$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: 2NErzug51Tig+XJFnvZtf+erWERJ3ORpI8sE6zopRjo= Subject key identifier: 85:30:46:7E:B5:C6:C2:1F:1E:79:89:DF:FA:A3:ED:78:89:95:94:17 Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0A23 Signing time: Wed 06 Aug 2025 20:04:16 +0000 Manifest this update: Wed 06 Aug 2025 20:04:16 +0000 Manifest next update: Wed 13 Aug 2025 20:04:16 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: iGSnEQNVSTsAGj5qFj88AtwfMSFsvewYKRGNwAKo0T8=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2602 (0xa2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Aug 6 20:04:16 2025 GMT Not After : Aug 13 20:04:16 2025 GMT Subject: CN=6893b540-39ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4d:77:9a:a3:56:c8:65:24:a4:6c:42:f1:fc: 7c:f0:1d:3b:cc:54:5a:b4:74:b8:bb:cb:02:45:da: 1a:67:bc:3b:6b:82:64:44:fc:fe:ab:0e:fd:67:61: e6:ad:17:f2:b6:a8:52:93:d4:5a:6b:e0:7f:62:09: fe:41:f7:98:04:57:d6:54:7b:62:03:f5:43:ff:e6: 8d:2f:b5:c0:80:8d:d5:6c:0c:15:45:75:d4:00:65: ab:6a:c4:f5:cb:33:9e:53:05:12:d5:71:d7:bb:76: 75:ad:35:38:d9:c4:19:78:c2:0f:a7:2e:ec:83:fc: dd:39:42:e1:fe:3e:61:ae:3f:d6:43:f5:45:1f:9f: 11:d9:2d:a9:eb:f0:8e:8a:9c:a5:f8:b5:64:6b:f3: fa:50:95:5a:c0:90:3e:62:43:89:c0:f8:8c:27:f4: d4:ab:38:f5:f9:34:65:0f:05:45:94:27:7d:73:ee: b9:c6:25:22:c2:7a:cc:1e:56:16:30:b5:bc:08:34: 39:6f:a7:52:44:dc:31:8f:de:ee:bf:88:05:90:1d: a4:c1:c7:9e:e5:80:46:66:4e:07:b3:f6:52:d1:e6: 75:8f:1c:88:ee:39:95:83:7c:b1:e4:82:d3:7f:0d: 86:5f:b6:66:70:9c:02:12:52:b0:cd:24:2f:fd:27: 2f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:30:46:7E:B5:C6:C2:1F:1E:79:89:DF:FA:A3:ED:78:89:95:94:17 X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ce:24:23:a3:7c:d7:aa:21:b8:94:13:2e:5b:19:fc:32:99: 07:8a:99:da:fe:2e:0d:3c:fe:a2:f4:38:2c:38:01:d7:be:a1: 18:9d:7d:df:9e:8c:58:05:b5:f9:96:c5:b1:87:f9:de:07:6a: 98:77:03:0d:99:4f:90:33:51:29:34:ac:07:43:11:cc:32:e2: 05:8a:b3:c3:83:27:0b:31:d4:1d:e9:e0:fc:2b:af:75:08:0f: 15:6c:f4:44:f0:a7:80:a0:23:be:21:ab:2d:4e:33:12:b2:c7: 45:53:44:72:ee:59:81:c1:4b:f8:87:cc:43:7a:b1:69:a6:b1: 5a:4e:0d:06:e7:8e:50:6d:07:f7:21:87:f7:ea:00:ce:d7:c3: 31:99:ef:02:78:d7:84:6e:76:85:91:b2:57:4e:72:df:6b:b2: a2:d3:fc:e4:bf:92:89:0d:3f:c5:75:7d:79:d8:7b:b2:87:5e: 2a:5f:f6:27:36:99:8c:ea:31:4a:71:50:8c:d5:11:37:1a:36: e4:08:d7:0f:bf:94:26:96:c6:bc:36:a5:d0:f4:03:11:ac:cc: 1c:19:ef:c8:87:3f:de:7b:ef:c6:5d:d9:fe:06:15:19:c9:13: fd:22:5a:99:51:60:60:b4:b4:24:f3:d5:f9:67:1f:9f:be:9b: b4:81:d3:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUwODA2MjAwNDE2WhcNMjUwODEzMjAwNDE2WjAYMRYwFAYD VQQDEw02ODkzYjU0MC0zOWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1E13mqNWyGUkpGxC8fx88B07zFRatHS4u8sCRdoaZ7w7a4JkRPz+qw79Z2Hm rRfytqhSk9Raa+B/Ygn+QfeYBFfWVHtiA/VD/+aNL7XAgI3VbAwVRXXUAGWrasT1 yzOeUwUS1XHXu3Z1rTU42cQZeMIPpy7sg/zdOULh/j5hrj/WQ/VFH58R2S2p6/CO ipyl+LVka/P6UJVawJA+YkOJwPiMJ/TUqzj1+TRlDwVFlCd9c+65xiUiwnrMHlYW MLW8CDQ5b6dSRNwxj97uv4gFkB2kwcee5YBGZk4Hs/ZS0eZ1jxyI7jmVg3yx5ILT fw2GX7ZmcJwCElKwzSQv/ScvvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUwRn61 xsIfHnmJ3/qj7XiJlZQXMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9ziQjo3zXqiG4lBMuWxn8MpkHipna/i4NPP6i9DgsOAHXvqEYnX3f noxYBbX5lsWxh/neB2qYdwMNmU+QM1EpNKwHQxHMMuIFirPDgycLMdQd6eD8K691 CA8VbPRE8KeAoCO+IastTjMSssdFU0Ry7lmBwUv4h8xDerFpprFaTg0G545QbQf3 IYf36gDO18Mxme8CeNeEbnaFkbJXTnLfa7Ki0/zkv5KJDT/FdX152Huyh14qX/Yn NpmM6jFKcVCM1RE3GjbkCNcPv5Qmlsa8NqXQ9AMRrMwcGe/Ihz/ee+/GXdn+BhUZ yRP9IlqZUWBgtLQk89X5Zx+fvpu0gdMs -----END CERTIFICATE-----Generated at Fri Aug 8 20:57:52 2025 by rpki-client