$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft File: -KpwkWtspYPANj63qaX38mJ9c2A.mft (raw, json) Hash identifier: QTo8yrcbxSslJcz1eWkCZbvXoXT6yWH5pSQF7otrwJQ= Subject key identifier: 9D:43:C4:87:8D:F1:C9:CE:BF:B6:E2:AC:A9:0B:70:37:F7:25:DE:B3 Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 266F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft Manifest number: 256A Signing time: Fri 22 Aug 2025 15:49:22 +0000 Manifest this update: Fri 22 Aug 2025 15:49:22 +0000 Manifest next update: Fri 29 Aug 2025 15:49:22 +0000 Files and hashes: 1: -KpwkWtspYPANj63qaX38mJ9c2A.crl (hash: JIuQyjrOTt60+pJDaw4hW6yol4V0RmXKv0vZ+9152xg=) 2: 9DBB8670790211EC9EE24885C4F9AE02.roa (hash: HAVp5cljtBnNfexhpbWp3fQD4oxFEGOqIu7ZTxc+Cn0=) 3: 5CCAC7F8528C11ECB6101B10C4F9AE02.roa (hash: RIyr8Ughbt9mob5hXoVNYqj5DjcM8cytuIahFNZG+OY=) 4: 86D13B7E571C11EC81276481C4F9AE02.roa (hash: MOs76+y2ZzpmyQheXk3mTC95IHPkn0FNf96cGXOiX14=) 5: 63C97CBAC49E11EBAC936D7AC4F9AE02.roa (hash: Z5qSs34sPKp/u0MZu0MdqYO0kmHEtkJPsT5iKOnHCCM=) 6: CFF5A20078E011EC8357FA15C4F9AE02.roa (hash: 0lnFnxu0rWa+p9n4oerH1rvUz5x82J6mnvG019TSBpo=) 7: 15812F82C4A111EBAE6C7F49C4F9AE02.roa (hash: lPqoKt6e9WB68QkGqWF9uf0n021O/vJN6Ok+8vPm99E=) 8: 6E042EFCABF011EC92152E22C4F9AE02.roa (hash: nSFw75IcZdLxXGKGRDjDilcmAybSCgLtcoRvUszM+xw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9839 (0x266f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53, serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Aug 22 15:49:22 2025 GMT Not After : Aug 29 15:49:22 2025 GMT Subject: CN=68a89182-4d0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:90:ff:31:2b:f0:d8:4b:14:e3:fa:26:23:61: e6:25:06:a0:47:fa:a8:a2:75:c4:4e:f0:93:65:7a: 63:6a:41:21:c6:2c:91:13:72:ed:f5:0b:f0:c6:a0: 49:cf:f0:13:cf:a2:f4:ee:d4:f9:72:82:39:18:b4: 88:37:d1:18:1a:05:51:d6:4e:11:4d:95:58:e4:a0: b0:92:3d:56:58:9c:29:ff:39:1f:7f:50:c9:b0:2c: 80:86:27:94:4b:78:22:5b:2d:95:c1:5e:02:f1:c9: 6f:fe:b6:30:6b:7a:f3:4b:5e:74:b0:66:fd:de:76: 4d:af:9d:7b:a6:2b:e7:89:af:de:b2:d5:96:23:2b: 39:96:f0:14:d5:53:bc:4c:dc:6e:b3:78:ac:fb:a6: 84:aa:ed:c3:2b:73:ce:ee:8b:2e:56:e2:91:85:e7: af:a7:8e:06:d2:56:bf:b3:0e:a6:c1:a7:09:04:9d: 50:96:10:e6:62:89:9b:5c:20:45:96:b7:9e:4a:2c: d3:46:fa:96:5b:f5:cf:06:8a:3d:3f:af:42:99:c2: b4:f1:81:70:09:cb:0f:0d:4d:c9:db:26:a6:84:50: ae:97:9f:c1:1b:8d:38:58:ce:94:09:23:17:81:b7: b0:00:a6:1c:cf:89:f2:02:36:fa:d0:76:67:7c:a1: fb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:43:C4:87:8D:F1:C9:CE:BF:B6:E2:AC:A9:0B:70:37:F7:25:DE:B3 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:c2:04:92:f1:d6:1d:af:35:84:4a:ea:94:a9:61:57:9b:c5: ed:3c:6d:92:0a:83:18:01:a3:3f:0d:e6:37:a4:c8:17:b4:89: 63:df:7c:92:a9:9c:78:52:16:3c:ac:f7:5e:6e:a7:7a:9d:b6: dd:69:05:63:15:cd:18:f5:38:ee:a1:8f:ca:dc:e1:1b:bd:1e: 3f:98:eb:ed:1d:ab:83:5a:8d:9f:55:bc:e6:d7:25:eb:5c:23: 21:92:2b:a7:3d:9b:e1:5b:3f:a1:92:f2:90:ae:3b:b5:c7:32: 04:f4:60:e0:42:8e:9d:d7:d9:bc:2d:ac:9a:b1:4b:29:fa:2c: fe:90:4a:e0:20:3b:56:24:c0:ac:f8:d7:3c:e6:e8:8b:8f:f0: 02:c6:a2:44:eb:e1:4c:03:1c:c1:6e:4c:97:f8:ad:43:17:c1: 6f:54:04:e7:cc:b6:50:09:01:bc:98:4c:15:47:b1:c2:ec:81: f2:b9:74:43:8c:f8:45:d8:ad:20:f9:0e:97:43:c3:d1:bf:18: d8:0e:6a:d5:1a:93:40:b6:12:41:ec:55:cd:0e:d9:9f:4a:6b: 38:e6:d6:b4:83:82:0c:7c:ee:bb:59:79:fd:37:70:0e:78:67: 4b:71:6b:69:79:9e:66:7b:7a:c9:ad:70:f4:0b:7a:47:99:be: 25:2f:30:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjUwODIyMTU0OTIyWhcNMjUwODI5MTU0OTIyWjAYMRYwFAYD VQQDEw02OGE4OTE4Mi00ZDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JD/MSvw2EsU4/omI2HmJQagR/qoonXETvCTZXpjakEhxiyRE3Lt9QvwxqBJ z/ATz6L07tT5coI5GLSIN9EYGgVR1k4RTZVY5KCwkj1WWJwp/zkff1DJsCyAhieU S3giWy2VwV4C8clv/rYwa3rzS150sGb93nZNr517pivnia/estWWIys5lvAU1VO8 TNxus3is+6aEqu3DK3PO7osuVuKRheevp44G0la/sw6mwacJBJ1QlhDmYombXCBF lreeSizTRvqWW/XPBoo9P69CmcK08YFwCcsPDU3J2yamhFCul5/BG404WM6UCSMX gbewAKYcz4nyAjb60HZnfKH7YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1DxIeN 8cnOv7birKkLcDf3Jd6zMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUU1My8zODUxMTg0MDQ1ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZ UEFOajYzcWFYMzhtSjljMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzwgSS8dYdrzWESuqUqWFXm8XtPG2SCoMYAaM/DeY3pMgXtIlj33yS qZx4UhY8rPdebqd6nbbdaQVjFc0Y9TjuoY/K3OEbvR4/mOvtHauDWo2fVbzm1yXr XCMhkiunPZvhWz+hkvKQrju1xzIE9GDgQo6d19m8LayasUsp+iz+kErgIDtWJMCs +Nc85uiLj/ACxqJE6+FMAxzBbkyX+K1DF8FvVATnzLZQCQG8mEwVR7HC7IHyuXRD jPhF2K0g+Q6XQ8PRvxjYDmrVGpNAthJB7FXNDtmfSms45ta0g4IMfO67WXn9N3AO eGdLcWtpeZ5me3rJrXD0C3pHmb4lLzCf -----END CERTIFICATE-----Generated at Sat Aug 23 11:04:22 2025 by rpki-client