$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: B0mkZFTNPyKFkJvOP+qvPax4tRxC5cAQD5XU9k7J+Tg= Subject key identifier: C3:E4:0C:E9:C9:4C:6D:49:08:BF:FC:33:50:52:68:37:0C:52:C8:A8 Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0C74 Signing time: Fri 08 Aug 2025 18:35:01 +0000 Manifest this update: Fri 08 Aug 2025 18:35:01 +0000 Manifest next update: Fri 15 Aug 2025 18:35:01 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: 60rBmY2HNZtR9Ev0IaTM9xiGgcKKcOfBV3kz3jrrZgM=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: hMRVZDPhI9uQhHlcLsQL6+B9hhuCOLqR+jjUlDn3sAQ=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: s3U0q40HWyXJCTwtjWa8KKHr421/tnOx6JMPLRqROA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Aug 8 18:35:01 2025 GMT Not After : Aug 15 18:35:01 2025 GMT Subject: CN=68964355-9a69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4e:f9:c7:59:8a:ad:c5:70:62:4b:36:9e:f3: 7a:87:e2:81:7c:53:04:e0:74:4e:b7:40:33:98:0a: 4b:7a:a7:f0:a3:b3:f2:d5:13:48:16:dd:8b:07:8f: b2:59:e9:2e:57:b6:ae:a3:b1:aa:90:bc:dc:90:c1: 10:87:ab:59:1a:15:bb:06:59:ca:6a:0b:9d:6f:14: 25:b3:26:f4:ef:e0:b5:c9:63:84:b0:a9:ea:c6:58: f8:fd:18:3a:5f:5b:44:bc:03:6f:4c:de:22:fd:cc: d5:a8:a3:e6:0d:5e:9c:49:2f:22:40:8c:53:2c:b3: 83:e8:4b:0d:ad:05:cd:8a:6d:98:2e:c8:94:c5:02: 11:11:e5:86:1b:a5:1f:19:ac:b9:c1:a0:b8:f3:ca: 6a:2b:03:a1:ef:fc:14:19:71:40:06:c5:98:db:23: c9:b6:a2:92:b0:b2:93:67:b7:d9:16:fd:d8:f5:94: c6:14:be:5a:3b:f9:f9:fd:66:01:b0:67:84:2c:cc: 54:75:de:c7:3e:4b:c0:fb:dc:c0:38:7b:d7:8c:bb: 7b:ab:9a:05:1a:07:57:e9:0c:44:1e:8d:c4:75:15: d1:90:b7:50:be:33:47:1d:39:99:cb:55:69:37:78: 43:e0:98:6c:68:55:75:c2:99:b7:46:9e:d8:e5:54: 9b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E4:0C:E9:C9:4C:6D:49:08:BF:FC:33:50:52:68:37:0C:52:C8:A8 X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:16:50:9d:ad:41:97:6a:d5:b2:70:e6:2f:64:d6:44:cb:38: 76:ae:8c:b2:22:4a:56:d8:8f:00:01:63:8f:52:f3:fa:54:07: c3:19:9d:48:16:fe:03:e6:13:6b:f8:29:a6:f7:5c:84:16:79: 57:b6:51:39:48:ef:d0:6e:4c:23:90:a9:fd:b9:3f:32:f3:44: b7:42:d5:54:7c:53:c2:00:da:95:20:9a:25:66:f1:4a:86:08: 93:82:3b:a6:e9:58:3a:33:a8:13:9c:3c:89:a6:9f:a6:57:d1: ac:da:8f:56:21:66:ca:ff:7b:44:94:aa:7e:0c:df:53:46:ce: 44:df:af:76:95:53:53:38:aa:cf:c6:1e:af:09:8d:7c:96:8a: b8:8e:94:37:90:3c:78:5a:ef:c6:56:62:82:a7:35:bd:2b:39: 30:f9:d2:d0:cb:8b:88:6d:d0:fa:b1:6e:38:10:fe:73:ef:42: 5d:03:53:15:02:38:88:26:7a:4c:2e:0f:66:7e:ec:d2:3c:7d: c8:b2:3b:af:e8:24:86:08:70:15:fe:36:47:95:12:93:28:eb: 29:13:f4:35:68:07:97:29:89:81:79:85:c4:2a:4f:e1:ee:16: 53:b2:75:f8:2b:78:07:30:bd:b9:0a:39:ad:82:c9:ab:9e:7d: d8:13:4c:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjUwODA4MTgzNTAxWhcNMjUwODE1MTgzNTAxWjAYMRYwFAYD VQQDEw02ODk2NDM1NS05YTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv075x1mKrcVwYks2nvN6h+KBfFME4HROt0AzmApLeqfwo7Py1RNIFt2LB4+y WekuV7auo7GqkLzckMEQh6tZGhW7BlnKagudbxQlsyb07+C1yWOEsKnqxlj4/Rg6 X1tEvANvTN4i/czVqKPmDV6cSS8iQIxTLLOD6EsNrQXNim2YLsiUxQIREeWGG6Uf Gay5waC488pqKwOh7/wUGXFABsWY2yPJtqKSsLKTZ7fZFv3Y9ZTGFL5aO/n5/WYB sGeELMxUdd7HPkvA+9zAOHvXjLt7q5oFGgdX6QxEHo3EdRXRkLdQvjNHHTmZy1Vp N3hD4JhsaFV1wpm3Rp7Y5VSbUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPkDOnJ TG1JCL/8M1BSaDcMUsioMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmFlCdrUGXatWycOYvZNZEyzh2royyIkpW2I8AAWOPUvP6VAfDGZ1I Fv4D5hNr+Cmm91yEFnlXtlE5SO/QbkwjkKn9uT8y80S3QtVUfFPCANqVIJolZvFK hgiTgjum6Vg6M6gTnDyJpp+mV9Gs2o9WIWbK/3tElKp+DN9TRs5E3692lVNTOKrP xh6vCY18loq4jpQ3kDx4Wu/GVmKCpzW9Kzkw+dLQy4uIbdD6sW44EP5z70JdA1MV AjiIJnpMLg9mfuzSPH3Isjuv6CSGCHAV/jZHlRKTKOspE/Q1aAeXKYmBeYXEKk/h 7hZTsnX4K3gHML25Cjmtgsmrnn3YE0xn -----END CERTIFICATE-----Generated at Sat Aug 9 15:13:11 2025 by rpki-client