$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: yTwV6ZgKJiWuXGIiivwDWiq8HjY/+JvUAs/sk4AQcjM= Subject key identifier: D0:C2:D4:A1:32:79:6D:D3:06:4E:9A:51:8D:76:A4:96:AE:37:6C:AF Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 0A11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0A0A Signing time: Thu 18 Sep 2025 20:02:57 +0000 Manifest this update: Thu 18 Sep 2025 20:02:56 +0000 Manifest next update: Thu 25 Sep 2025 20:02:56 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: NAqpnr+TtARHdANYnMucwEnEZAiteETmdSo7ogz8cZk=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2577 (0xa11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Sep 18 20:02:56 2025 GMT Not After : Sep 25 20:02:56 2025 GMT Subject: CN=68cc6570-abc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:83:be:cb:67:7c:55:b0:2f:13:51:9f:b2:85: e6:86:cc:7b:2a:c1:14:c5:66:7e:58:89:91:31:e4: ef:c0:65:40:08:39:07:0a:a9:63:bb:0b:82:ff:f6: d0:b9:75:ae:56:cf:8d:ca:03:b1:58:88:ac:ab:e7: 18:44:7a:02:72:cc:0f:8e:c2:c7:8b:53:42:42:3a: f9:57:8a:20:03:41:3c:4e:d6:19:f0:5d:e4:36:e2: 2e:01:65:a9:20:4f:ea:2a:37:37:40:b1:88:d9:0b: 26:4d:bd:54:e2:78:cd:ef:a1:fb:f7:a4:c9:cc:78: 66:9c:c1:b4:7b:3d:3d:23:10:51:01:dc:df:0d:3a: 09:47:e7:5a:49:2e:4e:9a:57:a1:69:77:3d:60:50: 0c:d7:4e:67:7d:70:7c:96:57:ba:03:5d:46:5a:10: fb:aa:54:5d:2a:24:dd:3e:98:09:e0:65:66:a6:6e: a1:ce:f2:38:5a:bb:ae:33:a5:97:68:a0:e7:b3:a8: a5:e6:42:57:1d:de:58:e2:5e:ea:a3:54:5c:83:3f: 31:f3:36:10:3d:9c:75:f3:43:d4:5f:4f:81:1f:66: 15:3a:78:b9:8a:ab:21:2c:47:a0:84:90:19:27:b0: d0:6e:d2:ad:52:ce:83:2b:0f:62:16:05:2d:43:c2: 66:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C2:D4:A1:32:79:6D:D3:06:4E:9A:51:8D:76:A4:96:AE:37:6C:AF X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:3b:e4:18:7d:0f:39:19:4d:69:29:0d:4c:5f:47:ce:3a:bf: 04:41:41:48:5b:27:40:0c:63:c8:f6:a1:58:56:2e:36:ab:d2: ac:ac:fb:8a:af:00:40:dc:45:33:4e:c9:ba:c1:f8:01:97:8f: a7:e5:7f:d1:cc:1a:b6:a7:80:85:b1:6a:9f:0b:f0:e4:58:6b: 30:89:34:64:d8:97:07:ea:8f:3e:74:b2:71:e3:3a:1d:28:08: 73:9d:ec:53:93:a0:0b:27:ea:ff:5f:14:d4:c1:76:de:41:79: 33:7d:96:a6:c2:10:13:28:d6:48:d7:f3:11:1d:0c:ef:0b:d2: 29:1a:94:2e:b7:2f:28:e2:11:2c:cf:fa:f2:72:9e:01:e4:de: bf:f8:20:12:53:09:66:2a:d7:b3:f2:b5:f5:50:e3:a9:c7:61: bf:1d:0e:6d:e2:da:dc:55:18:e1:3a:c7:74:46:f7:cb:bb:84: c5:00:36:0e:3a:e7:8f:4f:7f:c6:dc:da:f7:23:b6:07:7c:40: 2c:2f:3f:2f:2c:89:88:72:a9:7b:f0:d4:20:10:7a:43:50:19: 63:f8:1b:16:cf:ba:00:53:4f:23:55:94:d2:ba:c2:ab:21:f2: c6:00:ec:0f:60:b4:cd:b9:92:a2:09:4f:95:e7:b8:a7:90:cd: b7:8b:d2:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUwOTE4MjAwMjU2WhcNMjUwOTI1MjAwMjU2WjAYMRYwFAYD VQQDEw02OGNjNjU3MC1hYmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oO+y2d8VbAvE1GfsoXmhsx7KsEUxWZ+WImRMeTvwGVACDkHCqljuwuC//bQ uXWuVs+NygOxWIisq+cYRHoCcswPjsLHi1NCQjr5V4ogA0E8TtYZ8F3kNuIuAWWp IE/qKjc3QLGI2QsmTb1U4njN76H796TJzHhmnMG0ez09IxBRAdzfDToJR+daSS5O mlehaXc9YFAM105nfXB8lle6A11GWhD7qlRdKiTdPpgJ4GVmpm6hzvI4WruuM6WX aKDns6il5kJXHd5Y4l7qo1Rcgz8x8zYQPZx180PUX0+BH2YVOni5iqshLEeghJAZ J7DQbtKtUs6DKw9iFgUtQ8JmuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDC1KEy eW3TBk6aUY12pJauN2yvMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzO+QYfQ85GU1pKQ1MX0fOOr8EQUFIWydADGPI9qFYVi42q9KsrPuK rwBA3EUzTsm6wfgBl4+n5X/RzBq2p4CFsWqfC/DkWGswiTRk2JcH6o8+dLJx4zod KAhznexTk6ALJ+r/XxTUwXbeQXkzfZamwhATKNZI1/MRHQzvC9IpGpQuty8o4hEs z/rycp4B5N6/+CASUwlmKtez8rX1UOOpx2G/HQ5t4trcVRjhOsd0RvfLu4TFADYO OuePT3/G3Nr3I7YHfEAsLz8vLImIcql78NQgEHpDUBlj+BsWz7oAU08jVZTSusKr IfLGAOwPYLTNuZKiCU+V57inkM23i9Jq -----END CERTIFICATE-----Generated at Thu Sep 18 22:16:18 2025 by rpki-client