$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft File: aZoPjRWjT1mVbLSADGxEBNwOvV0.mft (raw, json) Hash identifier: TGdx6T+XOWDAvPCdSMAvc3OrHHi8s28edhDZfTwgBrA= Subject key identifier: EB:EA:BC:B8:F5:F6:F6:AB:75:7A:4C:35:05:93:A9:E2:1E:C1:60:E6 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft Manifest number: 34AC Signing time: Fri 18 Jul 2025 15:21:13 +0000 Manifest this update: Fri 18 Jul 2025 15:21:12 +0000 Manifest next update: Fri 25 Jul 2025 15:21:12 +0000 Files and hashes: 1: aZoPjRWjT1mVbLSADGxEBNwOvV0.crl (hash: ljJmOvCoqvtZWXS3OO7P9vXtzcmw5PU64HfMsAG+LjI=) 2: 6BC5DC4AB10511E591A3E484C4F9AE02.roa (hash: lhbAPGcQQjVfLeBPPvSfLGakAoAsie+moEAIzx57Z0Y=) 3: 6A9E6940B10511E591A3E484C4F9AE02.roa (hash: 1AXC4CdSqCeZreg7Kdx8zTNNLCij2RY2Acpk7gs3UmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE, serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: Jul 18 15:21:12 2025 GMT Not After : Jul 25 15:21:12 2025 GMT Subject: CN=687a6669-b51f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:88:dc:d7:f5:5a:f6:5e:54:19:3a:73:ff:95: 74:8a:35:d8:09:30:4a:9e:ca:34:4a:a1:a5:5d:69: 91:c3:c4:55:1b:09:8b:01:ef:4f:9e:9e:db:28:94: d4:ef:3d:2f:07:ee:cb:92:b4:c6:20:34:33:05:74: 7f:5a:09:62:77:f6:7a:48:06:4d:09:e2:68:c1:0d: 27:08:74:f4:53:7b:bd:70:88:c0:b1:51:a8:83:6a: 93:13:b5:46:ae:9c:20:cc:fb:1e:66:9d:a4:23:da: e2:7f:20:54:ce:72:b6:09:58:65:6f:d5:21:4f:db: 13:56:35:7a:1a:a9:3a:1a:32:0a:8d:ca:52:d7:3b: e7:c1:dd:50:ad:74:f2:6d:26:26:ce:8d:2c:d1:30: 7b:b7:43:88:ea:40:40:9f:fe:3d:19:0e:ae:8f:c3: 09:0a:47:a2:dc:99:2c:9d:39:10:39:89:e9:0e:f5: 78:9b:de:38:99:0d:1c:2b:fe:e0:84:2a:f9:84:28: 11:a1:7f:cd:df:a8:d4:7d:99:68:75:95:c7:3e:53: 5f:25:0c:5c:b1:5b:26:bc:ee:13:df:ce:07:98:6a: 0b:8b:c8:ed:39:4d:8b:30:25:15:9e:57:9b:90:47: ec:85:df:31:ce:05:ab:60:71:9c:0e:63:ac:54:de: 74:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EA:BC:B8:F5:F6:F6:AB:75:7A:4C:35:05:93:A9:E2:1E:C1:60:E6 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c7:79:f7:59:02:08:7b:46:73:37:5a:3d:25:9b:f1:ef:b0: 0a:44:dd:e9:8c:3e:a9:b6:80:a0:83:21:68:b5:12:0b:57:e7: 38:2c:68:8e:c6:79:30:7c:f6:c1:60:73:34:96:1b:a6:93:90: bb:ce:1f:1a:5b:a7:b9:94:52:c0:53:8d:0e:13:b3:68:e9:41: 4e:f6:04:fa:e9:0c:3f:58:52:6b:47:c7:fa:66:67:0e:a4:ec: 1e:e3:45:e8:84:9e:22:2f:a3:5b:56:36:82:32:92:7e:f1:24: 77:74:a9:74:64:69:98:6c:36:bc:b6:d2:11:46:70:16:e1:17: 72:87:d2:18:ce:d2:4b:58:93:34:2e:a3:36:ed:4b:4a:c9:87: 6d:34:63:6c:44:13:9c:6d:34:43:5e:e5:d3:87:bd:ac:75:c3: df:2b:34:3d:db:5e:8d:1f:22:7d:ce:b5:68:99:c3:12:87:82: 3b:2b:52:4e:84:85:ec:1f:20:bb:cc:30:bc:cb:3e:2d:64:3d: 29:e2:f7:33:27:7a:87:fa:08:80:ff:78:b9:5f:2f:24:e1:48: fc:69:27:1f:90:69:30:6a:62:8b:79:4a:d9:cb:71:b1:97:33: 3e:c8:0c:f9:75:c8:33:00:e0:dc:23:f6:19:e9:ac:b4:1e:64: 08:bc:23:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjUwNzE4MTUyMTEyWhcNMjUwNzI1MTUyMTEyWjAYMRYwFAYD VQQDEw02ODdhNjY2OS1iNTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4jc1/Va9l5UGTpz/5V0ijXYCTBKnso0SqGlXWmRw8RVGwmLAe9Pnp7bKJTU 7z0vB+7LkrTGIDQzBXR/Wglid/Z6SAZNCeJowQ0nCHT0U3u9cIjAsVGog2qTE7VG rpwgzPseZp2kI9rifyBUznK2CVhlb9UhT9sTVjV6Gqk6GjIKjcpS1zvnwd1QrXTy bSYmzo0s0TB7t0OI6kBAn/49GQ6uj8MJCkei3JksnTkQOYnpDvV4m944mQ0cK/7g hCr5hCgRoX/N36jUfZlodZXHPlNfJQxcsVsmvO4T384HmGoLi8jtOU2LMCUVnleb kEfshd8xzgWrYHGcDmOsVN50mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvqvLj1 9vardXpMNQWTqeIewWDmMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFGRS9EMTE4QUFCQTFEQUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQx bVZiTFNBREd4RUJOd092VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBax3n3WQIIe0ZzN1o9JZvx77AKRN3pjD6ptoCggyFotRILV+c4LGiO xnkwfPbBYHM0lhumk5C7zh8aW6e5lFLAU40OE7No6UFO9gT66Qw/WFJrR8f6ZmcO pOwe40XohJ4iL6NbVjaCMpJ+8SR3dKl0ZGmYbDa8ttIRRnAW4Rdyh9IYztJLWJM0 LqM27UtKyYdtNGNsRBOcbTRDXuXTh72sdcPfKzQ9216NHyJ9zrVomcMSh4I7K1JO hIXsHyC7zDC8yz4tZD0p4vczJ3qH+giA/3i5Xy8k4Uj8aScfkGkwamKLeUrZy3Gx lzM+yAz5dcgzAODcI/YZ6ay0HmQIvCPV -----END CERTIFICATE-----Generated at Sun Jul 20 06:16:06 2025 by rpki-client