$ rpki-client -vvf rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft File: s8lXWbAmAWnVga-ERmxca89vwds.mft (raw, json) Hash identifier: EI06JtZpNDI4LrXyFb5PvuZHqb7slmeRkwMcW/s505s= Subject key identifier: 71:1E:00:D6:FE:E1:92:7F:FE:2B:3B:E1:50:74:2F:FA:84:BA:20:08 Authority key identifier: B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB Certificate issuer: /CN=A913B090/serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft Manifest number: 0204 Signing time: Sat 23 Aug 2025 02:24:19 +0000 Manifest this update: Sat 23 Aug 2025 02:24:19 +0000 Manifest next update: Sat 30 Aug 2025 02:24:19 +0000 Files and hashes: 1: s8lXWbAmAWnVga-ERmxca89vwds.crl (hash: arrHZVenFXORuSxelU3kIK4WtivLL62PW0iYBDtoLSo=) 2: B57CACF267F511EDA884E65BC4F9AE02.roa (hash: uqE+ryUYHNLBPS1jaiyQ/Fm+6Bg+NYwJQStwm0tzSfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B090, serialNumber=B3C95759B0260169D581AF84466C5C6BCF6FC1DB Validity Not Before: Aug 23 02:24:19 2025 GMT Not After : Aug 30 02:24:19 2025 GMT Subject: CN=68a92653-dd64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0f:97:23:f8:55:60:81:07:31:c2:e6:eb:fb: 9e:b5:04:a7:50:71:77:91:8c:39:3b:98:cf:12:d2: 74:17:70:23:76:7d:b3:d2:0f:da:24:46:bd:d1:56: c2:44:c9:78:63:03:8f:c2:3b:5c:4c:bc:80:9a:27: f5:2c:a4:a7:65:0d:9c:2c:2c:b6:23:a3:97:d7:f5: 4c:7a:58:eb:36:ed:b3:08:7a:e2:8e:d4:ed:4c:94: f5:7e:b5:3a:eb:ee:12:91:7d:e8:ac:e5:c3:3e:8c: 4a:d9:d5:4b:5b:9a:7d:89:03:99:f4:38:8c:bf:54: 9d:7d:47:c5:1f:c3:ad:67:b7:ce:a4:21:7c:f0:ae: 1b:b4:c7:ad:a2:9c:4a:e7:a2:1f:d5:01:97:77:8a: c2:a8:e3:a2:ef:38:61:be:e2:a1:35:c0:a4:a8:fb: b7:ae:6d:bf:c9:3c:ee:75:8c:ef:43:e4:13:ea:71: 37:66:4c:50:a8:74:a0:b1:5e:56:f0:3c:d5:26:cd: 35:29:56:e5:44:6b:a8:51:ce:1a:e8:db:74:af:33: 65:7e:80:83:85:10:73:02:bf:be:c5:ea:ec:01:f4: 49:fe:d9:9c:d3:d9:8e:1a:a0:92:1e:71:1f:a3:71: be:48:98:3c:ca:a4:e8:f8:e8:17:a1:27:3d:be:e6: f5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:1E:00:D6:FE:E1:92:7F:FE:2B:3B:E1:50:74:2F:FA:84:BA:20:08 X509v3 Authority Key Identifier: keyid:B3:C9:57:59:B0:26:01:69:D5:81:AF:84:46:6C:5C:6B:CF:6F:C1:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8lXWbAmAWnVga-ERmxca89vwds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B090/6B67243467F111EDBDC5852CC4F9AE02/s8lXWbAmAWnVga-ERmxca89vwds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:14:de:58:6d:93:e1:e4:fa:e2:55:81:53:f3:4c:a6:f1:70: 22:55:e8:2d:e6:e4:1c:94:56:ab:2c:b8:b3:d8:93:a0:d1:18: bf:47:de:73:c9:82:ae:ea:fd:ea:49:43:5c:06:7d:17:0e:31: 6e:1d:2b:54:70:4d:19:c2:2c:48:34:52:3a:85:ce:47:28:34: 60:34:7b:aa:a3:cc:6d:eb:4d:9e:cf:36:af:e4:81:66:df:3e: 5d:af:57:fb:9e:48:9b:64:8a:88:f2:8b:bc:67:56:8d:3b:6a: b3:f6:6f:20:11:12:20:cf:05:80:48:c4:61:3d:33:ea:38:ac: 27:ca:89:6c:67:45:d4:8f:79:f7:c9:34:d4:d6:66:00:c7:07: 77:bc:56:f6:59:86:fe:7f:1c:cf:2a:0f:31:ed:b0:00:da:f1: 81:b9:3e:cb:5f:d2:94:74:63:20:9b:31:a4:ac:55:ea:89:1a: e2:bc:01:48:7c:66:d2:80:89:9a:f0:80:8f:6f:09:bc:d7:f0: f5:55:b5:54:21:ba:67:67:f6:d9:e9:2f:a3:4c:91:1a:13:4a: 4e:08:e4:0d:fc:51:22:4f:fb:30:73:82:fe:d2:df:e4:c7:12: 14:2b:c0:85:74:98:cc:e6:a3:02:9e:9d:32:aa:90:c2:3e:18: ba:a0:ba:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwOTAxMTAvBgNVBAUTKEIzQzk1NzU5QjAyNjAxNjlENTgxQUY4NDQ2NkM1QzZC Q0Y2RkMxREIwHhcNMjUwODIzMDIyNDE5WhcNMjUwODMwMDIyNDE5WjAYMRYwFAYD VQQDEw02OGE5MjY1My1kZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7A+XI/hVYIEHMcLm6/uetQSnUHF3kYw5O5jPEtJ0F3Ajdn2z0g/aJEa90VbC RMl4YwOPwjtcTLyAmif1LKSnZQ2cLCy2I6OX1/VMeljrNu2zCHrijtTtTJT1frU6 6+4SkX3orOXDPoxK2dVLW5p9iQOZ9DiMv1SdfUfFH8OtZ7fOpCF88K4btMetopxK 56If1QGXd4rCqOOi7zhhvuKhNcCkqPu3rm2/yTzudYzvQ+QT6nE3ZkxQqHSgsV5W 8DzVJs01KVblRGuoUc4a6Nt0rzNlfoCDhRBzAr++xersAfRJ/tmc09mOGqCSHnEf o3G+SJg8yqTo+OgXoSc9vub1fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEeANb+ 4ZJ//is74VB0L/qEuiAIMB8GA1UdIwQYMBaAFLPJV1mwJgFp1YGvhEZsXGvPb8Hb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA5MC82QjY3MjQzNDY3 RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFXblZnYS1FUm14Y2E4OXZ3 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4bFhXYkFtQVduVmdhLUVSbXhjYTg5dndkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA5MC82QjY3MjQzNDY3RjExMUVEQkRDNTg1MkNDNEY5QUUwMi9zOGxYV2JBbUFX blZnYS1FUm14Y2E4OXZ3ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMFN5YbZPh5PriVYFT80ym8XAiVegt5uQclFarLLiz2JOg0Ri/R95z yYKu6v3qSUNcBn0XDjFuHStUcE0ZwixINFI6hc5HKDRgNHuqo8xt602ezzav5IFm 3z5dr1f7nkibZIqI8ou8Z1aNO2qz9m8gERIgzwWASMRhPTPqOKwnyolsZ0XUj3n3 yTTU1mYAxwd3vFb2WYb+fxzPKg8x7bAA2vGBuT7LX9KUdGMgmzGkrFXqiRrivAFI fGbSgIma8ICPbwm81/D1VbVUIbpnZ/bZ6S+jTJEaE0pOCOQN/FEiT/swc4L+0t/k xxIUK8CFdJjM5qMCnp0yqpDCPhi6oLpn -----END CERTIFICATE-----Generated at Sat Aug 23 16:28:41 2025 by rpki-client