$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: 6vthVgUAmeKhi4FyCwdqWcey/OJX6hzKO0Gp8jd/IrM= Subject key identifier: B0:4D:44:C8:0F:AC:CD:FA:49:B6:1C:B3:05:1E:27:1F:00:CD:E3:9F Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: 83 Signing time: Thu 07 Aug 2025 07:13:48 +0000 Manifest this update: Thu 07 Aug 2025 07:13:48 +0000 Manifest next update: Thu 14 Aug 2025 07:13:48 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: YUZC/c6y9t81/ERi9/PUaw7Pf8JNXBmePP18VhT4c88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Aug 7 07:13:48 2025 GMT Not After : Aug 14 07:13:48 2025 GMT Subject: CN=6894522c-13ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:46:70:a5:d5:7c:5e:4b:1f:0f:9e:b3:2e:8d: 9f:20:01:ec:3f:94:ea:a7:4d:3d:d5:3e:d2:06:64: 5d:ad:75:40:81:fa:9a:c1:70:2c:f3:6b:0a:d0:cd: 63:a0:2a:fa:e9:06:ab:81:77:bd:3c:05:5d:65:4f: 2d:e4:5f:f1:11:fb:af:89:b4:e8:57:e6:65:dc:e5: 68:30:8e:06:33:b1:7a:b4:92:a2:dc:64:ab:8c:a4: b1:6e:a7:ca:0f:c5:08:f6:e4:17:30:1c:6f:5d:6b: 57:4f:d0:07:02:2b:79:e8:32:ae:50:28:1d:52:f8: 11:e6:2e:91:e7:00:1b:4a:42:c2:12:1b:66:83:6c: 98:02:55:ab:55:32:74:3d:44:0f:fb:db:8a:37:45: bf:aa:98:c9:8c:88:23:f9:0e:83:90:c8:69:01:6f: b2:95:73:bf:01:23:04:54:a9:77:f4:3f:7b:51:8e: 2d:9d:69:5f:5d:12:ef:99:8d:18:35:ad:86:3b:d3: 08:5c:88:06:68:0b:c8:7b:8b:8a:15:d2:ef:82:e9: b3:10:63:6b:41:7d:22:fc:b3:c1:3f:50:e3:48:aa: 6f:72:97:4a:c4:09:ca:15:c1:6a:12:5c:46:8e:fa: 7f:c7:31:f3:d9:4c:e8:11:82:ab:2d:fb:37:ed:51: d2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:4D:44:C8:0F:AC:CD:FA:49:B6:1C:B3:05:1E:27:1F:00:CD:E3:9F X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:0b:43:4b:28:ab:b4:14:c8:ff:6b:8a:9e:a5:a6:5d:ac:11: f4:97:96:73:24:b6:dd:7c:c6:ff:e8:a5:4f:c5:ea:d9:23:d2: 2c:27:f3:09:ea:ab:fd:af:ae:5c:42:82:ea:95:c5:ec:32:4c: 72:22:be:8e:a9:d6:e6:ef:86:73:cd:00:e5:cd:85:11:7a:e7: 6e:8e:04:09:42:f2:e2:cd:72:81:a4:dd:3f:e3:76:8b:72:bc: 9f:d5:fd:4b:b4:33:36:90:22:18:fe:17:a8:03:74:30:d4:c2: 9f:6a:59:c4:00:76:97:35:85:09:63:c7:fb:e6:0a:9a:2a:c9: bc:50:05:f2:36:ad:3d:6b:3c:1f:e4:91:32:67:11:cb:7b:84: 47:d5:b1:22:66:b2:53:ff:f9:56:9b:3e:9b:a1:8c:53:8d:bc: 3f:5f:ef:18:37:13:89:5f:01:fc:df:83:93:e4:6d:c1:55:d3: cd:e1:e1:8e:b5:01:ab:5e:a3:74:3e:d8:4f:1a:d4:5d:16:5c: 27:3f:25:e7:10:b9:ff:90:28:84:fe:81:d7:69:17:3a:79:c7: 62:c4:75:ca:72:15:fe:17:29:db:04:de:f9:ea:62:d6:63:10: 40:6c:59:c8:4f:de:ba:a5:c7:25:4f:23:6b:a0:c3:25:d9:8f: bd:97:75:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjUwODA3MDcxMzQ4WhcNMjUwODE0MDcxMzQ4WjAYMRYwFAYD VQQDEw02ODk0NTIyYy0xM2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0ZwpdV8XksfD56zLo2fIAHsP5Tqp0091T7SBmRdrXVAgfqawXAs82sK0M1j oCr66QargXe9PAVdZU8t5F/xEfuvibToV+Zl3OVoMI4GM7F6tJKi3GSrjKSxbqfK D8UI9uQXMBxvXWtXT9AHAit56DKuUCgdUvgR5i6R5wAbSkLCEhtmg2yYAlWrVTJ0 PUQP+9uKN0W/qpjJjIgj+Q6DkMhpAW+ylXO/ASMEVKl39D97UY4tnWlfXRLvmY0Y Na2GO9MIXIgGaAvIe4uKFdLvgumzEGNrQX0i/LPBP1DjSKpvcpdKxAnKFcFqElxG jvp/xzHz2UzoEYKrLfs37VHSIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBNRMgP rM36SbYcswUeJx8AzeOfMB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByC0NLKKu0FMj/a4qepaZdrBH0l5ZzJLbdfMb/6KVPxerZI9IsJ/MJ 6qv9r65cQoLqlcXsMkxyIr6Oqdbm74ZzzQDlzYUReudujgQJQvLizXKBpN0/43aL cryf1f1LtDM2kCIY/heoA3Qw1MKfalnEAHaXNYUJY8f75gqaKsm8UAXyNq09azwf 5JEyZxHLe4RH1bEiZrJT//lWmz6boYxTjbw/X+8YNxOJXwH834OT5G3BVdPN4eGO tQGrXqN0PthPGtRdFlwnPyXnELn/kCiE/oHXaRc6ecdixHXKchX+FynbBN756mLW YxBAbFnIT966pcclTyNroMMl2Y+9l3Xv -----END CERTIFICATE-----Generated at Fri Aug 8 00:34:23 2025 by rpki-client