$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: PlBdSeYBBTyIkPMyDUlzPIHtSab35wCO1ufrEFNbNQM= Subject key identifier: A6:9D:C2:35:1A:E8:2A:3E:A5:98:3C:13:E5:E8:BA:AD:79:59:5E:93 Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 067D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 0674 Signing time: Sun 10 Aug 2025 22:32:27 +0000 Manifest this update: Sun 10 Aug 2025 22:32:26 +0000 Manifest next update: Sun 17 Aug 2025 22:32:26 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: zKuGnB5sZS/MtquQJlo9nuKstyyn69yKRSiOh8bXzCI=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 6Nwx6Bdy1j4/Wbla1onGos1GwfTZf0C7yW2rjUd5bAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 22:32:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1661 (0x67d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: Aug 10 22:32:26 2025 GMT Not After : Aug 17 22:32:26 2025 GMT Subject: CN=68991dfb-c302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f0:f0:d9:5e:34:90:1a:1d:26:9f:f0:84:67: 9d:fd:96:fe:cf:c9:32:32:b1:aa:30:ca:cc:ff:39: 88:c5:da:c3:db:d5:da:d8:87:40:e9:73:8c:82:3c: ec:b9:ff:0b:f0:e2:a8:b9:35:32:af:46:57:1a:f7: a1:4f:77:5e:6f:8a:7d:5e:4d:9f:c4:bd:fe:ea:70: 64:6e:bd:af:29:38:c4:47:41:41:7c:95:e7:d9:64: 57:93:d4:e9:11:ee:e9:95:82:bd:9a:2b:cc:06:20: d4:96:0d:73:8f:0f:0d:e0:7d:de:e2:c2:05:20:dc: 94:46:86:d7:c4:91:45:06:64:78:28:91:ac:3a:ea: 0a:fd:4e:77:a0:34:31:28:98:4e:f7:4c:6f:6d:96: ab:db:08:8d:a0:0f:83:ae:81:76:b3:36:94:d7:f3: 8d:df:b2:cb:51:96:b5:09:bb:54:4b:e5:d0:c7:54: 15:24:a6:75:86:19:c6:5a:d8:f4:91:99:c2:9f:b4: f8:6e:30:8b:f3:7c:37:71:53:a5:e3:ec:b7:76:82: 2a:6a:72:cc:1d:7a:0b:c6:0c:2a:1c:e0:ef:6d:53: 05:db:2d:f4:63:ff:fc:42:9a:07:d3:5c:e0:44:87: 91:cc:83:13:4a:a8:96:df:c1:73:d0:45:64:27:1a: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9D:C2:35:1A:E8:2A:3E:A5:98:3C:13:E5:E8:BA:AD:79:59:5E:93 X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:66:e6:e4:49:20:b0:50:b3:b3:73:1c:8e:6e:54:90:20:6b: 13:e2:64:68:de:55:ab:6f:e0:9e:74:e4:f8:6c:06:35:35:fd: 29:0f:b7:d7:4c:00:6e:b4:7a:0e:b4:ce:50:fc:ac:da:a1:92: e0:17:0a:3a:24:b2:5b:87:0f:c4:8c:14:5f:53:b4:b3:5e:e2: 17:e5:ff:bc:43:2c:b5:14:4c:ef:fe:de:64:c7:61:07:c5:cc: 39:22:95:7a:d0:5c:88:12:ea:79:1e:0b:25:44:78:eb:5a:75: 2c:f4:2e:b1:75:6c:78:2d:22:08:f5:48:4f:3c:3f:82:6f:5a: 65:d3:b8:65:0e:4f:23:bf:bc:57:8a:18:75:d2:86:45:51:c6: 02:ea:2f:50:0e:ec:eb:1c:04:fd:5c:b3:c3:b9:72:61:ab:cf: 45:e4:96:e1:bc:42:06:43:94:2a:a9:a7:91:37:a9:7c:f4:ba: be:f8:94:05:80:67:96:14:cb:cb:b3:e6:49:e3:94:d5:08:10: 02:85:d9:2c:ed:bb:a0:1f:af:c4:c4:89:2e:b9:35:fd:ef:32: d2:db:39:e8:47:34:ff:61:26:d9:42:79:1f:b9:63:49:a6:8c: ba:2f:e5:03:fc:77:6a:90:18:63:3c:1b:36:39:53:92:87:79: d7:eb:53:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUwODEwMjIzMjI2WhcNMjUwODE3MjIzMjI2WjAYMRYwFAYD VQQDEw02ODk5MWRmYi1jMzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufDw2V40kBodJp/whGed/Zb+z8kyMrGqMMrM/zmIxdrD29Xa2IdA6XOMgjzs uf8L8OKouTUyr0ZXGvehT3deb4p9Xk2fxL3+6nBkbr2vKTjER0FBfJXn2WRXk9Tp Ee7plYK9mivMBiDUlg1zjw8N4H3e4sIFINyURobXxJFFBmR4KJGsOuoK/U53oDQx KJhO90xvbZar2wiNoA+DroF2szaU1/ON37LLUZa1CbtUS+XQx1QVJKZ1hhnGWtj0 kZnCn7T4bjCL83w3cVOl4+y3doIqanLMHXoLxgwqHODvbVMF2y30Y//8QpoH01zg RIeRzIMTSqiW38Fz0EVkJxrFpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKadwjUa 6Co+pZg8E+Xouq15WV6TMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgZubkSSCwULOzcxyOblSQIGsT4mRo3lWrb+CedOT4bAY1Nf0pD7fX TAButHoOtM5Q/KzaoZLgFwo6JLJbhw/EjBRfU7SzXuIX5f+8Qyy1FEzv/t5kx2EH xcw5IpV60FyIEup5HgslRHjrWnUs9C6xdWx4LSII9UhPPD+Cb1pl07hlDk8jv7xX ihh10oZFUcYC6i9QDuzrHAT9XLPDuXJhq89F5JbhvEIGQ5QqqaeRN6l89Lq++JQF gGeWFMvLs+ZJ45TVCBAChdks7bugH6/ExIkuuTX97zLS2znoRzT/YSbZQnkfuWNJ poy6L+UD/HdqkBhjPBs2OVOSh3nX61OP -----END CERTIFICATE-----Generated at Tue Aug 12 22:48:06 2025 by rpki-client