$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: ceHU7Ep5xDbcW6v3ZlH11Iw96r+71b2dteVEBDoWOmo= Subject key identifier: 0C:DA:6C:C9:E9:2C:06:75:26:17:CA:76:0B:9D:8E:8F:2A:98:4A:81 Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0FE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0FD6 Signing time: Fri 08 Aug 2025 17:41:42 +0000 Manifest this update: Fri 08 Aug 2025 17:41:42 +0000 Manifest next update: Fri 15 Aug 2025 17:41:42 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: k20saHsQQryHH/vr8RFMEkOixi/81OVh6EKCJ7SXEDE=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4066 (0xfe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Aug 8 17:41:42 2025 GMT Not After : Aug 15 17:41:42 2025 GMT Subject: CN=689636d6-9c15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9d:b3:36:88:7e:bd:6f:43:9d:75:0e:90:16: 49:89:fd:4d:90:10:2f:fe:fb:0a:36:ae:23:8d:77: 9a:da:a9:17:fa:01:d0:90:9c:01:2d:e3:67:44:7d: ef:6b:b6:bc:0f:cb:59:e9:be:00:3c:68:a1:e3:4c: 79:0c:5d:9a:0c:03:9c:0c:ef:1b:57:d4:47:48:5a: 3d:27:91:08:d3:93:ce:75:3c:4c:a2:b6:d9:7f:ae: 88:ce:d4:8c:c9:34:79:df:8a:8f:24:83:40:3e:87: 68:fa:a6:b5:49:ad:6b:c1:e5:aa:ac:15:9e:3d:7c: 0e:bb:a8:ce:24:37:df:1f:f4:c5:c1:a0:f3:4f:14: 60:bb:d1:e9:91:3d:1f:18:b0:ad:d4:fc:5f:2b:27: f0:ef:31:10:d0:73:de:22:65:e9:12:68:75:98:85: 73:18:c8:99:ba:24:ba:a8:df:36:5d:91:8c:3a:07: 7c:5c:34:7f:59:b9:4b:3a:81:b8:ea:56:66:a6:5d: 9a:2d:a4:7d:95:4b:21:2f:62:14:8e:8e:2b:31:2a: 4a:4d:a5:4e:3b:cc:70:b0:f8:97:d5:09:7e:5e:f7: 90:ae:97:b8:b5:bb:6f:f5:5a:97:20:09:f7:dd:9d: 85:d0:1d:f9:88:e8:42:14:d2:ce:9a:4a:8c:09:99: 4d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:DA:6C:C9:E9:2C:06:75:26:17:CA:76:0B:9D:8E:8F:2A:98:4A:81 X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:22:08:a2:c1:bb:8f:d9:b4:e9:52:ae:a3:f2:d1:9a:66:96: 19:a1:d1:94:96:62:82:15:02:b3:e3:0c:bf:5f:48:69:91:82: f4:75:8c:39:35:73:70:11:90:78:da:8e:fb:46:24:48:55:b3: ae:a2:eb:66:e0:8e:a1:18:84:04:65:3e:17:dd:72:a6:44:72: 5b:17:5f:ab:ce:69:8e:e8:96:45:7c:d6:74:7f:c9:44:b7:53: b2:4c:14:95:ac:ee:db:4d:6e:cd:3e:78:6e:18:92:b7:06:0f: 13:60:a0:c3:6d:8d:b5:a4:30:63:8e:e9:5a:81:75:72:d0:25: 43:24:80:85:52:16:92:b4:f5:1b:14:21:a2:9f:87:2a:ef:97: a2:3d:dc:29:bd:83:5c:e4:45:c7:e6:20:62:ea:95:08:34:6f: f1:65:73:2e:e0:2e:ff:b5:a2:3b:1d:5f:d1:44:b0:3a:17:eb: db:fc:43:4a:8f:a4:53:49:e1:13:9b:73:69:2c:c8:47:46:42: fb:8c:65:b1:4c:77:34:69:e7:c4:08:e8:81:38:5e:60:6b:3d: ae:c8:02:ed:81:2d:b9:f3:cf:f6:16:94:f1:c1:0f:29:17:ae: 02:15:bc:80:cc:ee:3f:74:f9:c1:37:a2:c1:52:f0:13:f8:68: bb:1c:56:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUwODA4MTc0MTQyWhcNMjUwODE1MTc0MTQyWjAYMRYwFAYD VQQDEw02ODk2MzZkNi05YzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ2zNoh+vW9DnXUOkBZJif1NkBAv/vsKNq4jjXea2qkX+gHQkJwBLeNnRH3v a7a8D8tZ6b4APGih40x5DF2aDAOcDO8bV9RHSFo9J5EI05POdTxMorbZf66IztSM yTR534qPJINAPodo+qa1Sa1rweWqrBWePXwOu6jOJDffH/TFwaDzTxRgu9HpkT0f GLCt1PxfKyfw7zEQ0HPeImXpEmh1mIVzGMiZuiS6qN82XZGMOgd8XDR/WblLOoG4 6lZmpl2aLaR9lUshL2IUjo4rMSpKTaVOO8xwsPiX1Ql+XveQrpe4tbtv9VqXIAn3 3Z2F0B35iOhCFNLOmkqMCZlNzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzabMnp LAZ1JhfKdgudjo8qmEqBMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6IgiiwbuP2bTpUq6j8tGaZpYZodGUlmKCFQKz4wy/X0hpkYL0dYw5 NXNwEZB42o77RiRIVbOuoutm4I6hGIQEZT4X3XKmRHJbF1+rzmmO6JZFfNZ0f8lE t1OyTBSVrO7bTW7NPnhuGJK3Bg8TYKDDbY21pDBjjulagXVy0CVDJICFUhaStPUb FCGin4cq75eiPdwpvYNc5EXH5iBi6pUING/xZXMu4C7/taI7HV/RRLA6F+vb/ENK j6RTSeETm3NpLMhHRkL7jGWxTHc0aefECOiBOF5gaz2uyALtgS2588/2FpTxwQ8p F64CFbyAzO4/dPnBN6LBUvAT+Gi7HFbp -----END CERTIFICATE-----Generated at Sat Aug 9 15:09:28 2025 by rpki-client