$ rpki-client -vvf rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft File: -bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft (raw, json) Hash identifier: 2K76u3/Q9BpQrEDhvd9Nq+4dwHYq1j/TkaCynWGYmUs= Subject key identifier: 4F:02:66:3B:A5:2A:A8:E2:2E:6C:73:C1:EF:0E:14:63:FE:45:C0:15 Authority key identifier: F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 Certificate issuer: /CN=A915E012/serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft Manifest number: 3F Signing time: Sat 09 Aug 2025 07:59:30 +0000 Manifest this update: Sat 09 Aug 2025 07:59:29 +0000 Manifest next update: Sat 16 Aug 2025 07:59:29 +0000 Files and hashes: 1: -bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl (hash: mNDvq6vvtAWwHQEYCn9+ASQ2RqCUS27w6MHy+0uBar4=) 2: 28BBA728141411F08D862A74C4F9AE02.roa (hash: bM0rHlFCkCxESty36KKICwvwa1HEG8pgqoXnhaZGbjI=) 3: 2857C712141411F08D862A74C4F9AE02.roa (hash: q/LJ7SPvTkUYwfSCfg1Hilqw1bbJVMWb831qXikLEmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E012, serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Validity Not Before: Aug 9 07:59:29 2025 GMT Not After : Aug 16 07:59:29 2025 GMT Subject: CN=6896ffe1-43f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:50:2e:8c:8d:6f:75:ee:c8:e5:a3:5f:04:ee: 0b:5e:f4:ac:29:29:f4:46:35:9c:2d:d4:4e:9f:26: 9a:21:7c:6b:44:56:ac:8d:8f:91:b9:2f:17:c0:65: 94:32:99:6d:d5:9e:e7:65:1c:fa:98:74:37:5b:cf: 18:36:77:a2:55:05:bf:7e:65:41:87:28:4f:7a:06: 2a:8e:45:c7:8a:57:7d:49:a5:78:19:d3:55:5e:cc: 02:48:7b:b7:c8:fa:a2:40:65:b4:8b:b0:17:89:e0: cb:2a:74:b0:fc:20:c2:52:af:36:fb:65:60:48:f9: 2d:cd:bd:d0:9a:d3:18:e1:f1:f9:f7:39:d7:be:b0: db:28:8b:c8:fd:38:fe:f4:74:b3:12:93:cc:39:9b: fb:09:5c:88:9d:f6:0f:09:15:59:ea:bc:37:88:67: 9d:80:d3:1f:91:d7:df:c4:0f:19:4f:50:ff:70:a7: 20:00:26:8a:70:3f:fb:e7:a8:41:68:f1:00:98:67: 3a:1a:cc:5c:75:06:a7:43:b3:64:7a:83:09:20:c0: 29:bd:e2:2e:eb:47:79:0e:ea:50:8a:3c:85:6a:c4: 98:f3:be:1f:db:43:28:43:1c:40:2e:55:3a:11:2d: 56:18:9d:68:04:f5:50:62:29:95:7c:d2:8d:cb:77: be:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:02:66:3B:A5:2A:A8:E2:2E:6C:73:C1:EF:0E:14:63:FE:45:C0:15 X509v3 Authority Key Identifier: keyid:F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:39:d3:75:7a:67:c8:6a:e6:31:c4:7c:2b:89:67:ff:f1:4b: eb:1f:b6:7a:e0:48:44:08:6f:18:f9:40:88:d8:99:45:86:73: 49:7c:14:e6:1c:4c:95:96:87:af:b2:31:c0:a3:ad:5d:4c:de: 33:90:b4:4c:cf:e1:08:12:8e:15:03:e0:e4:5f:61:a1:b2:48: 64:41:66:30:3b:e4:c7:d9:b9:63:da:5b:8a:0e:d3:11:ca:fd: a4:49:5d:e8:98:d6:30:b2:cc:c5:6a:ec:e1:6e:52:1b:43:d9: be:96:cd:95:45:08:ce:37:6d:65:39:08:4a:f2:21:1b:6e:19: ef:17:d5:48:17:87:eb:4a:3f:0a:89:e6:85:69:5d:b9:0f:57: 53:dc:64:4c:79:46:dd:91:40:a2:e4:07:40:69:bc:d7:28:37: 73:09:87:81:2a:da:43:aa:82:6f:7d:86:47:aa:7e:5c:99:a8: 8d:fd:45:90:fd:0c:aa:9f:26:7b:d3:e2:b5:df:d1:a1:0c:e0: 43:4d:ea:04:29:fd:09:5c:cf:c3:92:ab:8c:13:ab:ac:6f:76: 4e:d9:a0:2d:c9:79:d2:80:0d:2d:22:b5:e8:68:82:03:70:f1: ad:1f:7b:48:41:11:7e:2c:3b:b1:27:a1:af:65:59:ee:fb:55: 9e:4e:ae:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RTAxMjExMC8GA1UEBRMoRjlCNDAyMkMwMjlFN0Q5RTVBNjM0OTY4RkRCQTRBMEU5 Q0Q2MjRFNDAeFw0yNTA4MDkwNzU5MjlaFw0yNTA4MTYwNzU5MjlaMBgxFjAUBgNV BAMTDTY4OTZmZmUxLTQzZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEUC6MjW917sjlo18E7gte9KwpKfRGNZwt1E6fJpohfGtEVqyNj5G5LxfAZZQy mW3VnudlHPqYdDdbzxg2d6JVBb9+ZUGHKE96BiqORceKV31JpXgZ01VezAJIe7fI +qJAZbSLsBeJ4MsqdLD8IMJSrzb7ZWBI+S3NvdCa0xjh8fn3Ode+sNsoi8j9OP70 dLMSk8w5m/sJXIid9g8JFVnqvDeIZ52A0x+R19/EDxlPUP9wpyAAJopwP/vnqEFo 8QCYZzoazFx1BqdDs2R6gwkgwCm94i7rR3kO6lCKPIVqxJjzvh/bQyhDHEAuVToR LVYYnWgE9VBiKZV80o3Ld74VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTwJmO6Uq qOIubHPB7w4UY/5FwBUwHwYDVR0jBBgwFoAU+bQCLAKefZ5aY0lo/bpKDpzWJOQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFMDEyL0I4MUFBMjU4MTQx MzExRjBCNjhFNzM3M0M0RjlBRTAyLy1iUUNMQUtlZlo1YVkwbG9fYnBLRHB6V0pP US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWJRQ0xBS2VmWjVhWTBsb19icEtEcHpXSk9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVF MDEyL0I4MUFBMjU4MTQxMzExRjBCNjhFNzM3M0M0RjlBRTAyLy1iUUNMQUtlZlo1 YVkwbG9fYnBLRHB6V0pPUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAY503V6Z8hq5jHEfCuJZ//xS+sftnrgSEQIbxj5QIjYmUWGc0l8FOYc TJWWh6+yMcCjrV1M3jOQtEzP4QgSjhUD4ORfYaGySGRBZjA75MfZuWPaW4oO0xHK /aRJXeiY1jCyzMVq7OFuUhtD2b6WzZVFCM43bWU5CEryIRtuGe8X1UgXh+tKPwqJ 5oVpXbkPV1PcZEx5Rt2RQKLkB0BpvNcoN3MJh4Eq2kOqgm99hkeqflyZqI39RZD9 DKqfJnvT4rXf0aEM4ENN6gQp/Qlcz8OSq4wTq6xvdk7ZoC3JedKADS0itehoggNw 8a0fe0hBEX4sO7Enoa9lWe77VZ5Orvc= -----END CERTIFICATE-----Generated at Mon Aug 11 04:25:35 2025 by rpki-client