$ rpki-client -vvf rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft File: rBnGa8SzHOuTC6auDW63R7EKtgY.mft (raw, json) Hash identifier: davyHlj5zjsT2Tl8aj6Re5MojKdGxxwXjYYI0tcmViE= Subject key identifier: B9:5B:81:3E:F5:B8:CC:0C:04:63:8C:F0:1E:C9:27:DB:D7:C5:DA:37 Authority key identifier: AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 Certificate issuer: /CN=A9141E28/serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Certificate serial: 34B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft Manifest number: 34B0 Signing time: Fri 08 Aug 2025 14:41:52 +0000 Manifest this update: Fri 08 Aug 2025 14:41:51 +0000 Manifest next update: Fri 15 Aug 2025 14:41:51 +0000 Files and hashes: 1: rBnGa8SzHOuTC6auDW63R7EKtgY.crl (hash: Vbzni0hp2Lm8tJ/tpxTt4zMedXch2CzREA4WYSMN5fY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13488 (0x34b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141E28, serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Validity Not Before: Aug 8 14:41:51 2025 GMT Not After : Aug 15 14:41:51 2025 GMT Subject: CN=68960caf-f3c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1d:56:cf:ff:85:19:3a:fd:a8:bf:cd:49:e6: 3a:e4:45:14:45:f6:1f:20:4a:b9:14:70:78:32:d6: 29:84:4d:db:1f:5b:91:1a:60:a9:04:f7:aa:a2:ff: 0a:ae:39:f1:5e:55:68:fc:40:a7:a8:6d:6b:19:6d: a5:e6:fd:f3:90:04:fb:b6:e2:7c:d8:b3:15:1e:09: 63:78:da:dd:02:9c:45:ae:37:91:31:74:be:07:54: 4b:e8:0b:89:0e:c8:fb:f2:66:7f:83:68:15:0e:25: 9d:06:fc:8b:f6:a9:05:ea:ef:f6:07:ea:ce:67:02: b7:86:c1:dd:a6:5d:39:bf:80:f7:49:df:27:54:06: c1:90:08:39:2a:e9:85:42:bd:c3:b7:7f:c6:e7:fc: c9:24:f7:d0:c6:70:cb:ed:5d:a4:6c:6f:ae:5b:c9: 16:9c:2d:26:d2:5f:e4:01:31:de:1a:47:6c:3d:11: a8:aa:51:3c:c9:3f:ba:59:fd:43:ba:09:8e:32:14: 0a:93:e0:93:cc:5d:5a:21:0d:9e:a1:0e:08:64:ad: a3:3a:2d:6e:45:15:b1:67:86:f5:f9:e7:32:d6:23: 27:50:4c:6b:80:87:25:71:92:dd:c1:5b:c0:b5:6b: 50:ca:5d:96:dd:7b:c4:42:b7:f0:74:4c:d8:c2:04: 76:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:5B:81:3E:F5:B8:CC:0C:04:63:8C:F0:1E:C9:27:DB:D7:C5:DA:37 X509v3 Authority Key Identifier: keyid:AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:92:7f:09:fc:c4:39:be:46:38:64:7d:cf:1c:de:56:9b:0c: 12:46:af:ce:dc:43:2c:7c:ed:de:97:15:9a:b8:24:3e:cf:4c: f0:8b:10:bb:53:95:0c:cf:b2:24:87:18:db:d8:ca:59:8d:a2: f1:58:69:6e:1d:6d:59:fb:80:83:97:7a:6d:92:24:68:69:6c: 86:64:d9:be:fa:ca:3d:eb:95:b0:3f:78:ad:fd:cf:77:73:8e: 6d:b7:55:ea:f8:9b:2e:68:48:af:a8:27:5b:42:1c:89:bb:9e: f9:7b:34:3c:73:51:e1:dd:19:88:f6:e6:ab:42:27:46:18:a7: 3e:0c:61:53:51:05:87:15:3b:45:3d:43:2a:b5:b8:c6:5d:eb: 12:f0:16:bc:ea:13:24:a1:b1:53:15:f6:25:d1:68:58:79:4e: 6a:b5:21:d5:7f:14:f7:04:cb:04:42:b2:83:1e:8e:48:6b:22: 07:27:d3:a0:73:e6:b6:4c:c0:30:d5:87:7c:8d:97:21:53:e4: ec:79:11:0a:68:77:e1:d1:b0:4f:83:c7:b0:00:8e:de:3c:da: 19:1f:b4:81:01:fa:74:27:a4:3c:88:be:28:6b:e5:3c:0f:2b: 45:85:af:8a:c4:bd:a6:f7:2e:cb:72:c5:2d:ac:b7:12:e3:30: dd:b5:49:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFFMjgxMTAvBgNVBAUTKEFDMTlDNjZCQzRCMzFDRUI5MzBCQTZBRTBENkVCNzQ3 QjEwQUI2MDYwHhcNMjUwODA4MTQ0MTUxWhcNMjUwODE1MTQ0MTUxWjAYMRYwFAYD VQQDEw02ODk2MGNhZi1mM2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyh1Wz/+FGTr9qL/NSeY65EUURfYfIEq5FHB4MtYphE3bH1uRGmCpBPeqov8K rjnxXlVo/ECnqG1rGW2l5v3zkAT7tuJ82LMVHgljeNrdApxFrjeRMXS+B1RL6AuJ Dsj78mZ/g2gVDiWdBvyL9qkF6u/2B+rOZwK3hsHdpl05v4D3Sd8nVAbBkAg5KumF Qr3Dt3/G5/zJJPfQxnDL7V2kbG+uW8kWnC0m0l/kATHeGkdsPRGoqlE8yT+6Wf1D ugmOMhQKk+CTzF1aIQ2eoQ4IZK2jOi1uRRWxZ4b1+ecy1iMnUExrgIclcZLdwVvA tWtQyl2W3XvEQrfwdEzYwgR2wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlbgT71 uMwMBGOM8B7JJ9vXxdo3MB8GA1UdIwQYMBaAFKwZxmvEsxzrkwumrg1ut0exCrYG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUUyOC84NDU4QjkxMDFE OEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhPdVRDNmF1RFc2M1I3RUt0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JCbkdhOFN6SE91VEM2YXVEVzYzUjdFS3RnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUUyOC84NDU4QjkxMDFEOEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhP dVRDNmF1RFc2M1I3RUt0Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCikn8J/MQ5vkY4ZH3PHN5WmwwSRq/O3EMsfO3elxWauCQ+z0zwixC7 U5UMz7Ikhxjb2MpZjaLxWGluHW1Z+4CDl3ptkiRoaWyGZNm++so965WwP3it/c93 c45tt1Xq+JsuaEivqCdbQhyJu575ezQ8c1Hh3RmI9uarQidGGKc+DGFTUQWHFTtF PUMqtbjGXesS8Ba86hMkobFTFfYl0WhYeU5qtSHVfxT3BMsEQrKDHo5IayIHJ9Og c+a2TMAw1Yd8jZchU+TseREKaHfh0bBPg8ewAI7ePNoZH7SBAfp0J6Q8iL4oa+U8 DytFha+KxL2m9y7LcsUtrLcS4zDdtUn7 -----END CERTIFICATE-----Generated at Sun Aug 10 13:48:52 2025 by rpki-client