$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: n0TK3rJdHOVj+nd2iO8wJDgARnFngMlBSjVkOQJ2Zn4= Subject key identifier: 83:D6:F9:D4:DD:DF:C3:0E:AF:F2:0F:40:43:8C:1A:14:74:00:B8:9B Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0AF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0AE9 Signing time: Fri 22 Aug 2025 19:31:11 +0000 Manifest this update: Fri 22 Aug 2025 19:31:10 +0000 Manifest next update: Fri 29 Aug 2025 19:31:10 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: WWWgALbq+kbcSvPpCHwHOwBBNah9D+meo7izt969eGg=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: q02Hd4XFE+H9p8qEMOu2AbjA5nPs5WOETsJPUT9HbXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2800 (0xaf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B, serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: Aug 22 19:31:10 2025 GMT Not After : Aug 29 19:31:10 2025 GMT Subject: CN=68a8c57e-2d43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8d:78:0a:81:99:8e:54:74:b6:ec:8e:18:ea: aa:91:c1:19:91:6b:49:a3:7b:d1:fa:9c:14:53:c2: 0c:24:88:c7:34:57:99:44:1e:5f:89:28:0d:8e:42: 19:14:51:d0:b7:cc:96:b3:fd:62:af:9a:15:88:75: 8f:8c:0e:ac:58:12:08:1c:52:a7:86:23:4f:ea:30: 8e:b6:3c:df:41:fa:39:de:63:c5:69:49:64:2b:17: c7:44:a6:05:79:c6:ad:01:c5:df:b4:c3:de:66:14: ad:5a:27:cb:bc:50:94:22:32:6d:48:0f:d8:97:83: 7a:c2:9b:cd:da:71:bc:59:2c:60:58:e5:bc:2e:3d: fc:77:d9:0c:da:36:12:4c:76:80:01:7a:03:11:5c: ea:b5:5f:09:c8:29:be:47:2d:3b:22:f2:f1:1d:9b: 9a:55:8f:be:ec:d7:f6:a0:5f:d6:b9:38:64:d7:a4: 9d:de:df:a4:21:39:33:24:a0:fb:5a:f4:73:2e:dc: 1f:93:af:f0:12:9c:bf:3f:ea:a7:47:56:15:82:ac: 39:10:c1:c1:36:23:81:d4:47:4e:fa:c7:4c:6f:fd: e7:e1:5e:64:5e:ca:0f:83:a3:e7:65:fd:5b:4c:5f: da:0a:dc:c9:c0:44:9c:f8:c8:f7:3e:41:5d:8d:46: c0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D6:F9:D4:DD:DF:C3:0E:AF:F2:0F:40:43:8C:1A:14:74:00:B8:9B X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:81:63:b2:28:c5:93:6c:f7:27:10:07:8b:5b:35:d6:80:21: 3c:14:1d:3e:f9:b4:30:b1:25:8d:90:9e:6d:a2:9b:d4:6c:5a: 0b:1e:07:51:0d:83:4f:ce:4f:48:11:12:5e:77:8b:a9:38:6e: 36:d7:fd:c7:b3:d8:21:18:c0:e5:dc:0e:c7:43:29:49:f2:76: bc:7a:44:c1:c3:87:4b:c5:d2:ac:5e:c1:48:ec:30:86:d1:0c: bb:a4:bd:d0:da:fd:4e:38:c6:5e:2e:99:53:06:3d:e3:e7:d7: f8:e5:4e:1b:01:9b:b9:9c:7e:d0:4e:a5:00:d1:3b:02:9d:36: 92:6e:c4:d9:18:ee:d1:45:bf:aa:a2:c1:30:8f:44:08:c7:c4: 8e:3a:e8:ac:b3:93:cb:4b:58:6b:74:e2:23:3f:45:60:6e:a8: 27:eb:20:24:c1:9a:d9:66:f3:31:f1:87:b5:2c:77:55:e8:c3: d6:59:9a:56:a6:18:d0:93:6b:a7:62:a3:f4:b2:18:ca:65:73: f0:c9:41:04:f1:87:94:a3:0a:13:d4:df:d1:58:a3:09:dc:3e: ea:7c:73:2e:9b:fa:b1:c9:8c:da:31:ce:ee:7c:1e:5e:9f:92: fb:ab:17:41:81:87:29:11:1e:fa:2c:0c:61:1c:d0:09:d4:52: df:d8:16:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjUwODIyMTkzMTEwWhcNMjUwODI5MTkzMTEwWjAYMRYwFAYD VQQDEw02OGE4YzU3ZS0yZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq414CoGZjlR0tuyOGOqqkcEZkWtJo3vR+pwUU8IMJIjHNFeZRB5fiSgNjkIZ FFHQt8yWs/1ir5oViHWPjA6sWBIIHFKnhiNP6jCOtjzfQfo53mPFaUlkKxfHRKYF ecatAcXftMPeZhStWifLvFCUIjJtSA/Yl4N6wpvN2nG8WSxgWOW8Lj38d9kM2jYS THaAAXoDEVzqtV8JyCm+Ry07IvLxHZuaVY++7Nf2oF/WuThk16Sd3t+kITkzJKD7 WvRzLtwfk6/wEpy/P+qnR1YVgqw5EMHBNiOB1EdO+sdMb/3n4V5kXsoPg6PnZf1b TF/aCtzJwESc+Mj3PkFdjUbA4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPW+dTd 38MOr/IPQEOMGhR0ALibMB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWgWOyKMWTbPcnEAeLWzXWgCE8FB0++bQwsSWNkJ5topvUbFoLHgdR DYNPzk9IERJed4upOG421/3Hs9ghGMDl3A7HQylJ8na8ekTBw4dLxdKsXsFI7DCG 0Qy7pL3Q2v1OOMZeLplTBj3j59f45U4bAZu5nH7QTqUA0TsCnTaSbsTZGO7RRb+q osEwj0QIx8SOOuiss5PLS1hrdOIjP0Vgbqgn6yAkwZrZZvMx8Ye1LHdV6MPWWZpW phjQk2unYqP0shjKZXPwyUEE8YeUowoT1N/RWKMJ3D7qfHMum/qxyYzaMc7ufB5e n5L7qxdBgYcpER76LAxhHNAJ1FLf2BYb -----END CERTIFICATE-----Generated at Sat Aug 23 17:14:33 2025 by rpki-client