$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: nECFVGtPDhl3gfIFAxqN9DcM2WUYze9mHmQZNNx0QFg= Subject key identifier: CE:B1:75:1C:09:92:BC:73:F3:9B:8F:3D:03:CA:99:BC:08:1A:0D:35 Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: 01C3 Signing time: Thu 21 Aug 2025 03:03:22 +0000 Manifest this update: Thu 21 Aug 2025 03:03:22 +0000 Manifest next update: Thu 28 Aug 2025 03:03:22 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: O0R510Ajs29ZiEnZ8GY370iVJWvx/og3Gf/2KJB/+Cc=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 445y7dnFbGIJcED/nA18M8HZ1X9DaCKTToZbs8yrxpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Aug 21 03:03:22 2025 GMT Not After : Aug 28 03:03:22 2025 GMT Subject: CN=68a68c7a-e095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6d:72:9b:b5:96:58:2d:2f:41:c0:27:05:47: 3a:ef:30:92:65:d2:dd:9b:bc:5b:9b:dd:8c:e3:ae: 48:a4:5c:1e:53:f4:c4:a4:9d:ba:01:f5:fc:41:6a: 45:40:b3:4b:d2:c4:b2:35:8d:f3:45:63:c7:72:7c: 10:28:e0:85:13:83:6c:f7:e0:cc:17:35:06:1d:3f: 8f:c6:19:a2:70:c8:ab:c2:9d:25:90:ea:ff:82:1c: 8c:21:e8:f9:45:4d:6d:14:f0:69:8f:ef:d7:47:c9: 6f:dd:49:f0:08:43:e8:23:85:2e:37:6c:71:fd:ca: fc:11:35:37:c5:e7:b1:f6:58:51:2c:6d:ff:86:6e: 31:72:e9:bc:38:7f:8f:7f:1b:d6:49:66:79:a5:0c: c9:58:03:41:f0:df:f7:c4:32:50:97:ea:70:1e:a0: ed:0a:ec:1f:9d:cc:d8:a9:14:25:d6:c7:6a:38:ee: b5:8f:bc:9d:0c:d9:5d:cf:43:33:d7:71:fa:61:5e: 9a:51:44:57:69:cd:da:14:5a:05:26:39:2f:4d:54: e1:6d:0b:6c:9e:17:9c:a7:de:86:5b:a1:a0:84:b6: 52:6a:9c:cb:c4:1b:63:9f:3f:05:a2:a6:35:71:7a: ad:5f:7c:eb:3a:71:1e:9f:51:dc:25:40:a8:cd:7d: a4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B1:75:1C:09:92:BC:73:F3:9B:8F:3D:03:CA:99:BC:08:1A:0D:35 X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:c2:3b:4b:6b:7d:6c:c4:db:93:1c:db:06:8f:5a:b3:90:cc: 57:e1:de:18:57:ba:fd:b7:40:bb:00:25:76:f5:4c:83:27:6c: cf:cf:8a:a9:a2:1a:7a:35:fa:6f:34:12:9a:a7:99:9d:4b:5c: 17:4d:a4:45:71:41:6d:7e:f5:c1:5d:c1:7d:84:bd:a2:32:1d: 62:fe:68:4a:3f:6a:7f:79:c3:99:37:93:8a:9e:cd:2e:5d:8b: 6f:dd:0c:e7:6d:d5:96:76:91:10:57:7e:f0:0d:79:da:66:d7: 11:8a:6d:af:7d:72:41:37:1c:77:8e:86:72:3f:b0:1d:48:9c: 3b:28:f0:0a:9a:fb:45:15:5f:fb:04:7e:be:af:25:4d:53:e7: e3:e6:27:26:60:c6:73:75:1b:c9:6f:08:9c:61:da:3e:c6:bb: 36:0d:1e:a2:23:bd:ec:82:e9:0c:a9:3e:d6:4d:34:a9:c1:5e: ba:8a:0f:6a:aa:45:da:16:df:a1:8a:dc:5b:9f:c8:44:24:6d: 01:99:33:b9:6b:15:65:cf:e3:3d:98:5d:43:6c:ef:0b:7d:2e: 0d:7f:89:58:7e:bb:7c:3a:c6:6a:ba:71:49:d8:8e:16:03:54: 62:9b:73:fe:57:2a:a3:24:bc:7e:84:49:93:15:66:a7:f6:ad: 80:f8:82:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUwODIxMDMwMzIyWhcNMjUwODI4MDMwMzIyWjAYMRYwFAYD VQQDEw02OGE2OGM3YS1lMDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx21ym7WWWC0vQcAnBUc67zCSZdLdm7xbm92M465IpFweU/TEpJ26AfX8QWpF QLNL0sSyNY3zRWPHcnwQKOCFE4Ns9+DMFzUGHT+PxhmicMirwp0lkOr/ghyMIej5 RU1tFPBpj+/XR8lv3UnwCEPoI4UuN2xx/cr8ETU3xeex9lhRLG3/hm4xcum8OH+P fxvWSWZ5pQzJWANB8N/3xDJQl+pwHqDtCuwfnczYqRQl1sdqOO61j7ydDNldz0Mz 13H6YV6aUURXac3aFFoFJjkvTVThbQtsnhecp96GW6GghLZSapzLxBtjnz8FoqY1 cXqtX3zrOnEen1HcJUCozX2kOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6xdRwJ krxz85uPPQPKmbwIGg01MB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLwjtLa31sxNuTHNsGj1qzkMxX4d4YV7r9t0C7ACV29UyDJ2zPz4qp ohp6NfpvNBKap5mdS1wXTaRFcUFtfvXBXcF9hL2iMh1i/mhKP2p/ecOZN5OKns0u XYtv3QznbdWWdpEQV37wDXnaZtcRim2vfXJBNxx3joZyP7AdSJw7KPAKmvtFFV/7 BH6+ryVNU+fj5icmYMZzdRvJbwicYdo+xrs2DR6iI73sgukMqT7WTTSpwV66ig9q qkXaFt+hitxbn8hEJG0BmTO5axVlz+M9mF1DbO8LfS4Nf4lYfrt8OsZqunFJ2I4W A1Rim3P+VyqjJLx+hEmTFWan9q2A+IKP -----END CERTIFICATE-----Generated at Fri Aug 22 16:34:35 2025 by rpki-client