$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft File: g8K1S2QeP_BuMaK0RQwVetrVm2g.mft (raw, json) Hash identifier: o35uCxxvrpwMkXv+evGAZeQtqgVRrXXn79nZ6F3lM+c= Subject key identifier: 85:4D:8B:AB:28:86:3D:5A:5C:11:FD:AD:42:E9:73:0F:11:EF:D3:D8 Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft Manifest number: 9F Signing time: Thu 03 Jul 2025 06:27:52 +0000 Manifest this update: Thu 03 Jul 2025 06:27:52 +0000 Manifest next update: Thu 10 Jul 2025 06:27:52 +0000 Files and hashes: 1: g8K1S2QeP_BuMaK0RQwVetrVm2g.crl (hash: LjsWX3wfszYN7kQdqxgV2Tc5kHXRQRhq+mHEmrqPrYc=) 2: 7114716A653911EFB61F430DC4F9AE02.roa (hash: bO/gfY3HBbGIQDRrLWr0PVEzkY2zoAiDv4q0XXDREo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F, serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: Jul 3 06:27:52 2025 GMT Not After : Jul 10 06:27:52 2025 GMT Subject: CN=686622e8-2513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:fb:62:ca:97:2b:1c:f1:ad:10:53:6e:f1:35: d8:92:00:12:22:b0:7f:cb:69:c5:63:7b:ab:e3:12: 77:f5:e1:4f:4a:06:2f:50:ab:ec:04:cd:e4:cf:5b: ac:65:bb:0e:34:a6:5a:d7:6d:13:7e:dc:ae:d2:50: 07:06:8d:64:f3:96:da:64:d0:ca:6d:ea:19:45:e7: 4b:a8:da:f2:82:19:78:81:68:ff:20:d2:de:8f:74: b0:2b:29:bd:9c:9a:0a:ae:79:01:fd:43:76:d3:2e: f7:97:54:d4:16:f2:ee:77:eb:2d:42:f1:81:e7:b0: 32:86:8e:ba:6f:5a:38:5f:03:f8:ac:64:c6:63:9f: d1:71:3e:86:0a:8a:c9:2b:38:79:cb:ba:42:c8:65: e1:2a:ae:f9:af:3b:3e:26:df:89:e8:c0:4e:56:1d: fa:6f:92:88:3c:e8:1a:b5:26:1e:69:0d:54:c0:4c: fe:87:51:2d:05:eb:d9:5e:4f:82:97:1b:42:81:49: 60:3b:92:16:3b:0c:e4:4a:38:4d:84:ec:aa:f2:a6: 17:0a:30:84:c7:de:6b:48:17:c8:25:cc:c8:50:ca: 71:57:37:f9:62:b5:b5:3b:11:0c:a2:41:b9:59:ed: e6:0c:f3:30:09:23:cf:1d:56:5d:60:86:7b:f6:93: 14:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4D:8B:AB:28:86:3D:5A:5C:11:FD:AD:42:E9:73:0F:11:EF:D3:D8 X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:7c:80:50:73:12:c0:ab:85:24:c3:0b:2f:a7:3e:7b:3f:41: 15:5c:65:bd:27:9c:74:6a:b2:2c:bf:d2:b2:12:91:cb:fb:6e: e4:03:02:41:0c:09:e4:8d:67:14:8e:ea:0e:1f:a4:3b:17:fc: d1:58:f5:c0:bb:a8:c0:bc:95:b6:1b:e5:f2:80:05:f2:eb:d7: 10:a1:6f:d2:82:8c:4b:44:56:fe:82:f5:c2:b4:09:f9:31:0c: 2b:36:74:b7:f0:40:c8:a5:23:9e:58:b2:a0:55:94:ab:4b:71: fd:a0:55:1e:81:3e:6b:c6:90:ff:61:1d:10:87:85:9c:47:43: 10:6f:2b:44:ac:49:87:8a:c3:c3:86:63:43:eb:b4:cf:22:c2: 18:ed:89:b0:0d:fb:15:4c:15:ff:03:a2:8d:7a:74:05:9a:83: 9d:56:33:74:d2:2d:24:67:63:71:f5:9e:fc:25:b0:5d:d5:c2: cd:a9:d0:65:62:62:e8:c1:ce:73:5a:30:02:e7:d2:a8:50:0b: 1c:48:c6:1f:c6:d6:00:8d:5a:17:76:98:41:30:04:bd:80:93: 40:af:59:f2:d5:59:df:70:51:4b:89:bb:44:ad:77:cc:70:c7: f6:20:a8:ac:53:fc:a5:45:08:b6:44:18:00:f1:f9:e6:da:e9: da:66:3d:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdFNUYxMTAvBgNVBAUTKDgzQzJCNTRCNjQxRTNGRjA2RTMxQTJCNDQ1MEMxNTdB REFENTlCNjgwHhcNMjUwNzAzMDYyNzUyWhcNMjUwNzEwMDYyNzUyWjAYMRYwFAYD VQQDEw02ODY2MjJlOC0yNTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzftiypcrHPGtEFNu8TXYkgASIrB/y2nFY3ur4xJ39eFPSgYvUKvsBM3kz1us ZbsONKZa120Tftyu0lAHBo1k85baZNDKbeoZRedLqNryghl4gWj/INLej3SwKym9 nJoKrnkB/UN20y73l1TUFvLud+stQvGB57Ayho66b1o4XwP4rGTGY5/RcT6GCorJ Kzh5y7pCyGXhKq75rzs+Jt+J6MBOVh36b5KIPOgatSYeaQ1UwEz+h1EtBevZXk+C lxtCgUlgO5IWOwzkSjhNhOyq8qYXCjCEx95rSBfIJczIUMpxVzf5YrW1OxEMokG5 We3mDPMwCSPPHVZdYIZ79pMU9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVNi6so hj1aXBH9rULpcw8R79PYMB8GA1UdIwQYMBaAFIPCtUtkHj/wbjGitEUMFXra1Zto MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0U1Ri84MEM0QjMwMDY1 MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBfQnVNYUswUlF3VmV0clZt MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0yZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0U1Ri84MEM0QjMwMDY1MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi9nOEsxUzJRZVBf QnVNYUswUlF3VmV0clZtMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCafIBQcxLAq4Ukwwsvpz57P0EVXGW9J5x0arIsv9KyEpHL+27kAwJB DAnkjWcUjuoOH6Q7F/zRWPXAu6jAvJW2G+XygAXy69cQoW/SgoxLRFb+gvXCtAn5 MQwrNnS38EDIpSOeWLKgVZSrS3H9oFUegT5rxpD/YR0Qh4WcR0MQbytErEmHisPD hmND67TPIsIY7YmwDfsVTBX/A6KNenQFmoOdVjN00i0kZ2Nx9Z78JbBd1cLNqdBl YmLowc5zWjAC59KoUAscSMYfxtYAjVoXdphBMAS9gJNAr1ny1VnfcFFLibtErXfM cMf2IKisU/ylRQi2RBgA8fnm2unaZj3V -----END CERTIFICATE-----Generated at Fri Jul 4 00:24:58 2025 by rpki-client