$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft File: -KpwkWtspYPANj63qaX38mJ9c2A.mft (raw, json) Hash identifier: /vaJBYvvaduDJVq9llA87SLNwzweMl48np07NWHT/Ck= Subject key identifier: 7E:17:A5:22:6F:D5:BD:CB:6C:10:63:D9:03:22:21:AB:E0:2F:89:23 Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 265D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft Manifest number: 2558 Signing time: Fri 18 Jul 2025 15:52:48 +0000 Manifest this update: Fri 18 Jul 2025 15:52:48 +0000 Manifest next update: Fri 25 Jul 2025 15:52:48 +0000 Files and hashes: 1: -KpwkWtspYPANj63qaX38mJ9c2A.crl (hash: BzyYpP1MpiWhLiF0Th9GLoTehgOo33i6nF9F246WfvY=) 2: 9DBB8670790211EC9EE24885C4F9AE02.roa (hash: HAVp5cljtBnNfexhpbWp3fQD4oxFEGOqIu7ZTxc+Cn0=) 3: 5CCAC7F8528C11ECB6101B10C4F9AE02.roa (hash: RIyr8Ughbt9mob5hXoVNYqj5DjcM8cytuIahFNZG+OY=) 4: 86D13B7E571C11EC81276481C4F9AE02.roa (hash: MOs76+y2ZzpmyQheXk3mTC95IHPkn0FNf96cGXOiX14=) 5: 63C97CBAC49E11EBAC936D7AC4F9AE02.roa (hash: Z5qSs34sPKp/u0MZu0MdqYO0kmHEtkJPsT5iKOnHCCM=) 6: CFF5A20078E011EC8357FA15C4F9AE02.roa (hash: 0lnFnxu0rWa+p9n4oerH1rvUz5x82J6mnvG019TSBpo=) 7: 15812F82C4A111EBAE6C7F49C4F9AE02.roa (hash: lPqoKt6e9WB68QkGqWF9uf0n021O/vJN6Ok+8vPm99E=) 8: 6E042EFCABF011EC92152E22C4F9AE02.roa (hash: nSFw75IcZdLxXGKGRDjDilcmAybSCgLtcoRvUszM+xw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9821 (0x265d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53, serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Jul 18 15:52:48 2025 GMT Not After : Jul 25 15:52:48 2025 GMT Subject: CN=687a6dd0-1026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fc:25:bd:c5:93:c9:ae:1d:58:08:73:b4:6a: e2:c1:9e:7b:21:05:1a:0d:19:88:92:54:fb:bb:fb: d7:3c:75:b8:f0:93:89:ce:07:c7:bc:86:32:f1:34: 1d:3b:2e:2a:20:22:b4:b0:4a:d1:47:ce:67:75:64: 11:22:26:d7:f6:e7:99:a8:ef:d7:6f:8c:da:e8:ad: 75:91:72:81:57:02:18:ca:83:5e:27:23:e5:41:c5: 57:d0:c0:87:b7:49:9e:93:47:36:0f:0c:23:27:b1: cd:cc:0a:be:52:ef:ec:91:26:4a:01:16:9f:92:a7: e8:7c:c8:ad:b0:56:c2:8c:10:b4:bd:28:86:25:e3: 90:75:f1:6e:7e:7c:30:81:ac:ef:94:ce:81:13:14: ec:ca:bd:0a:1c:b8:60:93:26:1e:20:af:4e:0c:f2: de:29:1a:5d:b6:41:95:b4:12:71:80:8c:b3:be:11: a2:9d:00:57:11:d3:09:51:16:79:d3:a5:a3:d4:95: e6:bd:52:c7:7b:59:e6:d9:3e:15:ea:4b:d9:c9:61: a1:9e:a9:f9:22:80:70:d1:c1:5e:23:61:20:5f:4c: 63:5b:7e:ae:6a:8c:77:b2:55:4d:72:98:a3:15:41: 4e:d4:e2:40:30:dc:cd:66:a8:64:5f:21:ed:1c:ba: 2a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:17:A5:22:6F:D5:BD:CB:6C:10:63:D9:03:22:21:AB:E0:2F:89:23 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:30:85:5d:5c:7e:51:09:72:c2:dd:ba:28:0d:9d:bd:d9:55: 2c:e0:81:03:c7:c0:3e:26:aa:41:d2:32:5e:84:9e:64:d2:e7: a3:cf:d3:b6:1e:0c:5a:20:80:0a:c0:cc:57:f9:c0:c1:c7:78: 85:fa:66:d4:15:b0:e4:c4:74:7e:c4:e1:b5:fa:23:84:41:56: 36:28:56:e5:0c:ac:d5:db:61:fb:70:03:53:50:2e:d5:d5:60: 97:5a:e7:ca:d3:e0:16:66:eb:06:63:70:08:24:45:07:96:bc: 91:27:71:bd:1b:ea:7b:2b:4f:05:da:0c:83:62:02:3f:c5:b0: ae:86:1a:d2:55:c2:5a:ec:61:e2:43:72:0b:ed:f2:b7:35:54: fd:5a:b9:74:bc:b9:53:ba:87:b3:18:44:bc:e6:56:d5:cd:76: 4b:92:b4:23:2b:6a:64:35:cb:91:52:35:a7:80:97:a8:84:a3: 70:40:4c:67:dc:52:a7:dc:ad:88:44:32:1d:b8:b8:c0:22:57: 3b:cd:75:29:64:13:be:90:2a:d8:5d:49:18:07:ee:85:d4:d0: d6:2c:08:f3:d0:4d:58:7f:5d:75:8a:f3:6f:67:a3:18:3a:b2: d8:d3:5e:61:93:8d:b9:03:b4:23:30:48:b5:c6:ea:6d:11:be: 7d:11:e6:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjUwNzE4MTU1MjQ4WhcNMjUwNzI1MTU1MjQ4WjAYMRYwFAYD VQQDEw02ODdhNmRkMC0xMDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofwlvcWTya4dWAhztGriwZ57IQUaDRmIklT7u/vXPHW48JOJzgfHvIYy8TQd Oy4qICK0sErRR85ndWQRIibX9ueZqO/Xb4za6K11kXKBVwIYyoNeJyPlQcVX0MCH t0mek0c2DwwjJ7HNzAq+Uu/skSZKARafkqfofMitsFbCjBC0vSiGJeOQdfFufnww gazvlM6BExTsyr0KHLhgkyYeIK9ODPLeKRpdtkGVtBJxgIyzvhGinQBXEdMJURZ5 06Wj1JXmvVLHe1nm2T4V6kvZyWGhnqn5IoBw0cFeI2EgX0xjW36uaox3slVNcpij FUFO1OJAMNzNZqhkXyHtHLoqqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4XpSJv 1b3LbBBj2QMiIavgL4kjMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUU1My8zODUxMTg0MDQ1ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZ UEFOajYzcWFYMzhtSjljMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQMIVdXH5RCXLC3booDZ292VUs4IEDx8A+JqpB0jJehJ5k0uejz9O2 HgxaIIAKwMxX+cDBx3iF+mbUFbDkxHR+xOG1+iOEQVY2KFblDKzV22H7cANTUC7V 1WCXWufK0+AWZusGY3AIJEUHlryRJ3G9G+p7K08F2gyDYgI/xbCuhhrSVcJa7GHi Q3IL7fK3NVT9Wrl0vLlTuoezGES85lbVzXZLkrQjK2pkNcuRUjWngJeohKNwQExn 3FKn3K2IRDIduLjAIlc7zXUpZBO+kCrYXUkYB+6F1NDWLAjz0E1Yf111ivNvZ6MY OrLY015hk425A7QjMEi1xuptEb59EeYd -----END CERTIFICATE-----Generated at Sun Jul 20 14:06:27 2025 by rpki-client