$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.mft File: LsoZlE2psLqHJb5wu-9Unl0huTc.mft (raw, json) Hash identifier: iakhqjpXuB2WR7UA1H41FVT14LQx8GWj2vGXeeVaKCA= Subject key identifier: 90:BA:94:F2:BA:2D:6F:3B:A9:7E:74:FB:34:44:57:7F:78:F1:F9:B1 Authority key identifier: 2E:CA:19:94:4D:A9:B0:BA:87:25:BE:70:BB:EF:54:9E:5D:21:B9:37 Certificate issuer: /CN=A91F0C55/serialNumber=2ECA19944DA9B0BA8725BE70BBEF549E5D21B937 Certificate serial: 07B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsoZlE2psLqHJb5wu-9Unl0huTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.mft Manifest number: 07AF Signing time: Mon 16 Jun 2025 20:58:22 +0000 Manifest this update: Mon 16 Jun 2025 20:58:21 +0000 Manifest next update: Mon 23 Jun 2025 20:58:21 +0000 Files and hashes: 1: LsoZlE2psLqHJb5wu-9Unl0huTc.crl (hash: hWlHSoqLWoybPFiu6+lvjSCGlwA9PwQqEhbcR7pnw0g=) 2: 29B0FABC031511EB8CE8EF17C4F9AE02.roa (hash: UDBTwJHFIDnykm5WO4HER1SExnJLtd1inkUNEKV6P8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.crl rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsoZlE2psLqHJb5wu-9Unl0huTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1973 (0x7b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C55, serialNumber=2ECA19944DA9B0BA8725BE70BBEF549E5D21B937 Validity Not Before: Jun 16 20:58:21 2025 GMT Not After : Jun 23 20:58:21 2025 GMT Subject: CN=6850856e-0c56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3d:e3:7d:2a:93:08:9c:67:c0:2b:de:8c:4e: fe:77:ec:18:aa:27:47:64:cb:8c:60:86:cc:2d:96: 5d:d1:f0:77:c0:23:d3:9a:91:cf:f8:2f:1e:78:63: 2c:cf:85:ae:b4:e4:34:26:ce:27:1b:53:69:91:d6: 80:6a:77:83:ee:3b:d1:c3:e7:be:78:26:7b:32:ba: e9:f4:a2:55:4d:9c:2e:bd:1c:8c:55:c6:a0:c4:4c: 0a:82:60:3f:6e:0f:16:bf:2a:3e:28:cf:14:93:d1: 98:e7:db:cb:a0:da:f4:02:e0:f1:5d:93:84:ac:90: 8b:6a:c1:46:b2:11:e0:76:1a:d5:88:0e:06:7c:bf: d3:62:cc:98:dc:55:15:29:73:bc:83:c1:b3:c1:74: ea:a7:85:a0:49:62:37:cc:0f:96:fa:d0:b3:fc:3d: 7d:83:3d:c8:2c:f4:25:90:af:f8:69:32:57:f2:44: 46:b0:a0:77:95:55:04:91:1a:ef:bc:06:2b:f1:43: 55:3e:4e:b0:95:c4:ac:3e:e9:44:c5:49:33:ad:61: c1:b2:13:8d:3c:8e:3c:fd:70:20:8d:15:a7:51:39: ae:50:eb:0d:fc:d9:91:5e:85:41:97:46:39:8c:d3: ef:b9:eb:5a:b0:b5:cd:09:d3:64:10:65:90:71:7e: 5f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:BA:94:F2:BA:2D:6F:3B:A9:7E:74:FB:34:44:57:7F:78:F1:F9:B1 X509v3 Authority Key Identifier: keyid:2E:CA:19:94:4D:A9:B0:BA:87:25:BE:70:BB:EF:54:9E:5D:21:B9:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsoZlE2psLqHJb5wu-9Unl0huTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C55/4157FF96031311EBA70CC812C4F9AE02/LsoZlE2psLqHJb5wu-9Unl0huTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:62:07:4a:0e:7f:a8:02:7e:51:74:cb:52:4a:e5:1e:28:10: 7e:31:3d:d2:b1:cc:d2:c5:00:7f:2b:82:ec:01:47:5b:83:ff: ba:45:95:65:72:6b:41:65:26:cf:68:5b:46:cc:14:3a:fe:25: 6b:12:cb:7f:c2:03:19:20:5f:70:bc:7a:68:ac:f2:55:6b:9c: 25:a0:49:d1:b3:e0:c4:26:b5:87:0d:ae:65:5f:69:97:b4:98: 8a:51:7b:14:ab:6c:28:69:b2:ea:23:44:a5:60:b1:25:c1:b6: 2d:e5:f6:70:d7:a4:93:e6:29:9a:56:01:c7:0e:f2:4c:ad:bc: 39:a3:e0:bb:e0:d2:99:0b:7f:db:9b:6f:e0:fe:30:36:82:57: 39:0d:78:a3:73:8a:a8:8e:fd:33:60:48:b9:29:75:86:81:c9: 57:32:56:99:28:15:7c:3e:e0:71:55:cd:4f:7e:33:da:68:31: bc:48:ca:a1:7d:58:2d:d1:a5:8b:3b:9f:ae:f4:ac:cb:ed:71: 38:fe:7e:a2:2a:e1:47:99:e0:f6:43:43:f9:44:42:14:ef:5f: 0d:c7:3e:28:3d:bf:35:f2:4b:49:e8:69:10:49:fd:83:12:07: 3c:74:a8:e2:40:73:84:32:02:ae:dd:6b:ec:06:ab:e4:e7:f2: 9a:c0:71:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNTUxMTAvBgNVBAUTKDJFQ0ExOTk0NERBOUIwQkE4NzI1QkU3MEJCRUY1NDlF NUQyMUI5MzcwHhcNMjUwNjE2MjA1ODIxWhcNMjUwNjIzMjA1ODIxWjAYMRYwFAYD VQQDEw02ODUwODU2ZS0wYzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArz3jfSqTCJxnwCvejE7+d+wYqidHZMuMYIbMLZZd0fB3wCPTmpHP+C8eeGMs z4WutOQ0Js4nG1NpkdaAaneD7jvRw+e+eCZ7Mrrp9KJVTZwuvRyMVcagxEwKgmA/ bg8Wvyo+KM8Uk9GY59vLoNr0AuDxXZOErJCLasFGshHgdhrViA4GfL/TYsyY3FUV KXO8g8GzwXTqp4WgSWI3zA+W+tCz/D19gz3ILPQlkK/4aTJX8kRGsKB3lVUEkRrv vAYr8UNVPk6wlcSsPulExUkzrWHBshONPI48/XAgjRWnUTmuUOsN/NmRXoVBl0Y5 jNPvuetasLXNCdNkEGWQcX5fkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJC6lPK6 LW87qX50+zREV3948fmxMB8GA1UdIwQYMBaAFC7KGZRNqbC6hyW+cLvvVJ5dIbk3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM1NS80MTU3RkY5NjAz MTMxMUVCQTcwQ0M4MTJDNEY5QUUwMi9Mc29abEUycHNMcUhKYjV3dS05VW5sMGh1 VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xzb1psRTJwc0xxSEpiNXd1LTlVbmwwaHVUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM1NS80MTU3RkY5NjAzMTMxMUVCQTcwQ0M4MTJDNEY5QUUwMi9Mc29abEUycHNM cUhKYjV3dS05VW5sMGh1VGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIYgdKDn+oAn5RdMtSSuUeKBB+MT3SsczSxQB/K4LsAUdbg/+6RZVl cmtBZSbPaFtGzBQ6/iVrEst/wgMZIF9wvHporPJVa5wloEnRs+DEJrWHDa5lX2mX tJiKUXsUq2woabLqI0SlYLElwbYt5fZw16ST5imaVgHHDvJMrbw5o+C74NKZC3/b m2/g/jA2glc5DXijc4qojv0zYEi5KXWGgclXMlaZKBV8PuBxVc1PfjPaaDG8SMqh fVgt0aWLO5+u9KzL7XE4/n6iKuFHmeD2Q0P5REIU718Nxz4oPb818ktJ6GkQSf2D Egc8dKjiQHOEMgKu3WvsBqvk5/KawHH5 -----END CERTIFICATE-----Generated at Tue Jun 17 12:20:20 2025 by rpki-client