$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: p5xmpouIeEN2ey+Pz3iCPUUWAAdCi1bzpgZQ27A/I2s= Subject key identifier: 3E:15:A0:50:62:04:43:75:00:56:E0:D9:31:CC:EE:E3:8C:FE:AC:D1 Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 09F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 09EA Signing time: Fri 18 Jul 2025 20:07:16 +0000 Manifest this update: Fri 18 Jul 2025 20:07:16 +0000 Manifest next update: Fri 25 Jul 2025 20:07:16 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: nhL5Nd299iVllt10ksYWA4Brej/mo+eBH1cPAIjBhEk=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2545 (0x9f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Jul 18 20:07:16 2025 GMT Not After : Jul 25 20:07:16 2025 GMT Subject: CN=687aa974-68b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1d:d4:aa:4e:8d:90:b4:d5:8c:e1:a0:ce:6b: 94:e9:ef:a2:fe:c4:3b:a8:19:e5:22:b8:6b:85:14: 2b:ff:28:ca:ad:c8:61:e1:2e:94:af:3d:7e:94:bb: bb:75:09:e1:bc:a0:cb:41:25:69:f6:4e:82:d9:83: 6d:ec:51:b5:c5:21:a4:f5:d8:44:ab:5d:3d:7d:70: 12:4e:ad:11:75:49:43:37:21:a7:74:61:3f:d1:69: 2a:67:ba:ee:cc:eb:76:f5:28:86:8f:49:55:66:0e: c3:75:7e:48:ab:f8:a7:49:bb:ce:f1:31:1b:e2:4a: 2e:6d:a9:51:21:c6:91:94:55:e5:10:5b:e4:1a:60: 12:b6:93:38:7a:b4:db:a8:6a:a6:3e:3d:02:ce:8a: 42:0f:ce:a9:90:39:04:4f:82:b1:55:d1:5a:9c:3d: 2c:5d:85:f3:c8:c6:31:1f:e7:ce:2d:f3:fc:b7:13: d5:a7:f3:a4:62:d9:2f:fc:09:3e:02:6e:04:76:49: 03:20:3a:77:ff:92:3c:ee:da:2b:d4:b7:21:60:92: 8e:9a:79:e2:4b:8b:10:55:ba:93:fd:d2:1f:6a:5c: 02:94:3e:c5:61:ed:89:e0:17:51:0c:35:c2:af:6f: 00:d2:73:15:f0:1b:a2:c6:d9:06:c5:fd:32:c9:8d: b4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:15:A0:50:62:04:43:75:00:56:E0:D9:31:CC:EE:E3:8C:FE:AC:D1 X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:bb:92:72:aa:c3:90:b6:95:a2:52:6b:cb:31:e8:78:ff:42: ee:d4:e1:5e:81:92:0f:51:a8:9e:4b:e9:91:0d:8e:44:69:f4: b3:4e:71:d8:da:f9:79:ac:cd:28:37:e4:de:48:a4:c6:ed:bf: 63:87:ee:76:97:47:ce:53:03:ea:46:f4:88:12:69:7d:87:02: 3a:d9:ad:69:35:4a:0f:6e:7d:25:57:3e:d9:df:d0:03:2c:b1: eb:12:a2:ac:02:26:0d:1f:c7:b4:29:91:71:ae:eb:7a:f2:ac: 04:2e:09:a1:ca:68:72:9b:c3:46:18:80:26:c6:57:ed:64:db: e1:6c:1f:e3:88:f5:6c:94:20:50:5c:8a:28:64:c7:30:f4:36: e1:b1:f1:a6:de:33:ac:5a:23:af:c7:50:db:01:2d:ba:9d:02: 3c:b2:58:fa:c3:b6:b4:29:25:4b:de:6c:ce:27:b6:39:7f:e0: ca:d9:5e:63:36:c4:b1:a6:f4:ca:b2:68:d2:83:44:ad:3d:f3: b2:4a:29:98:cf:e2:0b:91:5b:9c:bd:2b:32:9c:84:c8:de:a9: 11:59:7b:79:4d:64:a8:d0:cc:de:89:d8:69:7b:2d:a6:95:7d: 1c:9d:23:ef:75:78:38:5b:78:62:3a:ec:e2:5e:45:80:0a:b6: 62:67:00:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUwNzE4MjAwNzE2WhcNMjUwNzI1MjAwNzE2WjAYMRYwFAYD VQQDEw02ODdhYTk3NC02OGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5B3Uqk6NkLTVjOGgzmuU6e+i/sQ7qBnlIrhrhRQr/yjKrchh4S6Urz1+lLu7 dQnhvKDLQSVp9k6C2YNt7FG1xSGk9dhEq109fXASTq0RdUlDNyGndGE/0WkqZ7ru zOt29SiGj0lVZg7DdX5Iq/inSbvO8TEb4koubalRIcaRlFXlEFvkGmAStpM4erTb qGqmPj0CzopCD86pkDkET4KxVdFanD0sXYXzyMYxH+fOLfP8txPVp/OkYtkv/Ak+ Am4EdkkDIDp3/5I87tor1LchYJKOmnniS4sQVbqT/dIfalwClD7FYe2J4BdRDDXC r28A0nMV8BuixtkGxf0yyY20PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4VoFBi BEN1AFbg2THM7uOM/qzRMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7u5JyqsOQtpWiUmvLMeh4/0Lu1OFegZIPUaieS+mRDY5EafSzTnHY 2vl5rM0oN+TeSKTG7b9jh+52l0fOUwPqRvSIEml9hwI62a1pNUoPbn0lVz7Z39AD LLHrEqKsAiYNH8e0KZFxrut68qwELgmhymhym8NGGIAmxlftZNvhbB/jiPVslCBQ XIooZMcw9DbhsfGm3jOsWiOvx1DbAS26nQI8slj6w7a0KSVL3mzOJ7Y5f+DK2V5j NsSxpvTKsmjSg0StPfOySimYz+ILkVucvSsynITI3qkRWXt5TWSo0Mzeidhpey2m lX0cnSPvdXg4W3hiOuziXkWACrZiZwC7 -----END CERTIFICATE-----Generated at Sun Jul 20 08:00:39 2025 by rpki-client