$ rpki-client -vvf rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft File: rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft (raw, json) Hash identifier: s8OO/d9iBw92flIJvESJbaRMEbZ3YyrhQKfRuRcCrRQ= Subject key identifier: B7:65:5A:65:83:7B:E9:12:93:BE:F2:DA:FD:91:9A:C0:8B:84:4D:C0 Authority key identifier: AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F Certificate issuer: /CN=A918EBC3/serialNumber=AC56070DBE5EE6DBBF6711973847233127917A2F Certificate serial: 0887 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft Manifest number: 0880 Signing time: Sun 10 Aug 2025 20:38:05 +0000 Manifest this update: Sun 10 Aug 2025 20:38:05 +0000 Manifest next update: Sun 17 Aug 2025 20:38:05 +0000 Files and hashes: 1: rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl (hash: sK886LB4/LnhNGNz/hd8oTlt9vJu2Uem1WAsW/clha8=) 2: 7CDBE740C7FD11EAB795396AC4F9AE02.roa (hash: p0a0nQBisH4VKwtpLEiKDNLpUVAu9yIvpOIZZoB51RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2183 (0x887) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EBC3, serialNumber=AC56070DBE5EE6DBBF6711973847233127917A2F Validity Not Before: Aug 10 20:38:05 2025 GMT Not After : Aug 17 20:38:05 2025 GMT Subject: CN=6899032d-27a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:df:13:3c:0f:38:0f:12:de:96:54:d4:0d:07: 3a:fa:f4:8d:8b:c7:39:40:1d:d8:29:c4:06:a8:4f: 8b:66:76:34:a2:7f:27:43:87:78:d5:4d:5b:f0:67: 53:8d:01:fb:b1:f1:4e:25:ab:d5:fd:97:46:a7:33: 61:a6:5a:42:ab:38:18:4b:bc:1d:ae:6c:db:51:e8: 4a:4b:71:76:e4:80:2b:2c:50:a7:43:d8:d6:a8:61: 3e:6a:af:da:53:37:2a:04:a6:2f:8f:df:b8:eb:93: 45:c1:18:dd:89:ef:59:99:14:fa:54:9f:fd:80:98: 0b:64:49:cf:4f:c2:8b:c3:ea:6d:b7:58:8c:b9:d4: 8d:3e:79:89:a0:aa:a4:c3:a4:35:fd:cd:80:63:2b: f2:13:82:b7:be:3e:4f:14:07:75:a0:d3:d8:85:f5: 46:0d:e2:e6:82:33:13:d0:65:cb:b2:0c:c2:d0:ee: 03:0a:9e:b5:ce:a9:b2:fb:56:b8:2d:e5:b7:9f:2a: f1:05:e6:67:a7:5e:30:ac:0c:98:cc:2a:ad:39:88: 27:2d:f2:61:5c:17:df:e9:84:09:54:b6:18:3c:d5: 7e:15:ca:b2:71:9b:87:9d:df:a8:1e:0e:b3:6a:9f: 32:c6:a2:7f:96:c2:dd:d1:f1:7b:0d:0b:b0:40:59: 0b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:65:5A:65:83:7B:E9:12:93:BE:F2:DA:FD:91:9A:C0:8B:84:4D:C0 X509v3 Authority Key Identifier: keyid:AC:56:07:0D:BE:5E:E6:DB:BF:67:11:97:38:47:23:31:27:91:7A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFYHDb5e5tu_ZxGXOEcjMSeRei8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EBC3/0D41FE5CC7FC11EA962B0069C4F9AE02/rFYHDb5e5tu_ZxGXOEcjMSeRei8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:39:3d:c3:55:c1:07:46:f5:78:fd:ca:2b:a1:64:ed:8f:de: d1:b4:42:1c:47:2c:46:dd:c1:b5:b1:b2:25:4c:20:02:28:9e: 82:66:a9:e1:52:91:b9:52:45:57:4c:14:b2:45:0a:aa:14:f8: b4:8f:81:76:db:b0:5a:b6:40:55:d0:6a:43:a5:79:4d:e5:2d: 24:34:c7:58:d5:5a:21:e9:51:47:bb:29:bb:8a:f7:ac:e7:6a: 13:62:1c:09:05:9d:75:8d:c3:d7:72:a4:ac:f9:bb:d3:1e:32: 49:d9:bb:1f:e7:5a:c7:53:d6:b5:95:8a:af:1a:da:dd:2e:41: 56:75:a4:5c:a5:67:73:fc:53:55:ba:11:d0:83:7a:b1:4c:07: 02:03:68:bf:6c:e6:e4:63:21:f3:50:85:ba:26:e5:67:de:57: 69:49:10:57:69:92:bd:25:72:37:3f:57:d2:c4:41:3d:5d:b6: a3:53:0f:39:bb:9a:ad:a0:59:4f:8c:d2:21:fa:34:2a:f5:35: 20:c6:da:b2:01:70:18:9f:07:81:d6:6a:c3:8f:7f:28:d6:68: 51:19:24:72:f0:8d:58:9a:e2:8c:22:21:6b:6b:dd:a0:d6:27: 79:43:fb:ce:42:ee:60:de:d2:79:ed:00:42:16:27:61:9b:81: 18:9a:6c:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVCQzMxMTAvBgNVBAUTKEFDNTYwNzBEQkU1RUU2REJCRjY3MTE5NzM4NDcyMzMx Mjc5MTdBMkYwHhcNMjUwODEwMjAzODA1WhcNMjUwODE3MjAzODA1WjAYMRYwFAYD VQQDEw02ODk5MDMyZC0yN2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA298TPA84DxLellTUDQc6+vSNi8c5QB3YKcQGqE+LZnY0on8nQ4d41U1b8GdT jQH7sfFOJavV/ZdGpzNhplpCqzgYS7wdrmzbUehKS3F25IArLFCnQ9jWqGE+aq/a UzcqBKYvj9+465NFwRjdie9ZmRT6VJ/9gJgLZEnPT8KLw+ptt1iMudSNPnmJoKqk w6Q1/c2AYyvyE4K3vj5PFAd1oNPYhfVGDeLmgjMT0GXLsgzC0O4DCp61zqmy+1a4 LeW3nyrxBeZnp14wrAyYzCqtOYgnLfJhXBff6YQJVLYYPNV+FcqycZuHnd+oHg6z ap8yxqJ/lsLd0fF7DQuwQFkLhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdlWmWD e+kSk77y2v2RmsCLhE3AMB8GA1UdIwQYMBaAFKxWBw2+Xubbv2cRlzhHIzEnkXov MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUJDMy8wRDQxRkU1Q0M3 RkMxMUVBOTYyQjAwNjlDNEY5QUUwMi9yRllIRGI1ZTV0dV9aeEdYT0Vjak1TZVJl aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWUhEYjVlNXR1X1p4R1hPRWNqTVNlUmVpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUJDMy8wRDQxRkU1Q0M3RkMxMUVBOTYyQjAwNjlDNEY5QUUwMi9yRllIRGI1ZTV0 dV9aeEdYT0Vjak1TZVJlaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKOT3DVcEHRvV4/coroWTtj97RtEIcRyxG3cG1sbIlTCACKJ6CZqnh UpG5UkVXTBSyRQqqFPi0j4F227BatkBV0GpDpXlN5S0kNMdY1Voh6VFHuym7ives 52oTYhwJBZ11jcPXcqSs+bvTHjJJ2bsf51rHU9a1lYqvGtrdLkFWdaRcpWdz/FNV uhHQg3qxTAcCA2i/bObkYyHzUIW6JuVn3ldpSRBXaZK9JXI3P1fSxEE9XbajUw85 u5qtoFlPjNIh+jQq9TUgxtqyAXAYnweB1mrDj38o1mhRGSRy8I1YmuKMIiFra92g 1id5Q/vOQu5g3tJ57QBCFidhm4EYmmws -----END CERTIFICATE-----Generated at Mon Aug 11 06:18:49 2025 by rpki-client