$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: LtWiKVoN/WB01twpbCg6WT+JiuubouYLIydjLOMQLCQ= Subject key identifier: 90:DF:16:80:46:44:35:02:6A:B1:E4:03:67:89:41:C7:3B:AD:BC:1B Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 023B Signing time: Sat 23 Aug 2025 02:06:34 +0000 Manifest this update: Sat 23 Aug 2025 02:06:33 +0000 Manifest next update: Sat 30 Aug 2025 02:06:33 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: X3Qz2RDra4GzUQmIt9s9UMkVu+ugnxSFMsePmklXvwU=) 2: 839EEF2C35F211ED97DF4D2EC4F9AE02.roa (hash: utbaFXvYsbMawkEsGIYiJOGznLub5CBtZ08YosxwrsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:06:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27, serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: Aug 23 02:06:33 2025 GMT Not After : Aug 30 02:06:33 2025 GMT Subject: CN=68a92229-fb5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:36:48:94:e7:ca:0a:d6:60:53:c2:84:16:ab: 3d:69:a5:3d:5b:d6:1a:10:c1:bd:07:95:2d:06:1c: b4:1a:00:ba:0d:ba:47:2c:26:1b:4c:74:02:9d:24: a2:b1:5b:0d:e4:c0:31:6d:b7:51:10:b9:f3:bc:7d: 4b:31:fe:db:57:3a:a4:56:9c:c8:86:f6:a7:20:02: 49:b1:9f:88:4d:1d:db:f4:07:07:d5:14:12:7b:4d: 28:01:89:be:ba:5e:3c:82:81:7a:4a:d3:92:00:db: 7e:93:e3:2a:47:a8:53:f4:4c:02:b7:ed:e2:54:d5: 0e:ad:7f:f7:d0:cd:2e:d6:6a:38:f6:f6:87:15:c9: 93:f2:36:bf:8d:da:f4:c0:8e:8c:03:09:be:97:b5: 47:44:f4:b7:b2:b7:24:93:65:e0:37:1b:8b:4f:fe: 1a:07:65:cc:ef:fb:17:1a:76:dd:3c:92:c8:18:62: ce:97:09:37:3a:90:97:c0:b2:8a:00:9f:ab:84:23: 68:bc:c7:dd:4d:5d:1c:85:12:c8:cc:15:cb:8d:55: 6a:f6:27:a4:3e:1e:b5:63:3e:e7:a3:1c:5b:e3:d0: d1:73:98:c4:f8:30:b0:bf:d0:1b:e0:fe:0f:fb:71: 01:7e:fb:21:02:ec:88:51:80:48:99:b9:48:a6:1a: 72:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:DF:16:80:46:44:35:02:6A:B1:E4:03:67:89:41:C7:3B:AD:BC:1B X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:f1:1c:e9:df:5a:6b:ed:5c:88:76:f8:cb:df:9a:02:8b:72: 73:02:31:c3:9b:dc:12:6d:e8:c4:c0:de:0a:e4:0d:d5:1d:b3: 88:08:e3:48:ee:58:96:06:fc:93:89:ea:a3:94:81:55:b1:28: 8c:07:4d:b9:21:eb:b4:19:d7:b2:18:78:d7:76:9b:44:b4:a9: ee:09:6e:69:a4:c4:02:66:ef:d8:38:e8:96:51:9c:29:af:06: 74:ec:96:e8:3f:b3:ff:65:02:e6:75:6c:39:78:09:d4:4d:ec: e8:aa:30:a9:01:16:0b:f7:61:21:75:8a:0e:41:d2:83:75:76: cc:7f:1e:f4:60:d1:94:85:b8:9e:ba:e0:19:13:86:92:b8:8f: fe:3c:5a:8e:82:45:08:98:28:d2:cb:7b:84:72:c8:4c:73:bd: fe:e3:ce:44:d6:11:30:d7:df:d6:77:b5:79:f2:a3:d7:53:16: 99:5c:33:3a:9e:e4:54:46:f5:f5:5d:d6:60:94:ba:75:57:ba: 75:0e:0d:fe:a3:1f:b5:8d:9c:b8:76:fc:0d:a4:76:88:a3:d6: 3b:15:a7:1f:3e:d3:c6:d0:2b:ba:17:aa:d5:5f:80:ec:83:53: b1:5e:a1:63:cb:e7:81:d6:dd:9c:1c:db:77:09:a7:37:ce:d1: 2d:96:44:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjUwODIzMDIwNjMzWhcNMjUwODMwMDIwNjMzWjAYMRYwFAYD VQQDEw02OGE5MjIyOS1mYjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DZIlOfKCtZgU8KEFqs9aaU9W9YaEMG9B5UtBhy0GgC6DbpHLCYbTHQCnSSi sVsN5MAxbbdRELnzvH1LMf7bVzqkVpzIhvanIAJJsZ+ITR3b9AcH1RQSe00oAYm+ ul48goF6StOSANt+k+MqR6hT9EwCt+3iVNUOrX/30M0u1mo49vaHFcmT8ja/jdr0 wI6MAwm+l7VHRPS3srckk2XgNxuLT/4aB2XM7/sXGnbdPJLIGGLOlwk3OpCXwLKK AJ+rhCNovMfdTV0chRLIzBXLjVVq9iekPh61Yz7noxxb49DRc5jE+DCwv9Ab4P4P +3EBfvshAuyIUYBImblIphpyNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDfFoBG RDUCarHkA2eJQcc7rbwbMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD8Rzp31pr7VyIdvjL35oCi3JzAjHDm9wSbejEwN4K5A3VHbOICONI 7liWBvyTieqjlIFVsSiMB025Ieu0GdeyGHjXdptEtKnuCW5ppMQCZu/YOOiWUZwp rwZ07JboP7P/ZQLmdWw5eAnUTezoqjCpARYL92EhdYoOQdKDdXbMfx70YNGUhbie uuAZE4aSuI/+PFqOgkUImCjSy3uEcshMc73+485E1hEw19/Wd7V58qPXUxaZXDM6 nuRURvX1XdZglLp1V7p1Dg3+ox+1jZy4dvwNpHaIo9Y7FacfPtPG0Cu6F6rVX4Ds g1OxXqFjy+eB1t2cHNt3Cac3ztEtlkQd -----END CERTIFICATE-----Generated at Sat Aug 23 16:44:28 2025 by rpki-client