$ rpki-client -vvf rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft File: 1w6O-A81h--QKJbYsw3LC26zOa8.mft (raw, json) Hash identifier: uGrubbra/29PzUAIFHYckjnyQLynf6N/UI5Iup34HLg= Subject key identifier: 25:D6:CF:C4:EF:12:65:94:BD:B7:B9:0B:4F:4E:F5:18:8A:C3:B3:DA Authority key identifier: D7:0E:8E:F8:0F:35:87:EF:90:28:96:D8:B3:0D:CB:0B:6E:B3:39:AF Certificate issuer: /CN=A9180323/serialNumber=D70E8EF80F3587EF902896D8B30DCB0B6EB339AF Certificate serial: 34B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft Manifest number: 34B2 Signing time: Fri 22 Aug 2025 14:46:39 +0000 Manifest this update: Fri 22 Aug 2025 14:46:39 +0000 Manifest next update: Fri 29 Aug 2025 14:46:39 +0000 Files and hashes: 1: 1w6O-A81h--QKJbYsw3LC26zOa8.crl (hash: sMNalLfQoEjpiH2txZSM9VadD3Ag3KgyxpImvTL0jxc=) 2: A8306EA22D6911EC9F557316C4F9AE02.roa (hash: nmxJ3jp13iRGBz5tI+EJH3Az2FHAACozz2zaxi/P4K4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.crl rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13495 (0x34b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180323, serialNumber=D70E8EF80F3587EF902896D8B30DCB0B6EB339AF Validity Not Before: Aug 22 14:46:39 2025 GMT Not After : Aug 29 14:46:39 2025 GMT Subject: CN=68a882cf-1bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:39:73:15:4c:f5:47:29:5c:94:74:4f:6e:da: 82:8e:09:5e:a0:3f:f5:87:91:00:11:dc:19:b3:6b: 5e:ec:7e:6d:0f:94:9d:46:e4:11:32:1b:bf:37:5b: eb:fb:a0:ee:64:01:b3:ac:c3:76:d7:dc:f1:5a:b1: 3d:93:b2:60:16:47:29:c8:ca:03:d6:36:97:ce:77: 44:0c:10:00:bc:ae:43:f4:eb:d3:bf:db:12:69:10: 15:93:c9:36:34:b7:47:5b:a4:4d:e1:40:4e:f9:ee: b2:f6:99:b2:ca:4b:5c:f9:aa:60:4c:f0:21:18:4e: 9e:ec:0e:6f:26:55:8c:c1:a0:80:a6:18:76:fc:da: c6:1d:d1:e9:1d:5a:ac:6e:c3:fa:43:d1:0f:35:85: e2:b4:58:1a:f3:7e:32:3d:f9:8d:a6:ff:0b:8c:c1: 4b:19:f2:00:51:90:db:26:fd:83:52:32:38:b0:5b: f3:c6:ca:8c:f9:d9:94:17:cd:a4:62:7a:26:db:55: 4d:c7:49:08:7c:cd:3c:c9:fd:41:5e:70:b3:1f:02: b6:c1:ee:5d:25:83:2f:5f:12:7c:ee:f0:19:07:7a: 2e:7c:57:52:9e:0c:4c:e7:fc:43:91:f2:0c:48:61: 8a:62:e2:5b:ab:99:29:f3:9c:31:12:32:ee:08:91: b5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D6:CF:C4:EF:12:65:94:BD:B7:B9:0B:4F:4E:F5:18:8A:C3:B3:DA X509v3 Authority Key Identifier: keyid:D7:0E:8E:F8:0F:35:87:EF:90:28:96:D8:B3:0D:CB:0B:6E:B3:39:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:88:bb:07:76:82:f5:a5:47:2d:3f:0d:8b:8f:0c:d7:f3:90: a7:58:d1:50:03:fe:52:bf:d4:19:2a:f3:bc:05:67:f1:d6:1e: 6f:70:a2:58:46:c2:98:1e:4c:86:e1:7e:45:57:26:4a:14:0d: d8:a8:89:00:fb:fd:5b:8b:ae:70:c8:f5:f2:06:81:67:27:3b: 73:1a:f1:f1:d6:74:70:2c:6f:6f:2f:72:2a:43:36:08:ca:32: 94:21:28:9e:7a:e5:85:b8:02:28:74:6e:24:7c:5a:47:35:0d: a9:a9:cd:c6:95:f4:56:34:70:3b:17:d2:48:c5:bf:fd:e9:a0: 4a:24:77:3f:07:77:c2:89:1c:4c:eb:66:21:71:9d:da:80:ae: d3:e1:2a:fe:6c:0c:65:a1:40:58:98:3e:4e:38:67:e5:13:b7: 0e:c6:10:81:cd:6c:e0:77:dd:a1:eb:9e:c2:db:92:d0:5b:92: f5:c6:ef:0e:9d:9b:bb:58:69:e6:7f:01:33:aa:4a:29:a7:94: 52:dc:96:24:ab:aa:3d:45:2c:fc:aa:ab:7e:1a:6d:fe:38:c3: 7d:d2:04:60:dd:25:67:3e:d4:45:c2:af:dd:0c:b0:19:20:21: 12:92:e6:3a:c2:63:6b:09:01:37:eb:84:7f:15:d4:8d:a2:55: 17:01:d5:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMjMxMTAvBgNVBAUTKEQ3MEU4RUY4MEYzNTg3RUY5MDI4OTZEOEIzMERDQjBC NkVCMzM5QUYwHhcNMjUwODIyMTQ0NjM5WhcNMjUwODI5MTQ0NjM5WjAYMRYwFAYD VQQDEw02OGE4ODJjZi0xYmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjlzFUz1RylclHRPbtqCjgleoD/1h5EAEdwZs2te7H5tD5SdRuQRMhu/N1vr +6DuZAGzrMN219zxWrE9k7JgFkcpyMoD1jaXzndEDBAAvK5D9OvTv9sSaRAVk8k2 NLdHW6RN4UBO+e6y9pmyyktc+apgTPAhGE6e7A5vJlWMwaCAphh2/NrGHdHpHVqs bsP6Q9EPNYXitFga834yPfmNpv8LjMFLGfIAUZDbJv2DUjI4sFvzxsqM+dmUF82k Ynom21VNx0kIfM08yf1BXnCzHwK2we5dJYMvXxJ87vAZB3oufFdSngxM5/xDkfIM SGGKYuJbq5kp85wxEjLuCJG1RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXWz8Tv EmWUvbe5C09O9RiKw7PaMB8GA1UdIwQYMBaAFNcOjvgPNYfvkCiW2LMNywtuszmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMyMy80RUI5NDI2QzFE OTMxMUUyQkY3OEQ4RjYwOEIwMkNEMi8xdzZPLUE4MWgtLVFLSmJZc3czTEMyNnpP YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF3Nk8tQTgxaC0tUUtKYllzdzNMQzI2ek9hOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDMyMy80RUI5NDI2QzFEOTMxMUUyQkY3OEQ4RjYwOEIwMkNEMi8xdzZPLUE4MWgt LVFLSmJZc3czTEMyNnpPYTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3iLsHdoL1pUctPw2LjwzX85CnWNFQA/5Sv9QZKvO8BWfx1h5vcKJY RsKYHkyG4X5FVyZKFA3YqIkA+/1bi65wyPXyBoFnJztzGvHx1nRwLG9vL3IqQzYI yjKUISieeuWFuAIodG4kfFpHNQ2pqc3GlfRWNHA7F9JIxb/96aBKJHc/B3fCiRxM 62YhcZ3agK7T4Sr+bAxloUBYmD5OOGflE7cOxhCBzWzgd92h657C25LQW5L1xu8O nZu7WGnmfwEzqkopp5RS3JYkq6o9RSz8qqt+Gm3+OMN90gRg3SVnPtRFwq/dDLAZ ICESkuY6wmNrCQE364R/FdSNolUXAdUF -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:41 2025 by rpki-client