$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: eo9lbxi3hIFN8BQ7iRV0vpGtxq4RiK1GiPYyiOSv03g= Subject key identifier: E9:CD:9D:C4:B3:25:FE:42:E1:9E:C5:3D:65:6E:A7:6D:18:CB:6C:BD Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 015B Signing time: Fri 22 Aug 2025 18:51:47 +0000 Manifest this update: Fri 22 Aug 2025 18:51:47 +0000 Manifest next update: Fri 29 Aug 2025 18:51:47 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: yVidTt3BobvNetcm75IlVYaA+slgji+0RoJRjc/dDzM=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Aug 22 18:51:47 2025 GMT Not After : Aug 29 18:51:47 2025 GMT Subject: CN=68a8bc43-6bde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e1:c0:84:1d:16:c0:74:9b:9f:54:00:09:36: 99:98:36:40:31:f9:93:27:37:24:8e:82:84:1c:50: b9:21:1c:09:01:a8:3c:ea:75:3f:42:54:5d:48:5f: d0:ae:8f:dd:ec:68:d3:96:65:4f:aa:8d:2c:93:f1: 70:e6:64:d6:f1:85:7f:3c:89:04:d7:9e:1b:32:ab: f3:64:13:ba:29:12:6f:72:82:27:1a:66:d0:66:fb: a0:70:3a:e5:06:49:e7:35:ae:16:43:10:02:08:08: ce:9d:30:6c:13:33:fe:3e:d7:e3:84:cb:f5:6b:b2: 96:1f:68:09:a1:40:e2:75:fb:51:12:c5:1d:6f:49: c9:72:60:60:56:1f:a6:1f:17:13:75:4b:28:e7:85: fe:68:6d:5e:06:b5:55:98:d5:ea:93:5e:00:70:5a: 43:71:fc:a6:75:ae:5c:8e:16:80:d5:4f:44:26:5a: be:93:79:5d:a0:e0:95:7b:52:d5:b3:7a:82:eb:d8: ae:56:51:1b:18:41:e9:7c:3d:5d:35:18:6c:7b:86: fa:23:df:d7:3d:b4:7b:ca:f0:16:95:2e:aa:1d:50: 4e:37:58:e1:88:37:ff:24:1c:a3:9b:a7:29:aa:f0: cd:2b:9d:59:3e:73:bb:02:68:9b:72:83:a3:52:c7: 6f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:CD:9D:C4:B3:25:FE:42:E1:9E:C5:3D:65:6E:A7:6D:18:CB:6C:BD X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:52:40:64:bd:03:8c:89:8e:0e:79:06:a0:5b:43:d2:06:48: d2:08:b3:cc:14:1c:ab:70:37:8b:a5:75:b4:01:77:7a:70:5e: b0:f9:bc:28:33:42:16:0c:79:c8:a1:07:6d:4f:fa:b3:7e:8a: a7:45:e8:76:05:2f:4d:88:ff:5d:cf:f6:c9:a9:94:7e:33:a9: 2f:55:a8:34:e9:0f:20:ec:23:ac:34:29:66:aa:dc:80:be:40: 72:fa:5e:4f:04:92:cd:40:51:f2:d4:b1:4c:ee:38:97:10:a0: 15:fa:09:15:25:e4:59:4c:bc:f3:01:04:c9:30:b6:01:f1:95: 07:31:a3:fc:c7:65:4e:ba:f3:17:fd:e7:3a:3f:a1:cd:74:99: 7a:31:91:e4:4b:8a:21:32:4d:e3:c6:cd:fa:85:8b:98:f9:c2: bf:ad:3e:21:64:68:c0:0a:81:69:fd:2c:29:9f:7b:d6:f7:41: 93:8d:b1:ef:cb:53:4e:f0:b9:5e:cc:09:d6:70:58:65:5c:20: 43:aa:6a:0a:08:f8:09:5f:54:45:a9:19:15:d2:3a:9f:6c:b9: 69:c4:cf:30:db:11:83:fc:3d:16:2b:95:be:db:f2:eb:59:5f: 6f:92:5b:e8:e3:36:df:b5:68:5e:b9:41:f6:30:5b:72:32:45: 8d:29:10:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUwODIyMTg1MTQ3WhcNMjUwODI5MTg1MTQ3WjAYMRYwFAYD VQQDEw02OGE4YmM0My02YmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuHAhB0WwHSbn1QACTaZmDZAMfmTJzckjoKEHFC5IRwJAag86nU/QlRdSF/Q ro/d7GjTlmVPqo0sk/Fw5mTW8YV/PIkE154bMqvzZBO6KRJvcoInGmbQZvugcDrl BknnNa4WQxACCAjOnTBsEzP+PtfjhMv1a7KWH2gJoUDidftREsUdb0nJcmBgVh+m HxcTdUso54X+aG1eBrVVmNXqk14AcFpDcfymda5cjhaA1U9EJlq+k3ldoOCVe1LV s3qC69iuVlEbGEHpfD1dNRhse4b6I9/XPbR7yvAWlS6qHVBON1jhiDf/JByjm6cp qvDNK51ZPnO7AmibcoOjUsdvkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnNncSz Jf5C4Z7FPWVup20Yy2y9MB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVUkBkvQOMiY4OeQagW0PSBkjSCLPMFByrcDeLpXW0AXd6cF6w+bwo M0IWDHnIoQdtT/qzfoqnReh2BS9NiP9dz/bJqZR+M6kvVag06Q8g7COsNClmqtyA vkBy+l5PBJLNQFHy1LFM7jiXEKAV+gkVJeRZTLzzAQTJMLYB8ZUHMaP8x2VOuvMX /ec6P6HNdJl6MZHkS4ohMk3jxs36hYuY+cK/rT4hZGjACoFp/Swpn3vW90GTjbHv y1NO8LlezAnWcFhlXCBDqmoKCPgJX1RFqRkV0jqfbLlpxM8w2xGD/D0WK5W+2/Lr WV9vklvo4zbftWheuUH2MFtyMkWNKRA9 -----END CERTIFICATE-----Generated at Sat Aug 23 22:16:48 2025 by rpki-client