$ rpki-client -vvf rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft File: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft (raw, json) Hash identifier: 6wQOhUUMhxAfvGtHAAVQ5+mMQ6L/xcezrARg8JaFYNw= Subject key identifier: 84:AB:44:12:5E:3A:17:2D:24:CD:D0:CD:A2:64:48:E9:68:CE:35:36 Authority key identifier: 72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A Certificate issuer: /CN=A915D010/serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Certificate serial: 0DCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft Manifest number: 0DC4 Signing time: Wed 20 Aug 2025 17:58:33 +0000 Manifest this update: Wed 20 Aug 2025 17:58:33 +0000 Manifest next update: Wed 27 Aug 2025 17:58:33 +0000 Files and hashes: 1: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl (hash: glzOmuTMUwtBd8ae2NxOaQoluRN5H3f4jDN0X7WVLDg=) 2: FCFEAA74DB9111E9B70EDD2EC4F9AE02.roa (hash: Bv4wN8OF2Bm5se8xe4Mu+kG3hxKKklF4aauYgHDM/QE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 17:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3532 (0xdcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D010, serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Validity Not Before: Aug 20 17:58:33 2025 GMT Not After : Aug 27 17:58:33 2025 GMT Subject: CN=68a60cc9-b7ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b2:ec:d2:ef:bb:3e:b9:eb:33:d6:fc:4d:b5: 77:fd:61:55:32:85:7c:f3:a2:16:60:ab:7b:3c:02: ac:87:13:1e:2b:82:4a:7f:ea:2c:28:84:41:47:30: c8:13:5b:2a:7f:5d:06:ab:25:86:f8:06:81:94:a3: cf:0a:41:e1:ad:07:85:79:8a:72:9e:70:21:c3:3a: 39:85:00:7b:4a:8e:b2:72:45:a6:2f:51:fb:d7:e9: 9e:76:bf:41:a0:70:d0:36:fa:89:5d:4f:86:42:ea: 07:6b:47:36:fb:3e:c7:78:98:dc:90:48:f1:0d:f0: 6b:01:eb:5f:90:89:d1:4f:1f:50:67:be:b1:16:17: 1e:78:b1:50:5d:2b:37:b2:24:f6:ee:0b:bf:bb:d7: 9a:88:39:41:f5:a4:e6:52:a0:fb:a1:8a:ee:5f:df: f9:d9:40:b9:2d:fc:0a:f9:be:a8:7e:ca:d7:ae:66: 90:50:a3:4f:45:0e:15:7c:f6:26:c6:1c:74:fa:86: 1e:8c:28:1e:6c:f1:fa:be:ca:bd:13:81:c3:a3:b3: 9f:b5:b3:36:60:4d:e7:a5:b9:1e:bf:85:76:ea:c7: aa:71:5f:e5:fe:b0:81:12:13:d0:3a:6a:52:b9:00: 9d:0f:d9:db:b7:ba:0f:50:27:c6:8a:a8:f8:2a:f1: 72:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:AB:44:12:5E:3A:17:2D:24:CD:D0:CD:A2:64:48:E9:68:CE:35:36 X509v3 Authority Key Identifier: keyid:72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:9f:8b:81:1d:b5:95:f8:ab:46:52:00:f4:55:43:2c:01:c5: be:a4:2c:d3:dc:5b:0a:eb:47:5b:01:2e:af:41:d6:01:6c:6e: 6b:2a:82:05:00:4e:9d:e0:d6:ff:89:dd:81:b0:c9:c0:96:44: 13:e8:e9:e1:0c:17:67:fd:49:bc:bc:a3:51:55:06:19:c7:24: 47:95:4e:13:5a:bc:74:83:44:cd:71:71:43:8a:2e:75:c0:7c: d4:fd:4a:07:e3:a5:be:f7:b4:89:61:86:5b:3c:24:b7:e0:43: 77:48:ca:cf:98:52:dd:97:7f:2f:5c:7e:9b:b0:72:04:7f:ae: 36:9d:07:a3:b4:e5:9b:09:70:91:c7:ab:4e:67:8f:a0:7d:3e: 61:67:13:f9:d2:aa:bb:11:b5:8c:de:5e:1c:c6:fa:42:bd:a3: d6:4c:ee:be:31:cb:8d:5d:b0:7f:66:0b:aa:52:66:99:52:42: 40:6f:98:30:71:ec:5a:e1:ea:79:90:f4:0c:16:19:15:4d:73: a7:91:ca:57:1b:17:9a:73:e3:6e:40:d0:4e:21:22:5b:ae:03: 0f:8e:11:99:5e:5b:a3:ea:50:63:dc:47:92:36:77:41:4b:f0: 8b:f5:1a:90:66:d8:99:2b:66:d1:40:6c:c5:e6:d4:d1:28:00: ae:f7:28:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwMTAxMTAvBgNVBAUTKDcyMjE3OEQ1OTFEOTg1OTY4OUU0QjkyRjJEMEM4N0ZB NDdFMzVFMEEwHhcNMjUwODIwMTc1ODMzWhcNMjUwODI3MTc1ODMzWjAYMRYwFAYD VQQDEw02OGE2MGNjOS1iN2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7Ls0u+7PrnrM9b8TbV3/WFVMoV886IWYKt7PAKshxMeK4JKf+osKIRBRzDI E1sqf10GqyWG+AaBlKPPCkHhrQeFeYpynnAhwzo5hQB7So6yckWmL1H71+medr9B oHDQNvqJXU+GQuoHa0c2+z7HeJjckEjxDfBrAetfkInRTx9QZ76xFhceeLFQXSs3 siT27gu/u9eaiDlB9aTmUqD7oYruX9/52UC5LfwK+b6ofsrXrmaQUKNPRQ4VfPYm xhx0+oYejCgebPH6vsq9E4HDo7OftbM2YE3npbkev4V26seqcV/l/rCBEhPQOmpS uQCdD9nbt7oPUCfGiqj4KvFydQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISrRBJe OhctJM3QzaJkSOlozjU2MB8GA1UdIwQYMBaAFHIheNWR2YWWieS5Ly0Mh/pH414K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAxMC81N0I3NjcxQUMy MUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmhaYUo1TGt2TFF5SC1rZmpY Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpRjQxWkhaaFphSjVMa3ZMUXlILWtmalhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDAxMC81N0I3NjcxQUMyMUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmha YUo1TGt2TFF5SC1rZmpYZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtn4uBHbWV+KtGUgD0VUMsAcW+pCzT3FsK60dbAS6vQdYBbG5rKoIF AE6d4Nb/id2BsMnAlkQT6OnhDBdn/Um8vKNRVQYZxyRHlU4TWrx0g0TNcXFDii51 wHzU/UoH46W+97SJYYZbPCS34EN3SMrPmFLdl38vXH6bsHIEf642nQejtOWbCXCR x6tOZ4+gfT5hZxP50qq7EbWM3l4cxvpCvaPWTO6+McuNXbB/ZguqUmaZUkJAb5gw cexa4ep5kPQMFhkVTXOnkcpXGxeac+NuQNBOISJbrgMPjhGZXluj6lBj3EeSNndB S/CL9RqQZtiZK2bRQGzF5tTRKACu9yif -----END CERTIFICATE-----Generated at Fri Aug 22 16:22:29 2025 by rpki-client