$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft File: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft (raw, json) Hash identifier: Dy/zDA/TVE+I3i7x6eNZ80V4y3sErzarKdfx3trNPXw= Subject key identifier: CB:34:73:20:CE:1F:86:61:76:59:44:3B:2E:96:9E:89:ED:DB:D8:8A Authority key identifier: F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 Certificate issuer: /CN=A9146A02/serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Certificate serial: 0C78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft Manifest number: 0C71 Signing time: Fri 22 Aug 2025 18:26:54 +0000 Manifest this update: Fri 22 Aug 2025 18:26:53 +0000 Manifest next update: Fri 29 Aug 2025 18:26:53 +0000 Files and hashes: 1: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl (hash: RTYvwBOGzDrSbKh6MDS7b3ESi94PFEkyFyoM8FgmhIw=) 2: 3F1B0EF2045F11EA87A3BD3BC4F9AE02.roa (hash: QFXAssP53pMm/bFh5UJHCvk6JCuQJOPSQpSae2xtEZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3192 (0xc78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A02, serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Validity Not Before: Aug 22 18:26:53 2025 GMT Not After : Aug 29 18:26:53 2025 GMT Subject: CN=68a8b66d-4182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:23:a5:00:19:3e:c9:47:59:6c:68:0b:c5:f0: 5a:f0:8d:99:da:51:16:03:a5:0f:c3:c8:aa:ea:08: 05:4e:68:29:e4:0c:f2:b4:47:bf:ce:89:fe:0c:3c: b2:25:a8:f1:39:0e:ac:e1:93:f2:d4:90:dc:b8:1a: ea:5e:d6:52:a1:30:a7:b8:5e:0c:9d:b9:c8:e1:84: d8:44:83:2b:85:f3:15:35:40:8a:72:95:07:07:51: 74:b5:59:7c:e0:9f:fe:eb:ab:39:f6:8a:e9:ed:fc: 15:da:46:e1:28:52:80:f7:75:3f:49:4e:c6:aa:bc: 22:e8:4d:2e:b0:ef:bd:fb:ea:72:44:69:c7:dc:56: da:b7:4f:96:fd:1b:e6:d5:a1:aa:0a:8b:8e:32:e7: 30:17:fe:4b:2b:a2:ce:22:b1:5a:92:ca:54:82:dc: 63:68:b3:b2:c0:86:24:c5:88:0e:b7:9b:39:ec:d5: 15:35:38:a8:2e:8f:ca:96:81:24:bf:d3:8b:fe:6b: c8:a8:34:f6:5c:c8:ea:a5:3a:d4:16:7b:e3:70:f0: 45:84:5f:fe:f7:5c:b0:97:20:f1:88:57:58:ce:3d: 88:65:db:7f:bc:d2:c0:aa:39:50:cc:36:c3:b7:2a: 8e:9a:68:eb:b6:20:06:65:11:51:87:92:26:70:94: f8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:34:73:20:CE:1F:86:61:76:59:44:3B:2E:96:9E:89:ED:DB:D8:8A X509v3 Authority Key Identifier: keyid:F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:a6:a2:2f:c5:fa:0e:e1:f6:d6:77:6e:d9:56:51:3d:bb:1a: 9b:17:d9:c5:d5:c1:7c:9d:d6:9d:5f:ce:75:bd:4e:8e:78:57: 98:29:68:fc:3c:70:e5:4d:11:4f:7f:6f:04:6d:0b:67:ce:ec: 69:e9:87:ee:ed:d9:59:e9:54:b9:82:30:c0:72:9c:e9:d6:08: ab:4e:d0:ad:78:55:57:61:91:69:0c:d8:6c:4f:c5:8b:96:65: a0:1d:23:00:20:97:db:03:8c:de:6e:25:5a:0f:89:9e:74:11: 4b:ed:dd:7a:90:75:9d:b7:c5:86:1d:9a:9d:23:c5:78:4c:f0: 74:93:f9:3a:d6:99:83:b7:5f:a7:bb:e7:1d:03:6b:45:f7:fb: 78:2e:21:1b:08:fe:4a:1a:6c:aa:96:92:20:fc:15:57:87:e3: 60:25:89:6c:a6:dc:9f:10:9f:78:18:83:24:ab:7b:ae:7d:99: b7:b8:2a:03:be:09:65:5d:67:5f:01:93:bc:65:40:34:25:c6: 56:58:08:6a:7a:db:1d:f4:72:4a:2b:8c:61:1a:bf:6e:d8:75: 8b:b2:b4:32:dc:13:39:5f:54:d3:90:c0:11:af:46:cf:24:5b: 6b:95:5d:f0:d6:3a:95:0f:bd:7b:41:70:73:54:31:59:fd:bb: 30:0f:06:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBMDIxMTAvBgNVBAUTKEYwNzI4RUVEMkQ0RjhGRkQ4Q0ZFNUY4N0Y2MUJFQzA0 MzQ1MTQxMjkwHhcNMjUwODIyMTgyNjUzWhcNMjUwODI5MTgyNjUzWjAYMRYwFAYD VQQDEw02OGE4YjY2ZC00MTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iOlABk+yUdZbGgLxfBa8I2Z2lEWA6UPw8iq6ggFTmgp5AzytEe/zon+DDyy JajxOQ6s4ZPy1JDcuBrqXtZSoTCnuF4MnbnI4YTYRIMrhfMVNUCKcpUHB1F0tVl8 4J/+66s59orp7fwV2kbhKFKA93U/SU7Gqrwi6E0usO+9++pyRGnH3Fbat0+W/Rvm 1aGqCouOMucwF/5LK6LOIrFakspUgtxjaLOywIYkxYgOt5s57NUVNTioLo/KloEk v9OL/mvIqDT2XMjqpTrUFnvjcPBFhF/+91ywlyDxiFdYzj2IZdt/vNLAqjlQzDbD tyqOmmjrtiAGZRFRh5ImcJT4wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMs0cyDO H4ZhdllEOy6Wnont29iKMB8GA1UdIwQYMBaAFPByju0tT4/9jP5fh/Yb7AQ0UUEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkEwMi84RENFRTlGQzA0 NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpfMk1fbC1IOWh2c0JEUlJR U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIS083UzFQal8yTV9sLUg5aHZzQkRSUlFTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkEwMi84RENFRTlGQzA0NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpf Mk1fbC1IOWh2c0JEUlJRU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5pqIvxfoO4fbWd27ZVlE9uxqbF9nF1cF8ndadX851vU6OeFeYKWj8 PHDlTRFPf28EbQtnzuxp6Yfu7dlZ6VS5gjDAcpzp1girTtCteFVXYZFpDNhsT8WL lmWgHSMAIJfbA4zebiVaD4medBFL7d16kHWdt8WGHZqdI8V4TPB0k/k61pmDt1+n u+cdA2tF9/t4LiEbCP5KGmyqlpIg/BVXh+NgJYlsptyfEJ94GIMkq3uufZm3uCoD vgllXWdfAZO8ZUA0JcZWWAhqetsd9HJKK4xhGr9u2HWLsrQy3BM5X1TTkMARr0bP JFtrlV3w1jqVD717QXBzVDFZ/bswDwaC -----END CERTIFICATE-----Generated at Sat Aug 23 14:21:32 2025 by rpki-client