$ rpki-client -vvf rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft File: _l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft (raw, json) Hash identifier: fl43mTEb8LPH5oFj5eI6Q/Jdhk3wM/yTha/go/fvJwM= Subject key identifier: E8:AC:BB:E9:0B:6B:F8:1D:5E:46:10:B3:65:50:60:C1:A6:FE:FA:8A Authority key identifier: FE:5F:1C:75:00:48:BB:54:E0:13:73:AC:3E:DD:4B:77:7D:88:8E:79 Certificate issuer: /CN=A91216AC/serialNumber=FE5F1C750048BB54E01373AC3EDD4B777D888E79 Certificate serial: 0568 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft Manifest number: 0563 Signing time: Sun 10 Aug 2025 23:27:43 +0000 Manifest this update: Sun 10 Aug 2025 23:27:43 +0000 Manifest next update: Sun 17 Aug 2025 23:27:43 +0000 Files and hashes: 1: _l8cdQBIu1TgE3OsPt1Ld32Ijnk.crl (hash: JK0qwkZ67dWc5czppqpII2elzQulMBuX6k3OgCvc2TU=) 2: AE1E5A1AF61C11EBAB08AF17C4F9AE02.roa (hash: Fhy8WYOVgOC1fXJBQao8UVDrtpv1Mv9qnIWLOPo1Mdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.crl rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1384 (0x568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91216AC, serialNumber=FE5F1C750048BB54E01373AC3EDD4B777D888E79 Validity Not Before: Aug 10 23:27:43 2025 GMT Not After : Aug 17 23:27:43 2025 GMT Subject: CN=68992aef-024d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5a:bb:14:64:e2:64:9d:4b:da:de:1b:f4:73: 22:af:65:03:a9:3d:ca:2d:89:ee:cd:d3:40:fe:34: a1:ae:d1:a4:d5:1c:f9:80:97:a4:3a:6a:bb:8f:dc: 80:70:d2:7a:95:71:86:c6:7b:53:f4:7f:40:54:1a: 1b:99:5c:b4:03:7c:b3:4e:c9:11:3a:7f:46:4f:c8: 68:c6:48:07:c5:8d:d2:dc:ce:14:2e:61:b1:20:e3: 0d:1c:fb:dc:2b:d4:37:8d:5e:9e:ce:8f:46:ae:63: c9:15:ca:6f:6a:13:4a:32:00:0b:5a:b7:ab:4a:5b: 15:e1:02:1b:bf:1b:ba:aa:0c:bb:d6:95:0f:37:70: b8:43:80:c1:f1:d4:40:1a:d8:c6:56:fd:2d:eb:f6: 2c:b6:3d:5d:81:c8:61:98:a2:db:90:a0:55:95:f5: 91:ae:f9:f8:06:57:35:d7:72:24:55:26:a4:ab:91: 8e:64:f3:b5:be:cf:75:2b:74:61:da:1c:7f:c9:88: 44:2d:0c:9a:1a:3f:21:ac:3a:ee:1a:3d:1d:db:a9: 6c:b9:4d:ad:4e:dc:78:f0:59:8e:d1:83:8f:d8:57: 47:39:47:60:93:3d:19:ad:23:69:c8:61:17:1a:06: 5d:b7:06:3d:7f:ae:f9:b8:2f:b5:35:00:33:9a:06: a1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AC:BB:E9:0B:6B:F8:1D:5E:46:10:B3:65:50:60:C1:A6:FE:FA:8A X509v3 Authority Key Identifier: keyid:FE:5F:1C:75:00:48:BB:54:E0:13:73:AC:3E:DD:4B:77:7D:88:8E:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91216AC/38D23722F61711EBB20F1A4EC4F9AE02/_l8cdQBIu1TgE3OsPt1Ld32Ijnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:b1:52:72:9d:94:22:f2:04:25:c1:50:e4:2d:0d:cd:7b:d7: 00:dc:9a:89:26:6c:74:dd:f9:bb:b3:b4:a0:a6:71:18:94:12: 68:22:ed:d1:33:e2:d7:3b:86:f4:a9:99:f9:d2:7a:f3:be:3d: bb:4d:03:56:75:ae:d4:d4:cf:f9:82:08:23:71:9c:f3:82:3c: 9c:73:6b:19:69:cd:48:98:d1:c1:93:f0:c2:54:c0:05:19:00: 81:59:79:3b:9c:8b:b7:07:22:ef:f5:7c:c9:fe:60:5d:b0:29: d5:ec:db:75:c1:df:5c:e6:ef:5a:0e:3b:91:4a:31:d0:4f:7c: 12:d5:6d:de:1d:5e:cb:76:56:59:01:ba:c0:64:3e:a7:e3:e0: 5b:6f:a2:ba:1a:d5:83:b8:6b:f7:6f:ba:69:10:b8:6c:06:ba: fa:e5:bb:88:36:4a:53:be:a2:4e:ba:42:15:f2:e4:2f:72:92: 4c:9d:0e:3a:be:ef:a2:d0:92:61:56:09:b7:d3:d5:5c:cd:2a: bd:82:46:24:3f:62:34:55:7f:e9:d3:16:16:15:19:be:6a:3b: fd:7b:ac:ec:7d:3e:5c:1a:29:bf:10:81:79:75:a3:f5:78:25: c3:dd:86:fd:ec:55:bf:af:51:a7:ff:76:28:1a:d7:61:10:d4: cf:68:cb:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE2QUMxMTAvBgNVBAUTKEZFNUYxQzc1MDA0OEJCNTRFMDEzNzNBQzNFREQ0Qjc3 N0Q4ODhFNzkwHhcNMjUwODEwMjMyNzQzWhcNMjUwODE3MjMyNzQzWjAYMRYwFAYD VQQDEw02ODk5MmFlZi0wMjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Vq7FGTiZJ1L2t4b9HMir2UDqT3KLYnuzdNA/jShrtGk1Rz5gJekOmq7j9yA cNJ6lXGGxntT9H9AVBobmVy0A3yzTskROn9GT8hoxkgHxY3S3M4ULmGxIOMNHPvc K9Q3jV6ezo9GrmPJFcpvahNKMgALWrerSlsV4QIbvxu6qgy71pUPN3C4Q4DB8dRA GtjGVv0t6/Ystj1dgchhmKLbkKBVlfWRrvn4Blc113IkVSakq5GOZPO1vs91K3Rh 2hx/yYhELQyaGj8hrDruGj0d26lsuU2tTtx48FmO0YOP2FdHOUdgkz0ZrSNpyGEX GgZdtwY9f675uC+1NQAzmgahgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOisu+kL a/gdXkYQs2VQYMGm/vqKMB8GA1UdIwQYMBaAFP5fHHUASLtU4BNzrD7dS3d9iI55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTZBQy8zOEQyMzcyMkY2 MTcxMUVCQjIwRjFBNEVDNEY5QUUwMi9fbDhjZFFCSXUxVGdFM09zUHQxTGQzMklq bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19sOGNkUUJJdTFUZ0UzT3NQdDFMZDMySWpuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTZBQy8zOEQyMzcyMkY2MTcxMUVCQjIwRjFBNEVDNEY5QUUwMi9fbDhjZFFCSXUx VGdFM09zUHQxTGQzMklqbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWsVJynZQi8gQlwVDkLQ3Ne9cA3JqJJmx03fm7s7SgpnEYlBJoIu3R M+LXO4b0qZn50nrzvj27TQNWda7U1M/5gggjcZzzgjycc2sZac1ImNHBk/DCVMAF GQCBWXk7nIu3ByLv9XzJ/mBdsCnV7Nt1wd9c5u9aDjuRSjHQT3wS1W3eHV7LdlZZ AbrAZD6n4+Bbb6K6GtWDuGv3b7ppELhsBrr65buINkpTvqJOukIV8uQvcpJMnQ46 vu+i0JJhVgm309VczSq9gkYkP2I0VX/p0xYWFRm+ajv9e6zsfT5cGim/EIF5daP1 eCXD3Yb97FW/r1Gn/3YoGtdhENTPaMvD -----END CERTIFICATE-----Generated at Mon Aug 11 07:46:09 2025 by rpki-client