$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft File: J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft (raw, json) Hash identifier: 1nBab5TyxFN68T0qMpAbVswmOBsy0196XeUVkrpQ0YM= Subject key identifier: 9E:28:3C:E8:30:DB:7B:93:CE:69:E8:3A:61:B0:68:86:3C:CF:6A:43 Authority key identifier: 27:C8:7B:5E:30:B0:3C:2C:15:0A:22:E6:C4:2A:5E:06:99:C9:0B:FC Certificate issuer: /CN=A91C2610/serialNumber=27C87B5E30B03C2C150A22E6C42A5E0699C90BFC Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8h7XjCwPCwVCiLmxCpeBpnJC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft Manifest number: 8A Signing time: Sun 03 Aug 2025 06:56:45 +0000 Manifest this update: Sun 03 Aug 2025 06:56:45 +0000 Manifest next update: Sun 10 Aug 2025 06:56:45 +0000 Files and hashes: 1: J8h7XjCwPCwVCiLmxCpeBpnJC_w.crl (hash: dEAaOfkFtOeXbuyoXdKAFyQD88ADs/laTFFFrBZAlPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.crl rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8h7XjCwPCwVCiLmxCpeBpnJC_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 06:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2610, serialNumber=27C87B5E30B03C2C150A22E6C42A5E0699C90BFC Validity Not Before: Aug 3 06:56:45 2025 GMT Not After : Aug 10 06:56:45 2025 GMT Subject: CN=688f082d-92fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8d:cb:00:59:8d:81:4a:58:39:b4:d7:06:41: 33:4e:db:36:51:86:5c:3c:c7:0e:94:16:2e:c0:3d: e3:3a:09:91:30:37:bb:5e:d9:7c:d5:49:28:f3:9d: e3:1a:71:5a:4f:50:f6:95:32:00:72:18:ca:4a:2c: 38:5b:05:87:b1:f1:5c:7c:26:1f:cf:c3:51:c0:e1: 87:1d:6c:4d:1f:b4:dd:ab:74:87:29:67:d3:44:97: e5:f9:cf:01:f3:54:8b:4e:66:77:5d:19:f7:10:71: 26:e9:ff:a8:17:4e:43:0d:07:2f:30:9f:f1:ac:be: 2e:45:2e:f8:35:4e:d2:43:34:a6:71:71:50:63:48: 02:46:b4:fb:2c:46:39:b3:67:f0:3b:b5:85:20:7a: 2d:26:ae:1c:59:1b:41:97:a1:a7:a6:8f:24:5e:c4: 0d:40:1a:b5:b6:cb:28:ef:c0:b1:e1:5f:fe:d9:ac: 85:ab:3f:5e:09:03:71:bc:5c:f7:7a:59:28:08:0a: 0c:2a:0a:1a:4a:ce:28:c6:60:13:e6:f3:84:50:fd: 18:20:c8:20:47:55:0a:64:77:0b:62:c2:30:be:de: 75:d1:e6:d2:a7:5c:24:82:52:0a:ad:78:ee:52:f7: c5:5e:3f:79:c0:57:38:47:cc:b7:aa:4a:a1:0a:36: 0a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:28:3C:E8:30:DB:7B:93:CE:69:E8:3A:61:B0:68:86:3C:CF:6A:43 X509v3 Authority Key Identifier: keyid:27:C8:7B:5E:30:B0:3C:2C:15:0A:22:E6:C4:2A:5E:06:99:C9:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8h7XjCwPCwVCiLmxCpeBpnJC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2610/BFD3E92EA1E411EFB98B0C4EC4F9AE02/J8h7XjCwPCwVCiLmxCpeBpnJC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:84:27:54:c5:78:44:ba:79:0b:dc:da:a0:c3:35:46:7a:d1: d7:9b:de:37:14:59:6f:13:c5:64:bc:df:0f:99:d3:39:9e:89: 3a:3a:74:52:34:65:32:0e:7b:54:77:e2:58:5a:d9:12:2b:99: d3:6c:9a:5a:b4:be:48:06:1a:a3:f9:ec:27:a1:ba:5f:3a:4d: 60:3f:63:05:4d:67:d2:7b:4f:6f:26:92:fd:75:a4:76:5a:9b: 4b:af:ad:7e:d5:e2:ea:09:46:e1:e2:e9:c6:01:31:6c:2e:ae: 07:88:f1:2e:51:bf:eb:7a:83:7e:ff:62:ef:06:ba:2b:96:73: 67:06:5e:d5:93:39:97:cc:90:d9:82:a2:2c:30:37:be:c8:58: 7e:9a:aa:1a:32:b2:ba:0d:41:bb:5c:b5:7a:89:23:28:99:37: cd:79:2f:19:77:ce:fb:1e:64:2e:fa:9e:24:39:a5:bd:f9:f3: 57:8a:37:fe:6b:9f:57:d2:44:9a:b0:83:8e:0e:3a:60:04:24: e3:ab:2d:18:01:ab:3d:81:60:e1:d9:4c:ef:a4:da:fc:82:07: 67:1d:69:5f:8a:7d:59:73:06:7b:a7:57:b6:7a:11:a2:33:5d: 74:a3:f4:e0:73:e1:2e:3d:a2:cb:64:fd:66:a1:1a:a6:77:09: 82:d9:a7:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2MTAxMTAvBgNVBAUTKDI3Qzg3QjVFMzBCMDNDMkMxNTBBMjJFNkM0MkE1RTA2 OTlDOTBCRkMwHhcNMjUwODAzMDY1NjQ1WhcNMjUwODEwMDY1NjQ1WjAYMRYwFAYD VQQDEw02ODhmMDgyZC05MmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx43LAFmNgUpYObTXBkEzTts2UYZcPMcOlBYuwD3jOgmRMDe7Xtl81Uko853j GnFaT1D2lTIAchjKSiw4WwWHsfFcfCYfz8NRwOGHHWxNH7Tdq3SHKWfTRJfl+c8B 81SLTmZ3XRn3EHEm6f+oF05DDQcvMJ/xrL4uRS74NU7SQzSmcXFQY0gCRrT7LEY5 s2fwO7WFIHotJq4cWRtBl6Gnpo8kXsQNQBq1tsso78Cx4V/+2ayFqz9eCQNxvFz3 elkoCAoMKgoaSs4oxmAT5vOEUP0YIMggR1UKZHcLYsIwvt510ebSp1wkglIKrXju UvfFXj95wFc4R8y3qkqhCjYKuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4oPOgw 23uTzmnoOmGwaIY8z2pDMB8GA1UdIwQYMBaAFCfIe14wsDwsFQoi5sQqXgaZyQv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjYxMC9CRkQzRTkyRUEx RTQxMUVGQjk4QjBDNEVDNEY5QUUwMi9KOGg3WGpDd1BDd1ZDaUxteENwZUJwbkpD X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4aDdYakN3UEN3VkNpTG14Q3BlQnBuSkNfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjYxMC9CRkQzRTkyRUExRTQxMUVGQjk4QjBDNEVDNEY5QUUwMi9KOGg3WGpDd1BD d1ZDaUxteENwZUJwbkpDX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAChCdUxXhEunkL3NqgwzVGetHXm943FFlvE8VkvN8PmdM5nok6OnRS NGUyDntUd+JYWtkSK5nTbJpatL5IBhqj+ewnobpfOk1gP2MFTWfSe09vJpL9daR2 WptLr61+1eLqCUbh4unGATFsLq4HiPEuUb/reoN+/2LvBrorlnNnBl7VkzmXzJDZ gqIsMDe+yFh+mqoaMrK6DUG7XLV6iSMomTfNeS8Zd877HmQu+p4kOaW9+fNXijf+ a59X0kSasIOODjpgBCTjqy0YAas9gWDh2UzvpNr8ggdnHWlfin1ZcwZ7p1e2ehGi M110o/Tgc+EuPaLLZP1moRqmdwmC2adf -----END CERTIFICATE-----Generated at Mon Aug 4 11:27:45 2025 by rpki-client