$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft File: AIsjUb6f1m04sRBQZ5c09E-l2X0.mft (raw, json) Hash identifier: 8zfwASp6K6jq/3XXaWDzBxMjllriiqQsYnc2FNwBD8A= Subject key identifier: BB:DC:4C:AE:6D:2F:03:1D:BA:83:83:B7:E8:EB:4D:BA:E0:BC:0E:10 Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft Manifest number: FE Signing time: Sat 23 Aug 2025 05:16:47 +0000 Manifest this update: Sat 23 Aug 2025 05:16:47 +0000 Manifest next update: Sat 30 Aug 2025 05:16:47 +0000 Files and hashes: 1: AIsjUb6f1m04sRBQZ5c09E-l2X0.crl (hash: AEwb6ktD4760oKYU0rifhXjyDFrddQzVSAN+iNBiSzg=) 2: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (hash: 8wMwW5uNjWkG/EYhzvD28CGT7P5U8FJODoDJkkfTgvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:16:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8, serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: Aug 23 05:16:47 2025 GMT Not After : Aug 30 05:16:47 2025 GMT Subject: CN=68a94ebf-ea0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b4:4c:92:ea:82:bb:a4:f2:30:6a:f5:14:ce: cc:87:be:de:66:13:32:6b:9d:bd:39:65:18:65:8f: 77:c0:c1:a1:9e:d8:d5:4a:53:fc:1c:db:20:da:91: c8:89:f2:7d:5f:8a:48:bc:9a:10:4d:8c:5c:63:9b: 14:bb:ad:a7:27:29:5a:9f:a0:12:cc:c7:26:87:8d: 37:48:44:0b:4b:ae:9e:e2:b3:cf:97:a9:37:d1:d3: 9f:36:92:fe:f9:ff:7c:41:6e:4d:b0:9d:92:9c:6f: 98:3a:70:ec:4e:ea:06:f3:39:4e:8d:7f:96:0a:6c: 5f:0f:9e:fb:ac:a2:f6:8a:07:36:a9:69:14:05:43: b1:b6:13:ed:07:e7:04:90:bd:12:78:8b:f5:82:c0: cd:4a:a0:9a:fc:ee:44:af:54:21:58:fb:fb:08:f6: 0f:ca:83:3d:9c:97:c3:a1:22:ee:ba:21:e8:fc:70: 1c:30:7b:ba:8b:29:69:8f:b5:0c:1a:9f:0e:56:ed: e8:81:98:ac:5c:99:27:22:29:c8:13:94:8a:5f:7b: 85:20:58:a7:2c:8d:9f:e8:85:15:21:2c:ef:f6:7e: f5:bf:26:6b:9d:16:bb:18:df:87:1f:65:d4:7a:4c: 66:26:c5:1d:2e:f9:d6:22:2b:a8:a0:2b:97:c9:dd: 5e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DC:4C:AE:6D:2F:03:1D:BA:83:83:B7:E8:EB:4D:BA:E0:BC:0E:10 X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:a0:52:02:e4:dc:bd:40:1d:2b:a8:8e:b3:be:03:e2:0d:8c: 23:b6:14:d5:8b:3c:1b:87:fe:35:07:22:1f:00:ad:2f:8a:0b: 76:a9:10:25:8d:85:fa:86:66:f2:1a:ac:c7:50:40:fc:0c:eb: 3a:8b:af:0e:93:65:dd:85:03:d3:de:14:02:96:be:b5:cf:64: 7a:a2:80:f5:21:ea:fc:b7:24:a1:95:b1:41:72:af:56:c7:86: e5:c4:36:fd:95:a2:c7:ee:18:3f:80:0b:4b:55:fa:a2:ee:53: bb:7b:79:94:0d:ae:b2:96:38:a6:5c:ec:11:ac:06:e0:67:40: 02:ba:b8:74:b2:fd:9c:73:e9:0c:9e:30:73:e0:37:e5:c8:b9: 1a:24:4b:5a:b7:45:76:f4:7b:04:e9:d4:b9:80:82:c0:8f:1f: 33:9b:fa:34:b2:ff:e9:80:99:1d:f4:bb:f0:74:13:96:f9:be: 4f:46:13:00:5e:32:73:94:b9:e2:16:0a:28:f0:59:05:37:0d: a1:b0:c0:8c:91:f0:8d:bd:15:16:48:11:06:3d:28:2c:21:42: 1a:36:ad:84:3d:88:89:3a:af:a3:d7:b9:eb:c0:32:82:b8:04: 83:1b:01:16:6c:f8:ea:a1:c1:b7:31:ec:60:cc:68:ff:a8:2d: 77:d9:f4:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwRDgxMTAvBgNVBAUTKDAwOEIyMzUxQkU5RkQ2NkQzOEIxMTA1MDY3OTczNEY0 NEZBNUQ5N0QwHhcNMjUwODIzMDUxNjQ3WhcNMjUwODMwMDUxNjQ3WjAYMRYwFAYD VQQDEw02OGE5NGViZi1lYTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbRMkuqCu6TyMGr1FM7Mh77eZhMya529OWUYZY93wMGhntjVSlP8HNsg2pHI ifJ9X4pIvJoQTYxcY5sUu62nJylan6ASzMcmh403SEQLS66e4rPPl6k30dOfNpL+ +f98QW5NsJ2SnG+YOnDsTuoG8zlOjX+WCmxfD577rKL2igc2qWkUBUOxthPtB+cE kL0SeIv1gsDNSqCa/O5Er1QhWPv7CPYPyoM9nJfDoSLuuiHo/HAcMHu6iylpj7UM Gp8OVu3ogZisXJknIinIE5SKX3uFIFinLI2f6IUVISzv9n71vyZrnRa7GN+HH2XU ekxmJsUdLvnWIiuooCuXyd1evQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvcTK5t LwMduoODt+jrTbrgvA4QMB8GA1UdIwQYMBaAFACLI1G+n9ZtOLEQUGeXNPRPpdl9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjBEOC8wN0FBQkNEQUZC MTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFtMDRzUkJRWjVjMDlFLWwy WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjBEOC8wN0FBQkNEQUZCMTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFt MDRzUkJRWjVjMDlFLWwyWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeoFIC5Ny9QB0rqI6zvgPiDYwjthTVizwbh/41ByIfAK0vigt2qRAl jYX6hmbyGqzHUED8DOs6i68Ok2XdhQPT3hQClr61z2R6ooD1Ier8tyShlbFBcq9W x4blxDb9laLH7hg/gAtLVfqi7lO7e3mUDa6yljimXOwRrAbgZ0ACurh0sv2cc+kM njBz4DflyLkaJEtat0V29HsE6dS5gILAjx8zm/o0sv/pgJkd9LvwdBOW+b5PRhMA XjJzlLniFgoo8FkFNw2hsMCMkfCNvRUWSBEGPSgsIUIaNq2EPYiJOq+j17nrwDKC uASDGwEWbPjqocG3MexgzGj/qC132fSv -----END CERTIFICATE-----Generated at Sat Aug 23 20:18:21 2025 by rpki-client