$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: gQsK22TdYtoys97jI0+gTik8gI4XJSNQj53lQ6XxBds= Subject key identifier: 18:3C:7C:FE:7E:81:95:42:A2:62:84:C7:CD:8C:B4:F9:89:5D:36:32 Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 09E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 09DB Signing time: Wed 18 Jun 2025 19:46:43 +0000 Manifest this update: Wed 18 Jun 2025 19:46:42 +0000 Manifest next update: Wed 25 Jun 2025 19:46:42 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: jXROh/lUbDTaYIiwFi0LF2XLnuG45m+sjhsbDJtY8c4=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2530 (0x9e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Jun 18 19:46:42 2025 GMT Not After : Jun 25 19:46:42 2025 GMT Subject: CN=685317a2-ff40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b0:6c:8d:f5:17:07:22:4b:0c:37:da:fc:c0: 63:cb:49:d3:a8:ee:e5:c5:e2:46:39:1d:14:41:0d: ec:12:fc:c2:30:c0:44:97:b2:aa:7b:36:56:da:63: fe:a4:ae:12:62:17:db:99:8c:a1:df:c7:c7:88:26: 77:df:55:9e:25:13:ed:c5:20:90:f8:d2:6e:fc:4d: a3:58:98:45:01:35:0a:5e:91:58:11:34:32:a3:89: 70:20:10:2b:50:4b:04:96:ca:a3:ed:60:b8:4a:55: 62:6e:8f:ed:e0:b3:72:49:91:ee:37:9d:26:be:53: f3:0f:96:08:3e:08:52:f7:ac:71:02:b1:82:93:74: 08:13:f0:aa:4a:91:ad:d4:a2:4b:14:b6:e9:b3:e5: a5:e8:e4:07:56:e1:af:50:9c:01:18:ca:ef:9d:4e: 7e:38:fd:89:55:af:2e:5e:aa:64:df:4c:7b:69:71: 94:93:40:b8:d3:d7:c3:73:23:42:d8:47:78:86:17: 6f:db:5f:dc:14:47:93:51:1d:99:2f:9d:72:c4:44: c0:a8:55:5a:84:82:a7:0e:92:c1:4c:13:a7:c8:e9: ed:64:6a:f2:ae:18:e1:d8:4d:bf:3e:54:6d:20:4c: f9:1b:a0:41:ac:86:6d:11:01:54:ad:8d:c9:cc:b2: 2c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3C:7C:FE:7E:81:95:42:A2:62:84:C7:CD:8C:B4:F9:89:5D:36:32 X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:b3:50:4e:75:44:f1:70:26:0a:e8:b9:b0:d5:23:ba:bd:04: 72:ae:17:69:dd:9e:1f:b3:e5:7e:38:89:36:f3:89:37:d7:1d: 59:eb:c3:91:9c:90:e4:72:d7:6c:79:89:3b:50:3a:23:1d:f4: 89:26:d3:e8:05:eb:25:9f:e8:f8:c4:5c:76:0a:6b:c1:f2:88: 72:03:42:36:58:13:a7:a8:90:4a:8f:f7:ec:7c:64:30:1b:ae: 61:a0:8e:c0:5d:3d:ce:d4:9c:bd:a6:cf:c1:e5:2d:eb:81:75: 39:18:75:ed:c4:af:32:8e:75:2e:5f:f6:79:78:f3:20:2c:e8: e3:b2:5a:f9:0d:ec:ae:55:63:16:23:00:d0:f9:57:13:f0:d6: 37:63:b3:72:7c:98:d7:41:cb:e3:0c:cb:69:dd:35:a9:cc:95: 7d:c2:c0:9d:a6:92:3a:53:17:35:06:8c:80:ed:e6:cc:b8:ee: c3:0e:ea:68:77:0c:77:4d:89:14:6e:4f:94:60:76:9d:37:9f: 33:b7:a4:a6:02:90:b8:80:c0:a6:e4:9f:1c:84:02:8a:67:c3: 03:bb:9a:17:02:a1:0c:24:55:00:01:7d:43:3d:8d:bd:e3:44: 06:65:1a:56:9b:66:a7:a6:d2:82:40:ec:a8:0e:ec:55:82:56: 57:94:b8:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUwNjE4MTk0NjQyWhcNMjUwNjI1MTk0NjQyWjAYMRYwFAYD VQQDEw02ODUzMTdhMi1mZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubBsjfUXByJLDDfa/MBjy0nTqO7lxeJGOR0UQQ3sEvzCMMBEl7KqezZW2mP+ pK4SYhfbmYyh38fHiCZ331WeJRPtxSCQ+NJu/E2jWJhFATUKXpFYETQyo4lwIBAr UEsElsqj7WC4SlVibo/t4LNySZHuN50mvlPzD5YIPghS96xxArGCk3QIE/CqSpGt 1KJLFLbps+Wl6OQHVuGvUJwBGMrvnU5+OP2JVa8uXqpk30x7aXGUk0C409fDcyNC 2Ed4hhdv21/cFEeTUR2ZL51yxETAqFVahIKnDpLBTBOnyOntZGryrhjh2E2/PlRt IEz5G6BBrIZtEQFUrY3JzLIsqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBg8fP5+ gZVComKEx82MtPmJXTYyMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTs1BOdUTxcCYK6Lmw1SO6vQRyrhdp3Z4fs+V+OIk284k31x1Z68OR nJDkctdseYk7UDojHfSJJtPoBesln+j4xFx2CmvB8ohyA0I2WBOnqJBKj/fsfGQw G65hoI7AXT3O1Jy9ps/B5S3rgXU5GHXtxK8yjnUuX/Z5ePMgLOjjslr5DeyuVWMW IwDQ+VcT8NY3Y7NyfJjXQcvjDMtp3TWpzJV9wsCdppI6Uxc1BoyA7ebMuO7DDupo dwx3TYkUbk+UYHadN58zt6SmApC4gMCm5J8chAKKZ8MDu5oXAqEMJFUAAX1DPY29 40QGZRpWm2anptKCQOyoDuxVglZXlLiw -----END CERTIFICATE-----Generated at Fri Jun 20 12:03:55 2025 by rpki-client