$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: 5I5hftEPztqYjGcoU3wMg+uopp3jK9ixPH3QxGcBm/Y= Subject key identifier: 38:02:26:18:51:5D:FD:DC:AE:93:75:6D:32:FD:9F:2B:6E:16:FC:3A Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 34D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 34C6 Signing time: Sun 24 Aug 2025 14:46:05 +0000 Manifest this update: Sun 24 Aug 2025 14:46:05 +0000 Manifest next update: Sun 31 Aug 2025 14:46:05 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: aWzxaaZKWRmrQGUeSzcI5be2peLHT9y8+vsyWrJ48pE=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: J0n8zynWewxBVfoDX3OB8RbfuIjzjZ2KDx4R2TodoBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:46:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13529 (0x34d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Aug 24 14:46:05 2025 GMT Not After : Aug 31 14:46:05 2025 GMT Subject: CN=68ab25ad-2a8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1c:47:e0:c9:36:b9:fc:02:69:01:57:f7:bd: 6d:94:a4:a5:57:1a:fe:1c:5f:86:84:65:4c:c6:35: 3e:c1:c2:e4:80:ae:f8:ed:de:13:b2:95:39:dd:74: cf:1a:fc:ac:0c:ae:65:32:d1:6e:ac:92:b6:db:0c: 78:8a:fd:00:ff:48:7d:61:8c:06:be:24:46:a9:63: bf:d9:f8:4d:7e:99:64:32:f3:70:ef:0f:32:38:c0: 95:6d:60:bd:03:80:62:0e:df:b1:8d:a5:ec:0c:4a: 45:3a:b0:78:27:32:6f:bf:86:64:f1:40:3e:8f:c1: 3a:48:2c:d2:04:cb:ec:ba:5f:ae:ea:23:94:a0:5c: cb:3c:58:b3:11:b5:2b:03:d2:90:1f:fd:71:c1:89: fb:18:db:3e:c0:b9:d1:74:de:57:30:13:f2:8f:88: 50:63:60:4d:0e:ae:72:16:79:ef:f4:dc:d8:03:a0: e4:5e:c2:f0:08:4f:f6:f7:16:2b:38:e5:3b:83:83: ab:0a:d9:f1:3a:7b:f7:ba:24:6d:fc:38:97:57:32: b7:02:4a:22:b5:ee:9f:61:89:5e:84:38:58:cb:54: da:05:6d:9c:71:9d:9c:5b:aa:be:81:c5:a1:13:1d: bb:65:86:db:2b:3a:8c:34:c9:d9:78:9b:63:0b:49: dc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:02:26:18:51:5D:FD:DC:AE:93:75:6D:32:FD:9F:2B:6E:16:FC:3A X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:49:32:da:47:ad:64:d3:31:24:be:f7:32:38:f1:97:d5:2e: f6:59:81:e2:d7:2c:5d:1f:52:d9:e9:c6:b4:07:ac:65:92:e8: fb:f3:93:b9:ad:de:a3:db:0c:4b:e5:91:1c:1a:9e:03:64:bd: 90:b3:9b:a3:59:78:7a:98:33:68:92:af:71:d0:c6:c6:4f:bb: ac:70:65:de:7c:42:a7:77:15:75:2c:8b:08:39:a0:dc:79:d6: f7:56:03:73:f4:67:a0:eb:b7:44:e4:6d:89:93:60:de:5e:bb: 86:66:91:59:0b:21:a8:02:e2:a6:c1:ca:17:d9:37:9e:d3:bc: f8:a0:3a:ae:26:18:0d:76:15:b9:86:dc:d9:63:f1:e7:4a:c0: ee:4e:cb:1e:c0:f2:6e:f4:c0:a3:1d:47:e7:96:cc:c6:85:b1: b9:26:c1:08:4a:da:42:80:b0:02:82:de:1f:9f:5e:bd:26:76: 07:48:be:c8:8a:c2:77:b7:79:52:83:24:08:98:11:a0:bf:1f: a8:9e:b3:55:91:f0:c5:6d:22:d9:85:bd:08:61:53:40:54:c7: 37:59:7a:0c:d6:53:2d:5f:fd:36:1b:1e:49:ae:5b:8e:0d:65: 0a:a6:97:55:28:ed:86:71:88:c4:cb:24:b1:fa:06:d3:8b:76: 8a:85:c9:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjUwODI0MTQ0NjA1WhcNMjUwODMxMTQ0NjA1WjAYMRYwFAYD VQQDEw02OGFiMjVhZC0yYThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhxH4Mk2ufwCaQFX971tlKSlVxr+HF+GhGVMxjU+wcLkgK747d4TspU53XTP GvysDK5lMtFurJK22wx4iv0A/0h9YYwGviRGqWO/2fhNfplkMvNw7w8yOMCVbWC9 A4BiDt+xjaXsDEpFOrB4JzJvv4Zk8UA+j8E6SCzSBMvsul+u6iOUoFzLPFizEbUr A9KQH/1xwYn7GNs+wLnRdN5XMBPyj4hQY2BNDq5yFnnv9NzYA6DkXsLwCE/29xYr OOU7g4OrCtnxOnv3uiRt/DiXVzK3Akoite6fYYlehDhYy1TaBW2ccZ2cW6q+gcWh Ex27ZYbbKzqMNMnZeJtjC0nclQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgCJhhR Xf3crpN1bTL9nytuFvw6MB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiSTLaR61k0zEkvvcyOPGX1S72WYHi1yxdH1LZ6ca0B6xlkuj785O5 rd6j2wxL5ZEcGp4DZL2Qs5ujWXh6mDNokq9x0MbGT7uscGXefEKndxV1LIsIOaDc edb3VgNz9Geg67dE5G2Jk2DeXruGZpFZCyGoAuKmwcoX2Tee07z4oDquJhgNdhW5 htzZY/HnSsDuTssewPJu9MCjHUfnlszGhbG5JsEIStpCgLACgt4fn169JnYHSL7I isJ3t3lSgyQImBGgvx+onrNVkfDFbSLZhb0IYVNAVMc3WXoM1lMtX/02Gx5JrluO DWUKppdVKO2GcYjEyySx+gbTi3aKhcnx -----END CERTIFICATE-----Generated at Sun Aug 24 22:00:29 2025 by rpki-client