$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: xln+E/RBekl5huvyTbirnPWCMYRGq8YvcW9HC5e8ZsM= Subject key identifier: 7A:22:44:72:05:CA:B0:CB:4B:1D:AE:DD:6B:BA:FC:53:66:E4:BC:4B Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 34D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 34BD Signing time: Wed 06 Aug 2025 14:47:52 +0000 Manifest this update: Wed 06 Aug 2025 14:47:51 +0000 Manifest next update: Wed 13 Aug 2025 14:47:51 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: CgCM+dEhx5uPU9gXvAYQ83De6IYNiCcxMTUJrK11iqA=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: J0n8zynWewxBVfoDX3OB8RbfuIjzjZ2KDx4R2TodoBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 14:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13520 (0x34d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Aug 6 14:47:51 2025 GMT Not After : Aug 13 14:47:51 2025 GMT Subject: CN=68936b18-43cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6a:bd:6d:ae:f8:90:2f:dc:e6:b0:45:33:b0: 70:94:d1:57:22:79:56:de:8d:87:c3:91:cc:94:84: a6:b3:2d:5a:cb:c4:51:01:b1:36:02:a9:9d:59:fb: 46:59:88:b6:d4:dd:d7:54:b6:e9:27:b5:5e:87:8e: 10:70:dd:54:12:2b:ed:28:5e:50:a3:f5:d9:0e:5e: f6:7c:e8:c0:3f:ee:2b:1b:8f:32:39:ae:b2:71:cb: 94:4a:dc:bd:52:df:0d:2e:91:1d:9d:d1:27:e9:f3: 5d:3a:20:f3:cb:69:40:15:cb:87:86:0e:8e:60:28: ee:2c:4f:c2:c8:bb:50:9a:7a:a1:f0:55:a3:b0:4e: 97:fe:43:c8:6c:07:63:87:c3:0a:17:cc:9e:44:5f: 9b:58:00:5f:5f:9b:8f:2d:23:7f:82:bd:04:c8:a5: 58:94:a2:f7:99:19:64:f6:69:6c:37:4b:0a:0a:81: 5e:7d:9d:44:5d:e2:db:56:b9:a0:6a:54:2a:53:e2: 29:19:4f:70:2a:b5:73:64:34:f1:37:c8:1a:59:30: ca:71:65:57:77:9a:f0:89:e2:4f:96:f2:15:9d:72: fd:5e:cc:e3:a9:10:23:c4:c7:08:20:f5:07:b3:07: b7:22:36:b8:20:04:5c:59:81:6e:ca:ca:e3:ab:e2: 5b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:22:44:72:05:CA:B0:CB:4B:1D:AE:DD:6B:BA:FC:53:66:E4:BC:4B X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:50:07:cd:89:c8:1c:f8:68:7a:ae:26:f7:eb:c1:1d:b7:35: e6:10:af:f6:71:ee:cf:e9:5c:55:51:02:b5:93:d7:5c:37:e9: 6d:bb:61:8e:77:dc:7f:9c:43:a4:1d:93:b9:9c:27:9c:45:28: 6f:9f:f5:0c:03:30:e8:25:e6:e0:c0:8f:a9:ea:6b:46:a6:71: ed:e7:06:bd:06:3b:e7:d5:13:42:e2:cb:42:53:e8:36:cd:5f: e5:22:16:e8:1a:85:e6:e1:dd:7f:d3:73:52:f4:cd:30:07:0d: be:a7:57:66:43:c0:ec:43:76:2c:e9:39:d5:7e:4d:8f:a0:bd: a6:3d:ce:b8:5e:5f:64:e1:5e:27:53:9a:2c:a5:d8:f5:53:c9: 56:a8:62:1f:34:e3:10:53:78:17:ac:9b:ba:bc:45:f9:35:c3: 7f:6e:62:93:8e:1a:21:0f:01:e5:49:7b:ae:04:ea:65:86:9f: 7e:f6:2b:87:a2:dd:b1:d8:cd:64:30:39:10:30:e9:ab:ca:49: d7:e7:f2:77:d6:b7:f1:3b:48:de:f1:db:54:95:5f:37:eb:a7: 53:61:fa:9c:3b:96:23:22:29:70:df:3a:a5:88:aa:63:bd:37: 20:41:a1:22:79:ba:1a:6b:55:4c:73:65:0a:05:4f:c6:00:44: 80:dd:87:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjUwODA2MTQ0NzUxWhcNMjUwODEzMTQ0NzUxWjAYMRYwFAYD VQQDEw02ODkzNmIxOC00M2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2q9ba74kC/c5rBFM7BwlNFXInlW3o2Hw5HMlISmsy1ay8RRAbE2AqmdWftG WYi21N3XVLbpJ7Veh44QcN1UEivtKF5Qo/XZDl72fOjAP+4rG48yOa6yccuUSty9 Ut8NLpEdndEn6fNdOiDzy2lAFcuHhg6OYCjuLE/CyLtQmnqh8FWjsE6X/kPIbAdj h8MKF8yeRF+bWABfX5uPLSN/gr0EyKVYlKL3mRlk9mlsN0sKCoFefZ1EXeLbVrmg alQqU+IpGU9wKrVzZDTxN8gaWTDKcWVXd5rwieJPlvIVnXL9XszjqRAjxMcIIPUH swe3Ija4IARcWYFuysrjq+JbpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoiRHIF yrDLSx2u3Wu6/FNm5LxLMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATUAfNicgc+Gh6rib368EdtzXmEK/2ce7P6VxVUQK1k9dcN+ltu2GO d9x/nEOkHZO5nCecRShvn/UMAzDoJebgwI+p6mtGpnHt5wa9Bjvn1RNC4stCU+g2 zV/lIhboGoXm4d1/03NS9M0wBw2+p1dmQ8DsQ3Ys6TnVfk2PoL2mPc64Xl9k4V4n U5ospdj1U8lWqGIfNOMQU3gXrJu6vEX5NcN/bmKTjhohDwHlSXuuBOplhp9+9iuH ot2x2M1kMDkQMOmryknX5/J31rfxO0je8dtUlV8366dTYfqcO5YjIilw3zqliKpj vTcgQaEieboaa1VMc2UKBU/GAESA3Yea -----END CERTIFICATE-----Generated at Fri Aug 8 13:07:05 2025 by rpki-client