$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft File: 08nS13n2aEMJcSuzDPoZkpDhuNY.mft (raw, json) Hash identifier: LGzh3k2pXM/68BmLeV9rULkCU+ITSXPHYBL55NmUkPs= Subject key identifier: 6E:B6:05:60:FD:F2:7A:1C:FD:1E:BC:F7:5C:01:30:E3:FE:60:3E:29 Authority key identifier: D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 Certificate issuer: /CN=A915DE8F/serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft Manifest number: 93 Signing time: Sat 23 Aug 2025 06:40:25 +0000 Manifest this update: Sat 23 Aug 2025 06:40:25 +0000 Manifest next update: Sat 30 Aug 2025 06:40:25 +0000 Files and hashes: 1: 08nS13n2aEMJcSuzDPoZkpDhuNY.crl (hash: CyIn6JuKH2iaGsj3gIb3gGY4h+mJDbwd+O3dDge2ilY=) 2: 6DEFE6D8A14611EF93AB8E21C4F9AE02.roa (hash: rRMGtINr2UhdhF+qj8NjJEBcNErv93/+Ql2sANUuRRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE8F, serialNumber=D3C9D2D779F6684309712BB30CFA199290E1B8D6 Validity Not Before: Aug 23 06:40:25 2025 GMT Not After : Aug 30 06:40:25 2025 GMT Subject: CN=68a96259-2c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:1c:2c:2e:10:9a:8b:f2:18:db:4d:04:40:ec: e2:bf:3d:df:0f:c8:3e:2b:9b:2c:dc:07:ae:20:74: 4a:b5:f1:d7:af:96:da:b2:1a:2c:f4:1a:a5:32:57: 71:af:4f:f9:93:49:3d:ee:e3:d7:12:db:1a:64:b5: 8e:c1:ec:73:84:26:57:d2:28:a3:12:25:22:22:93: 74:c5:8e:0d:99:58:de:de:3c:e8:08:c5:2e:89:6f: 7a:f3:e4:eb:b2:21:da:c9:dd:e8:0f:38:93:c0:b5: 1f:d6:1a:91:dd:4c:e0:7f:47:59:0b:b5:33:a2:50: c3:04:57:ae:48:27:00:c8:16:59:59:78:b7:c3:9e: 53:d6:94:db:0b:f0:0f:4a:16:83:68:e4:79:51:84: 43:8d:4b:da:e6:3d:43:ed:dd:c8:0a:b4:d8:42:e4: 94:d6:10:6b:71:bf:66:9c:e5:89:42:fe:58:d1:e0: 7c:6b:94:11:19:c0:a3:03:2e:70:89:91:60:61:92: eb:2f:b1:b8:9d:ee:f5:c9:9f:de:05:9f:2e:4b:6f: 7b:e7:ba:fd:0b:33:96:6d:93:16:15:f5:15:fe:a6: 73:4a:de:f4:67:52:a4:22:03:f3:18:11:14:8f:97: bf:a5:fa:ba:87:df:09:1e:11:c8:7d:a3:b2:03:53: 7c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B6:05:60:FD:F2:7A:1C:FD:1E:BC:F7:5C:01:30:E3:FE:60:3E:29 X509v3 Authority Key Identifier: keyid:D3:C9:D2:D7:79:F6:68:43:09:71:2B:B3:0C:FA:19:92:90:E1:B8:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08nS13n2aEMJcSuzDPoZkpDhuNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE8F/0B543B0AA14611EFA12A6E1FC4F9AE02/08nS13n2aEMJcSuzDPoZkpDhuNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:ac:a2:5b:83:b8:7d:2f:91:69:ed:1f:2c:4b:9d:c5:d7:e9: dd:11:e2:46:91:77:6f:55:a2:2b:3f:f5:6a:e6:9c:c1:a3:8a: 11:aa:a3:64:ab:63:b5:3f:e1:18:83:5c:3a:1e:2e:a3:9e:96: e9:15:12:07:24:74:99:52:69:9b:90:2c:a7:48:97:ec:a8:e5: a0:0a:61:86:9a:39:7b:80:5f:fd:88:65:eb:ac:b8:80:37:ba: a7:aa:7b:6c:ae:ef:be:6b:16:a9:47:fe:c4:9c:9c:6d:fd:76: d7:dc:4c:f2:c1:82:e9:2b:05:d9:61:44:75:36:2e:1f:a2:fd: 7a:2d:03:39:d0:32:3a:c2:6b:d1:33:da:65:65:b4:98:44:57: 52:08:6c:53:f5:80:40:cf:15:f6:46:4e:9e:aa:02:9e:13:d6: 15:42:84:68:aa:dd:51:8f:92:1f:12:6c:59:c3:33:34:18:d5: 02:c6:4d:41:c5:16:14:87:4d:de:2d:d9:20:d7:f6:b6:ac:2d: 79:80:ca:60:39:91:82:82:b7:21:6e:9a:fe:ef:52:db:18:07: 87:56:73:84:1a:0e:be:31:d5:15:3b:82:26:80:89:e0:1f:26: 1a:9a:33:1c:52:e8:40:20:a7:84:18:21:6e:ba:eb:5e:17:f7: bc:f8:55:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURFOEYxMTAvBgNVBAUTKEQzQzlEMkQ3NzlGNjY4NDMwOTcxMkJCMzBDRkExOTky OTBFMUI4RDYwHhcNMjUwODIzMDY0MDI1WhcNMjUwODMwMDY0MDI1WjAYMRYwFAYD VQQDEw02OGE5NjI1OS0yYzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RwsLhCai/IY200EQOzivz3fD8g+K5ss3AeuIHRKtfHXr5bashos9BqlMldx r0/5k0k97uPXEtsaZLWOwexzhCZX0iijEiUiIpN0xY4NmVje3jzoCMUuiW968+Tr siHayd3oDziTwLUf1hqR3Uzgf0dZC7UzolDDBFeuSCcAyBZZWXi3w55T1pTbC/AP ShaDaOR5UYRDjUva5j1D7d3ICrTYQuSU1hBrcb9mnOWJQv5Y0eB8a5QRGcCjAy5w iZFgYZLrL7G4ne71yZ/eBZ8uS29757r9CzOWbZMWFfUV/qZzSt70Z1KkIgPzGBEU j5e/pfq6h98JHhHIfaOyA1N8+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG62BWD9 8noc/R6891wBMOP+YD4pMB8GA1UdIwQYMBaAFNPJ0td59mhDCXErswz6GZKQ4bjW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REU4Ri8wQjU0M0IwQUEx NDYxMUVGQTEyQTZFMUZDNEY5QUUwMi8wOG5TMTNuMmFFTUpjU3V6RFBvWmtwRGh1 TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4blMxM24yYUVNSmNTdXpEUG9aa3BEaHVOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 REU4Ri8wQjU0M0IwQUExNDYxMUVGQTEyQTZFMUZDNEY5QUUwMi8wOG5TMTNuMmFF TUpjU3V6RFBvWmtwRGh1TlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIrKJbg7h9L5Fp7R8sS53F1+ndEeJGkXdvVaIrP/Vq5pzBo4oRqqNk q2O1P+EYg1w6Hi6jnpbpFRIHJHSZUmmbkCynSJfsqOWgCmGGmjl7gF/9iGXrrLiA N7qnqntsru++axapR/7EnJxt/XbX3EzywYLpKwXZYUR1Ni4fov16LQM50DI6wmvR M9plZbSYRFdSCGxT9YBAzxX2Rk6eqgKeE9YVQoRoqt1Rj5IfEmxZwzM0GNUCxk1B xRYUh03eLdkg1/a2rC15gMpgOZGCgrchbpr+71LbGAeHVnOEGg6+MdUVO4ImgIng HyYamjMcUuhAIKeEGCFuuuteF/e8+FX0 -----END CERTIFICATE-----Generated at Sat Aug 23 19:05:33 2025 by rpki-client