$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft File: C7AFcf321rzGNEbrOmSR-uqpCG8.mft (raw, json) Hash identifier: kUIYSjbjukMl7JO52irjQv4LmeSWmOb2zV8BDKO4Jjw= Subject key identifier: E5:35:51:E4:A3:58:AA:7C:10:B5:7F:B1:64:A6:E0:D6:3C:02:67:BE Authority key identifier: 0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F Certificate issuer: /CN=A912AC83/serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Certificate serial: 0569 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft Manifest number: 0564 Signing time: Fri 22 Aug 2025 23:32:09 +0000 Manifest this update: Fri 22 Aug 2025 23:32:08 +0000 Manifest next update: Fri 29 Aug 2025 23:32:08 +0000 Files and hashes: 1: C7AFcf321rzGNEbrOmSR-uqpCG8.crl (hash: HnXMfznDJtyP4gQEgVe39x4SxSDbrCkYegfWm8/xoVk=) 2: 6B191E20F75811EB9C2B5D4DC4F9AE02.roa (hash: gIqEUytD692JqpeV91M06iKGJH68vEW3s4YtICieKE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1385 (0x569) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC83, serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Validity Not Before: Aug 22 23:32:08 2025 GMT Not After : Aug 29 23:32:08 2025 GMT Subject: CN=68a8fdf8-1537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8e:86:52:8e:b5:88:d8:89:31:b9:9d:ea:70: 77:f7:e0:ab:53:3c:4e:d8:d2:01:b6:53:d4:2b:34: 3a:67:55:1b:3a:14:fc:13:07:10:41:71:97:ad:3f: 84:bb:bd:2b:28:53:c6:bd:59:c9:5b:ea:b1:36:d8: bd:b5:7c:93:2e:e9:40:44:4d:8e:91:8c:f7:53:34: e3:bd:8b:4c:bc:ce:2f:5e:2f:ef:36:1d:c2:d1:cd: c1:64:ca:54:6b:00:31:6a:3e:12:27:09:3f:69:ce: 0d:dc:b9:87:2e:3b:14:66:67:68:9c:fe:0d:1f:86: 3a:51:38:cd:3e:3e:48:5d:84:8b:5a:b8:2a:b7:e0: ab:af:af:b4:a4:aa:0e:a6:2f:b1:14:f8:0e:06:93: 83:1e:5a:34:49:20:89:a8:3a:f7:08:ac:1d:ba:ea: f6:ea:af:df:50:d5:3a:34:6c:42:82:67:2a:15:8b: 8e:d4:d0:2d:26:d2:a3:bf:39:57:47:cb:25:aa:09: 66:8f:65:df:6b:86:fa:2a:15:79:8d:2b:98:21:16: 71:cb:e7:11:d9:15:7c:8b:d8:a9:cd:56:f1:b1:14: 46:10:23:97:06:c0:4e:af:2a:62:25:2e:7d:73:d2: a5:31:b3:eb:c2:47:3a:0f:f9:00:b6:bc:5d:55:37: 52:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:35:51:E4:A3:58:AA:7C:10:B5:7F:B1:64:A6:E0:D6:3C:02:67:BE X509v3 Authority Key Identifier: keyid:0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:7a:00:5b:b0:25:11:12:df:8d:ab:58:21:81:57:68:f4:42: fb:79:dd:16:0d:44:bd:61:a0:a1:d4:9b:4f:85:20:59:2e:ce: 88:d1:81:1f:c5:c8:10:c2:0c:3a:2b:6a:77:2e:6e:04:5c:b2: 69:4d:6b:59:1a:98:27:d2:4a:32:a3:4d:dc:8e:88:36:65:c9: a0:1e:d1:a0:0e:97:f5:28:0a:0b:49:cb:31:e3:90:e6:f4:54: 6f:09:3f:ed:1f:f2:59:65:26:b1:34:b9:06:44:02:a6:f2:6f: f7:5c:d7:3b:52:14:8e:20:46:a2:d3:b8:7e:4d:6a:05:59:b4: 28:28:dc:55:55:ae:07:e4:af:ee:5d:d8:81:c1:a1:1c:f0:0c: 9b:fd:47:f6:e0:1c:7f:12:33:0c:3f:4d:03:9d:e8:6f:8c:d7: 01:ca:6c:be:c4:c9:81:7a:de:e3:d3:14:ae:80:11:cf:89:2d: 7c:be:fe:bb:fa:ec:bb:10:a9:0a:16:5c:66:28:4d:f1:aa:56: e1:67:6e:36:0f:d2:e6:14:08:4a:37:bb:57:df:0d:19:51:e4: 1f:58:7d:3d:42:ee:d8:d2:db:e5:6d:9c:e2:f0:e1:c5:be:a4: 5f:df:a0:29:1a:e5:85:c0:d8:13:5d:a7:8b:54:a2:14:eb:e2: 85:65:a3:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDODMxMTAvBgNVBAUTKDBCQjAwNTcxRkRGNkQ2QkNDNjM0NDZFQjNBNjQ5MUZB RUFBOTA4NkYwHhcNMjUwODIyMjMzMjA4WhcNMjUwODI5MjMzMjA4WjAYMRYwFAYD VQQDEw02OGE4ZmRmOC0xNTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4o6GUo61iNiJMbmd6nB39+CrUzxO2NIBtlPUKzQ6Z1UbOhT8EwcQQXGXrT+E u70rKFPGvVnJW+qxNti9tXyTLulARE2OkYz3UzTjvYtMvM4vXi/vNh3C0c3BZMpU awAxaj4SJwk/ac4N3LmHLjsUZmdonP4NH4Y6UTjNPj5IXYSLWrgqt+Crr6+0pKoO pi+xFPgOBpODHlo0SSCJqDr3CKwduur26q/fUNU6NGxCgmcqFYuO1NAtJtKjvzlX R8slqglmj2Xfa4b6KhV5jSuYIRZxy+cR2RV8i9ipzVbxsRRGECOXBsBOrypiJS59 c9KlMbPrwkc6D/kAtrxdVTdSmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOU1UeSj WKp8ELV/sWSm4NY8Ame+MB8GA1UdIwQYMBaAFAuwBXH99ta8xjRG6zpkkfrqqQhv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUM4My80QkFGQjExOEY3 NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFyekdORWJyT21TUi11cXBD RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QUZjZjMyMXJ6R05FYnJPbVNSLXVxcENHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUM4My80QkFGQjExOEY3NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFy ekdORWJyT21TUi11cXBDRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoegBbsCUREt+Nq1ghgVdo9EL7ed0WDUS9YaCh1JtPhSBZLs6I0YEf xcgQwgw6K2p3Lm4EXLJpTWtZGpgn0koyo03cjog2ZcmgHtGgDpf1KAoLScsx45Dm 9FRvCT/tH/JZZSaxNLkGRAKm8m/3XNc7UhSOIEai07h+TWoFWbQoKNxVVa4H5K/u XdiBwaEc8Ayb/Uf24Bx/EjMMP00DnehvjNcBymy+xMmBet7j0xSugBHPiS18vv67 +uy7EKkKFlxmKE3xqlbhZ242D9LmFAhKN7tX3w0ZUeQfWH09Qu7Y0tvlbZzi8OHF vqRf36ApGuWFwNgTXaeLVKIU6+KFZaOZ -----END CERTIFICATE-----Generated at Sat Aug 23 17:16:01 2025 by rpki-client