$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: M+tAsEFzaKOzSvhhJiJ1hD0a/tUt+1PxyUIoSNR54Kc= Subject key identifier: 91:45:DF:65:22:26:9E:1B:F1:E6:4E:B7:F3:41:11:B6:17:4A:6B:98 Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: 0114 Signing time: Thu 07 Aug 2025 05:21:04 +0000 Manifest this update: Thu 07 Aug 2025 05:21:03 +0000 Manifest next update: Thu 14 Aug 2025 05:21:03 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: GSCGRCgqZYEgevZvxhrxJ4oPhD+EqNvp+PlfSR+H1bY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: Aug 7 05:21:03 2025 GMT Not After : Aug 14 05:21:03 2025 GMT Subject: CN=689437c0-6712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a7:37:40:cd:18:a4:de:7e:da:9d:ac:f4:c3: a9:c2:b1:86:32:d8:f9:64:e6:39:7c:e0:b3:7d:b9: d7:87:00:d1:3e:b6:29:35:d4:ae:74:c1:df:b0:2b: 1c:55:ca:1a:3f:f6:6a:ce:87:e7:c5:4d:29:11:6e: df:ae:81:fa:66:a1:40:3c:78:ca:03:f1:3a:31:b4: 09:98:17:98:28:26:55:d4:5a:cb:44:74:57:86:8e: 5f:6b:05:b2:f2:4d:27:c0:7c:7c:5f:0f:11:2c:4f: 32:a0:d9:cd:a4:b3:5e:c4:e6:98:bb:73:12:3a:55: 19:d8:ce:89:cf:91:f5:78:e3:90:0d:39:89:c0:bc: ac:c5:69:e7:2d:14:cf:c5:bf:ff:ab:f6:a5:a4:59: 70:7f:c3:7c:d8:62:2b:70:ab:0e:99:24:f7:38:4f: 8b:72:6c:a2:0a:c8:af:7a:3a:c4:00:ea:cb:c5:aa: fa:d7:cd:f3:9e:48:09:30:d2:90:01:fb:ba:9b:c6: 53:20:9d:9f:a7:7f:57:03:d3:c8:b6:a2:3f:98:1d: 15:ac:fc:b5:6d:6c:77:80:d2:86:92:08:b3:c6:da: 25:4c:0b:7c:7f:eb:74:85:cd:f2:61:80:89:2b:0c: 70:8f:65:d9:7f:e8:92:f7:cb:ef:f6:d8:51:7f:a8: ef:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:45:DF:65:22:26:9E:1B:F1:E6:4E:B7:F3:41:11:B6:17:4A:6B:98 X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:31:d7:3d:84:1e:d8:f9:35:a0:03:c0:e5:ce:7e:e2:40:b6: 7f:34:62:dc:a8:e6:97:ec:65:75:62:fb:90:0e:1b:3d:76:31: da:59:23:51:88:a4:47:e6:13:78:ba:c6:29:42:f4:a3:20:18: ed:7e:df:a5:f5:1f:26:c0:0b:03:bd:b6:f8:1c:7f:ee:42:c1: 49:d4:a5:eb:8d:d5:91:0e:a6:40:77:e9:eb:50:5b:34:e3:ae: a8:e1:3a:aa:14:af:f8:36:08:23:4a:74:cf:68:54:8d:e1:1d: ca:9a:a8:3a:1e:04:e2:c1:6f:4a:4c:b8:53:f5:c6:da:7b:84: 16:39:f5:e3:bf:16:33:23:73:77:c3:4b:80:f2:db:7f:28:62: dc:49:d9:05:35:b9:5d:c1:6d:50:f9:62:b5:81:18:a5:e1:66: 02:c3:c6:2c:7c:96:d4:d5:db:b5:c4:33:69:bd:a2:b1:46:51: dd:48:10:5b:51:aa:4d:cb:7d:ab:11:78:2f:96:84:0d:9f:45: 35:7e:eb:1e:66:37:c5:f5:57:46:3e:34:d2:18:56:90:cb:9f: 24:cb:c7:3d:d1:f8:2f:14:76:1f:8a:74:64:f9:d7:97:e7:ea: 17:5f:1c:07:d8:7f:2c:d6:23:6c:f8:fb:7d:29:74:df:c6:16: 32:35:8e:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEYxQURCRDBFNzEzOTFERjIxMERFMzQ2MUU3NjU3OEI0 N0EwMTYyNEEwHhcNMjUwODA3MDUyMTAzWhcNMjUwODE0MDUyMTAzWjAYMRYwFAYD VQQDEw02ODk0MzdjMC02NzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKc3QM0YpN5+2p2s9MOpwrGGMtj5ZOY5fOCzfbnXhwDRPrYpNdSudMHfsCsc VcoaP/ZqzofnxU0pEW7froH6ZqFAPHjKA/E6MbQJmBeYKCZV1FrLRHRXho5fawWy 8k0nwHx8Xw8RLE8yoNnNpLNexOaYu3MSOlUZ2M6Jz5H1eOOQDTmJwLysxWnnLRTP xb//q/alpFlwf8N82GIrcKsOmST3OE+LcmyiCsivejrEAOrLxar6183znkgJMNKQ Afu6m8ZTIJ2fp39XA9PItqI/mB0VrPy1bWx3gNKGkgizxtolTAt8f+t0hc3yYYCJ Kwxwj2XZf+iS98vv9thRf6jvBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFF32Ui Jp4b8eZOt/NBEbYXSmuYMB8GA1UdIwQYMBaAFPGtvQ5xOR3yEN40YedleLR6AWJK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS9BOTUwREZEQUM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhmSVEzalJoNTJWNHRIb0JZ a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS9BOTUwREZEQUM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhm SVEzalJoNTJWNHRIb0JZa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACMdc9hB7Y+TWgA8Dlzn7iQLZ/NGLcqOaX7GV1YvuQDhs9djHaWSNR iKRH5hN4usYpQvSjIBjtft+l9R8mwAsDvbb4HH/uQsFJ1KXrjdWRDqZAd+nrUFs0 466o4TqqFK/4NggjSnTPaFSN4R3Kmqg6HgTiwW9KTLhT9cbae4QWOfXjvxYzI3N3 w0uA8tt/KGLcSdkFNbldwW1Q+WK1gRil4WYCw8YsfJbU1du1xDNpvaKxRlHdSBBb UapNy32rEXgvloQNn0U1fuseZjfF9VdGPjTSGFaQy58ky8c90fgvFHYfinRk+deX 5+oXXxwH2H8s1iNs+Pt9KXTfxhYyNY7W -----END CERTIFICATE-----Generated at Fri Aug 8 19:26:05 2025 by rpki-client