$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft File: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft (raw, json) Hash identifier: YwgZfjYzE1djt4MC3ic1GjK4PMFAFzGp58uEgFPYMOs= Subject key identifier: CF:67:17:B3:DD:C4:16:40:71:67:15:30:12:57:87:B7:04:6C:32:00 Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 Certificate issuer: /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Certificate serial: 0A7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft Manifest number: 0A74 Signing time: Sun 10 Aug 2025 19:39:23 +0000 Manifest this update: Sun 10 Aug 2025 19:39:22 +0000 Manifest next update: Sun 17 Aug 2025 19:39:22 +0000 Files and hashes: 1: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl (hash: ZiiXFEuo8ZDiv0QGTQoWiF0Y8kf0eYLyHWBbF91r45w=) 2: 19250B84675711EAA928E22DC4F9AE02.roa (hash: bm4J9Gs8kg53MtutKeTvvvRSq0MtCTJcSE5YLit7Dts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2684 (0xa7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8D1, serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Validity Not Before: Aug 10 19:39:22 2025 GMT Not After : Aug 17 19:39:22 2025 GMT Subject: CN=6898f56a-4d20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4f:57:55:32:37:6a:04:53:30:ea:31:0d:06: 05:84:bf:44:88:9e:1d:a1:c7:a2:ea:4e:25:47:2c: bf:d8:42:cf:39:08:1b:d4:d8:66:9f:2a:16:38:1e: 11:8c:2b:74:5f:d8:87:94:49:98:32:d9:9a:99:d7: 80:14:4c:6a:ab:4e:8a:c8:53:cc:b8:3a:38:54:09: 0c:5a:0f:15:9b:7e:5d:1f:dd:16:5d:63:0a:12:23: 9a:d6:de:20:c8:cd:26:1c:5e:24:44:c8:c2:d4:b4: c9:a8:de:87:1a:55:98:62:a1:59:57:ff:18:7e:f7: 5c:6e:36:1c:be:a3:7b:8d:c7:fa:71:f6:dd:bc:59: aa:d1:08:fd:b0:bc:1b:c3:1f:7d:62:d3:be:b6:71: 7f:8e:cf:ee:39:40:9d:ea:e0:77:89:46:65:8d:bf: 69:d5:fe:f5:91:0e:e5:9a:76:bc:f4:46:19:dc:fa: d8:b7:09:8f:80:d6:5c:47:00:35:d3:4c:01:13:ec: e2:33:52:f7:ce:b1:a8:3f:c2:7b:9b:91:c5:9f:06: e7:c1:7f:d3:ee:6f:b8:cb:67:b4:b0:fa:b0:13:53: 69:34:5c:58:f8:7d:b2:3b:6b:de:07:c1:59:89:dc: fd:ae:91:c2:c9:f7:80:d8:6e:01:47:de:48:6e:77: 62:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:67:17:B3:DD:C4:16:40:71:67:15:30:12:57:87:B7:04:6C:32:00 X509v3 Authority Key Identifier: keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:ce:15:94:e9:07:56:ff:0d:90:b0:33:72:c5:c7:56:d3:28: 23:1e:30:08:0b:a1:5b:7f:8d:35:10:8b:4e:f3:74:19:ff:41: 57:b9:82:d9:c8:aa:1e:50:ba:90:cb:43:03:16:c5:7b:37:08: 65:d4:09:0f:52:5f:4d:24:7f:90:6f:e7:84:aa:9f:e9:f2:0d: f3:c4:13:c4:3c:89:f6:94:23:6c:9f:27:67:37:b5:c7:fb:65: 7a:69:ee:9c:23:36:c5:f1:c4:b0:9a:73:a3:a1:8e:8f:30:53: 8e:72:58:2c:92:67:cb:c6:2e:13:2a:65:be:85:24:46:46:4f: 29:d1:14:82:a8:ff:c2:3b:01:13:d0:29:1f:94:c8:c4:82:a0: 79:dc:08:ab:e3:5c:5d:29:7d:1a:67:8b:69:a7:0d:3a:df:78: 45:64:69:83:d5:89:99:28:f7:f2:1e:6b:0c:c3:d3:07:7d:93: ca:4c:ce:fb:a7:bb:73:b9:95:e6:e8:2c:ec:5c:b7:75:46:9c: 32:3f:fb:b4:d4:8f:a3:7e:bd:5d:a1:07:90:7c:fe:ff:cb:9e: 4f:69:cd:e5:f1:f6:2b:40:e9:4d:29:4b:5b:db:1a:0e:3f:68: 77:70:2f:f6:cc:c7:cb:43:81:34:52:97:7a:68:6a:01:0e:d5: 44:18:31:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RDExMTAvBgNVBAUTKEYwNDY2NTkzQzJCNkNFQTlDQkYwMkUyNkFBRTZCRjc5 MEY1MjdFQTgwHhcNMjUwODEwMTkzOTIyWhcNMjUwODE3MTkzOTIyWjAYMRYwFAYD VQQDEw02ODk4ZjU2YS00ZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE9XVTI3agRTMOoxDQYFhL9EiJ4docei6k4lRyy/2ELPOQgb1NhmnyoWOB4R jCt0X9iHlEmYMtmamdeAFExqq06KyFPMuDo4VAkMWg8Vm35dH90WXWMKEiOa1t4g yM0mHF4kRMjC1LTJqN6HGlWYYqFZV/8YfvdcbjYcvqN7jcf6cfbdvFmq0Qj9sLwb wx99YtO+tnF/js/uOUCd6uB3iUZljb9p1f71kQ7lmna89EYZ3PrYtwmPgNZcRwA1 00wBE+ziM1L3zrGoP8J7m5HFnwbnwX/T7m+4y2e0sPqwE1NpNFxY+H2yO2veB8FZ idz9rpHCyfeA2G4BR95Ibndi6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9nF7Pd xBZAcWcVMBJXh7cEbDIAMB8GA1UdIwQYMBaAFPBGZZPCts6py/AuJqrmv3kPUn6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhEMS83QzRFMzRCQzY3 NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpxbkw4QzRtcXVhX2VROVNm cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFWmxrOEsyenFuTDhDNG1xdWFfZVE5U2ZxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhEMS83QzRFMzRCQzY3NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpx bkw4QzRtcXVhX2VROVNmcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCszhWU6QdW/w2QsDNyxcdW0ygjHjAIC6Fbf401EItO83QZ/0FXuYLZ yKoeULqQy0MDFsV7Nwhl1AkPUl9NJH+Qb+eEqp/p8g3zxBPEPIn2lCNsnydnN7XH +2V6ae6cIzbF8cSwmnOjoY6PMFOOclgskmfLxi4TKmW+hSRGRk8p0RSCqP/COwET 0CkflMjEgqB53Air41xdKX0aZ4tppw0633hFZGmD1YmZKPfyHmsMw9MHfZPKTM77 p7tzuZXm6CzsXLd1RpwyP/u01I+jfr1doQeQfP7/y55Pac3l8fYrQOlNKUtb2xoO P2h3cC/2zMfLQ4E0Upd6aGoBDtVEGDFY -----END CERTIFICATE-----Generated at Mon Aug 11 04:43:34 2025 by rpki-client