$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: 34HDwAmFFevr5T+zwTTjiVgXMjkRvg4HZa3ATGfcWW8= Subject key identifier: D4:C1:93:2E:FF:1F:B4:D7:0B:E2:E1:97:76:BE:76:8D:19:22:06:8B Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 09E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 09E2 Signing time: Wed 02 Jul 2025 20:07:50 +0000 Manifest this update: Wed 02 Jul 2025 20:07:49 +0000 Manifest next update: Wed 09 Jul 2025 20:07:49 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: ymae0CcgNLljNhdcoXEvXtVs3qQaYOIZrbMgLqZWufA=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:07:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2537 (0x9e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Jul 2 20:07:49 2025 GMT Not After : Jul 9 20:07:49 2025 GMT Subject: CN=68659196-7797 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:64:c4:b6:ae:c8:6c:c8:56:36:20:33:f9:ca: 42:6a:95:33:68:05:e5:87:34:f9:34:e1:05:8a:b5: 93:24:32:a4:93:61:72:ee:b3:3d:35:ce:64:24:70: 69:02:35:9d:94:be:7d:16:05:9c:19:95:a2:21:31: 75:fa:4d:df:0f:02:84:3c:1e:65:cb:01:1a:b2:b4: d2:48:21:c1:4b:1d:8d:d8:47:56:0a:d7:d0:a5:5c: 76:e7:2f:5a:98:06:50:68:ce:24:09:c9:f7:7e:57: cb:09:2c:e0:20:9b:23:d1:85:0c:4d:96:fc:ef:cb: 7d:cd:27:63:7c:c3:9c:4c:4a:2e:a4:b8:f2:06:e5: bf:cb:23:2a:6a:57:2b:e6:1f:62:24:98:25:f7:c5: 91:85:04:2e:bb:fa:a6:86:cb:90:71:a5:18:76:ce: 63:5c:c1:37:42:61:af:cf:da:59:6d:77:30:54:a9: 24:bd:d9:76:76:f0:d3:f8:4d:58:5c:8e:d4:0d:a1: 8d:a0:17:cc:5f:3e:c6:fb:d0:0a:db:b9:6d:2b:53: b5:52:84:ba:ca:1c:0d:f7:b8:12:98:ed:b1:0f:8d: c2:f4:0e:31:25:80:a6:19:56:7d:d2:a8:ce:05:5c: 3a:01:24:f3:df:e7:b7:dc:3e:d3:9f:8e:5a:db:94: 91:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C1:93:2E:FF:1F:B4:D7:0B:E2:E1:97:76:BE:76:8D:19:22:06:8B X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:5f:cb:92:fa:da:65:0e:41:70:26:c8:cc:df:26:13:07:d0: af:f5:b0:7d:fd:83:0a:65:b4:77:83:9e:b2:ac:82:43:b0:03: 26:4d:0b:d4:ec:69:25:10:80:27:69:70:e3:98:a3:be:1a:07: a4:43:99:a8:70:5a:d2:4f:46:6c:f7:5e:f5:3b:d9:fe:7e:21: f8:89:a9:57:34:be:90:29:67:56:4d:ac:d8:39:a4:74:8f:30: 86:1f:2b:07:45:36:40:68:f7:92:95:13:4d:59:c4:de:a3:2b: ce:59:ba:d6:21:a2:da:61:a7:cf:a8:ef:c7:fd:b7:14:7f:09: 23:84:f4:80:97:94:ba:ed:93:d7:9e:4e:10:93:49:9a:da:e3: 16:6e:47:e4:6c:02:c4:fa:16:62:45:a4:c2:dc:bb:cb:75:b2: d7:f8:e0:f8:93:13:56:ea:9f:7a:d8:b8:04:00:7a:76:6c:f6: 5a:9b:c3:31:13:bf:19:ec:d3:ea:0f:f8:9c:e2:53:3b:4d:59: 6e:7d:95:08:f3:68:e4:67:22:da:5f:b0:b3:ba:d3:04:cb:2a: 9b:24:e4:55:ac:7b:35:90:27:34:d8:5a:9a:b0:ab:65:c5:d6: f9:d1:f3:d4:14:82:1b:9e:56:fa:aa:1f:d7:12:58:29:84:81: 79:84:c3:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUwNzAyMjAwNzQ5WhcNMjUwNzA5MjAwNzQ5WjAYMRYwFAYD VQQDEw02ODY1OTE5Ni03Nzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWTEtq7IbMhWNiAz+cpCapUzaAXlhzT5NOEFirWTJDKkk2Fy7rM9Nc5kJHBp AjWdlL59FgWcGZWiITF1+k3fDwKEPB5lywEasrTSSCHBSx2N2EdWCtfQpVx25y9a mAZQaM4kCcn3flfLCSzgIJsj0YUMTZb878t9zSdjfMOcTEoupLjyBuW/yyMqalcr 5h9iJJgl98WRhQQuu/qmhsuQcaUYds5jXME3QmGvz9pZbXcwVKkkvdl2dvDT+E1Y XI7UDaGNoBfMXz7G+9AK27ltK1O1UoS6yhwN97gSmO2xD43C9A4xJYCmGVZ90qjO BVw6ASTz3+e33D7Tn45a25SRxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTBky7/ H7TXC+Lhl3a+do0ZIgaLMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwX8uS+tplDkFwJsjM3yYTB9Cv9bB9/YMKZbR3g56yrIJDsAMmTQvU 7GklEIAnaXDjmKO+GgekQ5mocFrST0Zs9171O9n+fiH4ialXNL6QKWdWTazYOaR0 jzCGHysHRTZAaPeSlRNNWcTeoyvOWbrWIaLaYafPqO/H/bcUfwkjhPSAl5S67ZPX nk4Qk0ma2uMWbkfkbALE+hZiRaTC3LvLdbLX+OD4kxNW6p962LgEAHp2bPZam8Mx E78Z7NPqD/ic4lM7TVlufZUI82jkZyLaX7CzutMEyyqbJORVrHs1kCc02FqasKtl xdb50fPUFIIbnlb6qh/XElgphIF5hMPX -----END CERTIFICATE-----Generated at Thu Jul 3 11:08:58 2025 by rpki-client