$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft File: g8K1S2QeP_BuMaK0RQwVetrVm2g.mft (raw, json) Hash identifier: xmuYBAMLr5dbG+fY4eKfFoZSVcJ2qYchH/DpMq/bt1I= Subject key identifier: 6C:ED:AB:1C:3B:15:77:82:3B:ED:0E:E9:27:CD:AB:0D:EB:B4:92:6C Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft Manifest number: BB Signing time: Sat 23 Aug 2025 06:09:06 +0000 Manifest this update: Sat 23 Aug 2025 06:09:05 +0000 Manifest next update: Sat 30 Aug 2025 06:09:05 +0000 Files and hashes: 1: g8K1S2QeP_BuMaK0RQwVetrVm2g.crl (hash: +fqyme+ZPLPjrBxkfYgwkA/48GOq/CV0HbPgcc9+SCQ=) 2: 7114716A653911EFB61F430DC4F9AE02.roa (hash: Jxy+pvv4xysDlIQZeDPDC9SdzrWtHicNhXpYrAxOrBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:09:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F, serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: Aug 23 06:09:05 2025 GMT Not After : Aug 30 06:09:05 2025 GMT Subject: CN=68a95b01-b54a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:04:c2:4e:6f:40:f7:e2:df:d7:7b:1a:61:4a: dd:3e:e2:14:c6:90:5c:9b:e4:34:a3:50:ad:6c:dd: 56:70:35:fa:b5:2a:09:9e:42:42:16:e7:0f:95:77: 11:f2:ca:60:e2:ee:4a:20:bc:ea:b8:42:1d:16:01: 0c:c5:a5:e6:39:71:24:a6:6f:ce:0a:dc:ed:91:01: 5e:d0:61:62:20:35:b3:d0:1e:c0:d7:4d:8d:e5:94: 00:dc:2f:15:c3:95:ab:27:c2:9a:38:d3:7a:51:6f: fe:f7:dd:fb:56:57:db:eb:43:2a:4b:3e:ef:52:ee: f8:6b:25:b8:5a:b4:2c:44:1b:dd:03:3d:e2:de:b3: fd:5a:7c:98:bb:ce:f8:0a:5a:bd:8b:25:cf:5e:9e: 12:0e:43:b5:5a:91:3d:37:a5:1e:b0:1b:ec:a1:90: 06:a3:5c:f1:a6:47:a7:d8:97:eb:31:c3:7c:ee:97: 33:ac:a6:05:fe:7d:6f:a8:a0:8f:69:f4:b8:d5:b2: f0:82:b6:3e:31:89:df:e7:7f:3f:6f:4a:1a:0e:d6: 2c:fe:ee:30:50:7a:73:f2:98:34:da:ef:17:37:25: 6e:a7:53:83:40:d2:86:c1:00:f6:43:a4:17:ab:95: 97:19:52:50:5c:78:02:d7:b3:dd:ef:f0:7f:8a:2b: 62:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:ED:AB:1C:3B:15:77:82:3B:ED:0E:E9:27:CD:AB:0D:EB:B4:92:6C X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:7e:1d:f4:83:8c:37:28:e6:59:d9:75:c8:30:9f:fb:4a:e7: de:4c:79:90:5f:46:dc:8c:ee:5a:23:d0:68:45:3c:51:0c:e5: 48:25:bb:e0:f2:86:3f:6d:95:f6:6f:0f:dc:10:8b:15:15:40: 8b:cf:60:79:24:e7:01:10:be:3c:f9:3c:f6:98:cc:d4:b6:40: 9b:b3:bc:0f:8a:38:1e:e1:48:d3:a4:9d:d0:b4:82:f0:56:43: 50:89:82:cc:3f:6e:6b:82:29:dc:e2:59:6b:fd:93:de:5c:9b: c5:d0:63:2b:2d:13:c7:3e:d3:98:40:d5:87:c7:cf:f8:aa:d4: db:14:c0:70:0c:f4:f5:97:7e:b7:25:49:f7:ca:08:ca:95:46: a1:4c:4e:8b:5e:47:6f:26:e7:fb:2e:f1:2e:1a:d6:c3:2a:8c: 7d:6c:35:aa:23:9e:0b:04:0d:a5:65:f9:d2:4c:4e:c1:26:8e: ed:2e:a3:b3:41:4f:26:ec:bf:72:a9:fa:51:18:3a:dc:61:c4: 97:4c:c3:ed:9e:08:bf:ca:5f:48:8c:96:60:30:64:94:7e:1a: ab:a8:4b:be:5f:bb:80:42:06:12:2c:8d:78:28:f4:94:5d:09: ab:b5:20:9e:e9:a4:a0:81:19:09:f5:95:93:b4:44:ea:d9:00: a3:41:3f:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdFNUYxMTAvBgNVBAUTKDgzQzJCNTRCNjQxRTNGRjA2RTMxQTJCNDQ1MEMxNTdB REFENTlCNjgwHhcNMjUwODIzMDYwOTA1WhcNMjUwODMwMDYwOTA1WjAYMRYwFAYD VQQDEw02OGE5NWIwMS1iNTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyATCTm9A9+Lf13saYUrdPuIUxpBcm+Q0o1CtbN1WcDX6tSoJnkJCFucPlXcR 8spg4u5KILzquEIdFgEMxaXmOXEkpm/OCtztkQFe0GFiIDWz0B7A102N5ZQA3C8V w5WrJ8KaONN6UW/+9937Vlfb60MqSz7vUu74ayW4WrQsRBvdAz3i3rP9WnyYu874 Clq9iyXPXp4SDkO1WpE9N6UesBvsoZAGo1zxpken2JfrMcN87pczrKYF/n1vqKCP afS41bLwgrY+MYnf538/b0oaDtYs/u4wUHpz8pg02u8XNyVup1ODQNKGwQD2Q6QX q5WXGVJQXHgC17Pd7/B/iitiEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGztqxw7 FXeCO+0O6SfNqw3rtJJsMB8GA1UdIwQYMBaAFIPCtUtkHj/wbjGitEUMFXra1Zto MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0U1Ri84MEM0QjMwMDY1 MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBfQnVNYUswUlF3VmV0clZt MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0yZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0U1Ri84MEM0QjMwMDY1MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBf QnVNYUswUlF3VmV0clZtMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9fh30g4w3KOZZ2XXIMJ/7SufeTHmQX0bcjO5aI9BoRTxRDOVIJbvg 8oY/bZX2bw/cEIsVFUCLz2B5JOcBEL48+Tz2mMzUtkCbs7wPijge4UjTpJ3QtILw VkNQiYLMP25rginc4llr/ZPeXJvF0GMrLRPHPtOYQNWHx8/4qtTbFMBwDPT1l363 JUn3ygjKlUahTE6LXkdvJuf7LvEuGtbDKox9bDWqI54LBA2lZfnSTE7BJo7tLqOz QU8m7L9yqfpRGDrcYcSXTMPtngi/yl9IjJZgMGSUfhqrqEu+X7uAQgYSLI14KPSU XQmrtSCe6aSggRkJ9ZWTtETq2QCjQT+0 -----END CERTIFICATE-----Generated at Sat Aug 23 19:40:01 2025 by rpki-client