$ rpki-client -vvf rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft File: 0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft (raw, json) Hash identifier: Vt8JmHtKNYMNhHad3KTUCFlqEJZgWNOmFkp8D8MDVqg= Subject key identifier: 17:F8:96:10:93:56:CB:92:8E:4B:2E:71:48:75:50:54:66:49:B0:D5 Authority key identifier: D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 Certificate issuer: /CN=A914E215/serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Certificate serial: 068B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft Manifest number: 0685 Signing time: Sun 10 Aug 2025 22:25:01 +0000 Manifest this update: Sun 10 Aug 2025 22:25:00 +0000 Manifest next update: Sun 17 Aug 2025 22:25:00 +0000 Files and hashes: 1: 0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl (hash: w8Sibsl7SWO6L+jZBdjSs2aRtPP26GxqYk+ZHD5rOSk=) 2: 436B3BEC822D11EBB19C1844C4F9AE02.roa (hash: aR8xqbFUFjm+ccG/d5FkPfm2CRqS0a29lHr1SXFGeCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E215, serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Validity Not Before: Aug 10 22:25:00 2025 GMT Not After : Aug 17 22:25:00 2025 GMT Subject: CN=68991c3d-dd09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8f:71:f1:58:8a:8e:c1:ff:f1:82:f0:21:38: 0b:8c:8c:93:cc:f9:7b:52:8c:9d:b8:42:9c:78:16: cd:f8:e2:3c:89:e6:7f:e4:5d:f6:12:ed:39:4a:7a: f3:1b:2f:b9:05:bb:74:66:71:60:e1:3a:73:93:d0: e2:4a:79:27:df:2e:27:e9:07:0d:68:ce:e9:3a:4c: c4:86:a0:ad:97:1e:b4:ff:fa:e5:80:28:00:01:ae: 72:33:18:1e:4e:e4:d3:57:2a:36:b5:e3:4c:54:d5: a7:7a:65:ae:ef:22:7d:e5:e1:5a:1f:dd:6a:eb:5b: 73:56:35:64:05:8f:41:f1:60:ea:46:b3:4a:8e:31: 26:94:aa:fa:1b:f5:49:fe:9a:56:c9:15:45:2a:21: 13:15:9d:95:b5:f1:14:15:15:d8:93:42:b1:c5:d4: f3:71:5a:73:cc:de:d4:9d:1b:aa:28:ed:4b:eb:63: 08:27:48:d6:b4:2c:7a:c0:ef:78:40:bf:7d:ec:d9: 90:16:f7:45:62:d8:43:30:ea:a6:8a:78:f0:02:b0: a2:08:43:62:6e:26:bb:b1:8c:bb:50:06:7e:05:66: 5f:17:6d:77:08:7b:73:22:2a:1c:00:43:34:e7:51: 2c:c5:c7:db:6c:3b:1d:7e:7f:b9:63:b3:91:fa:90: 23:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F8:96:10:93:56:CB:92:8E:4B:2E:71:48:75:50:54:66:49:B0:D5 X509v3 Authority Key Identifier: keyid:D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:f7:6b:e4:47:93:96:60:87:c7:df:14:24:5d:dd:0c:af:23: 6a:30:65:b4:46:f5:4e:d9:a4:c2:84:40:92:e9:c0:5b:e0:43: 35:b1:a3:34:1c:d7:c2:ed:d3:02:96:2f:2f:de:1b:5e:0d:6d: c1:6b:44:86:12:6e:66:c4:f0:2b:d6:af:b4:1a:f5:22:ba:ea: 70:16:28:ac:e2:67:5f:ae:ce:18:cc:56:f6:05:11:7e:e6:c8: f8:87:fb:f0:84:f4:ff:8e:cd:d2:06:e7:ef:3e:95:ab:a2:c2: a5:ce:fa:2b:fa:4f:e1:d5:90:cc:cd:1d:41:8a:25:6f:b5:e8: 5b:30:5e:17:bd:f1:c0:85:7f:07:e9:70:a3:be:d5:64:76:de: 20:3c:55:1f:ff:60:98:ee:ae:cc:5d:fd:eb:bc:6d:cd:95:76: 69:48:3a:c8:da:81:84:9e:f5:81:94:64:7d:d9:38:6a:18:69: f4:cf:3a:ec:2a:f2:7a:57:34:61:a6:e9:a3:60:9a:6a:16:1b: e3:04:19:21:e5:be:cf:18:6d:a8:51:f4:6f:77:31:c3:c8:af: e7:e8:56:17:95:ad:ec:dc:07:ff:8a:1a:36:72:99:d8:67:13: 64:4b:60:5f:9e:03:1a:af:ac:43:a4:2c:90:7e:1c:94:73:94: af:19:e1:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyMTUxMTAvBgNVBAUTKEQyMEU1MkQwOUNFQkU2QjU3MDUwMzU4Q0EyOTMwRDg5 Mzk3NzI5MTEwHhcNMjUwODEwMjIyNTAwWhcNMjUwODE3MjIyNTAwWjAYMRYwFAYD VQQDEw02ODk5MWMzZC1kZDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI9x8ViKjsH/8YLwITgLjIyTzPl7UoyduEKceBbN+OI8ieZ/5F32Eu05Snrz Gy+5Bbt0ZnFg4Tpzk9DiSnkn3y4n6QcNaM7pOkzEhqCtlx60//rlgCgAAa5yMxge TuTTVyo2teNMVNWnemWu7yJ95eFaH91q61tzVjVkBY9B8WDqRrNKjjEmlKr6G/VJ /ppWyRVFKiETFZ2VtfEUFRXYk0KxxdTzcVpzzN7UnRuqKO1L62MIJ0jWtCx6wO94 QL997NmQFvdFYthDMOqminjwArCiCENibia7sYy7UAZ+BWZfF213CHtzIiocAEM0 51EsxcfbbDsdfn+5Y7OR+pAj/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBf4lhCT VsuSjksucUh1UFRmSbDVMB8GA1UdIwQYMBaAFNIOUtCc6+a1cFA1jKKTDYk5dykR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTIxNS85MjJEQkI5NDgy MkIxMUVCQkJDNzVFNDJDNEY5QUUwMi8wZzVTMEp6cjVyVndVRFdNb3BNTmlUbDNL UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBnNVMwSnpyNXJWd1VEV01vcE1OaVRsM0tSRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTIxNS85MjJEQkI5NDgyMkIxMUVCQkJDNzVFNDJDNEY5QUUwMi8wZzVTMEp6cjVy VndVRFdNb3BNTmlUbDNLUkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG92vkR5OWYIfH3xQkXd0MryNqMGW0RvVO2aTChECS6cBb4EM1saM0 HNfC7dMCli8v3hteDW3Ba0SGEm5mxPAr1q+0GvUiuupwFiis4mdfrs4YzFb2BRF+ 5sj4h/vwhPT/js3SBufvPpWrosKlzvor+k/h1ZDMzR1BiiVvtehbMF4XvfHAhX8H 6XCjvtVkdt4gPFUf/2CY7q7MXf3rvG3NlXZpSDrI2oGEnvWBlGR92ThqGGn0zzrs KvJ6VzRhpumjYJpqFhvjBBkh5b7PGG2oUfRvdzHDyK/n6FYXla3s3Af/iho2cpnY ZxNkS2BfngMar6xDpCyQfhyUc5SvGeEI -----END CERTIFICATE-----Generated at Mon Aug 11 10:38:27 2025 by rpki-client