$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft File: aZoPjRWjT1mVbLSADGxEBNwOvV0.mft (raw, json) Hash identifier: x2VsFLXk4orRfM60j7SXtv3Ta8IzGkHoTFo78PxvOz8= Subject key identifier: 00:67:08:FB:D8:57:97:05:FF:7C:AF:1C:75:D3:6F:6F:8A:D0:AC:B3 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 34D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft Manifest number: 34B6 Signing time: Wed 06 Aug 2025 15:20:55 +0000 Manifest this update: Wed 06 Aug 2025 15:20:55 +0000 Manifest next update: Wed 13 Aug 2025 15:20:55 +0000 Files and hashes: 1: aZoPjRWjT1mVbLSADGxEBNwOvV0.crl (hash: RkuFFR2MGDy3yroOaAVeMrmgYNTOSwufx08Ieu0eIH4=) 2: 6BC5DC4AB10511E591A3E484C4F9AE02.roa (hash: lhbAPGcQQjVfLeBPPvSfLGakAoAsie+moEAIzx57Z0Y=) 3: 6A9E6940B10511E591A3E484C4F9AE02.roa (hash: 1AXC4CdSqCeZreg7Kdx8zTNNLCij2RY2Acpk7gs3UmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13525 (0x34d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE, serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: Aug 6 15:20:55 2025 GMT Not After : Aug 13 15:20:55 2025 GMT Subject: CN=689372d7-0ac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:44:29:eb:f6:f8:66:fa:58:7f:c6:91:0a:d2: 9b:6f:30:9f:64:4d:31:72:b1:66:50:e2:5a:21:48: c2:6c:5d:07:54:e9:d6:4f:66:d2:e0:d6:88:c5:12: 96:93:de:08:9c:75:60:a1:47:5b:49:4b:a6:77:53: 3b:9b:d5:d0:3b:0f:9b:27:a1:c5:31:b6:67:a3:91: c4:cc:f0:88:d1:e2:13:c2:06:bf:e4:f6:6b:85:09: b7:52:26:21:24:fe:d2:0f:d9:25:5c:4a:d6:e7:fb: d3:6c:18:a1:96:e3:5c:fe:c4:b0:9e:52:3e:d3:c1: 48:6c:47:85:ab:70:64:d6:e6:cf:2e:47:02:3b:42: f7:04:a8:03:49:ac:f8:f5:3b:e4:7f:3e:bc:b2:a5: cf:39:37:d0:23:45:39:2b:9b:c0:93:1a:63:24:48: db:2b:a0:98:0f:98:d7:51:81:e0:fa:a5:33:04:a7: ba:e7:eb:e1:77:c4:7a:57:9c:04:a8:91:9e:90:1d: 02:f2:92:26:17:83:4f:51:20:52:26:bd:5a:44:5f: 3b:c3:77:7d:53:25:92:99:63:bb:8e:73:af:5a:c4: 6d:40:92:a6:93:52:b7:d0:e6:16:0c:b2:6d:6c:0d: 6c:a7:57:9c:e4:20:f9:07:92:14:0d:da:73:3b:51: 97:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:67:08:FB:D8:57:97:05:FF:7C:AF:1C:75:D3:6F:6F:8A:D0:AC:B3 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:90:0a:14:b6:a5:21:fe:96:05:ca:6f:06:ac:f7:0f:00:8b: d9:11:5f:62:ea:9a:b3:f8:50:ca:01:8e:ab:1b:cf:8b:ae:3a: 4d:1b:8e:6c:b5:28:42:5d:0d:42:f4:2e:26:3b:9b:49:7d:cb: d2:8c:cf:05:b4:16:3a:11:f4:df:74:ea:d6:83:00:00:d8:cb: ed:f8:96:77:37:2c:5b:76:3d:3e:d3:8e:88:72:a6:d0:43:97: 2e:f8:48:a1:9c:85:af:1a:f0:66:bd:97:7a:43:46:ac:66:bc: 3f:9f:57:7a:20:91:66:9c:ba:c9:67:d5:18:45:17:42:de:d5: cc:a5:fe:dd:7c:4c:c9:61:40:e5:4b:69:c2:08:9a:f6:b5:5e: 5e:57:29:8b:2a:90:7c:b7:30:5a:bf:b4:56:0f:95:fd:eb:1c: b8:52:d4:70:a4:0c:c2:84:41:e3:b6:66:14:7b:1f:98:42:6a: ce:15:fc:13:51:0e:b0:a0:9e:57:99:a4:2f:6a:d6:ba:84:bf: 18:0b:65:f4:ab:4a:bf:06:3e:13:f1:be:af:78:67:cf:29:a8: b9:78:47:f2:ac:57:b1:1e:85:79:1d:25:cd:c9:27:3a:71:ab: 82:02:49:eb:a8:5d:35:88:23:64:97:ee:0e:69:7e:f7:a0:4b: ce:cf:9d:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjUwODA2MTUyMDU1WhcNMjUwODEzMTUyMDU1WjAYMRYwFAYD VQQDEw02ODkzNzJkNy0wYWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+0Qp6/b4ZvpYf8aRCtKbbzCfZE0xcrFmUOJaIUjCbF0HVOnWT2bS4NaIxRKW k94InHVgoUdbSUumd1M7m9XQOw+bJ6HFMbZno5HEzPCI0eITwga/5PZrhQm3UiYh JP7SD9klXErW5/vTbBihluNc/sSwnlI+08FIbEeFq3Bk1ubPLkcCO0L3BKgDSaz4 9Tvkfz68sqXPOTfQI0U5K5vAkxpjJEjbK6CYD5jXUYHg+qUzBKe65+vhd8R6V5wE qJGekB0C8pImF4NPUSBSJr1aRF87w3d9UyWSmWO7jnOvWsRtQJKmk1K30OYWDLJt bA1sp1ec5CD5B5IUDdpzO1GXVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABnCPvY V5cF/3yvHHXTb2+K0KyzMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFGRS9EMTE4QUFCQTFEQUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQx bVZiTFNBREd4RUJOd092VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYkAoUtqUh/pYFym8GrPcPAIvZEV9i6pqz+FDKAY6rG8+LrjpNG45s tShCXQ1C9C4mO5tJfcvSjM8FtBY6EfTfdOrWgwAA2Mvt+JZ3Nyxbdj0+046IcqbQ Q5cu+EihnIWvGvBmvZd6Q0asZrw/n1d6IJFmnLrJZ9UYRRdC3tXMpf7dfEzJYUDl S2nCCJr2tV5eVymLKpB8tzBav7RWD5X96xy4UtRwpAzChEHjtmYUex+YQmrOFfwT UQ6woJ5XmaQvata6hL8YC2X0q0q/Bj4T8b6veGfPKai5eEfyrFexHoV5HSXNySc6 cauCAknrqF01iCNkl+4OaX73oEvOz502 -----END CERTIFICATE-----Generated at Fri Aug 8 00:46:21 2025 by rpki-client