$ rpki-client -vvf rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft File: L904BNZFjq8cs5F7XjMvulxxX5E.mft (raw, json) Hash identifier: cRUrNQvk2cVTShtxpdRq1Igp3oEDHrLbt6JAo2w0Dqo= Subject key identifier: 4A:BC:6D:61:64:5F:F0:45:4B:1E:F2:6B:CC:1E:ED:DE:A1:71:18:D6 Authority key identifier: 2F:DD:38:04:D6:45:8E:AF:1C:B3:91:7B:5E:33:2F:BA:5C:71:5F:91 Certificate issuer: /CN=A915B551/serialNumber=2FDD3804D6458EAF1CB3917B5E332FBA5C715F91 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft Manifest number: 44 Signing time: Sat 23 Aug 2025 07:39:53 +0000 Manifest this update: Sat 23 Aug 2025 07:39:52 +0000 Manifest next update: Sat 30 Aug 2025 07:39:52 +0000 Files and hashes: 1: L904BNZFjq8cs5F7XjMvulxxX5E.crl (hash: U+Zza8w3TCid4OII/2KSeiACTe2n2Zdk232YE87BG/g=) 2: DE917E7016C511F085B4FF6FC4F9AE02.roa (hash: gTUMCdfGUWrs1q6ayMOBwf36vGkRjWbK2xqTfFcnmzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.crl rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B551, serialNumber=2FDD3804D6458EAF1CB3917B5E332FBA5C715F91 Validity Not Before: Aug 23 07:39:52 2025 GMT Not After : Aug 30 07:39:52 2025 GMT Subject: CN=68a97049-ffe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:38:58:78:a1:81:7d:f5:5e:20:eb:72:1d:65: c4:de:d0:d8:39:3e:62:1e:87:c4:90:2f:e4:9a:f6: 89:3c:c3:07:91:f8:d9:9d:b5:97:80:42:3c:f6:5e: 26:40:d7:44:f2:c6:09:43:7b:e0:85:67:52:57:8c: b0:fe:e2:9d:f6:49:36:f6:a9:1b:9e:c9:84:c6:39: 94:bc:8f:18:53:7d:24:1a:98:41:a3:ef:0c:54:e8: 84:c1:3e:7f:2a:c4:81:a5:43:a6:6c:d3:5c:ec:0a: 0d:8f:e6:c7:a9:e0:f6:d9:e5:a2:cf:e6:18:99:44: 7a:eb:99:09:7d:86:ad:af:a1:1d:b9:3c:79:56:98: cf:36:8e:2e:2f:6b:97:47:65:ec:2a:ae:23:1f:2d: b3:73:11:d5:bd:54:72:02:57:9f:94:55:3f:dc:7f: 5e:d3:fc:e3:20:3b:8c:0b:3c:39:9b:3d:25:8a:98: 48:99:c1:3b:c5:4d:56:ad:64:6f:c1:ff:4a:e8:fd: c4:0d:c3:b2:4b:75:3b:70:58:e2:d3:c4:78:b3:f8: 8d:24:cc:9d:cf:90:aa:65:04:87:4c:45:46:4a:4f: c0:fe:b0:ce:d9:60:dd:17:3d:0c:7a:17:76:3f:11: f9:17:af:f3:81:5a:7b:b5:6b:c9:d0:48:b3:47:58: 0d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:BC:6D:61:64:5F:F0:45:4B:1E:F2:6B:CC:1E:ED:DE:A1:71:18:D6 X509v3 Authority Key Identifier: keyid:2F:DD:38:04:D6:45:8E:AF:1C:B3:91:7B:5E:33:2F:BA:5C:71:5F:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:bd:08:54:05:ce:87:de:ab:4e:f4:2f:7a:70:31:29:b7:60: 20:b2:68:42:1a:91:28:65:0d:fe:f2:20:b0:fa:d3:4f:73:64: 21:1b:1c:f7:88:36:8a:70:dd:2b:5b:20:be:61:78:40:49:69: f9:f2:08:4e:3a:5a:d7:89:1b:6d:ad:67:46:01:04:f8:fd:c7: 77:23:d3:97:39:76:b0:bb:e2:24:5b:54:51:55:b8:f2:77:da: 62:44:82:a6:18:0b:e0:d7:13:1a:45:f1:b9:92:d4:fc:9d:c7: d3:14:82:32:0c:49:73:3b:7e:30:20:bd:83:30:bf:19:fd:d0: 06:f7:09:9e:68:a3:5e:e7:f9:3c:2a:62:59:40:4c:eb:46:b7: 35:b6:f2:d6:d4:fb:a7:0f:b2:9d:26:3d:33:df:96:ac:63:05: 25:19:6e:3c:7a:3c:99:2e:ac:92:19:4b:20:14:62:dc:63:d4: 95:57:17:52:a7:75:24:4d:4d:19:e7:21:2b:5a:af:d3:04:ef: 75:12:e7:ed:4a:83:a4:ec:53:88:0a:0b:f5:54:7d:f8:f3:5d: b4:5b:01:a5:15:e8:98:55:eb:b6:3d:0b:df:2f:89:65:fb:0b: 01:2b:3f:23:7a:10:00:a3:22:4e:3a:38:ed:7b:67:56:1d:79: f1:bb:5f:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QjU1MTExMC8GA1UEBRMoMkZERDM4MDRENjQ1OEVBRjFDQjM5MTdCNUUzMzJGQkE1 QzcxNUY5MTAeFw0yNTA4MjMwNzM5NTJaFw0yNTA4MzAwNzM5NTJaMBgxFjAUBgNV BAMTDTY4YTk3MDQ5LWZmZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClOFh4oYF99V4g63IdZcTe0Ng5PmIeh8SQL+Sa9ok8wweR+NmdtZeAQjz2XiZA 10TyxglDe+CFZ1JXjLD+4p32STb2qRueyYTGOZS8jxhTfSQamEGj7wxU6ITBPn8q xIGlQ6Zs01zsCg2P5sep4PbZ5aLP5hiZRHrrmQl9hq2voR25PHlWmM82ji4va5dH ZewqriMfLbNzEdW9VHICV5+UVT/cf17T/OMgO4wLPDmbPSWKmEiZwTvFTVatZG/B /0ro/cQNw7JLdTtwWOLTxHiz+I0kzJ3PkKplBIdMRUZKT8D+sM7ZYN0XPQx6F3Y/ EfkXr/OBWnu1a8nQSLNHWA0XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSrxtYWRf 8EVLHvJrzB7t3qFxGNYwHwYDVR0jBBgwFoAUL904BNZFjq8cs5F7XjMvulxxX5Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCNTUxLzVBQjE5MjAyMTZD NTExRjA4ODE1RjQ2RUM0RjlBRTAyL0w5MDRCTlpGanE4Y3M1RjdYak12dWx4eFg1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTDkwNEJOWkZqcThjczVGN1hqTXZ1bHh4WDVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVC NTUxLzVBQjE5MjAyMTZDNTExRjA4ODE1RjQ2RUM0RjlBRTAyL0w5MDRCTlpGanE4 Y3M1RjdYak12dWx4eFg1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFS9CFQFzofeq070L3pwMSm3YCCyaEIakShlDf7yILD6009zZCEbHPeI Nopw3StbIL5heEBJafnyCE46WteJG22tZ0YBBPj9x3cj05c5drC74iRbVFFVuPJ3 2mJEgqYYC+DXExpF8bmS1Pydx9MUgjIMSXM7fjAgvYMwvxn90Ab3CZ5oo17n+Twq YllATOtGtzW28tbU+6cPsp0mPTPflqxjBSUZbjx6PJkurJIZSyAUYtxj1JVXF1Kn dSRNTRnnIStar9ME73US5+1Kg6TsU4gKC/VUffjzXbRbAaUV6JhV67Y9C98viWX7 CwErPyN6EACjIk46OO17Z1YdefG7X08= -----END CERTIFICATE-----Generated at Sat Aug 23 14:26:10 2025 by rpki-client