$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: bNHvfcSh9OmHkSJHYdgKAytklrvq3SmZhiLVq9DdW3g= Subject key identifier: 89:6D:B8:EA:8C:5B:39:FA:CC:09:AB:2D:41:A9:89:9A:E1:5C:20:61 Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: 9F Signing time: Sat 23 Aug 2025 06:30:57 +0000 Manifest this update: Sat 23 Aug 2025 06:30:56 +0000 Manifest next update: Sat 30 Aug 2025 06:30:56 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: gJfafWs/VVAzHkhoxfZF07XWZrcMZl94SNaFHJzpB64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: Aug 23 06:30:56 2025 GMT Not After : Aug 30 06:30:56 2025 GMT Subject: CN=68a96020-0cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:22:9e:a8:2f:cb:d6:d4:a9:98:83:f5:22:66: 17:50:a1:be:92:9b:5d:51:75:e4:ef:11:6d:ac:4f: 7c:8d:6f:8d:24:a2:2a:96:81:22:64:77:4d:56:0a: 02:76:92:11:45:56:c7:e2:76:4e:6d:f4:8a:de:36: ab:75:4a:03:75:15:3d:0f:aa:9b:a3:9c:7b:0e:ea: ef:93:09:44:68:78:30:7d:88:53:e5:54:0c:10:bb: 7c:7e:16:02:f3:d5:73:f0:c9:51:2f:17:19:fe:05: d9:dd:5c:10:a2:f4:fb:10:c6:8a:72:ce:a2:cd:e3: 65:3e:d1:20:5d:87:13:7c:0c:af:6b:8e:b8:dc:ad: 52:e0:29:e3:11:7e:0a:1c:1c:57:5e:2a:f6:c1:b4: 92:61:9f:1e:ad:ae:80:21:36:49:3d:8f:2a:35:2a: 3c:fc:5d:15:0b:e4:94:c4:d0:27:d8:4b:7f:d3:f0: 64:ab:ba:49:44:75:aa:a8:4b:57:0d:e6:01:76:fb: 5b:9c:41:83:54:70:2e:15:83:c2:02:2a:fe:33:c6: c9:8e:41:50:7c:96:ac:d5:aa:ec:b6:65:f4:7d:78: 2a:30:89:ae:91:4d:ec:ff:89:80:c6:30:3b:c3:a2: 2f:7b:da:7c:19:91:57:74:d0:f8:11:a8:89:ce:1c: 67:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6D:B8:EA:8C:5B:39:FA:CC:09:AB:2D:41:A9:89:9A:E1:5C:20:61 X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:f2:4a:b7:14:0a:63:51:71:d2:a4:9c:bb:f8:78:f0:aa:ff: d0:d0:4f:dc:05:cd:73:a8:94:cc:c5:52:16:64:b1:0a:f4:4a: 7a:62:79:d3:bb:1a:6a:3d:8a:1f:ca:50:cd:45:bf:b8:72:80: b7:43:20:d2:6a:7d:b0:5c:47:4e:49:12:7d:a7:0d:80:80:7c: df:8b:38:9f:d5:a2:87:44:f5:40:6c:d6:2c:7a:c4:b7:1f:97: 1f:99:a5:67:ff:58:58:44:57:65:f7:c7:52:27:e2:5e:9d:85: df:5a:65:20:29:e9:ce:2e:d2:4c:6b:34:e4:c3:fe:75:30:38: 3f:34:ce:c3:e0:2a:c4:99:35:25:9a:62:de:dd:c7:73:5a:e0: 80:b3:4f:bc:13:ab:a3:0c:a5:1f:2c:da:f0:69:c6:5b:55:1b: 5c:b1:2e:4d:ab:a1:cb:c2:3f:55:e9:20:71:c5:1a:22:c3:05: 0e:43:f1:bd:5e:20:be:16:4b:0a:9f:d9:e6:ce:a9:9c:ab:3f: 4f:c2:e2:b6:50:90:4e:cb:98:67:31:c3:13:37:a7:64:2b:d6: e2:38:0b:86:44:51:15:3a:e6:17:af:69:bd:ed:2c:8e:17:58: bd:78:cb:90:db:db:db:cf:9d:b5:3b:25:40:60:55:6a:59:6e: 9a:ae:ee:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwRTMxMTAvBgNVBAUTKERCQzZGMjI1NkRERTVDMkM0NkE4MEVCMjQzMkYyNTcy RURDNTM3RDYwHhcNMjUwODIzMDYzMDU2WhcNMjUwODMwMDYzMDU2WjAYMRYwFAYD VQQDEw02OGE5NjAyMC0wY2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiKeqC/L1tSpmIP1ImYXUKG+kptdUXXk7xFtrE98jW+NJKIqloEiZHdNVgoC dpIRRVbH4nZObfSK3jardUoDdRU9D6qbo5x7DurvkwlEaHgwfYhT5VQMELt8fhYC 89Vz8MlRLxcZ/gXZ3VwQovT7EMaKcs6izeNlPtEgXYcTfAyva4643K1S4CnjEX4K HBxXXir2wbSSYZ8era6AITZJPY8qNSo8/F0VC+SUxNAn2Et/0/Bkq7pJRHWqqEtX DeYBdvtbnEGDVHAuFYPCAir+M8bJjkFQfJas1arstmX0fXgqMImukU3s/4mAxjA7 w6Ive9p8GZFXdND4EaiJzhxnmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIltuOqM Wzn6zAmrLUGpiZrhXCBhMB8GA1UdIwQYMBaAFNvG8iVt3lwsRqgOskMvJXLtxTfW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBFMy9CMzVBQjlGQThD N0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhDeEdxQTZ5UXk4bGN1M0ZO OVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBFMy9CMzVBQjlGQThDN0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhD eEdxQTZ5UXk4bGN1M0ZOOVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx8kq3FApjUXHSpJy7+Hjwqv/Q0E/cBc1zqJTMxVIWZLEK9Ep6YnnT uxpqPYofylDNRb+4coC3QyDSan2wXEdOSRJ9pw2AgHzfizif1aKHRPVAbNYsesS3 H5cfmaVn/1hYRFdl98dSJ+JenYXfWmUgKenOLtJMazTkw/51MDg/NM7D4CrEmTUl mmLe3cdzWuCAs0+8E6ujDKUfLNrwacZbVRtcsS5Nq6HLwj9V6SBxxRoiwwUOQ/G9 XiC+FksKn9nmzqmcqz9PwuK2UJBOy5hnMcMTN6dkK9biOAuGRFEVOuYXr2m97SyO F1i9eMuQ29vbz521OyVAYFVqWW6aru6j -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:11 2025 by rpki-client