$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: fhw2vIuUDPAuqzNMVFqJfzf/4W41dhY0lBikTK2H/Do= Subject key identifier: 67:EC:C5:48:73:27:61:C8:8F:D4:93:14:4A:E8:16:F0:A2:A3:18:6A Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0A2B Signing time: Fri 22 Aug 2025 19:53:54 +0000 Manifest this update: Fri 22 Aug 2025 19:53:54 +0000 Manifest next update: Fri 29 Aug 2025 19:53:54 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: hw5R+BeH/cHTQIZ+TBylZ+0dIye8SRAwtZ+R7BKLVUM=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2610 (0xa32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Aug 22 19:53:54 2025 GMT Not After : Aug 29 19:53:54 2025 GMT Subject: CN=68a8cad2-e486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:73:5b:71:4c:19:c8:9b:32:63:a1:2e:d9:c9: 14:ea:90:c4:4d:1b:31:30:a9:9e:eb:99:f5:58:78: 05:76:20:a5:4e:62:9b:50:21:e7:df:2c:92:fc:08: d7:f7:96:37:a3:d7:f4:ad:11:77:7e:df:75:ca:ed: 30:ec:bd:31:57:38:39:bf:bc:ae:8a:dd:dd:80:ac: f3:70:ee:90:2b:43:8a:9a:ad:b3:93:46:1d:7f:c0: 6c:2d:5f:f7:40:08:ec:c7:5a:ce:c9:c3:bb:ce:1e: f3:ce:05:77:1b:f8:72:17:cf:f6:b5:9d:51:38:21: 53:df:8b:02:e5:b3:b4:c7:c3:a7:d6:0b:70:d4:54: c6:23:ca:ca:60:94:11:ba:a9:81:a2:15:43:34:00: 65:ba:16:af:51:66:ef:6c:71:6a:a9:a4:15:49:88: 9b:b8:0d:48:97:e8:4d:1d:b2:ba:8e:ac:b2:40:39: 51:aa:06:4a:38:e2:84:43:4b:44:af:e5:80:e6:da: e7:d4:45:8f:d4:73:4b:e0:64:6a:61:ec:87:be:1a: a8:0e:40:bb:4a:c8:85:9c:88:41:c4:ee:2f:32:8d: 2c:1e:cf:90:01:74:eb:4d:3e:59:8f:78:8c:68:29: 83:6e:20:76:60:47:dc:ba:91:95:e9:de:ed:06:e0: f6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:EC:C5:48:73:27:61:C8:8F:D4:93:14:4A:E8:16:F0:A2:A3:18:6A X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:2e:19:c9:1b:0b:27:64:44:49:da:3c:88:6b:92:1f:f6:a2: b7:e7:53:28:65:25:ef:e2:60:d3:9f:c9:5d:e2:48:30:f0:4a: d6:90:a8:c2:8e:9e:aa:a3:a2:db:84:27:27:11:62:73:b4:a6: b9:15:29:3e:dd:f2:f8:74:bd:1a:aa:b5:a4:bf:57:bb:c8:9e: 34:27:6b:9b:8c:04:54:56:47:c0:a8:b4:0b:7f:57:be:9e:77: 12:fe:69:a9:99:a7:70:f2:5d:0a:d5:55:c1:a9:80:ee:5e:da: e2:dd:41:70:f4:8c:e0:0e:62:0f:2d:6f:d1:50:44:85:49:d1: 0b:71:27:54:ef:52:38:3a:d0:b5:6a:cd:66:66:d5:5b:88:df: 84:be:66:22:60:ef:c9:91:ce:13:a5:01:70:9c:0b:81:d2:0d: bc:aa:c6:4a:8a:55:b5:28:ab:a4:a8:a8:28:86:b1:b9:92:9a: 57:fe:91:db:ab:5e:04:eb:0b:d0:5e:c7:24:f1:45:f4:49:e9: ec:35:a0:e2:12:c0:79:4e:05:49:ed:66:ae:d6:7d:7b:5a:2e: 54:a2:91:e2:f5:12:b1:3b:36:34:c6:fb:49:59:07:77:78:59: d9:90:7d:db:4c:25:16:a9:7c:28:7e:f7:ea:8b:30:b5:7b:b2: 54:31:6e:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUwODIyMTk1MzU0WhcNMjUwODI5MTk1MzU0WjAYMRYwFAYD VQQDEw02OGE4Y2FkMi1lNDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHNbcUwZyJsyY6Eu2ckU6pDETRsxMKme65n1WHgFdiClTmKbUCHn3yyS/AjX 95Y3o9f0rRF3ft91yu0w7L0xVzg5v7yuit3dgKzzcO6QK0OKmq2zk0Ydf8BsLV/3 QAjsx1rOycO7zh7zzgV3G/hyF8/2tZ1ROCFT34sC5bO0x8On1gtw1FTGI8rKYJQR uqmBohVDNABluhavUWbvbHFqqaQVSYibuA1Il+hNHbK6jqyyQDlRqgZKOOKEQ0tE r+WA5trn1EWP1HNL4GRqYeyHvhqoDkC7SsiFnIhBxO4vMo0sHs+QAXTrTT5Zj3iM aCmDbiB2YEfcupGV6d7tBuD2bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfsxUhz J2HIj9STFEroFvCioxhqMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnLhnJGwsnZERJ2jyIa5If9qK351MoZSXv4mDTn8ld4kgw8ErWkKjC jp6qo6LbhCcnEWJztKa5FSk+3fL4dL0aqrWkv1e7yJ40J2ubjARUVkfAqLQLf1e+ nncS/mmpmadw8l0K1VXBqYDuXtri3UFw9IzgDmIPLW/RUESFSdELcSdU71I4OtC1 as1mZtVbiN+EvmYiYO/Jkc4TpQFwnAuB0g28qsZKilW1KKukqKgohrG5kppX/pHb q14E6wvQXsck8UX0SensNaDiEsB5TgVJ7Wau1n17Wi5UopHi9RKxOzY0xvtJWQd3 eFnZkH3bTCUWqXwofvfqizC1e7JUMW65 -----END CERTIFICATE-----Generated at Sat Aug 23 18:26:00 2025 by rpki-client