$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft File: -KpwkWtspYPANj63qaX38mJ9c2A.mft (raw, json) Hash identifier: +3YMqyKWldkSZDI7U99MAA71TlsvjhCm09hd5jbXNKg= Subject key identifier: 0F:FA:6A:68:9C:70:2D:BA:F5:5C:E1:44:71:8E:62:A0:60:2B:7C:13 Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 2656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft Manifest number: 2551 Signing time: Fri 04 Jul 2025 16:23:06 +0000 Manifest this update: Fri 04 Jul 2025 16:23:06 +0000 Manifest next update: Fri 11 Jul 2025 16:23:06 +0000 Files and hashes: 1: -KpwkWtspYPANj63qaX38mJ9c2A.crl (hash: HYtZZSCio+jP1o0i/TkRSZ2/ZTsEot6P4eCTAzVKZGU=) 2: 9DBB8670790211EC9EE24885C4F9AE02.roa (hash: HAVp5cljtBnNfexhpbWp3fQD4oxFEGOqIu7ZTxc+Cn0=) 3: 5CCAC7F8528C11ECB6101B10C4F9AE02.roa (hash: RIyr8Ughbt9mob5hXoVNYqj5DjcM8cytuIahFNZG+OY=) 4: 86D13B7E571C11EC81276481C4F9AE02.roa (hash: MOs76+y2ZzpmyQheXk3mTC95IHPkn0FNf96cGXOiX14=) 5: 63C97CBAC49E11EBAC936D7AC4F9AE02.roa (hash: Z5qSs34sPKp/u0MZu0MdqYO0kmHEtkJPsT5iKOnHCCM=) 6: CFF5A20078E011EC8357FA15C4F9AE02.roa (hash: 0lnFnxu0rWa+p9n4oerH1rvUz5x82J6mnvG019TSBpo=) 7: 15812F82C4A111EBAE6C7F49C4F9AE02.roa (hash: lPqoKt6e9WB68QkGqWF9uf0n021O/vJN6Ok+8vPm99E=) 8: 6E042EFCABF011EC92152E22C4F9AE02.roa (hash: nSFw75IcZdLxXGKGRDjDilcmAybSCgLtcoRvUszM+xw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9814 (0x2656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53, serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Jul 4 16:23:06 2025 GMT Not After : Jul 11 16:23:06 2025 GMT Subject: CN=6867ffea-d727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:fb:ef:2d:c1:37:f4:e8:94:fd:9b:84:00:7e: 69:d9:09:a0:38:b1:ed:fa:c5:4f:7a:f6:76:4e:19: 7c:eb:5b:03:04:a4:a1:b9:88:df:89:3f:5b:ca:bb: ff:5e:8a:42:5b:42:f3:ac:c6:68:2f:e2:d4:31:9c: e5:d0:0c:ce:35:9a:07:66:a7:aa:b6:f4:0b:f6:87: 93:82:12:1b:db:d1:64:21:1b:86:83:65:27:b3:29: b6:e1:9c:be:e4:d3:a4:ad:2d:2e:27:5e:a0:9e:85: 83:b8:a8:5f:cd:34:d6:29:76:d5:31:ad:c5:3c:6a: 87:85:c6:69:93:b8:fa:f8:25:60:72:54:0b:14:77: 9e:ce:38:ec:e9:9e:eb:bd:f6:00:14:b6:ec:fa:a9: 7a:a4:0e:3f:f8:0f:00:4a:b0:5f:3a:8b:d7:ef:de: f0:98:08:ae:8b:dd:f6:5e:ee:b5:e7:62:85:3f:9e: d1:7a:35:7b:4d:78:5c:b9:d9:c4:2c:5b:51:4a:30: a7:c9:bb:b6:07:05:3d:4b:a5:39:b1:ef:5c:b6:6b: 76:4c:14:03:3f:a1:99:38:c8:3c:94:76:18:9f:d2: 59:ab:79:73:aa:d6:e4:8d:61:e4:aa:3e:91:ef:44: 65:31:9a:ba:92:04:66:d0:76:65:67:ec:b4:e7:71: f0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:FA:6A:68:9C:70:2D:BA:F5:5C:E1:44:71:8E:62:A0:60:2B:7C:13 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:21:3e:59:ae:a5:77:c0:62:bf:90:dc:14:a7:db:8b:91:0b: a4:91:e5:2c:55:bc:9a:f1:c3:b0:d0:2f:87:25:bf:44:d5:96: e7:dc:07:14:f2:56:e1:d4:d9:28:bc:ca:3b:c1:10:c8:d6:8e: ae:4d:94:70:56:2a:3b:24:76:ff:d7:d9:82:34:96:7b:91:5f: 4b:47:d9:d4:e9:3e:87:55:1d:7f:d9:a5:3a:62:1f:d4:03:3e: 45:6a:4e:c6:cb:e7:99:3b:17:b3:8a:79:5b:a1:3f:85:f4:8d: cb:4e:f7:e4:e6:46:cb:c2:b5:96:f1:8f:40:d0:db:b7:23:d5: 28:89:e8:26:83:10:01:76:93:3b:2a:3f:94:48:b4:02:3d:b9: 80:a8:79:c8:ff:29:17:4e:76:80:43:b4:15:08:1f:c5:b8:95: 41:6f:45:68:d1:ea:b2:6d:e7:30:10:0e:08:ea:5f:2a:83:f8: 0c:cf:85:f8:00:75:36:a1:d4:ca:f7:07:4d:c7:96:be:1c:96: 4d:c6:6a:5f:ea:7f:19:d8:4f:cc:13:d5:ca:dc:df:c5:1c:f0: 8f:95:6e:d8:78:2e:8b:23:fc:74:d9:ae:04:69:fe:cb:20:66: 7f:b3:1e:ce:4d:f0:93:37:ed:c5:9a:5f:f4:e0:26:77:8c:aa: d2:30:65:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjUwNzA0MTYyMzA2WhcNMjUwNzExMTYyMzA2WjAYMRYwFAYD VQQDEw02ODY3ZmZlYS1kNzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk/vvLcE39OiU/ZuEAH5p2QmgOLHt+sVPevZ2Thl861sDBKShuYjfiT9byrv/ XopCW0LzrMZoL+LUMZzl0AzONZoHZqeqtvQL9oeTghIb29FkIRuGg2Unsym24Zy+ 5NOkrS0uJ16gnoWDuKhfzTTWKXbVMa3FPGqHhcZpk7j6+CVgclQLFHeezjjs6Z7r vfYAFLbs+ql6pA4/+A8ASrBfOovX797wmAiui932Xu6152KFP57RejV7TXhcudnE LFtRSjCnybu2BwU9S6U5se9ctmt2TBQDP6GZOMg8lHYYn9JZq3lzqtbkjWHkqj6R 70RlMZq6kgRm0HZlZ+y053Hw0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/6amic cC269VzhRHGOYqBgK3wTMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUU1My8zODUxMTg0MDQ1ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZ UEFOajYzcWFYMzhtSjljMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbIT5ZrqV3wGK/kNwUp9uLkQukkeUsVbya8cOw0C+HJb9E1Zbn3AcU 8lbh1NkovMo7wRDI1o6uTZRwVio7JHb/19mCNJZ7kV9LR9nU6T6HVR1/2aU6Yh/U Az5Fak7Gy+eZOxezinlboT+F9I3LTvfk5kbLwrWW8Y9A0Nu3I9UoiegmgxABdpM7 Kj+USLQCPbmAqHnI/ykXTnaAQ7QVCB/FuJVBb0Vo0eqybecwEA4I6l8qg/gMz4X4 AHU2odTK9wdNx5a+HJZNxmpf6n8Z2E/ME9XK3N/FHPCPlW7YeC6LI/x02a4Eaf7L IGZ/sx7OTfCTN+3Fml/04CZ3jKrSMGWz -----END CERTIFICATE-----Generated at Sat Jul 5 03:43:02 2025 by rpki-client