$ rpki-client -vvf rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft File: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft (raw, json) Hash identifier: Lv4xZvyudOVW8+cgxu5mOLvpp0isbuunMyOrOZ1BUHE= Subject key identifier: 3F:89:D1:6D:54:96:D0:AB:27:BE:4B:C2:76:83:19:A0:48:0B:63:3E Authority key identifier: F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17 Certificate issuer: /CN=A91329C1/serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717 Certificate serial: 02BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft Manifest number: 02BB Signing time: Sat 23 Aug 2025 01:42:19 +0000 Manifest this update: Sat 23 Aug 2025 01:42:18 +0000 Manifest next update: Sat 30 Aug 2025 01:42:18 +0000 Files and hashes: 1: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl (hash: CioxyT8PTobSyCc9uYtZjhn8KSNqw+6VwaXmQilO2JQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:42:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91329C1, serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717 Validity Not Before: Aug 23 01:42:18 2025 GMT Not After : Aug 30 01:42:18 2025 GMT Subject: CN=68a91c7a-828b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:de:13:8c:ae:ff:4f:3b:ed:55:b5:58:9c:6a: ba:f5:87:37:93:fc:60:db:c6:93:fa:c4:77:04:e0: d1:21:2f:83:e6:84:25:e1:8c:e4:c6:f3:a4:82:5f: a2:3c:a4:a3:6e:7f:61:a3:61:d2:43:63:1c:b2:08: 2e:38:15:97:65:c7:61:37:e8:6a:da:b5:a4:ce:67: 8e:b0:db:b6:99:69:f1:ca:43:46:38:05:ce:17:69: e9:02:ed:b9:df:b3:1c:de:35:fa:3c:e3:91:ad:54: d4:78:bb:9e:1b:a8:99:af:02:99:c1:91:52:80:51: ea:94:81:69:42:6e:47:42:12:ef:69:4e:9d:eb:d6: 0c:bd:b2:4a:1c:dd:fa:ad:48:77:82:f5:54:a6:07: 26:f7:f8:fa:24:60:16:6d:ca:f0:a2:72:be:25:9e: de:34:c2:dc:3e:e0:37:f7:8c:87:54:77:6b:e6:c5: 77:d5:38:96:59:da:cc:1c:4a:ff:79:5c:25:8b:33: c4:1f:fa:63:e5:ef:94:fc:96:e3:fa:56:15:87:3d: d6:cb:52:00:4b:05:32:ab:b9:e9:1b:06:8d:e3:19: 1d:34:c2:d7:1f:55:28:a8:98:a0:c0:6f:26:66:7b: 13:0f:b3:4b:30:d4:1e:2b:57:31:e0:54:8d:50:33: c8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:89:D1:6D:54:96:D0:AB:27:BE:4B:C2:76:83:19:A0:48:0B:63:3E X509v3 Authority Key Identifier: keyid:F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:fe:20:be:d7:26:dd:13:f3:32:9f:ff:9d:8b:f3:42:5f:ce: 27:96:6b:eb:89:b7:a2:01:8d:dd:5d:47:4f:42:17:46:f7:df: 50:a5:02:b5:a0:3a:68:4f:19:15:39:f7:af:6d:97:3f:b2:c4: 79:61:aa:6c:aa:84:5a:ae:5d:98:f9:84:71:2b:95:94:e0:5a: 6c:5e:02:02:52:44:43:ff:94:1f:0b:bd:79:83:33:4a:c8:48: df:e9:c1:92:ca:c6:a7:69:c1:5c:88:37:18:1d:c0:9d:47:e7: 9f:90:f1:b9:ea:ac:c3:b5:8a:ef:e9:21:a2:f6:8d:fe:ce:4e: 7d:7b:c3:af:c8:05:57:3e:2a:37:9f:f0:df:b1:6e:7a:76:0b: a3:99:03:6c:2c:3e:70:8d:72:69:b0:15:ce:a3:2b:db:7f:f3: 91:8f:96:42:9f:7e:a0:b6:68:0c:87:57:21:72:4f:d9:42:c0: b3:1e:fb:ec:93:36:5c:83:42:97:2a:b0:d6:16:04:2d:c6:65: 66:b3:58:7e:7d:b5:f7:a0:54:e5:56:b3:e8:b3:50:b4:de:6f: 47:88:a6:08:83:da:2a:5c:8e:5d:f2:68:3f:fb:98:94:dc:18: d4:2b:2b:ee:23:9b:5c:37:6d:f1:4c:a6:87:77:bd:77:80:51: 62:c3:26:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI5QzExMTAvBgNVBAUTKEYyNTlCOEFDOUNGNDNCRDdDNTk0NTRFNUM4M0VDRjQ4 RjlGQjg3MTcwHhcNMjUwODIzMDE0MjE4WhcNMjUwODMwMDE0MjE4WjAYMRYwFAYD VQQDEw02OGE5MWM3YS04MjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxd4TjK7/TzvtVbVYnGq69Yc3k/xg28aT+sR3BODRIS+D5oQl4YzkxvOkgl+i PKSjbn9ho2HSQ2McsgguOBWXZcdhN+hq2rWkzmeOsNu2mWnxykNGOAXOF2npAu25 37Mc3jX6POORrVTUeLueG6iZrwKZwZFSgFHqlIFpQm5HQhLvaU6d69YMvbJKHN36 rUh3gvVUpgcm9/j6JGAWbcrwonK+JZ7eNMLcPuA394yHVHdr5sV31TiWWdrMHEr/ eVwlizPEH/pj5e+U/Jbj+lYVhz3Wy1IASwUyq7npGwaN4xkdNMLXH1UoqJigwG8m ZnsTD7NLMNQeK1cx4FSNUDPIGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+J0W1U ltCrJ75LwnaDGaBIC2M+MB8GA1UdIwQYMBaAFPJZuKyc9DvXxZRU5cg+z0j5+4cX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjlDMS80NDIzNkYwNDA1 QkQxMUVEQTAwQTVGM0RDNEY5QUUwMi84bG00ckp6ME85ZkZsRlRseUQ3UFNQbjdo eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhsbTRySnowTzlmRmxGVGx5RDdQU1BuN2h4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjlDMS80NDIzNkYwNDA1QkQxMUVEQTAwQTVGM0RDNEY5QUUwMi84bG00ckp6ME85 ZkZsRlRseUQ3UFNQbjdoeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2/iC+1ybdE/Myn/+di/NCX84nlmvribeiAY3dXUdPQhdG999QpQK1 oDpoTxkVOfevbZc/ssR5YapsqoRarl2Y+YRxK5WU4FpsXgICUkRD/5QfC715gzNK yEjf6cGSysanacFciDcYHcCdR+efkPG56qzDtYrv6SGi9o3+zk59e8OvyAVXPio3 n/DfsW56dgujmQNsLD5wjXJpsBXOoyvbf/ORj5ZCn36gtmgMh1chck/ZQsCzHvvs kzZcg0KXKrDWFgQtxmVms1h+fbX3oFTlVrPos1C03m9HiKYIg9oqXI5d8mg/+5iU 3BjUKyvuI5tcN23xTKaHd713gFFiwyZ4 -----END CERTIFICATE-----Generated at Sat Aug 23 21:34:20 2025 by rpki-client