$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json) Hash identifier: lXC6d51oPyy7ImtmMjEpP2bvJqo3q6Q2NgYANcX3fu0= Subject key identifier: 10:B1:8A:19:85:F7:83:CF:3B:AF:07:7F:39:55:1E:65:2C:5F:B0:59 Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft Manifest number: 024A Signing time: Thu 07 Aug 2025 02:26:33 +0000 Manifest this update: Thu 07 Aug 2025 02:26:33 +0000 Manifest next update: Thu 14 Aug 2025 02:26:33 +0000 Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: Xo94qv6chO2E8Ynsws5jgbk1MKckKzgLqloMSV1Y0Tc=) 2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: sR0eTjFYTlKs7mzVHMIl7telIMsp7nYju6MlYaiMBkg=) 3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: 64gg/L8X7dQV3AAOAv3MN1klInujbmxMEcZ9X63m+I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA1BE, serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Validity Not Before: Aug 7 02:26:33 2025 GMT Not After : Aug 14 02:26:33 2025 GMT Subject: CN=68940ed9-8f3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0e:0d:fb:59:39:95:32:cc:1f:ef:51:40:16: 84:1d:df:29:df:3e:3c:4d:ac:a0:fc:00:fd:a4:ef: f1:00:ab:7a:21:dc:57:02:f1:7f:5d:ed:06:9b:02: ef:de:76:8c:3b:16:f7:ea:f6:5c:f8:df:ef:e2:f9: d6:be:66:5a:84:fd:f5:a9:c8:11:87:77:4c:be:84: 43:23:64:0c:10:47:30:2d:b1:92:8f:61:df:ee:f8: 8f:b9:fd:ac:e7:62:19:a3:f4:6f:50:13:d3:75:b9: 74:f6:39:92:15:12:54:0a:f5:b7:a0:34:0e:75:3b: c2:b7:ed:25:5d:e3:be:bd:2c:51:27:f7:42:7a:cd: cb:98:04:9e:82:65:88:8f:16:af:7f:21:47:ba:c8: ac:13:71:45:2c:89:bd:8b:90:50:b3:70:db:0c:a8: 91:b6:07:ed:b3:a9:85:31:8d:98:2e:bd:9c:da:24: 94:3c:01:cd:66:7a:aa:90:53:05:64:93:32:cf:f1: fe:72:6f:30:e9:d3:59:60:2c:7f:1e:9d:51:db:ed: 35:39:65:40:c5:f4:27:a9:4e:3a:7d:f7:7f:05:d3: b6:45:d9:ca:e8:49:26:3e:8b:ad:73:63:cc:99:7c: 5e:b8:9e:ba:25:98:66:6f:5f:52:4d:a7:d0:e9:ee: 39:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B1:8A:19:85:F7:83:CF:3B:AF:07:7F:39:55:1E:65:2C:5F:B0:59 X509v3 Authority Key Identifier: keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:fc:98:1f:b1:af:b4:e0:5d:eb:b7:bd:41:40:2c:95:15:96: 18:e1:8c:a2:85:77:19:84:e6:fc:f8:8f:52:2a:73:99:5d:78: 20:37:9f:ee:ae:ea:85:f8:f9:ef:5d:53:f3:91:27:06:3f:29: c4:0d:65:c7:0a:7b:9d:dd:db:f0:5c:e2:57:d7:44:71:4c:68: d7:af:af:19:1e:e1:74:b1:6a:3a:51:9b:55:a2:96:81:87:65: d1:a2:75:db:a1:8a:4e:31:2a:77:61:d9:72:1c:9e:09:67:27: 50:fe:ad:56:2d:6e:56:55:67:92:c9:59:9d:b1:c3:62:f8:35: b6:35:5d:d0:3a:46:00:cf:46:53:93:61:48:66:07:43:c7:81: b8:89:bf:62:ff:98:4e:b0:6f:ff:4a:bb:4a:ff:be:3f:a7:89: 1e:cd:27:8b:0c:9d:a7:e5:2d:4b:87:d8:7a:7f:4a:09:9f:62: 2d:99:42:df:20:e9:a8:9f:0f:bf:9c:d7:e2:70:31:f9:ea:fc: 6b:7d:de:a3:2d:d3:31:ae:3d:63:18:64:50:d7:c5:e5:2f:b9: 66:96:02:46:d6:09:3e:54:5b:ce:6f:ca:cf:10:ff:0d:6a:24: 4f:bc:da:9d:23:2b:10:f8:bd:7c:37:ff:af:74:b0:84:39:a5: ee:e3:f7:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkExQkUxMTAvBgNVBAUTKDk1MjZBNjcyNDc4QUZBNzU0NDVEOEQwN0RDQzU3QzA1 ODk2NkVGRTIwHhcNMjUwODA3MDIyNjMzWhcNMjUwODE0MDIyNjMzWjAYMRYwFAYD VQQDEw02ODk0MGVkOS04ZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5g4N+1k5lTLMH+9RQBaEHd8p3z48Tayg/AD9pO/xAKt6IdxXAvF/Xe0GmwLv 3naMOxb36vZc+N/v4vnWvmZahP31qcgRh3dMvoRDI2QMEEcwLbGSj2Hf7viPuf2s 52IZo/RvUBPTdbl09jmSFRJUCvW3oDQOdTvCt+0lXeO+vSxRJ/dCes3LmASegmWI jxavfyFHusisE3FFLIm9i5BQs3DbDKiRtgfts6mFMY2YLr2c2iSUPAHNZnqqkFMF ZJMyz/H+cm8w6dNZYCx/Hp1R2+01OWVAxfQnqU46ffd/BdO2RdnK6EkmPoutc2PM mXxeuJ66JZhmb19STafQ6e45oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCxihmF 94PPO68HfzlVHmUsX7BZMB8GA1UdIwQYMBaAFJUmpnJHivp1RF2NB9zFfAWJZu/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTFCRS80MTY4RkY3NjJE MzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1uVkVYWTBIM01WOEJZbG03 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTYW1ja2VLLW5WRVhZMEgzTVY4QllsbTctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTFCRS80MTY4RkY3NjJEMzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1u VkVYWTBIM01WOEJZbG03LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH/Jgfsa+04F3rt71BQCyVFZYY4YyihXcZhOb8+I9SKnOZXXggN5/u ruqF+PnvXVPzkScGPynEDWXHCnud3dvwXOJX10RxTGjXr68ZHuF0sWo6UZtVopaB h2XRonXboYpOMSp3YdlyHJ4JZydQ/q1WLW5WVWeSyVmdscNi+DW2NV3QOkYAz0ZT k2FIZgdDx4G4ib9i/5hOsG//SrtK/74/p4kezSeLDJ2n5S1Lh9h6f0oJn2ItmULf IOmonw+/nNficDH56vxrfd6jLdMxrj1jGGRQ18XlL7lmlgJG1gk+VFvOb8rPEP8N aiRPvNqdIysQ+L18N/+vdLCEOaXu4/dY -----END CERTIFICATE-----Generated at Sat Aug 9 01:05:32 2025 by rpki-client