$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft File: LOCE4B2sa01jSTjXbOraWWNVvVM.mft (raw, json) Hash identifier: Z7mGS0U2l9vW9xwdGwwFtHoTh1T1K0iHIO0c7swDWZ4= Subject key identifier: E7:DA:10:CD:63:F4:A3:E8:2F:9B:5F:C5:2F:25:56:BF:69:35:5B:2E Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft Manifest number: 0269 Signing time: Sat 23 Aug 2025 01:59:08 +0000 Manifest this update: Sat 23 Aug 2025 01:59:07 +0000 Manifest next update: Sat 30 Aug 2025 01:59:07 +0000 Files and hashes: 1: LOCE4B2sa01jSTjXbOraWWNVvVM.crl (hash: 4D5kevKNSyh/W2Cb1PYJYG1odwTGvg8m1U3CVvrF/I0=) 2: 028640A8242B11ED9547B486C4F9AE02.roa (hash: dsbPmjXp/oYWvfHXOZsMcI3WqL8KWucAeTqSoUbpKas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F, serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Validity Not Before: Aug 23 01:59:07 2025 GMT Not After : Aug 30 01:59:07 2025 GMT Subject: CN=68a9206c-d2a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:59:c9:9b:92:dc:46:5f:7d:17:47:b8:19:10: 83:df:c4:71:3e:99:27:e8:c6:43:51:ed:35:de:ce: d9:94:e5:98:0a:e2:00:01:59:66:40:43:dc:5e:da: b3:3d:86:19:ac:52:8a:43:c9:eb:75:eb:35:cb:1d: 8f:1a:8f:99:0d:51:d7:f5:ba:63:68:d5:0f:34:0b: 0a:1b:21:e8:20:e0:e6:61:97:f3:82:50:0a:6d:90: e9:40:8f:a7:48:3e:3c:10:16:66:52:9f:30:54:17: 5e:ed:f0:17:b4:84:5b:dd:50:a8:c9:1c:49:f9:6e: 58:8d:c8:28:99:a4:f0:d7:4f:ca:cf:22:04:68:a3: 4e:e8:d4:93:6f:50:7f:e6:cc:7c:58:42:81:5a:c8: bd:18:3a:bb:7f:28:4e:61:15:bc:ce:4a:6d:c2:b8: 83:c8:86:02:bb:e2:ec:da:a9:4c:77:86:e5:c7:ee: 55:ab:4b:9a:d3:a3:92:ee:ac:18:36:82:c5:96:ed: ca:c8:4d:20:eb:3f:dc:5a:f1:dc:c7:a8:b8:7b:f1: 35:29:a3:a1:2d:f6:a5:45:4e:48:3c:17:bd:27:81: 31:ea:8b:d2:2c:6e:bc:1c:e7:11:b7:e4:93:2c:5d: 6f:aa:e5:35:31:23:7e:79:b1:0f:15:e0:44:b4:99: ca:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DA:10:CD:63:F4:A3:E8:2F:9B:5F:C5:2F:25:56:BF:69:35:5B:2E X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:76:81:2e:25:5a:60:0b:da:a6:c8:a0:e2:0a:4e:fb:c8:69: 44:aa:aa:a0:99:af:82:81:2d:40:d1:f4:98:ca:13:3b:22:66: ca:3b:1c:12:58:03:9e:dd:4c:3a:e3:16:5d:95:7b:b5:60:0f: 4f:13:66:61:da:c1:5a:85:09:39:00:42:a0:6e:54:17:17:10: ea:36:95:64:0a:75:11:77:26:ee:f1:01:61:ed:6f:8c:c4:b4: 38:32:ca:0a:dc:c4:8a:cd:4a:4d:7a:d4:1c:39:8e:21:3c:08: a4:fd:a0:b4:bf:5f:52:ef:b0:34:e0:2d:d7:a8:56:92:2a:f3: a4:e5:4c:dc:e0:d5:78:63:e6:cc:d5:13:72:b1:bb:0c:80:de: ef:f9:e2:06:c3:1a:3b:c0:d9:ee:59:73:29:52:5e:fa:02:cc: 5e:34:d3:8b:0f:a4:f4:77:c5:33:42:82:02:2b:96:ac:29:cb: 2b:37:11:f7:d2:17:ad:02:e1:1f:78:4a:51:b0:d0:31:b3:bd: d8:72:d4:79:6a:15:73:de:0d:9d:ea:46:f5:f7:9f:a2:f0:36: 07:a7:26:a7:d2:a4:84:e5:30:bf:d2:9f:32:35:ef:a8:f9:68: 19:6a:67:25:80:ef:e7:df:e1:f0:1d:ea:1d:e7:80:42:7d:09: 12:c2:22:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjUwODIzMDE1OTA3WhcNMjUwODMwMDE1OTA3WjAYMRYwFAYD VQQDEw02OGE5MjA2Yy1kMmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplnJm5LcRl99F0e4GRCD38RxPpkn6MZDUe013s7ZlOWYCuIAAVlmQEPcXtqz PYYZrFKKQ8nrdes1yx2PGo+ZDVHX9bpjaNUPNAsKGyHoIODmYZfzglAKbZDpQI+n SD48EBZmUp8wVBde7fAXtIRb3VCoyRxJ+W5YjcgomaTw10/KzyIEaKNO6NSTb1B/ 5sx8WEKBWsi9GDq7fyhOYRW8zkptwriDyIYCu+Ls2qlMd4blx+5Vq0ua06OS7qwY NoLFlu3KyE0g6z/cWvHcx6i4e/E1KaOhLfalRU5IPBe9J4Ex6ovSLG68HOcRt+ST LF1vquU1MSN+ebEPFeBEtJnKOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfaEM1j 9KPoL5tfxS8lVr9pNVsuMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE4Ri9FM0EzNUJCNDI0MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2Ew MWpTVGpYYk9yYVdXTlZ2Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjdoEuJVpgC9qmyKDiCk77yGlEqqqgma+CgS1A0fSYyhM7ImbKOxwS WAOe3Uw64xZdlXu1YA9PE2Zh2sFahQk5AEKgblQXFxDqNpVkCnURdybu8QFh7W+M xLQ4MsoK3MSKzUpNetQcOY4hPAik/aC0v19S77A04C3XqFaSKvOk5Uzc4NV4Y+bM 1RNysbsMgN7v+eIGwxo7wNnuWXMpUl76AsxeNNOLD6T0d8UzQoICK5asKcsrNxH3 0hetAuEfeEpRsNAxs73YctR5ahVz3g2d6kb195+i8DYHpyan0qSE5TC/0p8yNe+o +WgZamclgO/n3+HwHeod54BCfQkSwiKf -----END CERTIFICATE-----Generated at Sat Aug 23 18:38:02 2025 by rpki-client