$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: qzIX6XTzgOIwB11BXPkNQTAiaRUOlrjXMx6jpbOIXRU= Subject key identifier: 49:5A:93:AE:50:FB:DE:9A:97:A3:7B:AC:66:24:40:3A:98:11:6D:AA Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 0A03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 09FC Signing time: Fri 22 Aug 2025 19:58:57 +0000 Manifest this update: Fri 22 Aug 2025 19:58:57 +0000 Manifest next update: Fri 29 Aug 2025 19:58:57 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: vsNjbbZbLdUjJGVQRuqhfvtCKHPSbmFAZ46x38p+IVo=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2563 (0xa03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Aug 22 19:58:57 2025 GMT Not After : Aug 29 19:58:57 2025 GMT Subject: CN=68a8cc01-6354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:91:c1:de:ad:46:ab:2b:b0:17:4d:7d:cf:bf: 59:d6:3f:9b:0f:46:ce:23:ac:ef:b4:dd:b8:55:c6: 77:72:95:d3:95:bf:fc:7a:d3:c2:55:c6:9a:97:07: fe:9a:c5:96:d0:09:21:15:d9:61:c8:82:73:dc:62: 39:e1:22:97:a0:d1:ac:d4:2c:2f:e3:6e:c8:5c:19: 12:7e:5f:be:ec:26:6c:c7:2a:f4:8b:9b:79:ae:68: e2:48:d2:52:36:dc:bc:8a:e0:af:22:64:d7:b4:45: 4a:0e:b2:66:4b:e0:dc:e2:66:65:35:e8:63:5a:a1: 63:93:a7:ae:a4:c5:07:79:d1:83:2f:a7:e1:96:08: 20:2f:a7:ad:83:9f:57:47:26:a6:a7:04:43:a6:0c: e6:26:d2:29:c6:ca:9a:f8:67:51:08:4f:2b:94:b2: 0c:62:ad:40:d3:29:15:c3:b6:57:3b:e7:60:61:b6: 54:66:42:8e:03:82:27:23:f5:76:8d:1a:fb:47:13: 83:82:65:eb:04:8b:9f:83:a8:d8:14:22:41:9c:6b: 2f:73:05:5f:f2:a4:f6:e7:37:b0:5a:cd:de:89:2a: 8f:d4:12:f2:63:30:c9:e3:77:c6:50:15:50:23:8b: 0f:28:cb:5d:f8:08:0e:87:44:39:e0:28:35:f7:ac: 47:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5A:93:AE:50:FB:DE:9A:97:A3:7B:AC:66:24:40:3A:98:11:6D:AA X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:86:fd:46:7b:09:f0:64:ae:84:d8:b5:7e:1a:b7:20:3c:57: d7:a2:fc:1e:b7:33:05:6b:82:6d:35:71:11:9f:76:22:88:51: b9:94:72:86:22:80:21:e6:e6:0c:aa:6b:c1:09:94:c6:b4:7d: 53:30:02:ba:71:5b:c9:d7:a2:e6:a3:c7:11:7a:c9:0c:bc:59: c1:1c:21:f6:98:e8:58:15:83:de:0d:92:94:4d:d5:71:01:12: d9:77:12:c9:43:7e:18:26:52:cb:21:a3:19:84:d2:d6:5a:97: d8:5a:0a:10:19:0d:96:dd:ba:7a:9f:fc:bf:29:0c:ee:60:f2: d2:b3:a4:21:7b:e0:a1:8b:f5:bb:81:9a:80:ba:d7:08:0d:b5: 3d:7f:84:ce:2c:5d:1f:1a:37:4a:5d:41:dd:e5:2a:22:c4:43: 25:41:23:9c:11:05:7a:91:d6:49:0e:db:ab:43:d0:f0:f0:77: 07:32:9f:f3:4a:f0:98:0e:fe:05:eb:15:c2:9a:61:7b:88:ef: 8a:f9:2d:0d:3a:a8:c5:56:af:8d:b0:be:11:17:a4:ea:06:4c: d8:61:e8:d1:5f:09:82:b5:4e:cc:b6:cf:03:71:19:20:1c:8b: af:0e:31:ed:24:04:90:54:1c:de:c2:00:48:20:c3:79:12:a1: 67:3a:21:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUwODIyMTk1ODU3WhcNMjUwODI5MTk1ODU3WjAYMRYwFAYD VQQDEw02OGE4Y2MwMS02MzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5HB3q1GqyuwF019z79Z1j+bD0bOI6zvtN24VcZ3cpXTlb/8etPCVcaalwf+ msWW0AkhFdlhyIJz3GI54SKXoNGs1Cwv427IXBkSfl++7CZsxyr0i5t5rmjiSNJS Nty8iuCvImTXtEVKDrJmS+Dc4mZlNehjWqFjk6eupMUHedGDL6fhlgggL6etg59X RyampwRDpgzmJtIpxsqa+GdRCE8rlLIMYq1A0ykVw7ZXO+dgYbZUZkKOA4InI/V2 jRr7RxODgmXrBIufg6jYFCJBnGsvcwVf8qT25zewWs3eiSqP1BLyYzDJ43fGUBVQ I4sPKMtd+AgOh0Q54Cg196xH7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElak65Q +96al6N7rGYkQDqYEW2qMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBthv1GewnwZK6E2LV+GrcgPFfXovwetzMFa4JtNXERn3YiiFG5lHKG IoAh5uYMqmvBCZTGtH1TMAK6cVvJ16Lmo8cReskMvFnBHCH2mOhYFYPeDZKUTdVx ARLZdxLJQ34YJlLLIaMZhNLWWpfYWgoQGQ2W3bp6n/y/KQzuYPLSs6Qhe+Chi/W7 gZqAutcIDbU9f4TOLF0fGjdKXUHd5SoixEMlQSOcEQV6kdZJDturQ9Dw8HcHMp/z SvCYDv4F6xXCmmF7iO+K+S0NOqjFVq+NsL4RF6TqBkzYYejRXwmCtU7Mts8DcRkg HIuvDjHtJASQVBzewgBIIMN5EqFnOiEK -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:27 2025 by rpki-client