$ rpki-client -vvf rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft File: -_gSoLmqiu1iGHbIkgH_8QQytpc.mft (raw, json) Hash identifier: Ss/CR8HiAfb6O4CEa6ELptmb134WrTfkMElYnRyoY6w= Subject key identifier: 9C:9F:5D:6A:D8:72:16:23:38:E8:19:7C:0B:15:E7:8E:22:66:A9:6D Authority key identifier: FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 Certificate issuer: /CN=A915A330/serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft Manifest number: 49 Signing time: Sat 09 Aug 2025 07:52:49 +0000 Manifest this update: Sat 09 Aug 2025 07:52:48 +0000 Manifest next update: Sat 16 Aug 2025 07:52:48 +0000 Files and hashes: 1: -_gSoLmqiu1iGHbIkgH_8QQytpc.crl (hash: Cver02rOZIcv5ObDu5SPkXgbE3DU55ISK7P00mH9e4U=) 2: 5F2F693A061211F0BA5A2029C4F9AE02.roa (hash: ti/+dlDrn7n64hxfzOvr4hnKhT6sYm889q99u/P1yZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A330, serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Validity Not Before: Aug 9 07:52:48 2025 GMT Not After : Aug 16 07:52:48 2025 GMT Subject: CN=6896fe50-f37d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f5:07:11:ca:7d:ba:23:11:ff:3d:49:22:1d: 02:9f:48:36:2a:d8:24:86:51:6f:8e:25:a4:3c:6b: b7:52:1c:15:7c:8f:92:46:94:35:69:39:e5:c9:64: a0:3b:f2:bc:14:08:dd:21:72:6b:70:07:c8:1c:63: 36:46:30:a6:e9:b0:77:e1:96:70:12:2c:29:ee:6b: d6:d2:c8:1a:75:cc:40:5c:ac:5a:ea:1d:28:b9:a7: 1b:8d:09:12:b0:7d:a3:7a:ed:13:61:cc:af:f5:d1: 9c:47:25:1c:25:2a:c0:47:ae:9f:ae:1c:8b:5a:98: 10:c6:1f:9b:4b:73:d2:37:0e:e8:18:f0:a5:47:ca: 86:81:a0:5e:0f:bb:d3:3f:ea:db:ce:c0:66:19:37: 48:3c:c4:83:ad:64:ea:1c:20:83:e7:36:07:7c:e4: ac:39:f3:7b:dc:68:4b:ac:3a:c6:0e:45:3e:53:44: f3:82:5b:fe:dd:d7:69:b0:c4:a9:54:72:d2:dc:be: b3:19:00:9b:fc:bf:02:ea:93:4a:22:68:2c:37:2b: 6e:9a:f8:f5:fd:0b:6f:53:90:b3:1a:76:76:43:fd: 77:8f:a3:0f:0c:26:00:2d:77:e7:bb:1b:1e:d0:5a: 47:08:fe:08:6d:0e:12:23:8b:1d:2a:79:d1:5b:33: 41:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9F:5D:6A:D8:72:16:23:38:E8:19:7C:0B:15:E7:8E:22:66:A9:6D X509v3 Authority Key Identifier: keyid:FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:43:92:a0:5b:87:fc:cd:1d:f5:4d:2f:8e:ba:01:d9:5e:97: 57:24:af:b2:fd:b7:f9:77:e6:e3:c2:c8:df:7c:67:1e:92:89: b3:32:c4:d0:f9:fa:8d:e0:41:07:a3:85:b2:49:75:d1:99:c7: 80:3c:56:73:b2:b2:2a:24:e3:a1:9a:c4:bc:05:85:fe:f8:97: 89:f5:47:82:9b:ab:4d:0b:3a:ae:d7:8c:04:bf:8f:ea:52:62: 92:82:c0:0f:3b:7e:a4:bb:cf:f4:86:72:95:40:c1:db:7f:cc: 4b:a4:d0:79:3d:03:7d:df:54:33:94:13:a4:2c:ab:f2:9e:21: 34:8d:ca:4c:64:f9:25:7d:2b:0d:5d:20:7a:79:1d:a4:a6:fb: 44:9b:0e:a5:c5:48:0d:98:7f:8f:03:fb:21:7f:ca:07:fa:fb: ff:71:7a:14:92:45:b3:1a:c3:bd:59:1a:57:a0:b3:7f:ee:44: 92:ab:69:d9:0c:77:25:19:04:7a:f0:c0:e0:6a:01:1d:c7:a9: 52:6b:c6:9c:10:0a:6a:cb:05:b9:85:92:b6:32:a4:a8:01:7f: 94:84:e4:66:5e:39:06:ce:eb:79:a4:eb:a5:59:72:00:ca:4a: ac:36:d8:89:43:b9:40:f9:df:c0:7e:81:a9:6b:86:3e:e7:5d: 99:fd:1f:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTMzMDExMC8GA1UEBRMoRkJGODEyQTBCOUFBOEFFRDYyMTg3NkM4OTIwMUZGRjEw NDMyQjY5NzAeFw0yNTA4MDkwNzUyNDhaFw0yNTA4MTYwNzUyNDhaMBgxFjAUBgNV BAMTDTY4OTZmZTUwLWYzN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU9QcRyn26IxH/PUkiHQKfSDYq2CSGUW+OJaQ8a7dSHBV8j5JGlDVpOeXJZKA7 8rwUCN0hcmtwB8gcYzZGMKbpsHfhlnASLCnua9bSyBp1zEBcrFrqHSi5pxuNCRKw faN67RNhzK/10ZxHJRwlKsBHrp+uHItamBDGH5tLc9I3DugY8KVHyoaBoF4Pu9M/ 6tvOwGYZN0g8xIOtZOocIIPnNgd85Kw583vcaEusOsYORT5TRPOCW/7d12mwxKlU ctLcvrMZAJv8vwLqk0oiaCw3K26a+PX9C29TkLMadnZD/XePow8MJgAtd+e7Gx7Q WkcI/ghtDhIjix0qedFbM0EDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnJ9dathy FiM46Bl8CxXnjiJmqW0wHwYDVR0jBBgwFoAU+/gSoLmqiu1iGHbIkgH/8QQytpcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBMzMwL0FBRTQ5QTM4MDYw RjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUxaUdIYklrZ0hfOFFReXRw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLV9nU29MbXFpdTFpR0hiSWtnSF84UVF5dHBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB MzMwL0FBRTQ5QTM4MDYwRjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUx aUdIYklrZ0hfOFFReXRwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJNDkqBbh/zNHfVNL466Adlel1ckr7L9t/l35uPCyN98Zx6SibMyxND5 +o3gQQejhbJJddGZx4A8VnOysiok46GaxLwFhf74l4n1R4Kbq00LOq7XjAS/j+pS YpKCwA87fqS7z/SGcpVAwdt/zEuk0Hk9A33fVDOUE6Qsq/KeITSNykxk+SV9Kw1d IHp5HaSm+0SbDqXFSA2Yf48D+yF/ygf6+/9xehSSRbMaw71ZGlegs3/uRJKradkM dyUZBHrwwOBqAR3HqVJrxpwQCmrLBbmFkrYypKgBf5SE5GZeOQbO63mk66VZcgDK Sqw22IlDuUD538B+galrhj7nXZn9H8A= -----END CERTIFICATE-----Generated at Sun Aug 10 10:39:32 2025 by rpki-client