$ rpki-client -vvf rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft File: 1l59EGxXG0LrbOL4iHLeery6-7g.mft (raw, json) Hash identifier: QFzkSBK6z0rNwhmibmyNlJ/Q24nZMFVDQSIh5OqspAM= Subject key identifier: 18:68:3E:6A:2F:3D:03:9C:A7:AC:0E:08:38:8F:51:75:F9:BD:A9:97 Authority key identifier: D6:5E:7D:10:6C:57:1B:42:EB:6C:E2:F8:88:72:DE:7A:BC:BA:FB:B8 Certificate issuer: /CN=A913C34F/serialNumber=D65E7D106C571B42EB6CE2F88872DE7ABCBAFBB8 Certificate serial: 3285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft Manifest number: 3285 Signing time: Fri 22 Aug 2025 15:27:39 +0000 Manifest this update: Fri 22 Aug 2025 15:27:38 +0000 Manifest next update: Fri 29 Aug 2025 15:27:38 +0000 Files and hashes: 1: 1l59EGxXG0LrbOL4iHLeery6-7g.crl (hash: tGtmchnIZKxfc9GOF3tS2xyONQtjCK4djNSglxN0488=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.crl rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12933 (0x3285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C34F, serialNumber=D65E7D106C571B42EB6CE2F88872DE7ABCBAFBB8 Validity Not Before: Aug 22 15:27:38 2025 GMT Not After : Aug 29 15:27:38 2025 GMT Subject: CN=68a88c6b-eda2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:69:79:9b:9a:3e:ff:51:8d:17:db:0a:db:a9: a7:55:f8:4d:b9:eb:17:d5:01:67:8a:d3:16:6e:b6: 46:9a:c6:71:6c:da:6f:5d:e3:7e:33:e7:f8:4c:af: 94:03:9f:c6:42:66:27:a1:20:a8:df:7b:0f:51:9d: c2:68:43:b8:1a:e0:52:5f:92:2b:70:cd:d3:b2:db: ba:39:18:63:d7:4a:16:61:5f:a6:ce:c4:27:a7:ee: 08:f5:ce:ba:0a:6c:28:80:17:c9:7b:aa:64:4f:ff: 14:78:25:02:33:01:15:9f:3b:57:bb:5c:4c:1b:e9: 21:28:4a:3e:93:0d:26:b5:29:1a:dc:18:58:ab:c3: 80:7f:a0:51:e6:e6:b0:59:09:3b:a8:67:68:66:09: 3f:2c:e6:ae:c0:98:83:ed:81:20:75:f5:5b:6f:b7: 6d:93:66:27:0a:7f:1b:8c:db:88:cf:4c:47:39:52: 71:e9:3a:f3:29:7f:87:2e:3a:35:24:25:04:49:b5: b6:24:21:67:3c:51:64:ef:fb:d1:e4:01:c9:be:05: 5f:f2:6b:6e:33:f4:b8:8b:dc:61:0f:6e:50:2f:cf: eb:92:d3:c5:c1:49:9c:90:f7:8a:08:21:ea:3d:9b: fa:94:5e:67:90:03:f0:82:39:14:a2:08:f0:70:95: ee:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:68:3E:6A:2F:3D:03:9C:A7:AC:0E:08:38:8F:51:75:F9:BD:A9:97 X509v3 Authority Key Identifier: keyid:D6:5E:7D:10:6C:57:1B:42:EB:6C:E2:F8:88:72:DE:7A:BC:BA:FB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:02:7e:12:2b:c5:1c:a8:66:5a:8c:7f:a4:3f:9c:1f:fd:a3: d4:17:66:fb:9e:d4:0d:c5:4f:5d:62:dc:8c:da:60:fb:90:d5: ea:55:47:bd:ff:17:ff:51:d1:5f:18:9c:a6:ae:5c:bf:e9:1f: 88:96:8a:fe:4e:0b:68:45:12:57:55:08:0c:39:52:ce:a2:d6: 23:c0:fb:20:a1:da:ea:08:85:39:a9:61:ea:82:7f:47:a1:92: 4c:d3:2a:33:de:af:d7:b1:bb:f1:c8:be:51:86:4c:ce:22:43: 90:46:00:57:5c:6c:26:e1:05:2d:59:50:8e:be:64:c6:8b:b2: 4b:55:c7:97:58:84:a8:11:51:53:d4:ad:7d:d6:24:8a:f7:53: 3d:49:94:0a:d6:91:0f:7a:ed:56:7f:4b:e1:66:85:d6:2c:ef: 45:45:ef:58:85:ed:78:03:9f:cf:4b:bc:1b:81:84:b1:32:7d: 19:9c:c2:c1:7e:fa:9f:aa:d3:0a:54:a8:62:a1:36:6c:10:2a: 40:f0:72:52:ef:e6:69:81:1c:e3:df:20:b2:e5:70:e5:a1:65: 15:de:af:83:ba:9b:28:aa:a4:6c:41:a0:13:18:f4:7d:ae:e6: 7f:dc:20:d2:da:cf:b9:26:a7:6a:ca:fe:49:85:ab:1d:b9:b6: 65:b7:20:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MzNEYxMTAvBgNVBAUTKEQ2NUU3RDEwNkM1NzFCNDJFQjZDRTJGODg4NzJERTdB QkNCQUZCQjgwHhcNMjUwODIyMTUyNzM4WhcNMjUwODI5MTUyNzM4WjAYMRYwFAYD VQQDEw02OGE4OGM2Yi1lZGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGl5m5o+/1GNF9sK26mnVfhNuesX1QFnitMWbrZGmsZxbNpvXeN+M+f4TK+U A5/GQmYnoSCo33sPUZ3CaEO4GuBSX5IrcM3Tstu6ORhj10oWYV+mzsQnp+4I9c66 CmwogBfJe6pkT/8UeCUCMwEVnztXu1xMG+khKEo+kw0mtSka3BhYq8OAf6BR5uaw WQk7qGdoZgk/LOauwJiD7YEgdfVbb7dtk2YnCn8bjNuIz0xHOVJx6TrzKX+HLjo1 JCUESbW2JCFnPFFk7/vR5AHJvgVf8mtuM/S4i9xhD25QL8/rktPFwUmckPeKCCHq PZv6lF5nkAPwgjkUogjwcJXutwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhoPmov PQOcp6wOCDiPUXX5vamXMB8GA1UdIwQYMBaAFNZefRBsVxtC62zi+Ihy3nq8uvu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzM0Ri8zNUZCRjVENDhB MDQxMUUyQjg4MjFEMDkzMjkyQjVFOC8xbDU5RUd4WEcwTHJiT0w0aUhMZWVyeTYt N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFsNTlFR3hYRzBMcmJPTDRpSExlZXJ5Ni03Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzM0Ri8zNUZCRjVENDhBMDQxMUUyQjg4MjFEMDkzMjkyQjVFOC8xbDU5RUd4WEcw THJiT0w0aUhMZWVyeTYtN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1An4SK8UcqGZajH+kP5wf/aPUF2b7ntQNxU9dYtyM2mD7kNXqVUe9 /xf/UdFfGJymrly/6R+Ilor+TgtoRRJXVQgMOVLOotYjwPsgodrqCIU5qWHqgn9H oZJM0yoz3q/XsbvxyL5RhkzOIkOQRgBXXGwm4QUtWVCOvmTGi7JLVceXWISoEVFT 1K191iSK91M9SZQK1pEPeu1Wf0vhZoXWLO9FRe9Yhe14A5/PS7wbgYSxMn0ZnMLB fvqfqtMKVKhioTZsECpA8HJS7+ZpgRzj3yCy5XDloWUV3q+DupsoqqRsQaATGPR9 ruZ/3CDS2s+5Jqdqyv5JhasdubZltyAZ -----END CERTIFICATE-----Generated at Sun Aug 24 00:14:31 2025 by rpki-client