$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: uWfQzHy0Aax62SXmLECId6My95WpEoy1L7Sw7AQ8HLg= Subject key identifier: E5:CC:E5:25:B2:B6:29:BC:2F:0A:29:D9:3E:FF:F1:EE:50:C5:87:6B Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0AF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0AEA Signing time: Sun 24 Aug 2025 19:23:00 +0000 Manifest this update: Sun 24 Aug 2025 19:22:59 +0000 Manifest next update: Sun 31 Aug 2025 19:22:59 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: KmX7zubsDEI7bqYxzhAIEJa7jiWK4akUIUw9hkR7EZI=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: q02Hd4XFE+H9p8qEMOu2AbjA5nPs5WOETsJPUT9HbXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2801 (0xaf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B, serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: Aug 24 19:22:59 2025 GMT Not After : Aug 31 19:22:59 2025 GMT Subject: CN=68ab6694-0d29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5e:d1:64:ec:bd:c5:98:19:c4:7d:64:b0:75: 2b:21:75:f1:cd:d8:24:e2:64:2f:6f:84:7e:1f:8c: 12:62:29:c1:96:fd:0f:c0:43:e2:0a:73:82:f1:7f: d7:18:dc:e5:47:41:37:64:1b:40:4c:13:28:c2:3b: d7:67:0d:cb:2f:a8:37:ae:b8:55:a0:97:b8:67:6e: 21:9c:1a:fd:09:ec:40:59:5c:1c:de:66:86:a9:3a: 74:d3:c7:0b:55:61:73:47:3e:3d:05:85:20:2e:73: 40:6b:be:b3:e1:dd:bc:68:ff:21:38:db:53:fd:df: b8:06:16:ba:16:e4:bb:93:a8:c9:85:ff:32:50:9d: b5:eb:1c:c7:03:5c:31:e6:66:32:82:09:27:d2:de: 3b:7a:9f:3e:49:f0:d2:f1:60:b9:39:03:16:a5:ca: b2:40:a6:9d:71:6a:6a:8f:12:e5:30:e4:55:f2:09: b5:f4:70:e8:47:7b:17:12:01:c2:72:82:90:38:dd: 53:05:06:a7:d1:d3:1c:9a:d2:15:29:c3:b3:94:db: 3b:d1:dd:33:8f:16:f5:a0:58:0d:0d:ab:8a:99:9d: 96:73:b6:f9:12:90:f0:2f:90:12:28:35:fd:6d:3f: a2:39:e1:1e:1f:72:84:64:66:1c:a1:52:95:45:95: 8e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:CC:E5:25:B2:B6:29:BC:2F:0A:29:D9:3E:FF:F1:EE:50:C5:87:6B X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:b6:13:81:8a:a7:d7:bd:07:20:26:e2:89:62:c8:dc:6f:2f: b3:4b:4d:43:91:89:26:68:b9:53:8a:64:69:35:af:8e:7f:4b: 6c:b2:8f:04:b0:a8:01:fd:6d:d7:8c:23:db:e6:4f:ff:13:08: 5b:bc:04:13:73:59:9d:6f:c8:3e:3b:79:3a:d5:3c:3f:97:50: b3:86:5a:8b:0b:f4:8a:d7:cb:5d:84:fb:6a:c0:42:4f:b1:19: c6:3b:13:94:63:db:47:11:d4:0c:10:f6:ad:c0:9e:fc:bd:fd: f7:8c:37:d2:92:9a:10:e5:1a:2c:e7:8c:40:4b:32:78:88:51: ae:38:10:d9:fa:d6:b0:76:8c:94:13:fd:8b:0d:90:53:79:a1: 23:68:b4:7a:ef:3a:a5:71:b6:6e:50:fa:8b:e2:85:38:f9:b0: 6b:fd:ee:eb:2f:83:74:df:f0:ab:19:3b:11:3b:a3:1e:dc:b2: 80:85:54:3d:6c:e3:d3:66:32:36:b9:36:d4:8e:c5:c2:66:97: 4b:04:ba:d7:a0:93:65:6f:38:f5:c5:08:ab:93:52:ad:50:b4: 28:dd:97:ae:0e:23:dc:c9:a1:42:58:4c:93:cc:63:24:f4:c8: d0:1d:55:2c:1d:c8:12:ea:48:cf:ac:32:b7:2c:91:16:97:39: 81:55:c0:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjUwODI0MTkyMjU5WhcNMjUwODMxMTkyMjU5WjAYMRYwFAYD VQQDEw02OGFiNjY5NC0wZDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2V7RZOy9xZgZxH1ksHUrIXXxzdgk4mQvb4R+H4wSYinBlv0PwEPiCnOC8X/X GNzlR0E3ZBtATBMowjvXZw3LL6g3rrhVoJe4Z24hnBr9CexAWVwc3maGqTp008cL VWFzRz49BYUgLnNAa76z4d28aP8hONtT/d+4Bha6FuS7k6jJhf8yUJ216xzHA1wx 5mYyggkn0t47ep8+SfDS8WC5OQMWpcqyQKadcWpqjxLlMORV8gm19HDoR3sXEgHC coKQON1TBQan0dMcmtIVKcOzlNs70d0zjxb1oFgNDauKmZ2Wc7b5EpDwL5ASKDX9 bT+iOeEeH3KEZGYcoVKVRZWOJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXM5SWy tim8Lwop2T7/8e5QxYdrMB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKthOBiqfXvQcgJuKJYsjcby+zS01DkYkmaLlTimRpNa+Of0tsso8E sKgB/W3XjCPb5k//EwhbvAQTc1mdb8g+O3k61Tw/l1CzhlqLC/SK18tdhPtqwEJP sRnGOxOUY9tHEdQMEPatwJ78vf33jDfSkpoQ5Ros54xASzJ4iFGuOBDZ+tawdoyU E/2LDZBTeaEjaLR67zqlcbZuUPqL4oU4+bBr/e7rL4N03/CrGTsRO6Me3LKAhVQ9 bOPTZjI2uTbUjsXCZpdLBLrXoJNlbzj1xQirk1KtULQo3ZeuDiPcyaFCWEyTzGMk 9MjQHVUsHcgS6kjPrDK3LJEWlzmBVcCt -----END CERTIFICATE-----Generated at Sun Aug 24 21:44:35 2025 by rpki-client