$ rpki-client -vvf rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft File: 8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft (raw, json) Hash identifier: d7THjab4UMcFzMUMdmslY1GwlP7oJbD4ukiaG1zq810= Subject key identifier: 50:5D:AD:E3:23:22:42:1D:25:89:B1:6E:F8:3C:C0:67:31:4F:E8:4E Authority key identifier: F0:5B:BD:26:D4:DE:08:F6:58:8C:B7:FA:FF:B1:83:0F:AB:C3:71:67 Certificate issuer: /CN=A912FBD5/serialNumber=F05BBD26D4DE08F6588CB7FAFFB1830FABC37167 Certificate serial: 066F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft Manifest number: 0669 Signing time: Sun 10 Aug 2025 22:34:54 +0000 Manifest this update: Sun 10 Aug 2025 22:34:53 +0000 Manifest next update: Sun 17 Aug 2025 22:34:53 +0000 Files and hashes: 1: 8Fu9JtTeCPZYjLf6_7GDD6vDcWc.crl (hash: kJK1eaNNqCLXVhOSr/+tSO5LpIxX5t9wPfeq10xVYjI=) 2: C0D6C00E8E5511EBA9EA9977C4F9AE02.roa (hash: d2oIVGi69pBa33ybuBMk+1p+0WxxE+fB43cE7gCYVHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.crl rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FBD5, serialNumber=F05BBD26D4DE08F6588CB7FAFFB1830FABC37167 Validity Not Before: Aug 10 22:34:53 2025 GMT Not After : Aug 17 22:34:53 2025 GMT Subject: CN=68991e8d-4afb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fd:a8:0b:30:d7:db:d8:b3:e7:15:7a:f4:de: e9:16:c4:b3:8e:1a:81:e2:29:e8:66:89:29:f2:48: 9f:63:1c:6d:f8:06:10:f4:4f:56:67:f8:90:29:0e: c1:f0:e5:b1:5f:2a:27:f0:3b:71:89:87:41:0d:32: d4:fb:82:aa:16:e5:87:de:77:85:9d:14:a3:ea:64: 46:bd:a3:ce:91:73:f8:14:0e:91:12:97:2a:b8:1a: 6f:42:56:02:1e:55:66:e6:5c:ac:4e:4a:6b:e0:69: 65:2f:4e:2b:81:46:77:7c:36:9c:d9:a6:a2:5b:20: 39:f8:7e:a5:1a:b5:08:be:5e:32:a3:dc:5f:97:14: c7:21:a4:36:1d:d3:6d:fb:6a:87:53:52:2c:6a:a3: 1b:7e:a8:c0:d8:c2:c5:0c:c0:bd:61:e8:e7:1a:af: d2:82:14:3d:ee:8d:03:f2:78:d3:cb:8a:fd:e1:07: cf:80:62:64:1f:53:1e:68:a6:36:99:fe:b9:2e:ee: b2:7f:5d:3d:a7:63:f0:66:e9:07:1d:23:57:a2:01: 3d:cc:53:3f:66:84:59:18:3f:c9:14:2d:c5:75:20: ad:ba:44:87:fa:2d:db:3b:ba:5f:18:eb:e3:d8:13: fd:01:4e:2b:22:f2:59:97:47:07:16:85:d4:de:38: ea:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5D:AD:E3:23:22:42:1D:25:89:B1:6E:F8:3C:C0:67:31:4F:E8:4E X509v3 Authority Key Identifier: keyid:F0:5B:BD:26:D4:DE:08:F6:58:8C:B7:FA:FF:B1:83:0F:AB:C3:71:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FBD5/0D26D4A08E5411EB93308A75C4F9AE02/8Fu9JtTeCPZYjLf6_7GDD6vDcWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:49:a1:de:86:2a:89:a0:d8:9e:1a:5d:a2:db:f9:67:49:41: a4:28:95:23:29:54:28:f9:0d:e5:12:0b:f6:36:b5:2e:ef:dd: 05:04:11:70:43:f5:95:4f:39:57:0a:e2:2d:39:f4:f1:10:87: d1:e4:79:21:da:30:86:90:70:00:ad:e6:90:e1:4e:26:ae:b1: c7:d7:1d:6e:32:f4:09:3c:76:35:79:7d:e1:a8:a8:87:b3:a9: 85:81:7a:6e:c9:3f:2f:9d:40:b5:78:57:2e:40:df:d6:98:e7: 92:40:c8:93:65:3a:4d:6b:3f:4f:0b:4f:f2:e0:48:57:1a:9d: 2e:62:b7:d2:70:47:75:e5:74:d1:a5:62:14:2e:55:cc:be:58: 01:af:a0:b6:68:b3:43:d1:a1:37:65:23:1a:ee:55:a8:bd:49: c8:a1:b2:f1:57:12:e8:a1:9d:9d:3e:ca:8f:de:cd:a0:0d:3d: 7b:f2:e7:a5:6a:03:12:0a:8e:2a:3a:eb:16:ce:24:de:66:2f: 09:6b:58:38:42:95:8e:ef:77:a2:04:aa:18:42:29:a1:70:e4: 60:43:0b:7f:fb:35:5a:0a:95:ef:4a:8a:81:84:f9:68:76:ae: 8b:ac:46:96:37:ff:4a:19:79:df:ff:c9:30:a7:f5:05:d7:98: 70:9a:31:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCRDUxMTAvBgNVBAUTKEYwNUJCRDI2RDRERTA4RjY1ODhDQjdGQUZGQjE4MzBG QUJDMzcxNjcwHhcNMjUwODEwMjIzNDUzWhcNMjUwODE3MjIzNDUzWjAYMRYwFAYD VQQDEw02ODk5MWU4ZC00YWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP2oCzDX29iz5xV69N7pFsSzjhqB4inoZokp8kifYxxt+AYQ9E9WZ/iQKQ7B 8OWxXyon8DtxiYdBDTLU+4KqFuWH3neFnRSj6mRGvaPOkXP4FA6REpcquBpvQlYC HlVm5lysTkpr4GllL04rgUZ3fDac2aaiWyA5+H6lGrUIvl4yo9xflxTHIaQ2HdNt +2qHU1IsaqMbfqjA2MLFDMC9YejnGq/SghQ97o0D8njTy4r94QfPgGJkH1MeaKY2 mf65Lu6yf109p2PwZukHHSNXogE9zFM/ZoRZGD/JFC3FdSCtukSH+i3bO7pfGOvj 2BP9AU4rIvJZl0cHFoXU3jjqfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBdreMj IkIdJYmxbvg8wGcxT+hOMB8GA1UdIwQYMBaAFPBbvSbU3gj2WIy3+v+xgw+rw3Fn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkJENS8wRDI2RDRBMDhF NTQxMUVCOTMzMDhBNzVDNEY5QUUwMi84RnU5SnRUZUNQWllqTGY2XzdHREQ2dkRj V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhGdTlKdFRlQ1BaWWpMZjZfN0dERDZ2RGNXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkJENS8wRDI2RDRBMDhFNTQxMUVCOTMzMDhBNzVDNEY5QUUwMi84RnU5SnRUZUNQ WllqTGY2XzdHREQ2dkRjV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOSaHehiqJoNieGl2i2/lnSUGkKJUjKVQo+Q3lEgv2NrUu790FBBFw Q/WVTzlXCuItOfTxEIfR5Hkh2jCGkHAAreaQ4U4mrrHH1x1uMvQJPHY1eX3hqKiH s6mFgXpuyT8vnUC1eFcuQN/WmOeSQMiTZTpNaz9PC0/y4EhXGp0uYrfScEd15XTR pWIULlXMvlgBr6C2aLND0aE3ZSMa7lWovUnIobLxVxLooZ2dPsqP3s2gDT178uel agMSCo4qOusWziTeZi8Ja1g4QpWO73eiBKoYQimhcORgQwt/+zVaCpXvSoqBhPlo dq6LrEaWN/9KGXnf/8kwp/UF15hwmjF6 -----END CERTIFICATE-----Generated at Mon Aug 11 09:53:43 2025 by rpki-client