$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: rGbv8dCpX4Er6qk85f3brfI2iKlOAS2KkGDTUVwFTsM= Subject key identifier: CB:AC:77:24:BD:A8:F3:67:DD:51:2E:AA:73:0C:B9:E9:48:6D:61:3C Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 036A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 0365 Signing time: Sat 23 Aug 2025 01:10:47 +0000 Manifest this update: Sat 23 Aug 2025 01:10:46 +0000 Manifest next update: Sat 30 Aug 2025 01:10:46 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: m3POlW+l3uMrNCnzy0YnG8ahqBIvJ8tHHhXWxqbDJ2g=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: 3Kdq8iB7GHkmorOzNCkj5Eih8OtxQjBmOJhG+WoD4A8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Aug 23 01:10:46 2025 GMT Not After : Aug 30 01:10:46 2025 GMT Subject: CN=68a91517-d032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e6:85:e5:57:79:6c:ba:56:b5:7a:d2:a7:28: f8:66:1b:93:f8:73:38:f3:b6:2f:1f:aa:5f:bc:fc: 51:0f:d4:00:5d:20:89:87:9f:91:e9:10:4e:85:38: 44:a7:c0:af:df:42:15:1e:08:68:26:ed:71:be:d6: 3a:cc:19:08:a3:cf:d4:fe:69:7c:02:67:87:1b:b7: 8a:e2:a6:81:d0:bc:ba:55:f8:ef:21:b4:76:78:8f: 0e:4b:54:40:22:b7:be:62:52:67:a5:97:54:55:68: c1:6d:71:64:d7:d3:9a:b0:ea:82:af:8e:0f:d1:95: 9c:3a:95:b7:9b:1e:e5:65:6d:61:5c:44:7f:91:32: 6d:a0:a7:1f:d6:be:11:89:07:8a:fc:06:99:0e:b4: e4:d9:70:c7:6c:3f:4e:ee:55:d0:89:c7:47:ae:12: b3:57:8b:c8:89:61:e1:50:a4:79:bd:65:c4:d6:de: c2:27:64:3d:3f:11:d0:8b:89:95:3e:95:c6:7a:06: 41:95:0b:57:6f:a2:2d:b2:d4:e4:66:64:ef:0a:73: e9:e6:2d:f9:20:7a:75:7b:f8:74:d4:7f:2c:8d:cf: c6:c3:f4:b8:37:46:4a:05:79:68:83:34:44:ed:d9: 27:c9:ba:53:02:57:86:42:27:c6:a1:70:d8:eb:1a: e1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AC:77:24:BD:A8:F3:67:DD:51:2E:AA:73:0C:B9:E9:48:6D:61:3C X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:03:83:06:08:6a:1c:c5:41:e7:48:3f:7b:78:75:fd:8f:db: d1:ed:29:07:3d:da:f9:0b:b5:35:92:8a:0f:48:f6:50:dc:b4: dc:f2:ca:18:58:73:25:ee:3a:70:77:ff:a1:f3:c6:f5:61:52: ca:7b:99:a8:46:9c:e9:38:66:0c:14:22:e5:e6:74:b7:33:56: 95:9a:0b:70:7c:2f:bb:00:a3:6a:7e:19:8c:5f:2c:84:70:70: 0f:76:39:05:98:25:9e:3c:a0:4e:85:e6:20:bd:de:5f:7c:4f: a8:12:7e:62:77:2f:b6:ec:83:1e:15:4a:aa:5e:3c:b0:e5:f8: 45:9e:0c:de:4e:a8:24:75:25:b5:5b:c0:6d:00:4b:83:67:41: 25:33:c3:54:1c:61:f6:34:c1:2c:73:37:66:9a:73:25:57:16: 62:86:ad:88:38:df:8a:9c:04:40:14:05:bc:43:36:b3:22:06: a7:b2:10:14:b9:84:e4:fa:d4:9f:d0:2c:cf:d9:9c:b3:4a:ba: 99:1a:b6:bb:db:01:6b:a7:d5:6e:25:fa:25:5e:39:1a:49:ed: 49:7a:e6:33:a4:9f:d3:50:79:26:55:81:6d:85:5b:92:32:40: 38:6b:a1:73:86:cf:38:06:17:d3:98:67:cd:24:0d:42:70:18: b8:b9:10:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjUwODIzMDExMDQ2WhcNMjUwODMwMDExMDQ2WjAYMRYwFAYD VQQDEw02OGE5MTUxNy1kMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eaF5Vd5bLpWtXrSpyj4ZhuT+HM487YvH6pfvPxRD9QAXSCJh5+R6RBOhThE p8Cv30IVHghoJu1xvtY6zBkIo8/U/ml8AmeHG7eK4qaB0Ly6VfjvIbR2eI8OS1RA Ire+YlJnpZdUVWjBbXFk19OasOqCr44P0ZWcOpW3mx7lZW1hXER/kTJtoKcf1r4R iQeK/AaZDrTk2XDHbD9O7lXQicdHrhKzV4vIiWHhUKR5vWXE1t7CJ2Q9PxHQi4mV PpXGegZBlQtXb6ItstTkZmTvCnPp5i35IHp1e/h01H8sjc/Gw/S4N0ZKBXlogzRE 7dknybpTAleGQifGoXDY6xrhfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMusdyS9 qPNn3VEuqnMMuelIbWE8MB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwA4MGCGocxUHnSD97eHX9j9vR7SkHPdr5C7U1kooPSPZQ3LTc8soY WHMl7jpwd/+h88b1YVLKe5moRpzpOGYMFCLl5nS3M1aVmgtwfC+7AKNqfhmMXyyE cHAPdjkFmCWePKBOheYgvd5ffE+oEn5idy+27IMeFUqqXjyw5fhFngzeTqgkdSW1 W8BtAEuDZ0ElM8NUHGH2NMEsczdmmnMlVxZihq2ION+KnARAFAW8QzazIganshAU uYTk+tSf0CzP2ZyzSrqZGra72wFrp9VuJfolXjkaSe1JeuYzpJ/TUHkmVYFthVuS MkA4a6Fzhs84BhfTmGfNJA1CcBi4uRDs -----END CERTIFICATE-----Generated at Sat Aug 23 21:17:10 2025 by rpki-client