$ rpki-client -vvf rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft File: k8C6F5rKocB50zxmk_RGcBBPzZg.mft (raw, json) Hash identifier: RHgK7F0QKbRWSTmVX3ho7wV0TPWmtKBGZJoESv25JW0= Subject key identifier: 38:2B:03:01:65:6A:9D:38:0D:02:FA:87:99:E0:63:FA:E9:A5:8B:45 Authority key identifier: 93:C0:BA:17:9A:CA:A1:C0:79:D3:3C:66:93:F4:46:70:10:4F:CD:98 Certificate issuer: /CN=A9111788/serialNumber=93C0BA179ACAA1C079D33C6693F44670104FCD98 Certificate serial: 020D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8C6F5rKocB50zxmk_RGcBBPzZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft Manifest number: 0209 Signing time: Mon 11 Aug 2025 02:21:32 +0000 Manifest this update: Mon 11 Aug 2025 02:21:32 +0000 Manifest next update: Mon 18 Aug 2025 02:21:32 +0000 Files and hashes: 1: k8C6F5rKocB50zxmk_RGcBBPzZg.crl (hash: 9L7cMFZOM8zBmM1eskKAOlcx4rVJg0gZFMa0WDCB7OI=) 2: 6F57F77659AF11EDB5683587C4F9AE02.roa (hash: Hz4MNEz2iKlBVZUTwXmU+LHuAvQlzMxEja9uy8vjPy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.crl rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8C6F5rKocB50zxmk_RGcBBPzZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 02:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111788, serialNumber=93C0BA179ACAA1C079D33C6693F44670104FCD98 Validity Not Before: Aug 11 02:21:32 2025 GMT Not After : Aug 18 02:21:32 2025 GMT Subject: CN=689953ac-a45d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4a:dd:ad:83:46:0f:2f:78:6a:01:79:24:8a: cb:cf:85:4a:cd:67:a4:b9:dc:01:db:6c:30:3b:18: f1:da:fd:d1:dc:91:43:ba:51:14:07:47:80:3c:d9: 9e:02:34:3e:3b:39:b5:6c:95:f1:b7:45:5d:91:43: 71:61:79:0d:17:3c:c0:dd:1f:1d:6d:dc:c1:24:65: 94:c1:7b:7f:a1:1c:ec:e6:54:79:10:f6:e0:bd:7c: cc:f6:a4:a6:0a:07:f3:21:85:de:d1:45:60:43:36: 68:20:70:d7:1f:cb:76:4b:b1:50:d4:65:a8:80:94: 6b:38:30:46:ad:9e:f9:81:ec:82:d0:f6:86:95:cf: 96:6d:7a:3f:76:ed:0e:e1:68:36:1d:d1:de:75:71: 35:e2:1c:de:c3:99:37:f7:97:bc:51:3f:66:ba:97: 6e:75:92:0b:10:4e:7d:66:73:3b:9f:84:c5:9e:83: cb:0d:fa:b9:cc:a6:56:ba:6e:b7:25:89:d4:69:79: 11:6f:56:4d:12:ae:7a:df:61:70:d6:0e:92:9e:d0: 54:2a:52:76:b9:71:9a:89:8e:27:65:c9:0f:dd:1c: 4c:12:d9:ea:42:d9:ec:6f:71:7f:0d:8b:d3:c5:e1: 91:9d:34:03:65:df:d8:2a:cb:93:17:02:b5:bf:ad: ec:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2B:03:01:65:6A:9D:38:0D:02:FA:87:99:E0:63:FA:E9:A5:8B:45 X509v3 Authority Key Identifier: keyid:93:C0:BA:17:9A:CA:A1:C0:79:D3:3C:66:93:F4:46:70:10:4F:CD:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8C6F5rKocB50zxmk_RGcBBPzZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:07:70:6f:48:ab:b3:0c:be:cc:47:3d:8a:eb:c4:8b:f8:96: c1:24:43:9b:e7:91:5a:06:f9:e0:93:63:28:73:b7:d4:69:bb: ff:0d:4f:bd:9c:af:b0:a5:19:43:f7:86:98:3b:1b:94:b2:7d: e1:d0:e4:16:0f:d1:a9:32:bb:6b:55:a7:6b:9b:1d:73:39:25: 47:7c:82:b7:7c:c0:db:b8:67:d4:bf:2d:3f:0e:fe:18:ff:53: 49:76:c8:7e:37:95:89:cb:5e:ff:81:9f:73:e3:95:9f:f5:d9: 4f:6c:54:02:7f:17:2f:7d:51:df:b8:0f:d5:91:97:c4:35:e1: 3b:f6:1f:b1:22:04:91:ad:25:dd:32:49:c9:cf:7f:f0:8b:09: 38:b2:02:32:57:b4:b6:36:70:7f:5f:da:f3:b2:4b:1a:0c:e7: 97:0b:49:a9:6d:ee:49:f3:16:47:d5:9b:a4:17:d5:13:11:f4: 6d:ab:cd:12:53:f6:fb:79:f3:61:6d:db:d0:e3:63:c4:b6:e7: 73:c0:44:e1:02:fa:60:13:c2:69:7b:aa:a1:41:15:8a:9f:e1: e7:0b:7a:c2:43:65:c2:70:66:2e:96:21:78:71:de:f9:1a:b4: b0:cf:3d:c6:21:f3:43:de:d9:4e:1b:3c:55:d0:f3:dd:a6:8a: a2:f8:20:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE3ODgxMTAvBgNVBAUTKDkzQzBCQTE3OUFDQUExQzA3OUQzM0M2NjkzRjQ0Njcw MTA0RkNEOTgwHhcNMjUwODExMDIyMTMyWhcNMjUwODE4MDIyMTMyWjAYMRYwFAYD VQQDEw02ODk5NTNhYy1hNDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20rdrYNGDy94agF5JIrLz4VKzWekudwB22wwOxjx2v3R3JFDulEUB0eAPNme AjQ+Ozm1bJXxt0VdkUNxYXkNFzzA3R8dbdzBJGWUwXt/oRzs5lR5EPbgvXzM9qSm CgfzIYXe0UVgQzZoIHDXH8t2S7FQ1GWogJRrODBGrZ75geyC0PaGlc+WbXo/du0O 4Wg2HdHedXE14hzew5k395e8UT9mupdudZILEE59ZnM7n4TFnoPLDfq5zKZWum63 JYnUaXkRb1ZNEq5632Fw1g6SntBUKlJ2uXGaiY4nZckP3RxMEtnqQtnsb3F/DYvT xeGRnTQDZd/YKsuTFwK1v63s8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgrAwFl ap04DQL6h5ngY/rppYtFMB8GA1UdIwQYMBaAFJPAuheayqHAedM8ZpP0RnAQT82Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTc4OC8zRDA1MTVBMDU5 QUIxMUVEOEVFQkE0NTZDNEY5QUUwMi9rOEM2RjVyS29jQjUwenhta19SR2NCQlB6 WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4QzZGNXJLb2NCNTB6eG1rX1JHY0JCUHpaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTc4OC8zRDA1MTVBMDU5QUIxMUVEOEVFQkE0NTZDNEY5QUUwMi9rOEM2RjVyS29j QjUwenhta19SR2NCQlB6WmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPB3BvSKuzDL7MRz2K68SL+JbBJEOb55FaBvngk2Moc7fUabv/DU+9 nK+wpRlD94aYOxuUsn3h0OQWD9GpMrtrVadrmx1zOSVHfIK3fMDbuGfUvy0/Dv4Y /1NJdsh+N5WJy17/gZ9z45Wf9dlPbFQCfxcvfVHfuA/VkZfENeE79h+xIgSRrSXd MknJz3/wiwk4sgIyV7S2NnB/X9rzsksaDOeXC0mpbe5J8xZH1ZukF9UTEfRtq80S U/b7efNhbdvQ42PEtudzwEThAvpgE8Jpe6qhQRWKn+HnC3rCQ2XCcGYuliF4cd75 GrSwzz3GIfND3tlOGzxV0PPdpoqi+CDM -----END CERTIFICATE-----Generated at Tue Aug 12 18:17:46 2025 by rpki-client