80:d9:90:c1:ad:c3:9e: 9f:99:a6:94:74:37:db:d4:56:c8:2e:fd:9a:c6:5a: f4:3f:e2:a1:8b:22:32:60:02:73:a0:f8:37:bb:bc: 78:7f:f4:d9:90:12:9e:93:f6:8e:0c:6a:6b:bd:52: 06:ef:98:e5:52:18:55:bb:93:4b:64:cf:1b:b9:a2: b4:dd:16:86:01:06:9c:ec:55:59:bc:81:ba:76:85: b1:5a:23:f6:1e:62:86:2f:de:59:0b:bb:42:37:2c: a3:28:f0:ae:34:a7:ce:ff:38:13:b6:75:67:75:e8: a8:88:70:09:e8:c5:6b:65:21:40:22:69:96:c0:ae: 1f:06:e6:34:1b:e2:e1:eb:a0:e3:de:a1:5b:09:cb: d2:d2:b5:29:1c:c4:e1:ec:fb:a0:4e:ae:1d:a2:a5: d1:e8:60:91:ee:4a:16:c2:47:25:93:4b:e6:0b:59: 17:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:4E:67:2B:82:24:A8:84:8D:F4:ED:ED:60:90:A2:22:6C:A9:05:16 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:14:1a:29:de:55:06:6f:ed:79:8d:42:8f:6e:82:f2:75:07: 88:5d:68:d7:1d:00:7c:f2:8c:9c:a5:b9:7e:b1:47:6a:ae:7e: b2:d9:bc:5c:94:73:52:77:8b:bf:72:32:c1:a6:22:d7:0b:f3: cb:b1:ab:c7:30:5b:34:26:bc:62:d6:75:49:7e:72:3c:54:7e: 9a:eb:4f:8c:b7:4c:79:91:9a:a7:2a:38:f5:cc:a8:b5:0c:40: d9:4f:51:3c:4c:60:9c:d9:40:74:5d:6b:32:72:16:a1:02:78: 61:35:78:bb:0c:00:d7:ba:6b:a7:4f:4a:59:1f:4f:13:e8:e9: 48:d9:07:33:22:48:1d:12:49:76:eb:e3:87:53:34:53:a9:06: 67:ea:09:84:27:12:a1:79:3a:99:a0:84:2a:12:0b:64:83:0a: 5a:15:4f:be:9a:a3:fd:ad:34:37:51:5e:cd:b5:90:69:fb:66: 01:5b:10:da:d2:c2:de:4b:f0:ae:a1:3e:0f:8d:4d:2f:e8:39: 1e:f1:1f:a7:22:83:c4:89:69:74:7f:5b:17:db:1d:91:eb:7f: 9c:0e:6d:63:a1:18:ea:b2:c9:1a:15:be:87:cb:88:6e:c4:6c: 90:37:21:ac:7f:fa:5a:4c:44:b8:1e:7d:28:b6:59:d2:1b:08: 8d:c4:e7:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUwODA3MDI1OTUwWhcNMjUwODE0MDI1OTUwWjAYMRYwFAYD VQQDEw02ODk0MTZhNi0xNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhdyUpxAdg3N786A1qV7qaDDrSzwbog1BOnnLY7rul9H3/YJabeDBITBbwIp +yj2wnJN9GLIQSTaq2feYz74aubXKSZknzZdRz47EL/K6lF7MoDZkMGtw56fmaaU dDfb1FbILv2axlr0P+KhiyIyYAJzoPg3u7x4f/TZkBKek/aODGprvVIG75jlUhhV u5NLZM8buaK03RaGAQac7FVZvIG6doWxWiP2HmKGL95ZC7tCNyyjKPCuNKfO/zgT tnVndeioiHAJ6MVrZSFAImmWwK4fBuY0G+Lh66Dj3qFbCcvS0rUpHMTh7PugTq4d oqXR6GCR7koWwkclk0vmC1kX/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxOZyuC JKiEjfTt7WCQoiJsqQUWMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4FBop3lUGb+15jUKPboLydQeIXWjXHQB88oycpbl+sUdqrn6y2bxc lHNSd4u/cjLBpiLXC/PLsavHMFs0Jrxi1nVJfnI8VH6a60+Mt0x5kZqnKjj1zKi1 DEDZT1E8TGCc2UB0XWsychahAnhhNXi7DADXumunT0pZH08T6OlI2QczIkgdEkl2 6+OHUzRTqQZn6gmEJxKheTqZoIQqEgtkgwpaFU++mqP9rTQ3UV7NtZBp+2YBWxDa 0sLeS/CuoT4PjU0v6Dke8R+nIoPEiWl0f1sX2x2R63+cDm1joRjqsskaFb6Hy4hu xGyQNyGsf/paTES4Hn0otlnSGwiNxOeX -----END CERTIFICATE-----Generated at Sat Aug 9 01:23:33 2025 by rpki-client