$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: uH4pfmIgVSMskIn6s7gKOrTbkRBAu2UEmXmYBG1wkMI= Subject key identifier: A4:8B:69:FC:83:25:3D:8E:DE:91:3D:CF:20:97:EF:35:E2:88:B2:0F Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0FE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0FDD Signing time: Fri 22 Aug 2025 17:36:55 +0000 Manifest this update: Fri 22 Aug 2025 17:36:54 +0000 Manifest next update: Fri 29 Aug 2025 17:36:54 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: ItCPEyccuvK+j6IavMcNORdTpZGtNw8kOyssfqVU070=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4073 (0xfe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Aug 22 17:36:54 2025 GMT Not After : Aug 29 17:36:54 2025 GMT Subject: CN=68a8aab6-b4ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:31:0b:06:db:3f:09:17:7e:44:5e:fa:40:8f: fe:7b:06:89:7e:c9:ed:d7:15:8e:62:88:42:bb:03: 3c:02:bb:a2:27:5a:e5:30:49:a7:91:bf:ed:6d:a8: c6:e8:05:62:b2:cf:52:fb:55:22:78:ae:53:09:a0: c3:58:d4:81:b1:6c:e2:99:e3:5a:8b:1b:21:a5:bd: 78:58:fd:73:6d:1d:ca:8a:6e:94:1a:27:91:a0:df: 06:b5:96:cf:06:06:08:d1:df:22:aa:06:96:a9:2b: ae:12:94:34:c7:ba:ab:f1:9b:ba:1c:c3:8c:b5:52: f7:0c:05:ec:17:01:b9:3a:6b:4e:61:3a:91:2f:2a: ad:f4:30:2b:a4:f3:64:6b:20:03:8d:71:ce:2b:00: d8:2e:54:ee:6d:74:b7:d4:02:de:01:b1:41:b6:10: e3:1f:55:e1:8e:d1:bc:d9:0d:72:97:05:43:40:c6: e7:66:54:b9:30:d3:04:06:63:81:d6:27:e7:e2:99: 0e:26:45:49:4f:8f:95:71:87:50:48:cc:28:ec:cc: 42:70:d7:4d:bd:70:14:9c:ec:92:61:6f:f4:84:33: 75:a0:cc:dd:cd:f7:02:9f:f3:7a:f1:eb:d2:b5:98: ad:b4:24:e2:b7:2f:8d:a8:c2:be:7e:d9:11:14:f0: cf:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:8B:69:FC:83:25:3D:8E:DE:91:3D:CF:20:97:EF:35:E2:88:B2:0F X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:9b:37:a9:d5:d5:2d:ba:88:e4:c5:a9:87:61:f2:83:a4:1b: 1d:fb:26:7a:8f:fb:a9:b4:8e:8d:be:d8:01:40:32:6c:aa:8c: e6:83:7b:bc:92:9e:ab:46:99:5c:62:3b:d8:42:8a:97:46:ef: c4:d6:c5:61:e8:a3:c8:8a:4e:90:b4:b3:7e:23:e6:7f:e1:09: ad:06:a9:7d:ae:32:12:40:19:9a:3d:24:f7:8c:93:6a:c5:d1: e0:d2:54:9c:8e:35:aa:f6:56:fb:e1:ee:b2:0a:2d:ac:5f:70: 72:a4:a9:34:8f:bf:1e:e4:34:05:6a:5f:77:c8:8d:c0:b2:fc: dc:4b:d8:45:7d:29:78:6a:68:79:1e:2e:c5:c6:db:45:70:32: 2a:cb:95:33:3e:15:32:e2:a7:c3:ae:38:55:29:d3:00:f4:36: ee:34:37:e3:8b:7e:b0:74:fa:ba:28:7b:11:2f:3f:37:f0:23: c5:d3:f6:7e:a0:32:e1:40:ca:66:d3:5d:bb:32:5a:3c:c3:92: c9:3e:fa:2c:b5:f3:c4:70:7f:db:30:28:a8:d0:2c:ba:2e:ec: 67:85:b8:c3:21:ef:48:e8:3d:db:c6:dc:d3:b9:ba:21:89:ce: 7f:d8:0b:e4:db:a5:61:f9:82:be:76:6d:bb:8f:18:a3:03:75: d5:86:f3:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUwODIyMTczNjU0WhcNMjUwODI5MTczNjU0WjAYMRYwFAYD VQQDEw02OGE4YWFiNi1iNGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTELBts/CRd+RF76QI/+ewaJfsnt1xWOYohCuwM8AruiJ1rlMEmnkb/tbajG 6AViss9S+1UieK5TCaDDWNSBsWzimeNaixshpb14WP1zbR3Kim6UGieRoN8GtZbP BgYI0d8iqgaWqSuuEpQ0x7qr8Zu6HMOMtVL3DAXsFwG5OmtOYTqRLyqt9DArpPNk ayADjXHOKwDYLlTubXS31ALeAbFBthDjH1XhjtG82Q1ylwVDQMbnZlS5MNMEBmOB 1ifn4pkOJkVJT4+VcYdQSMwo7MxCcNdNvXAUnOySYW/0hDN1oMzdzfcCn/N68evS tZittCTity+NqMK+ftkRFPDP/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSLafyD JT2O3pE9zyCX7zXiiLIPMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgmzep1dUtuojkxamHYfKDpBsd+yZ6j/uptI6NvtgBQDJsqozmg3u8 kp6rRplcYjvYQoqXRu/E1sVh6KPIik6QtLN+I+Z/4QmtBql9rjISQBmaPST3jJNq xdHg0lScjjWq9lb74e6yCi2sX3BypKk0j78e5DQFal93yI3AsvzcS9hFfSl4amh5 Hi7FxttFcDIqy5UzPhUy4qfDrjhVKdMA9DbuNDfji36wdPq6KHsRLz838CPF0/Z+ oDLhQMpm0127Mlo8w5LJPvostfPEcH/bMCio0Cy6LuxnhbjDIe9I6D3bxtzTuboh ic5/2Avk26Vh+YK+dm27jxijA3XVhvP5 -----END CERTIFICATE-----Generated at Sat Aug 23 19:04:36 2025 by rpki-client