$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft File: L8Qw8eIVy9fgjyZDiDcDUALeMak.mft (raw, json) Hash identifier: ddYAKL3cUcevXi0bBxyMYe0hdYumr7KxMQsoa9yc7Ag= Subject key identifier: 4D:DD:FC:09:30:1F:C8:30:D0:A4:EE:F8:AC:B8:C3:3D:B6:9F:49:AB Authority key identifier: 2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 Certificate issuer: /CN=A91CB8A3/serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Certificate serial: 02CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft Manifest number: 02C8 Signing time: Sat 09 Aug 2025 01:56:15 +0000 Manifest this update: Sat 09 Aug 2025 01:56:14 +0000 Manifest next update: Sat 16 Aug 2025 01:56:14 +0000 Files and hashes: 1: L8Qw8eIVy9fgjyZDiDcDUALeMak.crl (hash: I0MYknQQCmYC1xvjrz7o05NpeCpHvKfb7WoYUxCU4+Y=) 2: 3AA7B0EC6BC811F09EA1EF7EC4F9AE02.roa (hash: x1rSkmkOeFMCvZiNfKlKJPeeli2ytnKQuinhUVmkFyU=) 3: CC1ACE7A6BC711F098C3B76CC4F9AE02.roa (hash: 56NWFLr0dC6w6GZlh7YAHTC6nXr9P2oaly4CuqAwl34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8A3, serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Validity Not Before: Aug 9 01:56:14 2025 GMT Not After : Aug 16 01:56:14 2025 GMT Subject: CN=6896aabf-edf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:af:38:f5:25:89:88:7d:96:fe:52:8e:e9:cb: 9b:b7:2d:f5:53:75:e4:ee:17:41:a1:51:7e:83:b9: a0:1e:f0:a5:da:dd:87:14:06:94:d3:af:ba:0d:8e: 0e:23:61:5f:51:a2:2e:60:a6:7b:0d:51:bf:a3:20: 5e:e5:9d:36:92:4f:36:6c:36:19:f6:2a:f4:e8:99: b7:6b:a9:61:8f:7b:51:40:e8:58:d6:9b:00:e5:5b: 35:2c:b9:ee:ea:16:db:ff:5c:19:c4:d3:1e:81:2a: 2c:17:6c:79:e5:e7:12:63:e5:9d:a5:db:66:06:68: 61:97:57:20:ba:69:93:ff:b1:b0:08:94:d5:92:e6: d5:26:e9:2c:85:e4:85:fb:e7:33:7d:86:bf:df:c2: 61:32:98:f5:87:36:61:4f:c0:ad:c3:a7:ae:a5:8a: fb:bf:e3:e4:42:e3:31:43:91:89:2a:6a:e4:78:34: 78:e9:9d:37:fb:4d:28:fe:fb:47:53:1d:28:9b:ff: 40:a2:8f:88:d0:de:95:16:04:f7:d9:ad:a7:d4:e7: aa:76:70:fb:6f:23:7b:6f:8c:04:fc:22:6a:96:c9: 4f:16:55:62:5d:71:b5:b6:d0:b1:8f:86:3d:ef:d1: 74:71:b9:fe:f9:7d:c4:52:a5:b8:bf:d7:bb:b2:85: 9d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:DD:FC:09:30:1F:C8:30:D0:A4:EE:F8:AC:B8:C3:3D:B6:9F:49:AB X509v3 Authority Key Identifier: keyid:2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:52:0f:27:8f:c3:c3:ba:56:8d:13:47:ec:8e:35:6b:c7:2b: b3:81:67:93:32:fc:30:33:c7:72:64:0b:39:a9:03:d0:cf:4f: be:d4:a9:e1:02:5d:b1:e2:e7:71:3c:9f:d9:46:7f:7c:9d:f6: 2e:06:b8:fd:63:c5:6b:22:91:ab:79:68:2b:9c:00:45:c6:fe: e9:0a:e6:23:5f:c5:3e:87:5c:e1:77:d3:30:63:69:e0:47:77: 7e:7e:9b:f1:c0:20:6f:a0:59:dd:db:bc:6e:93:0a:71:24:e6: 17:d4:e5:67:79:03:e6:e3:50:75:f0:f5:1e:44:c3:9c:a1:d4: 34:5f:d0:d5:e1:9a:9f:77:04:b2:d0:4b:57:cf:d3:c0:7f:60: 79:81:12:a3:6d:00:a4:5d:fb:b7:bb:9e:33:cb:a5:11:29:5d: a7:3f:cb:6c:bc:5b:f8:0b:b1:dd:05:85:78:0b:5c:39:09:86: 3f:dd:ba:eb:2d:2f:e0:3a:9d:6c:ed:94:39:77:ce:7d:7a:ec: 92:fc:93:0e:17:52:f3:ca:3f:b5:01:bd:01:ec:b1:78:f0:ad: 05:ac:40:e6:d9:e3:0b:ce:08:3b:26:17:96:24:6c:4f:49:12: 8c:a2:0b:65:5e:97:38:33:3f:fe:98:73:0b:49:1e:14:6b:d9: 52:79:46:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QTMxMTAvBgNVBAUTKDJGQzQzMEYxRTIxNUNCRDdFMDhGMjY0Mzg4MzcwMzUw MDJERTMxQTkwHhcNMjUwODA5MDE1NjE0WhcNMjUwODE2MDE1NjE0WjAYMRYwFAYD VQQDEw02ODk2YWFiZi1lZGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6849SWJiH2W/lKO6cubty31U3Xk7hdBoVF+g7mgHvCl2t2HFAaU06+6DY4O I2FfUaIuYKZ7DVG/oyBe5Z02kk82bDYZ9ir06Jm3a6lhj3tRQOhY1psA5Vs1LLnu 6hbb/1wZxNMegSosF2x55ecSY+WdpdtmBmhhl1cgummT/7GwCJTVkubVJuksheSF ++czfYa/38JhMpj1hzZhT8Ctw6eupYr7v+PkQuMxQ5GJKmrkeDR46Z03+00o/vtH Ux0om/9Aoo+I0N6VFgT32a2n1OeqdnD7byN7b4wE/CJqlslPFlViXXG1ttCxj4Y9 79F0cbn++X3EUqW4v9e7soWdqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3d/Akw H8gw0KTu+Ky4wz22n0mrMB8GA1UdIwQYMBaAFC/EMPHiFcvX4I8mQ4g3A1AC3jGp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhBMy85NjY1MEYzOEZE MTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5ZmdqeVpEaURjRFVBTGVN YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UXc4ZUlWeTlmZ2p5WkRpRGNEVUFMZU1hay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhBMy85NjY1MEYzOEZEMTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5 ZmdqeVpEaURjRFVBTGVNYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLUg8nj8PDulaNE0fsjjVrxyuzgWeTMvwwM8dyZAs5qQPQz0++1Knh Al2x4udxPJ/ZRn98nfYuBrj9Y8VrIpGreWgrnABFxv7pCuYjX8U+h1zhd9MwY2ng R3d+fpvxwCBvoFnd27xukwpxJOYX1OVneQPm41B18PUeRMOcodQ0X9DV4ZqfdwSy 0EtXz9PAf2B5gRKjbQCkXfu3u54zy6URKV2nP8tsvFv4C7HdBYV4C1w5CYY/3brr LS/gOp1s7ZQ5d859euyS/JMOF1Lzyj+1Ab0B7LF48K0FrEDm2eMLzgg7JheWJGxP SRKMogtlXpc4Mz/+mHMLSR4Ua9lSeUZi -----END CERTIFICATE-----Generated at Sat Aug 9 23:17:12 2025 by rpki-client