$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: mIs8qJCkiL1GUHlzuDxsYexvCYs7SQL7LjmMVpePkzM= Subject key identifier: 84:CE:B5:D9:44:DD:D7:EB:FD:A0:18:3F:C3:FA:FA:9F:62:F4:FA:B1 Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 0239 Signing time: Sat 09 Aug 2025 02:25:20 +0000 Manifest this update: Sat 09 Aug 2025 02:25:19 +0000 Manifest next update: Sat 16 Aug 2025 02:25:19 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: wKJuorL4iRBMw33YbUTfQxjAaOq3E1QNl3GEQb78M50=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: LAWmMRc8daUtEB7NaiA0m2Tl41sqEulVfrA7do1Thps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Aug 9 02:25:19 2025 GMT Not After : Aug 16 02:25:19 2025 GMT Subject: CN=6896b190-08bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bc:ed:a4:b6:07:b2:4e:02:d1:e9:5f:cd:86: 4f:29:ee:b0:39:ae:a7:3f:05:fa:46:cf:5c:f9:fc: 80:8d:d9:2c:37:f8:8f:96:b4:16:96:2b:a9:42:f9: 96:ac:bb:9d:90:15:fa:95:7b:05:33:0b:e4:59:eb: 92:ce:9a:1d:60:ea:5a:37:ad:74:78:f4:26:b2:0e: 1c:9a:1a:0d:2c:8e:89:04:a4:69:ca:e3:83:62:f8: d5:19:e6:59:99:20:24:b5:2d:5c:47:02:6d:72:38: 81:a6:8a:ba:d7:f1:86:4d:ec:1f:d0:fd:ff:1b:dd: 75:42:b8:15:63:c6:4a:59:c2:47:16:67:37:de:aa: 10:59:93:d3:6d:c3:e2:53:eb:c8:1f:a8:bb:9a:0c: 33:33:d3:3e:14:d7:19:21:05:01:bc:35:a4:ff:64: 35:18:ca:ae:c6:58:ba:2c:41:dd:f4:b8:9e:81:5e: 10:82:8d:60:78:d7:42:5c:91:ee:da:77:65:38:05: a9:84:4c:00:ce:78:0e:bc:53:7d:3b:22:e0:a4:1a: c7:77:33:10:78:fd:01:d9:2b:da:01:ee:13:3e:86: 7d:5b:63:9a:7b:3c:d1:50:a7:c6:2b:c5:0c:96:3d: 58:26:7a:81:d2:69:67:fa:e9:aa:45:84:87:a5:a3: 54:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:CE:B5:D9:44:DD:D7:EB:FD:A0:18:3F:C3:FA:FA:9F:62:F4:FA:B1 X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:70:65:a8:28:ed:ad:3e:a4:da:26:35:c8:54:99:b8:4a:1c: 0c:5a:13:ee:ca:7b:79:4e:7a:c2:c2:6d:b0:9e:6a:98:28:38: 74:9a:45:5a:c0:ca:13:e1:b5:f9:14:1f:af:6b:84:dd:00:93: 1c:6e:48:7b:1b:9b:89:5d:c0:13:2d:cf:f9:e1:46:84:78:70: dc:e4:be:a2:a5:ef:0b:9d:c9:9a:e3:3f:cd:fe:a0:7d:d2:88: 24:30:ee:6e:9e:fa:aa:b5:b8:dc:9b:09:bc:af:5f:89:fa:45: 8f:46:c3:e8:e1:1c:7c:ab:bc:77:1c:6f:b5:39:34:2f:d0:dd: 26:be:67:cf:d3:9e:b9:74:53:52:77:7a:9b:a8:f4:bb:7c:f3: c8:51:39:65:de:d0:40:6f:7f:9b:5a:76:45:b0:bd:f6:64:6c: 6b:e0:f1:44:cd:37:e3:3f:27:af:ce:df:74:65:c9:31:71:b4: 05:bb:19:ed:ca:28:37:8a:af:8b:1a:61:9c:2c:16:9c:fb:f3: b5:68:e1:6b:e0:79:b0:77:a6:0c:5e:0c:97:21:c4:f0:02:ad: ea:b9:80:0f:74:22:b6:f7:2d:28:e9:7f:2a:2b:7a:e7:fa:3a: 48:d1:2b:ff:fe:e0:a5:ab:2d:27:b8:85:26:d8:fc:6b:ea:4f: 7d:34:ba:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUwODA5MDIyNTE5WhcNMjUwODE2MDIyNTE5WjAYMRYwFAYD VQQDEw02ODk2YjE5MC0wOGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobztpLYHsk4C0elfzYZPKe6wOa6nPwX6Rs9c+fyAjdksN/iPlrQWliupQvmW rLudkBX6lXsFMwvkWeuSzpodYOpaN610ePQmsg4cmhoNLI6JBKRpyuODYvjVGeZZ mSAktS1cRwJtcjiBpoq61/GGTewf0P3/G911QrgVY8ZKWcJHFmc33qoQWZPTbcPi U+vIH6i7mgwzM9M+FNcZIQUBvDWk/2Q1GMquxli6LEHd9LiegV4Qgo1geNdCXJHu 2ndlOAWphEwAzngOvFN9OyLgpBrHdzMQeP0B2SvaAe4TPoZ9W2OaezzRUKfGK8UM lj1YJnqB0mln+umqRYSHpaNUrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITOtdlE 3dfr/aAYP8P6+p9i9PqxMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAocGWoKO2tPqTaJjXIVJm4ShwMWhPuynt5TnrCwm2wnmqYKDh0mkVa wMoT4bX5FB+va4TdAJMcbkh7G5uJXcATLc/54UaEeHDc5L6ipe8Lncma4z/N/qB9 0ogkMO5unvqqtbjcmwm8r1+J+kWPRsPo4Rx8q7x3HG+1OTQv0N0mvmfP0565dFNS d3qbqPS7fPPIUTll3tBAb3+bWnZFsL32ZGxr4PFEzTfjPyevzt90ZckxcbQFuxnt yig3iq+LGmGcLBac+/O1aOFr4Hmwd6YMXgyXIcTwAq3quYAPdCK29y0o6X8qK3rn +jpI0Sv//uClqy0nuIUm2Pxr6k99NLor -----END CERTIFICATE-----Generated at Sat Aug 9 20:44:38 2025 by rpki-client