$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft File: u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft (raw, json) Hash identifier: hvTjWGQdGeSluryyd9QGKCmQJXJysnsA3GfTstdufYg= Subject key identifier: 1E:F1:7D:73:8B:CB:93:AE:D2:C7:30:61:6D:E4:1E:8A:47:9B:40:CB Authority key identifier: BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 Certificate issuer: /CN=A919E3E3/serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Certificate serial: 06BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft Manifest number: 06B7 Signing time: Sun 10 Aug 2025 22:10:44 +0000 Manifest this update: Sun 10 Aug 2025 22:10:43 +0000 Manifest next update: Sun 17 Aug 2025 22:10:43 +0000 Files and hashes: 1: u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl (hash: OR8yY+g7tNiTrUwZUd0uHJkcmGE5R8PMLY4yUsc1Y6w=) 2: 58B04DD46F3C11EB924C4E2AC4F9AE02.roa (hash: hyfMZHqHSYXqXmUoPBYl5C2bAAKrO9L6ZCwOSgIJA4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 22:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1725 (0x6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3E3, serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Validity Not Before: Aug 10 22:10:43 2025 GMT Not After : Aug 17 22:10:43 2025 GMT Subject: CN=689918e3-4659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:28:1d:68:87:ed:10:ea:61:59:6f:71:38:0a: f4:fb:56:24:a0:5f:09:09:bc:d0:7f:2f:b4:4f:a1: f7:67:44:3d:45:32:f3:cb:4e:de:dc:81:21:35:f8: b3:86:5a:ef:51:31:df:f2:f7:14:d5:b6:58:4d:91: e2:04:aa:28:18:50:74:ef:8b:59:f7:0f:bb:56:3a: ff:07:26:9f:4f:f4:cb:ee:14:69:33:70:2e:b4:bc: ec:64:40:29:97:64:14:c3:cd:2f:80:3c:52:1b:04: 33:70:16:96:04:e1:a4:51:ea:bc:5f:dd:ed:d7:74: 30:3e:57:ff:d8:a4:82:bc:a3:e3:39:af:f5:e0:2b: 53:9a:fd:77:5b:27:2d:77:3f:1a:06:55:cd:1c:8f: 40:8f:dd:87:57:96:b9:5d:b0:f1:b5:e3:81:aa:c2: 16:09:2e:bb:ae:53:3e:16:cc:e7:33:a3:8c:eb:26: cc:92:0c:71:72:9b:a9:4d:b9:85:9b:ae:c9:a9:e2: c3:17:5c:58:95:6f:f0:41:06:bb:63:36:d4:c1:67: 02:ac:f7:cc:48:7c:c0:9a:30:f8:3a:2a:66:3a:24: 60:f1:49:25:6a:a6:2c:b4:da:e8:0d:7a:33:d8:01: 3a:6c:5a:e0:ff:27:03:55:1c:3d:76:6c:57:62:c1: 14:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F1:7D:73:8B:CB:93:AE:D2:C7:30:61:6D:E4:1E:8A:47:9B:40:CB X509v3 Authority Key Identifier: keyid:BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:41:34:8d:05:14:82:dc:17:cb:14:37:50:ec:f3:bf:19:d0: 17:38:e9:e7:48:88:3a:83:cb:ce:01:52:5b:03:e1:b8:d5:db: 20:16:a8:ac:d0:46:e2:5f:b8:f2:8b:3c:b6:73:c1:3d:bb:03: 08:a9:b6:cc:26:14:95:1e:78:83:0d:ab:44:a2:5f:bb:8d:1e: af:2a:74:42:9f:6f:cf:10:4e:92:2b:9b:bd:ba:82:b1:10:83: bb:4a:f5:fa:ba:4c:d4:89:d8:1f:28:94:be:ed:d1:70:8c:c8: 21:78:8f:26:a0:f0:49:fb:38:58:ec:b1:8b:5a:07:40:28:1e: a1:e3:6d:70:5d:0d:6d:6b:b7:64:8b:82:62:39:6f:86:89:8f: 1b:c0:f2:53:95:a9:5a:d2:df:b8:62:7f:52:4f:0f:a7:22:99: 76:e9:7b:e4:81:51:73:97:c7:6a:42:15:36:35:a4:e7:13:f3: cb:ef:fe:83:00:80:6d:a4:5c:59:49:02:83:d7:73:4c:c3:02: 5a:21:93:97:db:48:9e:75:11:1c:2a:1f:67:34:0d:d4:54:93: 69:a6:65:fa:84:97:88:db:4d:8e:f6:99:d6:07:b5:4a:9b:21: b8:af:62:6d:e6:ec:c7:74:62:d5:2d:76:35:0e:03:6f:bb:16: 3f:d0:ad:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRTMxMTAvBgNVBAUTKEJCQ0M3NjBBRkUzRTlGMEE5Qjg4QzhFQzdBNDlFRDdD REQwMzk2RjcwHhcNMjUwODEwMjIxMDQzWhcNMjUwODE3MjIxMDQzWjAYMRYwFAYD VQQDEw02ODk5MThlMy00NjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SgdaIftEOphWW9xOAr0+1YkoF8JCbzQfy+0T6H3Z0Q9RTLzy07e3IEhNfiz hlrvUTHf8vcU1bZYTZHiBKooGFB074tZ9w+7Vjr/ByafT/TL7hRpM3AutLzsZEAp l2QUw80vgDxSGwQzcBaWBOGkUeq8X93t13QwPlf/2KSCvKPjOa/14CtTmv13Wyct dz8aBlXNHI9Aj92HV5a5XbDxteOBqsIWCS67rlM+FsznM6OM6ybMkgxxcpupTbmF m67JqeLDF1xYlW/wQQa7YzbUwWcCrPfMSHzAmjD4OipmOiRg8UklaqYstNroDXoz 2AE6bFrg/ycDVRw9dmxXYsEUPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7xfXOL y5Ou0scwYW3kHopHm0DLMB8GA1UdIwQYMBaAFLvMdgr+Pp8Km4jI7HpJ7XzdA5b3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNFMy8wOEI4RDBEMjZG M0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53cWJpTWpzZWtudGZOMERs dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U4eDJDdjQtbndxYmlNanNla250Zk4wRGx2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNFMy8wOEI4RDBEMjZGM0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53 cWJpTWpzZWtudGZOMERsdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGQTSNBRSC3BfLFDdQ7PO/GdAXOOnnSIg6g8vOAVJbA+G41dsgFqis 0EbiX7jyizy2c8E9uwMIqbbMJhSVHniDDatEol+7jR6vKnRCn2/PEE6SK5u9uoKx EIO7SvX6ukzUidgfKJS+7dFwjMgheI8moPBJ+zhY7LGLWgdAKB6h421wXQ1ta7dk i4JiOW+GiY8bwPJTlala0t+4Yn9STw+nIpl26XvkgVFzl8dqQhU2NaTnE/PL7/6D AIBtpFxZSQKD13NMwwJaIZOX20iedREcKh9nNA3UVJNppmX6hJeI202O9pnWB7VK myG4r2Jt5uzHdGLVLXY1DgNvuxY/0K2f -----END CERTIFICATE-----Generated at Tue Aug 12 14:34:57 2025 by rpki-client