$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft File: SC1I47aWHxIIwGcVJOCOkDOV9lk.mft (raw, json) Hash identifier: K2QZhTDNb0lT155DZcWIPFc2Dm9gpi4gISsNTU7oq0c= Subject key identifier: C3:D4:D5:7F:5C:81:E3:2D:F1:01:0C:E2:50:D0:32:FA:82:D4:47:15 Authority key identifier: 48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 Certificate issuer: /CN=A915BCE2/serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft Manifest number: 013C Signing time: Sat 23 Aug 2025 04:32:52 +0000 Manifest this update: Sat 23 Aug 2025 04:32:51 +0000 Manifest next update: Sat 30 Aug 2025 04:32:51 +0000 Files and hashes: 1: SC1I47aWHxIIwGcVJOCOkDOV9lk.crl (hash: V96+B9qSmJn9Afvyq7uKH7siPWLPqu4IW1WfwgsoOpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCE2, serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Validity Not Before: Aug 23 04:32:51 2025 GMT Not After : Aug 30 04:32:51 2025 GMT Subject: CN=68a94474-98b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2f:ee:35:09:fc:e3:23:99:68:79:d0:9b:0a: 61:2e:e6:d6:ab:6a:ac:8f:ad:03:23:22:65:ee:2d: 28:c5:8f:82:86:4e:51:b5:70:64:7b:0c:89:b2:24: 11:92:ac:91:7e:e7:48:c6:43:31:52:a3:47:db:d8: a6:77:ef:27:0c:44:98:bb:81:b6:2b:8c:52:50:01: c6:1b:b6:09:48:3b:39:a2:92:0a:18:69:72:e3:a6: 23:c1:cd:f1:16:9e:4c:16:62:5b:df:97:aa:55:ee: cd:52:a2:32:8f:18:66:49:a9:b9:e1:e6:6a:15:9b: 8a:91:8f:53:8d:06:80:39:82:99:80:5d:e7:b1:92: 02:33:bd:0f:26:a3:cb:5c:49:cf:10:f2:5f:1d:d8: d3:f4:ab:ba:19:7e:0a:19:20:ea:9d:c5:80:86:90: ac:b5:6d:08:0f:d9:7a:6e:1f:dc:10:11:e6:85:f2: ac:27:99:f5:8e:53:88:88:d3:26:f5:17:af:4e:9a: 80:12:29:33:7f:3c:98:cd:db:7c:7b:d6:c1:c8:8c: 6d:7c:bd:10:ff:df:27:c5:04:38:5f:fc:63:6c:50: 82:ba:4f:6b:2d:d1:1d:62:b2:28:9b:1d:33:e5:9d: 1e:dd:10:72:a9:c7:60:f2:f7:aa:74:7b:f8:2e:13: 61:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:D4:D5:7F:5C:81:E3:2D:F1:01:0C:E2:50:D0:32:FA:82:D4:47:15 X509v3 Authority Key Identifier: keyid:48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:f5:35:02:fb:b3:50:9b:f0:58:3e:26:8b:1c:bc:80:f8:cd: f8:30:18:d1:c3:6b:35:56:e5:26:0e:8c:ef:30:34:cb:6b:5d: d4:fc:51:7f:38:c8:79:1b:f7:2b:1e:ea:11:1b:0d:a6:30:5c: 0e:58:19:c5:8e:74:32:d0:f3:c9:6b:c5:55:4e:c3:3e:47:d8: 8b:1f:6b:63:10:d1:ed:9c:3c:6f:da:ae:e7:ba:78:3e:24:ba: 61:f8:ce:5f:49:3b:5d:9a:11:46:68:99:20:68:0b:af:ad:f1: 00:5c:12:97:3a:c4:47:67:9b:c1:68:ee:52:fb:07:68:16:0c: 6e:46:ab:11:7d:90:07:aa:5a:52:22:31:13:1d:f6:7f:b3:37: be:a8:65:42:77:9d:2d:df:95:2d:08:9e:5c:96:58:2e:60:8b: 24:0c:3c:31:07:cf:9e:57:8a:75:66:7d:71:e3:e5:27:14:02: d3:2b:94:32:a0:1c:75:75:d2:8e:f5:c3:bf:ef:4d:fb:5b:4a: b9:0d:2c:f4:c4:2c:22:f0:74:79:64:f9:c6:a8:e2:99:03:0e: d7:9f:44:e3:84:84:44:e3:d3:59:f3:64:6c:da:c1:21:21:4e: 1a:e5:b8:1a:cd:1e:c9:24:5f:79:77:33:4a:ea:c1:9b:94:2e: 59:c2:a0:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDRTIxMTAvBgNVBAUTKDQ4MkQ0OEUzQjY5NjFGMTIwOEMwNjcxNTI0RTA4RTkw MzM5NUY2NTkwHhcNMjUwODIzMDQzMjUxWhcNMjUwODMwMDQzMjUxWjAYMRYwFAYD VQQDEw02OGE5NDQ3NC05OGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwy/uNQn84yOZaHnQmwphLubWq2qsj60DIyJl7i0oxY+Chk5RtXBkewyJsiQR kqyRfudIxkMxUqNH29imd+8nDESYu4G2K4xSUAHGG7YJSDs5opIKGGly46Yjwc3x Fp5MFmJb35eqVe7NUqIyjxhmSam54eZqFZuKkY9TjQaAOYKZgF3nsZICM70PJqPL XEnPEPJfHdjT9Ku6GX4KGSDqncWAhpCstW0ID9l6bh/cEBHmhfKsJ5n1jlOIiNMm 9RevTpqAEikzfzyYzdt8e9bByIxtfL0Q/98nxQQ4X/xjbFCCuk9rLdEdYrIomx0z 5Z0e3RByqcdg8veqdHv4LhNhjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPU1X9c geMt8QEM4lDQMvqC1EcVMB8GA1UdIwQYMBaAFEgtSOO2lh8SCMBnFSTgjpAzlfZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNFMi8yNEY3RTI3RTk3 QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4SUl3R2NWSk9DT2tET1Y5 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDMUk0N2FXSHhJSXdHY1ZKT0NPa0RPVjlsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkNFMi8yNEY3RTI3RTk3QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4 SUl3R2NWSk9DT2tET1Y5bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw9TUC+7NQm/BYPiaLHLyA+M34MBjRw2s1VuUmDozvMDTLa13U/FF/ OMh5G/crHuoRGw2mMFwOWBnFjnQy0PPJa8VVTsM+R9iLH2tjENHtnDxv2q7nung+ JLph+M5fSTtdmhFGaJkgaAuvrfEAXBKXOsRHZ5vBaO5S+wdoFgxuRqsRfZAHqlpS IjETHfZ/sze+qGVCd50t35UtCJ5cllguYIskDDwxB8+eV4p1Zn1x4+UnFALTK5Qy oBx1ddKO9cO/7037W0q5DSz0xCwi8HR5ZPnGqOKZAw7Xn0TjhIRE49NZ82Rs2sEh IU4a5bgazR7JJF95dzNK6sGblC5ZwqCv -----END CERTIFICATE-----Generated at Sat Aug 23 17:59:05 2025 by rpki-client