$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft File: 8psj6k4RTNycptN_Xvee9MNccoI.mft (raw, json) Hash identifier: IChpiocs0o/uZFPCGZCZy47kbRob6T/gOvgcClvxt7Q= Subject key identifier: FC:A1:09:0C:42:66:5D:B5:0E:D4:BD:B1:3E:81:C4:18:23:42:A7:0B Authority key identifier: F2:9B:23:EA:4E:11:4C:DC:9C:A6:D3:7F:5E:F7:9E:F4:C3:5C:72:82 Certificate issuer: /CN=A91C0372/serialNumber=F29B23EA4E114CDC9CA6D37F5EF79EF4C35C7282 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft Manifest number: 0134 Signing time: Thu 07 Aug 2025 05:01:44 +0000 Manifest this update: Thu 07 Aug 2025 05:01:43 +0000 Manifest next update: Thu 14 Aug 2025 05:01:43 +0000 Files and hashes: 1: 8psj6k4RTNycptN_Xvee9MNccoI.crl (hash: 26MP4A2DseOqCBOgm1DKlT2JfmO+d/Ju4vq/mXdIFQ0=) 2: 4B42335C9D8711EEAF2A6E25C4F9AE02.roa (hash: fBtaOlMCOFGQQtGdBagxQGnrYFNg/qX3d4dMpzhuZnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.crl rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0372, serialNumber=F29B23EA4E114CDC9CA6D37F5EF79EF4C35C7282 Validity Not Before: Aug 7 05:01:43 2025 GMT Not After : Aug 14 05:01:43 2025 GMT Subject: CN=68943337-74c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c5:ae:07:a4:40:79:87:b2:d0:c3:47:6f:45: c1:94:e8:ef:bd:36:29:28:2b:ef:57:e1:0b:51:20: 68:98:68:da:29:5f:59:29:29:7f:54:d0:24:c0:12: 85:2d:c3:e9:2b:8d:07:90:57:a4:a5:a8:27:00:17: 54:ea:9d:9c:fe:18:b6:e4:69:81:b1:5c:ed:21:b0: 38:17:be:20:8e:47:64:f5:60:4b:bc:03:ea:cc:41: 91:a8:12:5f:68:1f:d9:c6:c1:80:06:39:77:be:c5: 0c:27:b2:36:8a:7d:dd:fc:8c:3d:55:31:85:bb:ab: f6:89:f1:b8:2e:79:c0:5b:ba:cd:c0:fc:fa:e5:f2: c0:22:ac:9e:44:48:52:82:6c:62:3a:f5:92:7e:f2: f4:91:89:17:b0:04:fa:c2:89:ba:28:c2:30:21:e9: 6e:da:35:7e:01:a6:b6:59:ae:2a:33:9b:1e:f2:26: 48:2b:2c:a6:32:ba:42:72:36:5d:91:7d:46:92:c3: db:d7:7c:71:1d:71:22:f4:60:e3:0d:75:e9:e3:d1: 70:50:e7:69:00:a3:7e:e2:93:75:83:eb:3b:ac:18: 7e:8c:cc:13:83:65:53:14:f7:9f:68:cd:0e:0f:0c: 6e:ac:c8:0c:d7:b8:f1:9a:c2:67:18:4e:28:2c:8d: 70:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A1:09:0C:42:66:5D:B5:0E:D4:BD:B1:3E:81:C4:18:23:42:A7:0B X509v3 Authority Key Identifier: keyid:F2:9B:23:EA:4E:11:4C:DC:9C:A6:D3:7F:5E:F7:9E:F4:C3:5C:72:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8psj6k4RTNycptN_Xvee9MNccoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0372/20A54FC89D8511EE9181C121C4F9AE02/8psj6k4RTNycptN_Xvee9MNccoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:b4:2c:4c:70:44:30:0d:21:26:65:49:ba:e7:74:f5:dd:8c: bd:73:24:9c:db:74:c4:da:47:cf:a7:73:df:70:a9:a8:f5:f7: 81:cd:59:b2:b5:19:cf:e2:c2:a7:bb:53:96:fd:8d:a9:ea:9c: d0:0d:a1:89:0a:98:e2:57:51:a6:51:11:97:52:0d:4f:0a:0f: 95:6f:be:6b:6b:c4:a5:71:89:be:f6:50:29:04:55:a9:b2:13: 48:e7:d8:a4:8c:2e:a1:7a:c6:2a:72:11:d1:cb:37:b3:2b:9a: a3:9d:ca:dd:39:5d:44:76:fe:d5:bf:35:f1:46:f0:88:c0:9a: bf:74:81:8c:91:9e:68:e0:b7:b7:a3:d5:31:94:2b:fc:b7:aa: 7b:1e:b0:3d:5a:59:4b:d3:59:26:8f:41:f5:42:a6:62:2c:f6: ec:34:61:fc:bc:cd:54:aa:c2:30:dc:47:d5:12:b2:a4:02:e8: f6:b6:6a:ef:ee:17:0e:83:a3:1b:3c:4f:ef:b7:96:88:ce:da: b2:24:00:9f:c1:38:dc:62:72:1f:14:bc:0c:ed:64:44:c7:2d: 6f:76:94:2f:9e:35:29:d1:71:9d:76:ea:99:72:fa:f7:33:58: 14:9f:71:d9:1c:71:4f:ef:66:63:9c:b3:0f:e4:5b:25:73:0d: c5:3b:de:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAzNzIxMTAvBgNVBAUTKEYyOUIyM0VBNEUxMTRDREM5Q0E2RDM3RjVFRjc5RUY0 QzM1QzcyODIwHhcNMjUwODA3MDUwMTQzWhcNMjUwODE0MDUwMTQzWjAYMRYwFAYD VQQDEw02ODk0MzMzNy03NGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMWuB6RAeYey0MNHb0XBlOjvvTYpKCvvV+ELUSBomGjaKV9ZKSl/VNAkwBKF LcPpK40HkFekpagnABdU6p2c/hi25GmBsVztIbA4F74gjkdk9WBLvAPqzEGRqBJf aB/ZxsGABjl3vsUMJ7I2in3d/Iw9VTGFu6v2ifG4LnnAW7rNwPz65fLAIqyeREhS gmxiOvWSfvL0kYkXsAT6wom6KMIwIelu2jV+Aaa2Wa4qM5se8iZIKyymMrpCcjZd kX1GksPb13xxHXEi9GDjDXXp49FwUOdpAKN+4pN1g+s7rBh+jMwTg2VTFPefaM0O DwxurMgM17jxmsJnGE4oLI1w3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyhCQxC Zl21DtS9sT6BxBgjQqcLMB8GA1UdIwQYMBaAFPKbI+pOEUzcnKbTf173nvTDXHKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDM3Mi8yMEE1NEZDODlE ODUxMUVFOTE4MUMxMjFDNEY5QUUwMi84cHNqNms0UlROeWNwdE5fWHZlZTlNTmNj b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhwc2o2azRSVE55Y3B0Tl9YdmVlOU1OY2NvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDM3Mi8yMEE1NEZDODlEODUxMUVFOTE4MUMxMjFDNEY5QUUwMi84cHNqNms0UlRO eWNwdE5fWHZlZTlNTmNjb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6tCxMcEQwDSEmZUm653T13Yy9cySc23TE2kfPp3PfcKmo9feBzVmy tRnP4sKnu1OW/Y2p6pzQDaGJCpjiV1GmURGXUg1PCg+Vb75ra8SlcYm+9lApBFWp shNI59ikjC6hesYqchHRyzezK5qjncrdOV1Edv7VvzXxRvCIwJq/dIGMkZ5o4Le3 o9UxlCv8t6p7HrA9WllL01kmj0H1QqZiLPbsNGH8vM1UqsIw3EfVErKkAuj2tmrv 7hcOg6MbPE/vt5aIztqyJACfwTjcYnIfFLwM7WRExy1vdpQvnjUp0XGdduqZcvr3 M1gUn3HZHHFP72ZjnLMP5Fslcw3FO96A -----END CERTIFICATE-----Generated at Sat Aug 9 05:40:46 2025 by rpki-client