$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft File: g8K1S2QeP_BuMaK0RQwVetrVm2g.mft (raw, json) Hash identifier: P3li6sIE1Dd9XClTIHtrCgkCJfjkhmWl2rNJnF5GsxI= Subject key identifier: D7:B0:F6:E7:1A:A9:81:A6:80:F2:44:6C:B4:84:9D:BA:DD:AB:4A:6D Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft Manifest number: B4 Signing time: Sat 09 Aug 2025 06:28:38 +0000 Manifest this update: Sat 09 Aug 2025 06:28:38 +0000 Manifest next update: Sat 16 Aug 2025 06:28:38 +0000 Files and hashes: 1: g8K1S2QeP_BuMaK0RQwVetrVm2g.crl (hash: 7LAdlcHJ5LeUu30raGSGjq4FMrpmMNJxXQnifegF5MM=) 2: 7114716A653911EFB61F430DC4F9AE02.roa (hash: Jxy+pvv4xysDlIQZeDPDC9SdzrWtHicNhXpYrAxOrBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F, serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: Aug 9 06:28:38 2025 GMT Not After : Aug 16 06:28:38 2025 GMT Subject: CN=6896ea96-08ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:2d:5c:ba:2f:58:df:c4:04:e4:f7:3f:ed:ff: 1a:94:6b:be:da:15:b8:a8:77:54:80:ba:96:e7:e8: 5e:7a:e1:21:99:8f:00:93:84:8d:98:67:3e:53:21: 9a:ae:89:9f:c7:5f:6e:03:11:c0:6b:46:b1:99:0f: 94:a6:96:a8:77:f7:94:51:d2:4c:60:c0:5d:8f:22: 13:90:16:a6:60:2b:4e:b7:d4:be:35:0c:c3:64:73: 5e:fa:99:9f:1b:ea:fa:f0:3e:5e:4f:6f:4a:a6:03: db:ae:21:0f:f2:5b:c4:3c:78:d5:81:ac:3b:0b:4a: be:22:b1:59:9b:71:c6:18:d2:df:dd:01:26:21:bd: 7a:4e:f0:6e:ef:3c:7f:45:18:bc:0e:68:9d:8b:a6: a6:75:71:9c:97:f0:ac:cb:0e:90:fc:66:ee:34:53: f9:d9:2c:21:45:97:f2:36:16:1b:85:ec:8f:a8:f5: de:5a:af:f5:6a:9f:b0:df:c5:6f:5a:25:91:b8:7e: ca:48:f7:ba:14:23:9e:83:c4:fa:ed:e3:bb:ce:9d: 4b:2e:fa:25:67:a0:a0:e2:c0:67:c6:3c:84:fd:dd: b5:1b:fe:61:94:67:ff:cc:98:4e:6c:7e:70:08:d3: 3b:f1:dd:6f:07:10:7c:57:be:de:b0:5d:5b:34:14: 97:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B0:F6:E7:1A:A9:81:A6:80:F2:44:6C:B4:84:9D:BA:DD:AB:4A:6D X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:32:62:a9:ed:c4:37:ff:53:82:e5:44:7f:22:f6:bc:9b:7f: fb:27:81:55:6e:95:1f:c1:39:3e:51:0c:b3:9d:1b:46:ca:49: 0b:42:ec:d2:6a:0c:2d:24:6a:ab:c8:5d:e2:fd:fc:25:61:97: d4:60:d4:f3:21:bb:3e:e3:fb:50:3a:9e:3c:4c:72:10:d6:be: f8:bf:fd:55:9f:43:2e:18:df:7e:2d:27:9f:04:32:c7:11:df: 42:99:30:76:40:67:7d:52:f6:c7:d1:42:79:03:4d:4e:9c:e2: 49:c7:b1:51:63:44:d6:ce:12:46:80:61:2d:d0:57:b2:1f:41: a8:22:c4:0e:b5:41:16:48:19:13:21:2a:0b:41:61:2f:04:6e: 94:38:ac:f7:ef:13:4e:7d:37:e2:13:72:f7:cd:3e:f0:e2:cd: bd:a5:24:74:8f:23:fe:dd:45:9b:86:08:10:89:af:b3:eb:3c: 7e:08:31:44:76:6b:87:0d:d3:91:fe:55:7d:ca:48:90:f4:8d: 97:57:03:74:d2:8e:43:a3:0a:71:fc:92:7a:3c:57:23:60:82: 80:86:ca:5d:0d:ac:9c:2e:52:fe:7d:24:a8:81:aa:2c:68:32: c0:0a:94:a2:39:42:b8:29:d5:7f:46:91:01:22:7a:a5:db:33: 9a:0c:09:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdFNUYxMTAvBgNVBAUTKDgzQzJCNTRCNjQxRTNGRjA2RTMxQTJCNDQ1MEMxNTdB REFENTlCNjgwHhcNMjUwODA5MDYyODM4WhcNMjUwODE2MDYyODM4WjAYMRYwFAYD VQQDEw02ODk2ZWE5Ni0wOGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlS1cui9Y38QE5Pc/7f8alGu+2hW4qHdUgLqW5+heeuEhmY8Ak4SNmGc+UyGa romfx19uAxHAa0axmQ+Uppaod/eUUdJMYMBdjyITkBamYCtOt9S+NQzDZHNe+pmf G+r68D5eT29KpgPbriEP8lvEPHjVgaw7C0q+IrFZm3HGGNLf3QEmIb16TvBu7zx/ RRi8Dmidi6amdXGcl/Csyw6Q/GbuNFP52SwhRZfyNhYbheyPqPXeWq/1ap+w38Vv WiWRuH7KSPe6FCOeg8T67eO7zp1LLvolZ6Cg4sBnxjyE/d21G/5hlGf/zJhObH5w CNM78d1vBxB8V77esF1bNBSXfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNew9uca qYGmgPJEbLSEnbrdq0ptMB8GA1UdIwQYMBaAFIPCtUtkHj/wbjGitEUMFXra1Zto MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0U1Ri84MEM0QjMwMDY1 MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBfQnVNYUswUlF3VmV0clZt MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0yZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0U1Ri84MEM0QjMwMDY1MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBf QnVNYUswUlF3VmV0clZtMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0MmKp7cQ3/1OC5UR/Iva8m3/7J4FVbpUfwTk+UQyznRtGykkLQuzS agwtJGqryF3i/fwlYZfUYNTzIbs+4/tQOp48THIQ1r74v/1Vn0MuGN9+LSefBDLH Ed9CmTB2QGd9UvbH0UJ5A01OnOJJx7FRY0TWzhJGgGEt0FeyH0GoIsQOtUEWSBkT ISoLQWEvBG6UOKz37xNOfTfiE3L3zT7w4s29pSR0jyP+3UWbhggQia+z6zx+CDFE dmuHDdOR/lV9ykiQ9I2XVwN00o5Dowpx/JJ6PFcjYIKAhspdDaycLlL+fSSogaos aDLACpSiOUK4KdV/RpEBInql2zOaDAkk -----END CERTIFICATE-----Generated at Sun Aug 10 18:19:42 2025 by rpki-client