$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: HpFETacfafBPj8wC71BprEHsTAdmqKb83vq2jEJfpKo= Subject key identifier: 0E:04:4E:B5:CC:B0:70:1D:05:23:DA:BD:72:9B:45:EC:33:D7:A4:D4 Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: 01C4 Signing time: Sat 23 Aug 2025 03:04:23 +0000 Manifest this update: Sat 23 Aug 2025 03:04:22 +0000 Manifest next update: Sat 30 Aug 2025 03:04:22 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: tR/LWPp/JyjAGceWL7gOdXhLLqYp6l5kSfZ3jVlLfH4=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 445y7dnFbGIJcED/nA18M8HZ1X9DaCKTToZbs8yrxpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Aug 23 03:04:22 2025 GMT Not After : Aug 30 03:04:22 2025 GMT Subject: CN=68a92fb6-4266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:91:cc:bd:a5:78:72:14:5c:03:71:c4:02:ea: ce:8c:08:d7:1b:82:f4:ba:0f:7f:80:10:46:2b:ba: e3:06:21:29:4b:94:be:28:c9:2d:ac:dc:4d:5f:da: f1:ed:4f:88:a0:da:a1:57:44:92:cd:51:15:bf:81: 62:17:4f:f9:52:54:63:d7:ef:8b:e9:4e:9e:8c:3a: bf:44:dc:cd:5c:d8:19:40:80:13:20:4d:df:b3:87: 5c:fc:30:00:4c:cf:47:d1:13:c9:a3:e3:3c:bd:0e: 03:cf:8a:c5:65:b6:9e:30:cc:ce:26:a8:9b:ad:09: 21:9b:cf:18:c0:f0:8c:d4:a2:72:94:21:e4:83:ca: 1c:87:d8:e4:f2:2d:75:0c:58:82:9e:02:d3:29:20: 3f:46:83:db:90:b9:b9:c0:ca:28:eb:1a:4d:86:88: cf:26:10:b2:3c:8e:60:55:df:79:7e:af:50:cd:fa: e5:fa:8b:42:70:37:3d:c1:b5:43:0e:46:1c:c3:91: 82:6a:7c:d6:16:45:95:7f:34:13:b1:07:3b:06:64: 23:58:78:ab:51:71:18:b5:7c:3b:a1:e5:07:41:80: 2e:90:5e:7d:66:4f:e1:08:ea:cc:b2:02:a9:b3:18: c7:c1:7b:ca:ab:79:f3:9c:87:eb:da:14:42:0f:2d: ef:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:04:4E:B5:CC:B0:70:1D:05:23:DA:BD:72:9B:45:EC:33:D7:A4:D4 X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:73:78:fe:e4:f5:c8:ff:3f:65:01:4c:66:ab:a5:75:6f:fb: ec:78:e3:07:f9:2f:39:09:05:51:d2:e4:b0:f8:48:55:b9:ad: b3:4e:7c:95:b9:1a:e9:22:ad:e7:dd:b8:47:20:f0:6a:53:c5: be:d4:f6:0e:50:5c:71:d7:0e:11:39:5c:de:0a:f9:3b:6f:72: 69:c8:0e:b4:09:97:ee:07:ed:13:87:88:38:47:d4:70:f8:d1: b1:ad:77:85:47:57:e4:e5:f2:21:df:d5:72:e1:c7:27:93:ec: b7:8a:53:d7:3a:5c:a7:7c:a9:74:4d:a0:3d:d2:3c:91:64:7b: d5:60:be:c7:78:ed:b2:40:45:3a:01:e9:12:13:5c:4f:fd:4b: 78:10:75:7a:74:34:a3:f1:40:0f:c6:57:8a:6c:82:2e:38:99: 94:a2:34:16:a1:06:0e:b2:a6:0f:24:c1:6c:7c:c0:a4:89:a8: 5f:93:ad:a0:09:07:e3:34:cf:3f:cf:27:63:c5:10:5d:da:a4: b0:36:b3:31:80:88:84:cc:e5:c7:a1:a2:68:a9:29:bc:f7:36: 50:61:d1:6e:d3:9e:0c:37:93:4e:18:f5:d2:12:62:72:78:6b: 72:75:38:ab:0f:fb:4e:be:fe:eb:08:e4:ac:16:d6:65:20:ca: d5:0c:bf:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUwODIzMDMwNDIyWhcNMjUwODMwMDMwNDIyWjAYMRYwFAYD VQQDEw02OGE5MmZiNi00MjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5HMvaV4chRcA3HEAurOjAjXG4L0ug9/gBBGK7rjBiEpS5S+KMktrNxNX9rx 7U+IoNqhV0SSzVEVv4FiF0/5UlRj1++L6U6ejDq/RNzNXNgZQIATIE3fs4dc/DAA TM9H0RPJo+M8vQ4Dz4rFZbaeMMzOJqibrQkhm88YwPCM1KJylCHkg8och9jk8i11 DFiCngLTKSA/RoPbkLm5wMoo6xpNhojPJhCyPI5gVd95fq9Qzfrl+otCcDc9wbVD DkYcw5GCanzWFkWVfzQTsQc7BmQjWHirUXEYtXw7oeUHQYAukF59Zk/hCOrMsgKp sxjHwXvKq3nznIfr2hRCDy3vcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4ETrXM sHAdBSPavXKbRewz16TUMB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDc3j+5PXI/z9lAUxmq6V1b/vseOMH+S85CQVR0uSw+EhVua2zTnyV uRrpIq3n3bhHIPBqU8W+1PYOUFxx1w4ROVzeCvk7b3JpyA60CZfuB+0Th4g4R9Rw +NGxrXeFR1fk5fIh39Vy4ccnk+y3ilPXOlynfKl0TaA90jyRZHvVYL7HeO2yQEU6 AekSE1xP/Ut4EHV6dDSj8UAPxleKbIIuOJmUojQWoQYOsqYPJMFsfMCkiahfk62g CQfjNM8/zydjxRBd2qSwNrMxgIiEzOXHoaJoqSm89zZQYdFu054MN5NOGPXSEmJy eGtydTirD/tOvv7rCOSsFtZlIMrVDL8/ -----END CERTIFICATE-----Generated at Sat Aug 23 20:45:02 2025 by rpki-client