$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft File: B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft (raw, json) Hash identifier: ynzKID1V1wrERgYziwhMie/bgtd+QKBSh3lUHazRjTE= Subject key identifier: 5B:25:7E:F4:81:C8:CF:28:FF:5F:2B:FF:50:41:4B:97:D1:BF:D3:EF Authority key identifier: 07:53:2C:F6:D2:BC:4C:A9:D9:27:F3:07:D0:E6:B8:28:77:D8:EE:4D Certificate issuer: /CN=A915D1F2/serialNumber=07532CF6D2BC4CA9D927F307D0E6B82877D8EE4D Certificate serial: 11AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft Manifest number: 11A6 Signing time: Fri 22 Aug 2025 17:20:10 +0000 Manifest this update: Fri 22 Aug 2025 17:20:10 +0000 Manifest next update: Fri 29 Aug 2025 17:20:10 +0000 Files and hashes: 1: B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.crl (hash: yUZAtzTcj+x+7CvU4Fi0zfQHsQL8ZiXb9S39nCYAzsg=) 2: 9467361CFEAA11E89E73E75BC4F9AE02.roa (hash: GyMFJG7vpXHHpv3BwX4n2XQfqCBxAhnBsVULLZ+wmKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.crl rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4527 (0x11af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1F2, serialNumber=07532CF6D2BC4CA9D927F307D0E6B82877D8EE4D Validity Not Before: Aug 22 17:20:10 2025 GMT Not After : Aug 29 17:20:10 2025 GMT Subject: CN=68a8a6ca-a02c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:40:5e:d1:7a:56:41:00:dc:6f:e1:4d:57:a3: e8:99:cd:f0:11:eb:c0:b4:b4:84:8a:69:3e:30:d1: 46:9e:27:6f:f9:a4:a1:6d:08:2a:93:30:74:7a:30: 8e:91:07:03:96:ae:78:1d:1a:a6:d9:ab:0d:55:5d: c9:0f:58:b8:d0:f3:7e:1b:5c:36:71:5d:02:09:ea: 58:85:02:06:1c:d6:56:35:ef:34:13:d8:a4:e0:b3: 31:b5:94:7c:d0:69:3e:fb:19:fa:6b:f9:18:fc:52: d2:f5:d5:04:94:12:c5:ae:bd:39:f8:d3:21:e2:de: bc:3a:9e:67:62:4a:ee:e1:86:cf:63:f1:7c:89:ff: 06:25:d9:c2:53:b8:53:1b:c2:a8:57:1d:cd:8e:02: d6:cd:bb:46:4e:28:e2:48:37:b8:20:fd:48:b9:69: 74:e8:b6:f4:6f:d9:d0:f3:0c:cf:8b:7a:df:57:e8: 0a:87:02:7f:e9:96:72:1b:9b:f3:23:e7:f8:3d:d4: e2:e0:a9:3f:a1:c8:7c:f0:86:aa:05:b7:59:3e:97: b5:a9:a7:74:68:2c:52:b2:36:28:a8:3a:0a:0d:f5: 63:1b:e1:c6:32:7c:1e:25:cd:11:a0:9e:ba:f9:97: e7:64:aa:b4:da:00:13:ff:4d:66:45:b0:a5:fb:8b: e2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:25:7E:F4:81:C8:CF:28:FF:5F:2B:FF:50:41:4B:97:D1:BF:D3:EF X509v3 Authority Key Identifier: keyid:07:53:2C:F6:D2:BC:4C:A9:D9:27:F3:07:D0:E6:B8:28:77:D8:EE:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:13:de:e8:dd:d1:86:86:c5:6f:50:96:13:2f:7e:82:4e:cf: 35:2e:99:eb:e0:23:fe:94:a7:b1:20:90:7a:d2:cc:76:ac:03: e5:dc:6d:e2:cb:5b:a4:b5:f2:80:f1:8d:0e:8a:e1:e0:b9:0a: c6:7e:e3:fc:5f:5d:b8:ba:35:5d:86:07:ca:d1:c3:b0:78:92: 6e:ab:f7:e6:ec:f7:41:f7:30:e1:b1:9b:9b:04:dd:27:c6:2e: c1:41:95:40:ac:0b:c0:54:17:9e:dd:08:cd:1f:7d:fa:5c:50: a0:26:77:83:0a:00:73:bf:95:2d:e3:ac:a4:e4:87:0b:8e:03: 3e:51:a5:8c:db:dd:0e:fc:fa:5e:04:1d:11:89:d0:bd:25:19: f2:8c:95:45:b7:12:5b:45:03:fc:b5:e4:18:e1:95:0f:b7:1b: 02:c7:1d:0a:05:83:7d:05:27:f4:1b:79:69:1d:ee:a3:3e:cf: eb:0f:e2:dd:0f:96:56:c5:2f:92:7c:71:bc:29:1e:10:d6:3f: 50:9a:b4:65:83:82:4a:82:a9:65:38:6d:5a:df:48:17:b4:4a: 64:06:1b:92:3c:38:4b:0d:e2:57:2e:9b:cb:27:6a:e4:76:b2: c0:12:cc:aa:4a:0e:9c:69:2b:a4:94:ae:db:91:ae:bc:c6:72: e5:61:7b:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxRjIxMTAvBgNVBAUTKDA3NTMyQ0Y2RDJCQzRDQTlEOTI3RjMwN0QwRTZCODI4 NzdEOEVFNEQwHhcNMjUwODIyMTcyMDEwWhcNMjUwODI5MTcyMDEwWjAYMRYwFAYD VQQDEw02OGE4YTZjYS1hMDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEBe0XpWQQDcb+FNV6Pomc3wEevAtLSEimk+MNFGnidv+aShbQgqkzB0ejCO kQcDlq54HRqm2asNVV3JD1i40PN+G1w2cV0CCepYhQIGHNZWNe80E9ik4LMxtZR8 0Gk++xn6a/kY/FLS9dUElBLFrr05+NMh4t68Op5nYkru4YbPY/F8if8GJdnCU7hT G8KoVx3NjgLWzbtGTijiSDe4IP1IuWl06Lb0b9nQ8wzPi3rfV+gKhwJ/6ZZyG5vz I+f4PdTi4Kk/och88IaqBbdZPpe1qad0aCxSsjYoqDoKDfVjG+HGMnweJc0RoJ66 +ZfnZKq02gAT/01mRbCl+4viXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFslfvSB yM8o/18r/1BBS5fRv9PvMB8GA1UdIwQYMBaAFAdTLPbSvEyp2SfzB9DmuCh32O5N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFGMi9BRjMyMUQzQ0ZF N0MxMUU4ODY4OUM2NTVDNEY5QUUwMi9CMU1zOXRLOFRLblpKX01IME9hNEtIZlk3 azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IxTXM5dEs4VEtuWkpfTUgwT2E0S0hmWTdrMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFGMi9BRjMyMUQzQ0ZFN0MxMUU4ODY4OUM2NTVDNEY5QUUwMi9CMU1zOXRLOFRL blpKX01IME9hNEtIZlk3azAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOE97o3dGGhsVvUJYTL36CTs81Lpnr4CP+lKexIJB60sx2rAPl3G3i y1uktfKA8Y0OiuHguQrGfuP8X124ujVdhgfK0cOweJJuq/fm7PdB9zDhsZubBN0n xi7BQZVArAvAVBee3QjNH336XFCgJneDCgBzv5Ut46yk5IcLjgM+UaWM290O/Ppe BB0RidC9JRnyjJVFtxJbRQP8teQY4ZUPtxsCxx0KBYN9BSf0G3lpHe6jPs/rD+Ld D5ZWxS+SfHG8KR4Q1j9QmrRlg4JKgqllOG1a30gXtEpkBhuSPDhLDeJXLpvLJ2rk drLAEsyqSg6caSuklK7bka68xnLlYXte -----END CERTIFICATE-----Generated at Sun Aug 24 03:04:04 2025 by rpki-client