$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: hW/RlXJvjNaiBZXtE0QQouAtJdcWq/2TCdC0ixg8jLo= Subject key identifier: 0E:56:48:82:45:05:12:13:9E:16:15:19:16:55:CC:A2:1C:4E:3B:CE Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0FCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0FC3 Signing time: Wed 02 Jul 2025 17:42:54 +0000 Manifest this update: Wed 02 Jul 2025 17:42:53 +0000 Manifest next update: Wed 09 Jul 2025 17:42:53 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: /K4eCVxV1vfeAn4YNJf5UiAnSukynQiplLhPzA/gpz0=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4047 (0xfcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Jul 2 17:42:53 2025 GMT Not After : Jul 9 17:42:53 2025 GMT Subject: CN=68656f9d-8318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1b:78:2c:4c:4e:c7:b1:d2:78:8c:6b:15:40: 18:0e:cd:40:1c:f6:7a:c5:ab:d2:c6:8c:28:c9:36: 66:ca:6b:dc:ac:56:a1:57:3c:8e:f5:ec:6c:48:01: 80:2e:27:68:10:33:c9:f1:86:c7:1a:01:ef:dc:f9: 39:f7:cb:55:42:88:f9:52:bd:da:ad:12:82:dd:df: d2:d6:2a:9e:b2:47:cf:3f:cc:17:1d:2a:7b:3e:ab: 0f:6e:ab:f9:27:ef:56:20:ad:bf:df:a3:28:f9:9b: fb:46:e5:2b:39:11:e0:f7:da:f8:e1:6a:78:01:5a: b2:2c:a8:27:3e:bc:49:ae:df:71:d3:f4:61:45:94: a2:1b:29:5f:a5:34:e8:e6:68:59:46:74:18:9d:9d: 00:20:ff:8b:42:1b:19:86:4c:88:3c:2c:7d:96:a2: f1:a2:0f:78:d3:65:3a:de:ee:02:36:6b:84:c9:b6: 8f:b4:33:79:a8:a5:36:a1:d2:33:4e:05:78:49:b6: 1a:c6:b1:5d:0f:1e:19:34:f9:08:fb:43:3c:8b:f9: 02:58:bd:32:fa:f5:5f:08:39:f5:a1:db:37:be:35: 4f:78:c3:9e:db:21:5e:d6:9b:61:64:ff:4f:1b:f1: b2:0e:67:7d:eb:61:85:8c:32:dc:0e:57:f2:cf:d8: 79:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:56:48:82:45:05:12:13:9E:16:15:19:16:55:CC:A2:1C:4E:3B:CE X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:83:76:be:90:a6:bd:41:f2:14:1f:a1:8a:0a:d8:e0:a3:05: f0:cc:0b:a1:02:dd:7e:ad:77:4f:72:c7:f0:ba:92:ea:f7:cf: 30:cd:15:12:a6:80:4c:d7:31:b3:b1:2c:8f:ef:c5:a6:c6:53: 8f:50:b9:0c:dc:8e:35:a9:be:30:cf:f8:00:de:6b:04:51:54: b1:0b:ea:ea:bc:2e:8f:ad:9a:79:79:15:e6:fd:a2:90:52:d1: cf:73:4f:cd:c4:19:90:99:83:f1:76:34:b3:56:6e:fc:0c:84: 44:8e:4f:01:1d:41:96:29:62:f1:09:4c:45:3b:20:57:46:00: 91:e4:81:6d:05:de:1d:9d:72:0b:83:d7:d6:e2:e1:b6:cc:42: a2:7f:d8:ce:88:62:47:69:f3:80:4f:06:42:d1:d3:fa:f8:e1: ed:82:94:3e:85:13:e5:61:fa:a9:be:ec:b6:ce:e4:88:e9:8b: b5:80:e9:17:71:28:97:b0:a2:de:20:e1:54:90:1f:b3:35:90: ea:bf:1d:23:bc:98:b3:e5:7b:ff:d4:7d:ab:f7:5b:af:3c:e1: 3d:35:76:e7:3e:b5:4e:a9:c6:15:4d:53:6a:02:f3:db:7b:8f: 42:7e:88:09:26:a8:95:2e:d1:35:e7:41:75:55:8c:e0:18:1e: d0:8c:8a:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUwNzAyMTc0MjUzWhcNMjUwNzA5MTc0MjUzWjAYMRYwFAYD VQQDEw02ODY1NmY5ZC04MzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Bt4LExOx7HSeIxrFUAYDs1AHPZ6xavSxowoyTZmymvcrFahVzyO9exsSAGA LidoEDPJ8YbHGgHv3Pk598tVQoj5Ur3arRKC3d/S1iqeskfPP8wXHSp7PqsPbqv5 J+9WIK2/36Mo+Zv7RuUrORHg99r44Wp4AVqyLKgnPrxJrt9x0/RhRZSiGylfpTTo 5mhZRnQYnZ0AIP+LQhsZhkyIPCx9lqLxog9402U63u4CNmuEybaPtDN5qKU2odIz TgV4SbYaxrFdDx4ZNPkI+0M8i/kCWL0y+vVfCDn1ods3vjVPeMOe2yFe1pthZP9P G/GyDmd962GFjDLcDlfyz9h5WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5WSIJF BRITnhYVGRZVzKIcTjvOMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABg3a+kKa9QfIUH6GKCtjgowXwzAuhAt1+rXdPcsfwupLq988wzRUS poBM1zGzsSyP78WmxlOPULkM3I41qb4wz/gA3msEUVSxC+rqvC6PrZp5eRXm/aKQ UtHPc0/NxBmQmYPxdjSzVm78DIREjk8BHUGWKWLxCUxFOyBXRgCR5IFtBd4dnXIL g9fW4uG2zEKif9jOiGJHafOATwZC0dP6+OHtgpQ+hRPlYfqpvuy2zuSI6Yu1gOkX cSiXsKLeIOFUkB+zNZDqvx0jvJiz5Xv/1H2r91uvPOE9NXbnPrVOqcYVTVNqAvPb e49CfogJJqiVLtE150F1VYzgGB7QjIqm -----END CERTIFICATE-----Generated at Thu Jul 3 07:14:01 2025 by rpki-client