$ rpki-client -vvf rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft File: j4RQ6hjtZj3XYxNayPnBormb2W0.mft (raw, json) Hash identifier: pP+A/TzaByV9Hp382UgXoIZnsEjEWlN1RbCf61P3uxs= Subject key identifier: C8:39:06:40:05:B0:41:89:6D:E3:E9:BD:AE:21:92:01:5F:24:FC:CF Authority key identifier: 8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D Certificate issuer: /CN=A913D9CB/serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Certificate serial: 0885 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft Manifest number: 087E Signing time: Fri 22 Aug 2025 20:44:55 +0000 Manifest this update: Fri 22 Aug 2025 20:44:55 +0000 Manifest next update: Fri 29 Aug 2025 20:44:55 +0000 Files and hashes: 1: j4RQ6hjtZj3XYxNayPnBormb2W0.crl (hash: OVED+/clPACNFLYc+AS9DyXnqhS4DmUPUjorMJa4gmI=) 2: BA33C4CC638A11F090002541C4F9AE02.roa (hash: SYp3+Qw2NUOxAP2PI8VyKC4eZrJ7XxwyTmQykIlzc3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2181 (0x885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D9CB, serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Validity Not Before: Aug 22 20:44:55 2025 GMT Not After : Aug 29 20:44:55 2025 GMT Subject: CN=68a8d6c7-08b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:fe:bf:8e:3a:d6:5e:f2:74:c0:09:74:12:c8: 5d:e0:ab:d4:7e:07:77:40:00:f0:36:a0:cf:34:40: 72:f9:5c:2e:3f:0e:ce:6a:bf:23:9a:79:49:87:eb: 8e:26:68:49:dd:d5:e5:31:0f:7c:9a:b0:84:f8:0a: a2:f3:3a:f7:86:69:e7:77:2a:70:25:e7:c3:a6:83: 49:cb:ca:63:79:6e:fe:47:ed:aa:e7:c4:bc:ab:c8: 1b:54:b4:3f:44:e1:c2:b6:e3:c2:d5:68:cb:2b:cb: 75:f2:5f:d6:82:4a:fe:e2:32:25:b5:00:73:1f:67: 88:9d:04:29:b7:88:a4:75:30:2f:95:3d:db:bd:25: 32:5a:4f:1f:6f:a0:fe:21:47:62:4b:1f:0f:16:ef: 5f:d3:a1:23:ee:82:cf:90:b0:74:1b:43:88:7a:bd: ad:f8:56:40:04:1c:d0:4b:4c:7c:b3:27:f8:92:d8: b5:b8:dc:cd:d7:63:15:e8:4e:ee:e8:84:54:3e:03: a2:b9:a3:5d:35:e5:c7:a1:54:fb:72:fe:fd:c1:c7: 9e:1b:d0:c3:d6:63:b8:4d:d8:75:9f:84:92:d1:db: aa:04:20:93:94:35:27:07:93:90:80:ce:59:9f:b9: 00:27:4f:25:fd:ba:bc:29:a1:c4:71:77:df:65:bf: 08:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:39:06:40:05:B0:41:89:6D:E3:E9:BD:AE:21:92:01:5F:24:FC:CF X509v3 Authority Key Identifier: keyid:8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:e4:62:48:15:4a:5e:31:e3:cc:6f:27:b1:e1:62:54:65:85: c2:cc:2d:be:88:26:66:cb:a4:19:6c:59:a7:0a:c7:b6:ee:88: 11:dc:db:43:5c:00:82:14:69:da:3b:39:e6:05:d8:6d:80:ea: ee:4a:0b:e6:15:4f:f2:ba:79:d6:a1:35:f6:6e:65:71:36:95: e3:5d:08:69:99:14:b9:01:69:65:be:8c:01:7c:34:41:0e:77: f9:50:c6:fb:87:d1:10:3c:18:f9:be:d1:7d:5f:c4:a8:8a:f6: 38:c2:7e:a6:94:7a:29:9c:2b:f2:0d:f7:15:47:78:3b:68:8f: 43:e2:4e:45:0a:aa:ab:a5:a7:29:15:cf:66:dc:1c:74:c8:8a: 0c:ae:60:91:12:ad:11:00:14:97:6d:82:5c:c2:7a:e7:6e:75: 3f:6f:b2:cb:47:98:fc:95:34:6f:6b:a8:cc:52:35:d5:c7:9b: 8b:65:1a:6a:4b:6e:d3:82:f2:87:dc:8b:98:40:07:1e:a1:4b: b2:21:00:4f:ce:29:e9:14:fb:98:9a:53:10:b5:05:64:8d:79: 70:e5:9b:58:93:a9:47:10:64:4c:5c:c4:8d:de:bf:14:3a:4b: 5e:98:a7:7a:77:1c:83:bd:21:56:57:8a:0a:35:f1:e4:1a:47: fd:de:2a:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q5Q0IxMTAvBgNVBAUTKDhGODQ1MEVBMThFRDY2M0RENzYzMTM1QUM4RjlDMUEy Qjk5QkQ5NkQwHhcNMjUwODIyMjA0NDU1WhcNMjUwODI5MjA0NDU1WjAYMRYwFAYD VQQDEw02OGE4ZDZjNy0wOGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmP6/jjrWXvJ0wAl0Eshd4KvUfgd3QADwNqDPNEBy+VwuPw7Oar8jmnlJh+uO JmhJ3dXlMQ98mrCE+Aqi8zr3hmnndypwJefDpoNJy8pjeW7+R+2q58S8q8gbVLQ/ ROHCtuPC1WjLK8t18l/Wgkr+4jIltQBzH2eInQQpt4ikdTAvlT3bvSUyWk8fb6D+ IUdiSx8PFu9f06Ej7oLPkLB0G0OIer2t+FZABBzQS0x8syf4kti1uNzN12MV6E7u 6IRUPgOiuaNdNeXHoVT7cv79wceeG9DD1mO4Tdh1n4SS0duqBCCTlDUnB5OQgM5Z n7kAJ08l/bq8KaHEcXffZb8I+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMg5BkAF sEGJbePpva4hkgFfJPzPMB8GA1UdIwQYMBaAFI+EUOoY7WY912MTWsj5waK5m9lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDlDQi8zRkQyRDlDNENB MkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpqM1hZeE5heVBuQm9ybWIy VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o0UlE2aGp0WmozWFl4TmF5UG5Cb3JtYjJXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDlDQi8zRkQyRDlDNENBMkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpq M1hZeE5heVBuQm9ybWIyVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw5GJIFUpeMePMbyex4WJUZYXCzC2+iCZmy6QZbFmnCse27ogR3NtD XACCFGnaOznmBdhtgOruSgvmFU/yunnWoTX2bmVxNpXjXQhpmRS5AWllvowBfDRB Dnf5UMb7h9EQPBj5vtF9X8SoivY4wn6mlHopnCvyDfcVR3g7aI9D4k5FCqqrpacp Fc9m3Bx0yIoMrmCREq0RABSXbYJcwnrnbnU/b7LLR5j8lTRva6jMUjXVx5uLZRpq S27TgvKH3IuYQAceoUuyIQBPzinpFPuYmlMQtQVkjXlw5ZtYk6lHEGRMXMSN3r8U OktemKd6dxyDvSFWV4oKNfHkGkf93iob -----END CERTIFICATE-----Generated at Sun Aug 24 00:16:45 2025 by rpki-client