$ rpki-client -vvf rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft File: L1yb73Dl0CO3HEbLZs_iof20g1s.mft (raw, json) Hash identifier: c9fv/Dw/3zmyq6VEXBEn88Gv40h3oFWU4FLZ/64EoFI= Subject key identifier: 4B:1C:60:42:59:1B:BF:AF:61:C1:59:2D:98:6F:A9:2E:63:EE:FE:0C Authority key identifier: 2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B Certificate issuer: /CN=A915D55E/serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Certificate serial: 0790 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft Manifest number: 078B Signing time: Wed 20 Aug 2025 21:31:44 +0000 Manifest this update: Wed 20 Aug 2025 21:31:43 +0000 Manifest next update: Wed 27 Aug 2025 21:31:43 +0000 Files and hashes: 1: L1yb73Dl0CO3HEbLZs_iof20g1s.crl (hash: yQoqGKPVzuZS4kAgFOo7SChS7TtRtfD/3QKPBHqAYbQ=) 2: 2323F9621D5D11EBA3A7E71CC4F9AE02.roa (hash: 7aqFTC0pvymz2qNJgMgOiSvmjJnWEvFpbf7HqEGVxms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 21:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1936 (0x790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D55E, serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Validity Not Before: Aug 20 21:31:43 2025 GMT Not After : Aug 27 21:31:43 2025 GMT Subject: CN=68a63ec0-d477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7b:fe:17:e5:cf:2c:b7:98:f7:cb:4f:71:5f: 18:4d:30:fa:6c:ce:1a:8f:9c:29:98:a2:b8:8b:0e: a2:35:0e:ec:d6:7d:32:ed:12:02:f1:e2:6c:88:83: 35:4c:d6:e8:30:ed:e0:57:ed:ab:bf:56:35:20:ac: ea:c2:a2:18:6e:4e:eb:a6:27:0c:f5:89:1d:39:53: c9:28:2d:7d:bb:87:27:ab:75:20:e1:31:77:69:62: b1:2a:c5:27:95:4e:34:d0:f3:a5:9b:97:bc:7d:62: 3f:df:ba:3e:45:ee:4b:12:d0:dd:9e:e2:a3:7e:1a: 23:6e:0a:61:9b:ba:0c:31:54:9b:d0:a3:a1:3c:ab: c7:43:b7:6a:69:74:22:53:38:3f:48:4a:74:0d:8c: c7:e3:80:32:0b:94:35:0d:d0:53:10:79:ec:c4:63: eb:e1:db:97:96:05:71:03:44:97:cc:89:16:3b:57: bf:21:57:5d:92:8d:fe:d2:9f:03:b3:37:42:cd:c2: ef:a6:cf:74:94:19:12:1b:ed:ea:43:6b:10:07:d9: ed:98:a3:91:c6:0e:15:4b:0b:5c:9a:cd:fb:61:3e: 35:41:78:5d:d6:91:cb:15:15:c4:bf:74:b4:32:f9: 21:8d:d2:dd:7c:f2:fa:5b:d6:47:39:34:0f:a7:29: 02:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1C:60:42:59:1B:BF:AF:61:C1:59:2D:98:6F:A9:2E:63:EE:FE:0C X509v3 Authority Key Identifier: keyid:2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:cc:77:d1:40:12:36:79:9c:eb:b9:3f:fd:04:ec:78:86:23: 3b:4c:f0:a0:6d:ed:67:07:78:70:c8:82:2f:b8:65:bd:c6:0c: 92:f9:9d:67:d8:0d:71:7f:85:c7:26:2e:5c:19:9f:ce:e5:2c: 18:3b:0b:91:cd:1c:cc:ce:83:57:1d:95:0b:01:6f:cb:cb:27: 6c:10:93:29:37:01:57:5a:19:32:38:3f:fa:db:5c:16:76:45: 92:67:1b:5a:cf:29:d4:19:07:33:c0:d4:71:e6:b4:e5:9a:32: 35:29:fc:7e:d3:b9:26:0e:b8:c1:f6:49:15:c3:a7:95:54:b8: 56:d8:67:84:eb:03:fa:c8:4e:6b:09:c2:39:53:29:21:fe:28: 3f:03:ba:85:3b:bf:05:ab:ec:8a:b8:c7:3e:e6:57:ba:d0:08: d5:40:f6:17:a5:d8:13:f8:23:e9:10:80:06:54:e8:a9:cb:f0: 94:c5:da:aa:8e:bf:44:cf:13:f9:84:dd:06:30:55:8d:51:3a: ed:8b:ec:ce:35:cc:e1:b0:62:d8:48:f6:da:2a:97:ee:f0:83: d6:70:11:65:5f:88:c9:8e:92:57:d1:16:47:7f:04:f8:e4:db: b2:17:14:07:ed:ac:55:74:3e:59:14:ed:63:44:ec:9f:2a:46: 8e:71:a1:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ1NUUxMTAvBgNVBAUTKDJGNUM5QkVGNzBFNUQwMjNCNzFDNDZDQjY2Q0ZFMkEx RkRCNDgzNUIwHhcNMjUwODIwMjEzMTQzWhcNMjUwODI3MjEzMTQzWjAYMRYwFAYD VQQDEw02OGE2M2VjMC1kNDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXv+F+XPLLeY98tPcV8YTTD6bM4aj5wpmKK4iw6iNQ7s1n0y7RIC8eJsiIM1 TNboMO3gV+2rv1Y1IKzqwqIYbk7rpicM9YkdOVPJKC19u4cnq3Ug4TF3aWKxKsUn lU400POlm5e8fWI/37o+Re5LEtDdnuKjfhojbgphm7oMMVSb0KOhPKvHQ7dqaXQi Uzg/SEp0DYzH44AyC5Q1DdBTEHnsxGPr4duXlgVxA0SXzIkWO1e/IVddko3+0p8D szdCzcLvps90lBkSG+3qQ2sQB9ntmKORxg4VSwtcms37YT41QXhd1pHLFRXEv3S0 MvkhjdLdfPL6W9ZHOTQPpykCAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEscYEJZ G7+vYcFZLZhvqS5j7v4MMB8GA1UdIwQYMBaAFC9cm+9w5dAjtxxGy2bP4qH9tINb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDU1RS82MkE1RUI2QTFE NUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBDTzNIRWJMWnNfaW9mMjBn MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxeWI3M0RsMENPM0hFYkxac19pb2YyMGcxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDU1RS82MkE1RUI2QTFENUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBD TzNIRWJMWnNfaW9mMjBnMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAezHfRQBI2eZzruT/9BOx4hiM7TPCgbe1nB3hwyIIvuGW9xgyS+Z1n 2A1xf4XHJi5cGZ/O5SwYOwuRzRzMzoNXHZULAW/LyydsEJMpNwFXWhkyOD/621wW dkWSZxtazynUGQczwNRx5rTlmjI1Kfx+07kmDrjB9kkVw6eVVLhW2GeE6wP6yE5r CcI5Uykh/ig/A7qFO78Fq+yKuMc+5le60AjVQPYXpdgT+CPpEIAGVOipy/CUxdqq jr9EzxP5hN0GMFWNUTrti+zONczhsGLYSPbaKpfu8IPWcBFlX4jJjpJX0RZHfwT4 5NuyFxQH7axVdD5ZFO1jROyfKkaOcaEu -----END CERTIFICATE-----Generated at Fri Aug 22 16:15:47 2025 by rpki-client