$ rpki-client -vvf rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.mft File: d6E036eiOU7SRHU58T_kqNHgVsk.mft (raw, json) Hash identifier: FrFwFnaEL2pGVEe6R1R+WuKlVF9xt042+gUKRVp7VSU= Subject key identifier: A0:13:27:57:C2:1D:17:83:B4:60:09:0A:32:85:89:8F:58:37:5D:CC Authority key identifier: 77:A1:34:DF:A7:A2:39:4E:D2:44:75:39:F1:3F:E4:A8:D1:E0:56:C9 Certificate issuer: /CN=A915A821/serialNumber=77A134DFA7A2394ED2447539F13FE4A8D1E056C9 Certificate serial: 0A81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6E036eiOU7SRHU58T_kqNHgVsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.mft Manifest number: 0A7B Signing time: Fri 22 Aug 2025 19:43:57 +0000 Manifest this update: Fri 22 Aug 2025 19:43:57 +0000 Manifest next update: Fri 29 Aug 2025 19:43:57 +0000 Files and hashes: 1: d6E036eiOU7SRHU58T_kqNHgVsk.crl (hash: G/X+gmWs+TLssQlycBab62tpj07OkLvXL5Xm/slSwPw=) 2: 4B2AAC20660211EA83A76342C4F9AE02.roa (hash: VubdDr6jpnctpYE2M5QsaGv87QGAE8y0LNTwoL81fa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.crl rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6E036eiOU7SRHU58T_kqNHgVsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2689 (0xa81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A821, serialNumber=77A134DFA7A2394ED2447539F13FE4A8D1E056C9 Validity Not Before: Aug 22 19:43:57 2025 GMT Not After : Aug 29 19:43:57 2025 GMT Subject: CN=68a8c87d-2aa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bc:23:94:23:0a:25:e8:4b:b1:85:29:ae:fd: b2:ce:7f:77:aa:bd:b8:39:26:93:d3:92:f4:24:69: b5:99:7f:2f:5f:d1:43:c9:a9:d3:cc:74:e4:b8:99: 48:cc:f1:03:b5:65:31:61:40:8b:23:75:c4:db:ed: 91:a6:df:8a:fd:c3:59:83:43:4b:6f:17:69:09:5a: f4:ad:70:50:61:31:7b:0e:be:56:15:e3:ab:30:34: da:99:5c:7a:8c:65:56:24:3f:40:24:8f:48:06:26: d8:3a:53:9a:0d:dc:d8:a8:67:1a:e1:e2:db:f7:ef: c6:a3:09:ad:c1:86:0f:4a:11:40:a9:f3:40:a0:18: 4d:cb:08:76:c6:cc:8e:30:ec:be:a2:f4:6f:b7:94: 6f:98:3e:ce:2a:1d:c3:31:1a:b6:00:bf:88:31:c6: 9a:e5:cc:67:d5:b0:76:12:a8:19:53:f3:28:41:05: 5f:d1:dc:23:fc:3d:83:ca:15:0c:ef:e0:fd:d0:25: f9:ae:ef:d7:f4:ac:eb:ce:cb:89:3f:36:0f:f1:56: 09:55:27:3a:b7:40:2d:87:ae:d4:36:31:82:a6:95: a7:22:72:bd:af:63:c8:e9:c2:47:f4:94:4e:98:8d: ec:13:04:58:77:cb:43:4c:79:fc:f5:20:c2:49:8c: 2f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:13:27:57:C2:1D:17:83:B4:60:09:0A:32:85:89:8F:58:37:5D:CC X509v3 Authority Key Identifier: keyid:77:A1:34:DF:A7:A2:39:4E:D2:44:75:39:F1:3F:E4:A8:D1:E0:56:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6E036eiOU7SRHU58T_kqNHgVsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A821/239BFC64660111EABEEA0741C4F9AE02/d6E036eiOU7SRHU58T_kqNHgVsk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:b3:c9:25:aa:04:62:da:d1:d3:78:c3:f4:47:7d:c4:42:2e: a6:5b:bd:e5:d5:be:44:f4:40:72:54:5d:bc:ff:1f:08:21:83: cd:dd:17:18:75:69:8b:ae:17:36:89:eb:1b:6f:ba:a2:03:e3: 7f:db:6f:47:dc:78:42:5a:ad:d3:52:f6:ce:cc:28:5e:d1:a1: 10:78:db:88:58:26:06:d3:3c:b5:ec:95:c2:a0:91:e4:2f:11: dd:1a:72:af:76:22:3b:3a:63:3d:cb:73:82:d9:14:63:06:b9: ff:a4:84:30:03:1e:41:fc:df:b7:ff:e0:3e:36:03:dd:76:db: 30:83:83:40:62:9a:88:fb:1b:e4:a3:53:fc:cb:21:91:46:07: 27:3c:bb:29:a5:ff:af:a0:be:c7:44:7c:0e:6e:01:d1:70:4d: b3:5b:bc:b1:e4:cf:7f:4c:0d:bb:90:c4:04:01:5e:7e:9d:e6: 57:43:94:fc:77:c4:1d:2b:e3:2c:3b:4d:e6:e6:ce:11:00:18: 02:94:58:2d:70:81:b1:bf:3d:0d:af:5b:3b:90:68:69:3a:e6: 06:57:65:15:0d:b2:a9:9a:0c:a6:9c:d2:4b:24:02:dc:4f:02: f5:a8:6b:3a:33:ab:a1:a0:43:ba:3a:87:e8:d2:ea:5e:08:0a: 49:b5:c8:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE4MjExMTAvBgNVBAUTKDc3QTEzNERGQTdBMjM5NEVEMjQ0NzUzOUYxM0ZFNEE4 RDFFMDU2QzkwHhcNMjUwODIyMTk0MzU3WhcNMjUwODI5MTk0MzU3WjAYMRYwFAYD VQQDEw02OGE4Yzg3ZC0yYWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbwjlCMKJehLsYUprv2yzn93qr24OSaT05L0JGm1mX8vX9FDyanTzHTkuJlI zPEDtWUxYUCLI3XE2+2Rpt+K/cNZg0NLbxdpCVr0rXBQYTF7Dr5WFeOrMDTamVx6 jGVWJD9AJI9IBibYOlOaDdzYqGca4eLb9+/GowmtwYYPShFAqfNAoBhNywh2xsyO MOy+ovRvt5RvmD7OKh3DMRq2AL+IMcaa5cxn1bB2EqgZU/MoQQVf0dwj/D2DyhUM 7+D90CX5ru/X9KzrzsuJPzYP8VYJVSc6t0Ath67UNjGCppWnInK9r2PI6cJH9JRO mI3sEwRYd8tDTHn89SDCSYwvJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKATJ1fC HReDtGAJCjKFiY9YN13MMB8GA1UdIwQYMBaAFHehNN+nojlO0kR1OfE/5KjR4FbJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTgyMS8yMzlCRkM2NDY2 MDExMUVBQkVFQTA3NDFDNEY5QUUwMi9kNkUwMzZlaU9VN1NSSFU1OFRfa3FOSGdW c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2RTAzNmVpT1U3U1JIVTU4VF9rcU5IZ1Zzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTgyMS8yMzlCRkM2NDY2MDExMUVBQkVFQTA3NDFDNEY5QUUwMi9kNkUwMzZlaU9V N1NSSFU1OFRfa3FOSGdWc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBks8klqgRi2tHTeMP0R33EQi6mW73l1b5E9EByVF28/x8IIYPN3RcY dWmLrhc2iesbb7qiA+N/229H3HhCWq3TUvbOzChe0aEQeNuIWCYG0zy17JXCoJHk LxHdGnKvdiI7OmM9y3OC2RRjBrn/pIQwAx5B/N+3/+A+NgPddtswg4NAYpqI+xvk o1P8yyGRRgcnPLsppf+voL7HRHwObgHRcE2zW7yx5M9/TA27kMQEAV5+neZXQ5T8 d8QdK+MsO03m5s4RABgClFgtcIGxvz0Nr1s7kGhpOuYGV2UVDbKpmgymnNJLJALc TwL1qGs6M6uhoEO6Oofo0upeCApJtchB -----END CERTIFICATE-----Generated at Sat Aug 23 19:32:25 2025 by rpki-client