$ rpki-client -vvf rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft File: 8gl4uKIsE6CwK586X8LUiKuovtU.mft (raw, json) Hash identifier: 8KYRdfm3KMuu1W93tJ0wcJMgSQmqB3LsnxW6cZ5+AKs= Subject key identifier: 3A:E3:94:F9:7B:54:FC:3D:28:5D:48:CE:A5:7A:B1:01:61:13:24:3D Authority key identifier: F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 Certificate issuer: /CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Certificate serial: 0A13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft Manifest number: 0A0D Signing time: Wed 06 Aug 2025 20:06:30 +0000 Manifest this update: Wed 06 Aug 2025 20:06:30 +0000 Manifest next update: Wed 13 Aug 2025 20:06:30 +0000 Files and hashes: 1: 8gl4uKIsE6CwK586X8LUiKuovtU.crl (hash: 72jsKZRRCaBE/6TDlCQi+uIoi/BpnyTin7X1UFU2f9A=) 2: BD7E578079E011EA8DD5907FC4F9AE02.roa (hash: iYxIY6VXdTf7gHnwepU+/VGZkh/V1c1cIjc+gsTh8TE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:06:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2579 (0xa13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914653C, serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Validity Not Before: Aug 6 20:06:30 2025 GMT Not After : Aug 13 20:06:30 2025 GMT Subject: CN=6893b5c6-df4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:56:9b:7f:22:c7:5d:c9:7a:5d:2a:8b:8d:1b: bc:59:0f:58:94:d9:e9:f8:7d:dc:dc:51:53:ab:78: 13:e2:20:12:31:83:f8:d6:40:ce:af:ff:59:fb:ff: fc:86:d5:f4:2f:9d:ee:d7:77:cc:ae:5e:42:c5:1f: 63:ad:4b:60:34:38:14:34:20:61:ab:9d:e1:72:f2: de:17:44:12:49:0c:4a:97:ad:0b:a4:8c:3f:70:01: ab:ae:b9:9c:43:d4:d6:ac:b8:38:97:37:89:98:3b: 57:3c:ae:f3:97:64:dd:0b:4d:b7:ff:cf:e6:dd:63: bc:4c:b5:12:5f:0d:64:88:a4:77:dd:c0:d3:66:27: 3d:d6:0b:f3:ad:46:9f:09:62:48:00:46:3d:5f:58: fe:ec:21:6f:39:d1:a1:51:71:2a:b9:f9:d8:b3:70: c3:1f:72:f3:dc:dc:8e:a9:8b:5a:88:9f:da:8e:de: 74:23:f8:36:de:e7:ae:0d:aa:29:60:3d:e3:de:d5: 03:c4:4e:9e:1d:6c:ec:d1:be:e8:69:c7:1f:3f:9d: ea:8d:08:22:c3:22:77:d2:8e:db:33:e6:f0:32:5f: 43:ee:4b:b1:67:da:cc:0b:6b:19:03:2a:b8:7c:5e: a4:e1:22:24:c7:8a:77:e0:21:73:cd:bd:bd:73:fa: b0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E3:94:F9:7B:54:FC:3D:28:5D:48:CE:A5:7A:B1:01:61:13:24:3D X509v3 Authority Key Identifier: keyid:F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:4c:6d:31:37:eb:70:31:19:7e:a1:9b:b8:ad:64:9f:52:cf: 7a:43:8e:9b:3a:69:b6:4f:31:e9:3e:81:da:dd:d6:a2:b4:23: 95:c0:94:34:7b:e2:f5:a4:13:26:b5:8f:15:ed:03:e7:64:8e: bf:aa:21:8d:85:1c:93:2c:e0:f1:81:19:02:b4:d0:11:82:be: 1d:5a:29:f7:e1:03:71:2d:68:fd:6b:06:3e:ed:a2:8c:4c:18: ee:73:6c:1c:58:10:3d:31:fd:db:d4:ee:d9:7a:04:9a:f9:3c: a2:ab:ab:79:27:4c:a2:f8:af:bd:18:f9:51:e7:e6:05:29:4f: 27:60:62:55:6c:a9:f7:40:b3:4e:11:14:b4:2d:62:8d:8c:7a: 60:79:95:c2:e1:7d:ab:a4:d2:d5:86:70:40:15:ab:4d:ee:b4: 2a:ee:8a:df:ae:06:6c:d0:a4:ae:e1:4e:18:85:e6:ba:e5:9a: ab:c9:06:89:26:82:22:07:dd:49:8b:fc:f7:22:c1:bb:11:d4: 71:4f:2e:da:4d:81:6c:7f:37:59:29:82:33:25:40:85:98:58: f5:4e:6d:3b:b9:34:45:bd:1c:d3:a9:a6:2a:ce:34:e2:83:6b: 99:e1:56:40:c4:f4:97:94:05:91:aa:13:10:28:e9:0c:b0:6b: 20:1d:41:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY1M0MxMTAvBgNVBAUTKEYyMDk3OEI4QTIyQzEzQTBCMDJCOUYzQTVGQzJENDg4 QUJBOEJFRDUwHhcNMjUwODA2MjAwNjMwWhcNMjUwODEzMjAwNjMwWjAYMRYwFAYD VQQDEw02ODkzYjVjNi1kZjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulabfyLHXcl6XSqLjRu8WQ9YlNnp+H3c3FFTq3gT4iASMYP41kDOr/9Z+//8 htX0L53u13fMrl5CxR9jrUtgNDgUNCBhq53hcvLeF0QSSQxKl60LpIw/cAGrrrmc Q9TWrLg4lzeJmDtXPK7zl2TdC023/8/m3WO8TLUSXw1kiKR33cDTZic91gvzrUaf CWJIAEY9X1j+7CFvOdGhUXEqufnYs3DDH3Lz3NyOqYtaiJ/ajt50I/g23ueuDaop YD3j3tUDxE6eHWzs0b7oaccfP53qjQgiwyJ30o7bM+bwMl9D7kuxZ9rMC2sZAyq4 fF6k4SIkx4p34CFzzb29c/qwKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrjlPl7 VPw9KF1IzqV6sQFhEyQ9MB8GA1UdIwQYMBaAFPIJeLiiLBOgsCufOl/C1IirqL7V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjUzQy81QkE4NzgyMDc5 REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2Q3dLNTg2WDhMVWlLdW92 dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnbDR1S0lzRTZDd0s1ODZYOExVaUt1b3Z0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjUzQy81QkE4NzgyMDc5REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2 Q3dLNTg2WDhMVWlLdW92dFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARTG0xN+twMRl+oZu4rWSfUs96Q46bOmm2TzHpPoHa3daitCOVwJQ0 e+L1pBMmtY8V7QPnZI6/qiGNhRyTLODxgRkCtNARgr4dWin34QNxLWj9awY+7aKM TBjuc2wcWBA9Mf3b1O7ZegSa+Tyiq6t5J0yi+K+9GPlR5+YFKU8nYGJVbKn3QLNO ERS0LWKNjHpgeZXC4X2rpNLVhnBAFatN7rQq7orfrgZs0KSu4U4Yhea65ZqryQaJ JoIiB91Ji/z3IsG7EdRxTy7aTYFsfzdZKYIzJUCFmFj1Tm07uTRFvRzTqaYqzjTi g2uZ4VZAxPSXlAWRqhMQKOkMsGsgHUEq -----END CERTIFICATE-----Generated at Fri Aug 8 10:13:09 2025 by rpki-client