$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: o8qqg6Rg+fTYqYsDbBgmy9YFZziui8L5lia6lf4T/Lk= Subject key identifier: 03:D1:C3:7C:BA:68:19:7D:02:37:0C:D5:CE:D7:7F:9A:0A:85:CE:16 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 028C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 0288 Signing time: Sat 23 Aug 2025 01:54:59 +0000 Manifest this update: Sat 23 Aug 2025 01:54:59 +0000 Manifest next update: Sat 30 Aug 2025 01:54:59 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: ciWgRzbH0FVQmo3omAxR3DX4r8hj8OlFrd4XOPci58U=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Aug 23 01:54:59 2025 GMT Not After : Aug 30 01:54:59 2025 GMT Subject: CN=68a91f73-2d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:78:bc:64:ab:01:f8:b5:08:56:f9:0d:6d:ad: a6:cc:94:b3:d7:76:21:95:b0:b0:b7:39:b6:15:91: 08:27:73:b7:a7:8d:f0:41:80:ae:e1:dc:56:ed:5c: 34:77:29:af:66:21:e8:8a:de:58:e5:67:af:31:d3: 3b:60:92:0a:aa:6b:d3:fc:26:9b:04:18:46:73:de: 48:d0:c8:58:86:a5:a8:ee:46:36:a2:80:17:70:ed: 87:30:bb:43:31:0c:f1:20:9f:44:36:32:68:bf:38: 1b:55:4a:fc:c4:cd:29:ad:fd:82:e7:c9:af:cd:96: e6:f3:40:44:5f:e8:be:88:8c:21:ed:cf:72:36:db: 91:d4:47:8e:51:bf:63:90:ef:8e:bb:aa:d4:cf:7d: bf:fc:98:42:89:b7:1d:4b:ec:0a:30:f6:88:a5:16: 39:c3:54:1a:e6:e2:7d:b0:2d:a6:7c:f4:7e:05:1f: dc:2a:7d:17:92:c0:93:a9:c7:9d:d4:53:45:95:4a: 04:37:98:4c:c1:c5:88:5f:7b:bd:9d:a5:fa:28:e7: 59:86:46:ad:c7:ee:b2:61:1d:ec:cf:97:1f:da:cf: 2a:7d:53:77:a7:b9:4e:85:4a:a3:58:da:aa:8a:fe: 6b:b8:64:18:b1:d7:2f:8d:ad:ae:74:c5:2d:d3:bd: 7b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D1:C3:7C:BA:68:19:7D:02:37:0C:D5:CE:D7:7F:9A:0A:85:CE:16 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:bb:a9:1b:4f:4b:9f:7b:6d:5f:8a:c7:e2:8c:85:57:97:7b: 15:05:fa:5a:db:18:1f:44:3c:3a:0e:1b:35:ac:3a:c7:11:92: fe:d6:7a:03:79:fb:91:3d:f0:bf:84:22:cf:97:b8:f1:8c:f5: ab:ab:cb:d0:42:7a:6c:3e:a8:d0:2f:1c:49:3c:36:22:29:db: 89:1e:84:e2:49:96:12:b5:e0:0f:84:74:f8:64:e3:25:98:9b: 81:ee:04:28:5a:0d:99:ba:2e:8b:19:22:24:10:3a:00:fc:84: 8b:22:03:fb:08:be:65:14:2a:20:a2:f8:bb:d7:03:33:38:ff: c4:59:13:6d:4f:b6:53:0e:ed:e4:20:96:52:8d:b8:40:99:fe: 18:34:5c:03:d8:d1:17:b1:95:a2:36:1d:d3:67:bf:a6:ed:6b: 0a:89:10:c0:d3:b4:a4:26:e2:3d:1c:ce:9a:26:50:44:b8:c3: e7:1b:3e:01:bf:62:b3:31:47:20:4f:88:d3:71:9d:c0:04:22: fe:fb:a1:c5:8e:b0:ff:85:f9:e4:6b:95:77:b5:f5:3c:51:af: 44:d3:df:b9:74:2d:e8:0f:e3:5b:9d:82:e0:1e:e3:33:e6:eb: fb:73:ab:12:35:60:88:91:9c:7c:d8:69:9e:15:f3:7d:b5:f6: 82:15:3b:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwODIzMDE1NDU5WhcNMjUwODMwMDE1NDU5WjAYMRYwFAYD VQQDEw02OGE5MWY3My0yZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArni8ZKsB+LUIVvkNba2mzJSz13YhlbCwtzm2FZEIJ3O3p43wQYCu4dxW7Vw0 dymvZiHoit5Y5WevMdM7YJIKqmvT/CabBBhGc95I0MhYhqWo7kY2ooAXcO2HMLtD MQzxIJ9ENjJovzgbVUr8xM0prf2C58mvzZbm80BEX+i+iIwh7c9yNtuR1EeOUb9j kO+Ou6rUz32//JhCibcdS+wKMPaIpRY5w1Qa5uJ9sC2mfPR+BR/cKn0XksCTqced 1FNFlUoEN5hMwcWIX3u9naX6KOdZhkatx+6yYR3sz5cf2s8qfVN3p7lOhUqjWNqq iv5ruGQYsdcvja2udMUt0717IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPRw3y6 aBl9AjcM1c7Xf5oKhc4WMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgu6kbT0ufe21fisfijIVXl3sVBfpa2xgfRDw6Dhs1rDrHEZL+1noD efuRPfC/hCLPl7jxjPWrq8vQQnpsPqjQLxxJPDYiKduJHoTiSZYSteAPhHT4ZOMl mJuB7gQoWg2Zui6LGSIkEDoA/ISLIgP7CL5lFCogovi71wMzOP/EWRNtT7ZTDu3k IJZSjbhAmf4YNFwD2NEXsZWiNh3TZ7+m7WsKiRDA07SkJuI9HM6aJlBEuMPnGz4B v2KzMUcgT4jTcZ3ABCL++6HFjrD/hfnka5V3tfU8Ua9E09+5dC3oD+NbnYLgHuMz 5uv7c6sSNWCIkZx82GmeFfN9tfaCFTvy -----END CERTIFICATE-----Generated at Sun Aug 24 05:14:06 2025 by rpki-client