$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft File: plb2DT8RZBpXG9H_rSRg3UV2My0.mft (raw, json) Hash identifier: NGYuwYqsE0RmJw1L/PbbCW34lAEnR0c841DAxXhcEBA= Subject key identifier: F7:16:B1:07:BC:75:77:64:D5:DB:A1:D2:53:AA:B3:50:21:A2:52:1E Authority key identifier: A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D Certificate issuer: /CN=A919986F/serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Certificate serial: 2844 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft Manifest number: 283F Signing time: Fri 08 Aug 2025 15:41:01 +0000 Manifest this update: Fri 08 Aug 2025 15:41:00 +0000 Manifest next update: Fri 15 Aug 2025 15:41:00 +0000 Files and hashes: 1: plb2DT8RZBpXG9H_rSRg3UV2My0.crl (hash: hIO7kkFciT34sDRUvzLsu5IOPxMUomDqzloTxz5jFZE=) 2: 27F621183B5D11EB97506B7AC4F9AE02.roa (hash: +GMl4Xu8VPkNDBOVR1baOfDzoyBidluum1AgF508r2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10308 (0x2844) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=A656F60D3F11641A571BD1FFAD2460DD4576332D Validity Not Before: Aug 8 15:41:00 2025 GMT Not After : Aug 15 15:41:00 2025 GMT Subject: CN=68961a8d-a5c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:bd:7f:bf:3a:f1:62:ab:5a:d4:9a:b4:2f:8e: 9f:93:0a:cc:56:bb:f5:27:fe:47:84:18:bb:c7:5c: 37:b5:fc:0c:d4:ca:c1:c6:e4:a4:5e:af:6e:e9:24: ca:f6:e9:c1:5c:9f:ef:c4:da:e9:67:34:fa:c6:8a: 71:e8:9c:7f:89:16:d7:ce:c5:c5:07:a0:f2:94:48: 93:bc:7e:af:47:50:43:74:49:dc:20:22:a3:32:26: 26:0a:c3:fe:c5:58:2e:1a:69:72:0e:76:56:8f:16: 00:15:13:7d:f5:4f:1e:db:85:7f:95:a0:60:5c:86: db:5f:a3:bb:fe:f2:a5:f9:c3:c1:f9:44:3b:66:26: 14:2e:ec:8b:c1:df:65:a4:e9:87:a0:71:1b:16:c8: 4f:d7:53:f9:86:94:25:93:d1:2e:57:b8:57:43:5a: 5c:9e:56:fd:77:20:18:94:90:50:b3:09:a7:5f:0d: 40:d6:da:ec:a7:bb:03:44:a2:e1:87:87:da:ff:74: 07:be:f3:4a:ca:15:ec:cd:bb:01:87:a3:67:c9:ed: 69:6a:7f:0b:72:77:6b:58:ff:ee:69:d4:a5:ff:e4: 55:af:57:f7:da:63:b1:09:9c:78:3f:e4:fb:6c:70: 5d:ad:e5:32:c6:99:f7:85:ff:51:28:69:ca:d9:7a: 8c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:16:B1:07:BC:75:77:64:D5:DB:A1:D2:53:AA:B3:50:21:A2:52:1E X509v3 Authority Key Identifier: keyid:A6:56:F6:0D:3F:11:64:1A:57:1B:D1:FF:AD:24:60:DD:45:76:33:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/plb2DT8RZBpXG9H_rSRg3UV2My0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/EC870B868F2A11E4BF98B432C4F9AE02/plb2DT8RZBpXG9H_rSRg3UV2My0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:41:76:5f:d0:34:cf:82:0f:42:15:dc:92:98:f3:74:ca:dd: 01:d3:79:10:35:e0:38:84:12:e0:78:96:05:31:a0:5d:f9:ba: e8:78:a0:84:6b:d8:84:d9:de:51:00:a8:b8:41:04:3b:85:eb: 77:13:ce:61:45:b9:a9:05:f0:0a:b8:30:33:5f:88:aa:5d:5e: 75:4c:55:0c:e1:11:d5:31:6c:a5:94:f4:ce:ef:2b:73:34:dc: f6:ad:26:29:60:1a:07:bf:62:d5:05:3e:2e:cf:79:c5:c7:ab: b3:8a:e5:54:38:13:22:c1:90:76:ef:44:38:31:a7:bf:6e:7a: bd:77:e4:4c:ff:93:89:ef:6c:9d:b1:82:e5:0e:f9:c8:8b:66: 21:72:fa:a9:35:e2:34:3f:2f:ad:d9:ee:d8:bc:d2:4c:1d:b6: 78:4c:3f:3a:fb:cf:72:be:a5:c5:29:63:8c:6e:0b:fc:de:b4: 29:63:a1:38:b4:85:6c:69:4e:d2:89:56:6f:c9:f5:96:63:50: 25:9c:0a:de:1d:1a:f6:06:8f:bf:ac:22:8b:53:da:a1:e4:1d: ce:07:d8:33:06:4f:6f:b6:21:a4:cd:93:5c:d8:63:27:d8:b8: 2c:44:8b:db:b7:ea:ec:d4:bb:f9:07:b3:78:fb:71:7c:fb:e3: 92:aa:0f:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKEE2NTZGNjBEM0YxMTY0MUE1NzFCRDFGRkFEMjQ2MERE NDU3NjMzMkQwHhcNMjUwODA4MTU0MTAwWhcNMjUwODE1MTU0MTAwWjAYMRYwFAYD VQQDEw02ODk2MWE4ZC1hNWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm71/vzrxYqta1Jq0L46fkwrMVrv1J/5HhBi7x1w3tfwM1MrBxuSkXq9u6STK 9unBXJ/vxNrpZzT6xopx6Jx/iRbXzsXFB6DylEiTvH6vR1BDdEncICKjMiYmCsP+ xVguGmlyDnZWjxYAFRN99U8e24V/laBgXIbbX6O7/vKl+cPB+UQ7ZiYULuyLwd9l pOmHoHEbFshP11P5hpQlk9EuV7hXQ1pcnlb9dyAYlJBQswmnXw1A1trsp7sDRKLh h4fa/3QHvvNKyhXszbsBh6Nnye1pan8LcndrWP/uadSl/+RVr1f32mOxCZx4P+T7 bHBdreUyxpn3hf9RKGnK2XqMAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcWsQe8 dXdk1duh0lOqs1AholIeMB8GA1UdIwQYMBaAFKZW9g0/EWQaVxvR/60kYN1FdjMt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9FQzg3MEI4NjhG MkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpCcFhHOUhfclNSZzNVVjJN eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BsYjJEVDhSWkJwWEc5SF9yU1JnM1VWMk15MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg2Ri9FQzg3MEI4NjhGMkExMUU0QkY5OEI0MzJDNEY5QUUwMi9wbGIyRFQ4UlpC cFhHOUhfclNSZzNVVjJNeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIQXZf0DTPgg9CFdySmPN0yt0B03kQNeA4hBLgeJYFMaBd+broeKCE a9iE2d5RAKi4QQQ7het3E85hRbmpBfAKuDAzX4iqXV51TFUM4RHVMWyllPTO7ytz NNz2rSYpYBoHv2LVBT4uz3nFx6uziuVUOBMiwZB270Q4Mae/bnq9d+RM/5OJ72yd sYLlDvnIi2YhcvqpNeI0Py+t2e7YvNJMHbZ4TD86+89yvqXFKWOMbgv83rQpY6E4 tIVsaU7SiVZvyfWWY1AlnAreHRr2Bo+/rCKLU9qh5B3OB9gzBk9vtiGkzZNc2GMn 2LgsRIvbt+rs1Lv5B7N4+3F8++OSqg+P -----END CERTIFICATE-----Generated at Sat Aug 9 05:44:06 2025 by rpki-client