$ rpki-client -vvf rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft File: 15qMdwXiQZ6rQpU7a8ilcga6xiY.mft (raw, json) Hash identifier: pBDIW8il+wQTo2262ikZ6G8mAQKtJjRoGsztBvZ7ON8= Subject key identifier: F1:14:73:B7:76:46:EE:5D:17:98:D7:17:61:07:29:B9:20:11:F1:72 Authority key identifier: D7:9A:8C:77:05:E2:41:9E:AB:42:95:3B:6B:C8:A5:72:06:BA:C6:26 Certificate issuer: /CN=A91BADCE/serialNumber=D79A8C7705E2419EAB42953B6BC8A57206BAC626 Certificate serial: 04D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft Manifest number: 04CC Signing time: Sun 07 Sep 2025 00:12:47 +0000 Manifest this update: Sun 07 Sep 2025 00:12:47 +0000 Manifest next update: Sun 14 Sep 2025 00:12:47 +0000 Files and hashes: 1: 15qMdwXiQZ6rQpU7a8ilcga6xiY.crl (hash: 26KbABi2ksvoGKndOUlSYtfiab64+x+v5yT2Jx8+MxM=) 2: 4BD423FE3AF911EC918C643AC4F9AE02.roa (hash: zGe92eYB2T/6F6go2IsVT92hr41aOIJDE55tjsezOT0=) 3: 56C4925E3B0711EC9715501EC4F9AE02.roa (hash: fn18Z/WO3LMBPpMiEymfF/J9ml4DPzxPa9csD1f45R4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.crl rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1240 (0x4d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BADCE, serialNumber=D79A8C7705E2419EAB42953B6BC8A57206BAC626 Validity Not Before: Sep 7 00:12:47 2025 GMT Not After : Sep 14 00:12:47 2025 GMT Subject: CN=68bccdff-bb69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:13:0a:21:55:5a:9d:ea:cf:df:10:6e:b9:11: 35:43:70:f4:7c:d7:70:dc:56:55:a9:2e:1b:ac:f0: 65:8e:4d:a7:0d:d3:9c:4a:7c:8c:21:21:26:43:16: 92:de:d9:71:60:be:28:55:17:e1:8e:6f:7a:d3:0a: fe:90:77:27:bf:e6:0d:ae:52:b9:4a:87:49:91:91: 5b:50:43:4f:a0:a9:86:f7:94:5d:3c:63:77:50:14: 51:1d:e3:9c:05:02:58:42:df:d7:86:79:c9:d2:eb: 25:9d:2c:06:bb:db:b5:d8:d3:54:f3:73:0e:f8:a4: 62:d2:33:e1:c7:df:9e:ee:37:00:f9:fd:34:d0:96: 22:50:a6:a7:fd:cc:a6:f7:3c:89:57:7c:3b:ea:f5: 54:4c:6c:52:f4:e4:99:81:1e:db:15:1e:ac:0e:a0: cb:e6:2b:b8:66:82:39:c9:a7:b3:bd:7d:7f:b3:6a: 33:5a:e2:ab:81:6f:c2:4f:21:69:08:1d:23:3f:00: f7:e9:54:b6:5c:22:be:26:c8:47:f9:3d:3e:d3:de: bb:5d:e3:53:05:bd:91:1b:82:3d:33:92:ad:1b:92: 6a:df:78:d0:7f:d9:d3:94:f6:ed:c6:3d:d1:4c:c7: cc:e3:c6:fc:b5:9b:14:dd:b6:f5:d4:bf:a8:d5:41: 81:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:14:73:B7:76:46:EE:5D:17:98:D7:17:61:07:29:B9:20:11:F1:72 X509v3 Authority Key Identifier: keyid:D7:9A:8C:77:05:E2:41:9E:AB:42:95:3B:6B:C8:A5:72:06:BA:C6:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15qMdwXiQZ6rQpU7a8ilcga6xiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BADCE/0F7281BC3AF411EC89CE072FC4F9AE02/15qMdwXiQZ6rQpU7a8ilcga6xiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:dc:79:d3:f0:29:51:3b:6a:a3:b8:f2:39:11:b7:28:9f:3e: ff:22:f5:c2:8c:81:e7:13:7e:14:f0:45:8f:bf:7f:da:4f:58: 04:7d:1e:e3:e3:07:5b:e6:59:37:c1:b4:a5:d4:aa:f5:fd:a3: fe:ca:8a:28:fe:50:c3:18:a2:13:6b:98:af:b9:96:4c:d6:61: da:cd:6e:3d:da:fe:3a:87:ab:4e:70:d8:2e:02:01:62:7b:cc: 86:cc:ac:86:0f:a6:eb:60:a0:01:7c:3f:f8:23:0e:89:73:e3: f5:b2:4e:06:6e:72:50:a3:24:c6:5d:e4:b0:f9:9d:34:9e:5e: c3:3d:02:5d:3d:76:96:07:8f:91:99:b1:e9:9b:63:ba:4f:0f: 94:92:ee:4f:76:78:47:02:2c:f8:74:17:cd:dc:c6:b7:13:67: a2:b9:92:d0:2a:92:81:54:db:5b:9a:e7:1d:de:a0:dc:8d:cc: 7d:f7:18:8b:79:e9:ce:65:9b:47:40:7d:f7:1f:bc:eb:30:b6: 6e:9c:d1:cf:c1:e4:83:4a:d8:3f:93:1e:7b:00:eb:1b:4d:21: 46:bb:56:fa:7c:c5:42:6d:d4:b3:7f:53:61:6a:9a:57:82:06: 3d:fa:1d:e9:d3:bb:f6:66:d9:6a:93:32:65:61:a6:93:8d:d8: d0:01:88:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEQ0UxMTAvBgNVBAUTKEQ3OUE4Qzc3MDVFMjQxOUVBQjQyOTUzQjZCQzhBNTcy MDZCQUM2MjYwHhcNMjUwOTA3MDAxMjQ3WhcNMjUwOTE0MDAxMjQ3WjAYMRYwFAYD VQQDEw02OGJjY2RmZi1iYjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxMKIVVanerP3xBuuRE1Q3D0fNdw3FZVqS4brPBljk2nDdOcSnyMISEmQxaS 3tlxYL4oVRfhjm960wr+kHcnv+YNrlK5SodJkZFbUENPoKmG95RdPGN3UBRRHeOc BQJYQt/XhnnJ0uslnSwGu9u12NNU83MO+KRi0jPhx9+e7jcA+f000JYiUKan/cym 9zyJV3w76vVUTGxS9OSZgR7bFR6sDqDL5iu4ZoI5yaezvX1/s2ozWuKrgW/CTyFp CB0jPwD36VS2XCK+JshH+T0+0967XeNTBb2RG4I9M5KtG5Jq33jQf9nTlPbtxj3R TMfM48b8tZsU3bb11L+o1UGBoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEUc7d2 Ru5dF5jXF2EHKbkgEfFyMB8GA1UdIwQYMBaAFNeajHcF4kGeq0KVO2vIpXIGusYm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQURDRS8wRjcyODFCQzNB RjQxMUVDODlDRTA3MkZDNEY5QUUwMi8xNXFNZHdYaVFaNnJRcFU3YThpbGNnYTZ4 aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE1cU1kd1hpUVo2clFwVTdhOGlsY2dhNnhpWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QURDRS8wRjcyODFCQzNBRjQxMUVDODlDRTA3MkZDNEY5QUUwMi8xNXFNZHdYaVFa NnJRcFU3YThpbGNnYTZ4aVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt3HnT8ClRO2qjuPI5Ebconz7/IvXCjIHnE34U8EWPv3/aT1gEfR7j 4wdb5lk3wbSl1Kr1/aP+yooo/lDDGKITa5ivuZZM1mHazW492v46h6tOcNguAgFi e8yGzKyGD6brYKABfD/4Iw6Jc+P1sk4GbnJQoyTGXeSw+Z00nl7DPQJdPXaWB4+R mbHpm2O6Tw+Uku5PdnhHAiz4dBfN3Ma3E2eiuZLQKpKBVNtbmucd3qDcjcx99xiL eenOZZtHQH33H7zrMLZunNHPweSDStg/kx57AOsbTSFGu1b6fMVCbdSzf1NhappX ggY9+h3p07v2ZtlqkzJlYaaTjdjQAYgI -----END CERTIFICATE-----Generated at Mon Sep 8 00:14:34 2025 by rpki-client