$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: QT6Q3+gb8Kx51xw0ks12JGw9S2+IEq3XTF+22GzDR4M= Subject key identifier: 2F:63:7C:AA:C3:DC:9F:AB:F0:A8:9A:F2:07:72:02:BA:D9:B9:59:D4 Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0FE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0FDC Signing time: Wed 20 Aug 2025 17:34:43 +0000 Manifest this update: Wed 20 Aug 2025 17:34:42 +0000 Manifest next update: Wed 27 Aug 2025 17:34:42 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: NFuyNvMZZ9ozBRJCM6b1weP7D52tDPpeikg/JVYg0G8=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 17:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4072 (0xfe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Aug 20 17:34:42 2025 GMT Not After : Aug 27 17:34:42 2025 GMT Subject: CN=68a60732-50d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:14:5e:2a:df:f2:6c:18:9f:23:dd:26:4c:a8: 6d:0b:81:18:e9:01:9e:ae:09:bd:10:f3:95:1d:e1: 6b:5c:a2:9f:5d:51:5f:1d:4f:9b:1c:d0:df:df:4d: c8:1a:4a:61:3d:ee:3f:7e:d8:ee:79:02:46:9e:c6: 65:1f:7a:ab:e5:be:e2:5a:27:8d:f3:68:8d:bc:66: 20:2c:86:06:4e:0a:b8:ca:b4:ef:96:d9:87:f3:17: ed:52:57:e0:f4:6f:92:6b:5e:84:ae:c4:56:5d:85: 13:b4:db:cc:61:e9:88:08:74:16:09:0f:21:a4:6e: 5b:fe:7c:3f:cf:88:a5:99:18:4a:7e:53:fc:72:8d: df:75:58:ad:85:78:c2:35:42:5f:64:47:3d:13:8b: 37:dd:30:57:06:ef:5f:16:be:58:53:ac:b3:39:e2: e4:d4:7c:f5:1f:05:91:24:8f:1b:64:99:3a:94:6b: cf:f8:9b:ff:5a:bd:87:85:e8:ab:32:52:89:6b:0b: 85:ba:37:2c:bd:45:4b:16:98:84:48:9b:e2:a6:32: fb:5d:3d:c3:b0:da:d0:eb:5d:d6:02:f7:61:8a:9a: 22:bf:cb:b7:19:f3:8d:df:4b:30:2b:a6:74:09:29: 06:7c:c3:db:b7:e9:76:0e:b9:6b:52:6e:53:01:f5: 72:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:63:7C:AA:C3:DC:9F:AB:F0:A8:9A:F2:07:72:02:BA:D9:B9:59:D4 X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:5e:d2:50:1a:98:a0:39:c6:31:70:09:c9:a8:23:b9:54:29: 9c:fb:8c:91:b3:52:db:3a:c0:ac:ee:d9:68:66:f0:a1:90:57: 16:59:f0:43:a1:65:1e:bb:28:de:3e:7e:f0:81:61:71:09:50: 80:6f:41:dd:80:8f:f5:c9:15:cb:cf:d8:0f:e7:15:91:18:79: bb:f3:13:cd:a6:f2:a9:bf:3b:a7:5e:aa:5a:b0:57:56:6b:0f: 93:2b:da:3d:60:f1:34:72:9e:8b:d5:ba:a0:fe:63:24:b4:fa: 13:f7:6a:00:23:61:04:10:c2:93:a5:7c:05:13:bf:fb:b5:4b: 7d:5e:a1:3a:fa:f4:f1:50:ea:a5:69:9a:31:eb:57:79:38:2a: 37:0a:a0:aa:e5:c1:91:b8:9b:88:b1:2e:9e:6d:80:a5:83:d7: 36:90:19:6c:94:c5:4b:0c:35:01:ae:0a:33:73:8d:d1:f7:6c: 6d:2b:f1:d1:ea:02:7f:87:cd:52:75:b3:7c:2c:3a:0a:03:3b: 14:ab:5f:63:bb:64:5b:07:6d:22:65:06:17:7a:2d:3d:21:c7: 7e:72:6f:a8:5a:69:1b:b0:cd:20:78:38:80:d5:fb:0c:71:b4: 00:d5:e7:a2:af:0e:56:6b:89:10:2e:cc:a9:b8:ed:2b:fd:24: c3:33:d2:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUwODIwMTczNDQyWhcNMjUwODI3MTczNDQyWjAYMRYwFAYD VQQDEw02OGE2MDczMi01MGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxReKt/ybBifI90mTKhtC4EY6QGergm9EPOVHeFrXKKfXVFfHU+bHNDf303I GkphPe4/ftjueQJGnsZlH3qr5b7iWieN82iNvGYgLIYGTgq4yrTvltmH8xftUlfg 9G+Sa16ErsRWXYUTtNvMYemICHQWCQ8hpG5b/nw/z4ilmRhKflP8co3fdVithXjC NUJfZEc9E4s33TBXBu9fFr5YU6yzOeLk1Hz1HwWRJI8bZJk6lGvP+Jv/Wr2Hheir MlKJawuFujcsvUVLFpiESJvipjL7XT3DsNrQ613WAvdhipoiv8u3GfON30swK6Z0 CSkGfMPbt+l2DrlrUm5TAfVy3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9jfKrD 3J+r8Kia8gdyArrZuVnUMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMXtJQGpigOcYxcAnJqCO5VCmc+4yRs1LbOsCs7tloZvChkFcWWfBD oWUeuyjePn7wgWFxCVCAb0HdgI/1yRXLz9gP5xWRGHm78xPNpvKpvzunXqpasFdW aw+TK9o9YPE0cp6L1bqg/mMktPoT92oAI2EEEMKTpXwFE7/7tUt9XqE6+vTxUOql aZox61d5OCo3CqCq5cGRuJuIsS6ebYClg9c2kBlslMVLDDUBrgozc43R92xtK/HR 6gJ/h81SdbN8LDoKAzsUq19ju2RbB20iZQYXei09Icd+cm+oWmkbsM0geDiA1fsM cbQA1eeirw5Wa4kQLsypuO0r/STDM9Lq -----END CERTIFICATE-----Generated at Fri Aug 22 16:29:48 2025 by rpki-client