$ rpki-client -vvf rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft File: j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft (raw, json) Hash identifier: XRBkFNxN8T9aMTLjy1PXGAACevRGFBRYs7w8XnBgCU0= Subject key identifier: 1A:95:14:48:DF:B6:B1:AF:00:FF:BE:A7:8C:F8:72:B3:EB:AA:F8:01 Authority key identifier: 8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 Certificate issuer: /CN=A91644A4/serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Certificate serial: 02CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft Manifest number: 02C5 Signing time: Sat 23 Aug 2025 01:40:13 +0000 Manifest this update: Sat 23 Aug 2025 01:40:13 +0000 Manifest next update: Sat 30 Aug 2025 01:40:13 +0000 Files and hashes: 1: j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl (hash: Sk32q8PMKpsPwfWAm5QEyIaKwYBIA4a3zR7n5pgDtDg=) 2: 3B501252140811EDBF3D2F27C4F9AE02.roa (hash: UP0rzzGm1RNNAwSNVW6RQ9A/3hrn3jElJIPxPVvX0ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 716 (0x2cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91644A4, serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Validity Not Before: Aug 23 01:40:13 2025 GMT Not After : Aug 30 01:40:13 2025 GMT Subject: CN=68a91bfd-5261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6b:d5:bf:36:53:aa:83:ff:18:3b:6d:2c:de: 15:da:39:95:2a:7c:e5:4e:a2:2a:51:8b:d8:14:20: 99:9e:14:77:2c:8e:9e:89:06:60:f5:15:5f:5a:89: bc:52:6f:ac:ed:f5:cf:15:0b:3b:f4:70:b6:b0:fc: 77:a9:08:e3:20:86:36:fe:a3:ba:fd:d6:52:94:40: 9b:f3:54:96:2e:b5:ee:50:31:50:f0:94:f3:26:1f: e3:65:8e:21:05:53:0a:3c:26:8e:fd:22:fd:30:52: 54:20:b0:13:b6:88:93:60:be:8d:ea:0b:5a:83:4c: fd:6c:ab:b0:46:41:99:94:6f:4a:d8:98:47:a8:93: d3:8c:62:5c:71:df:f3:1d:94:4d:43:47:93:bc:ba: 8a:2f:bd:1a:bf:df:a1:69:0b:8b:68:9f:28:dd:a3: b2:36:82:e0:b0:15:76:15:75:b3:33:54:0b:a6:cd: e4:91:f7:f0:3c:f2:58:11:16:a2:c4:d1:44:e8:2d: 62:6c:c1:90:83:65:0c:a3:4c:6c:8a:fc:b9:af:0b: de:43:f6:b3:27:7f:ad:9c:38:29:19:ba:ba:17:3b: 19:e6:00:17:93:c5:10:4f:fa:a3:b3:60:83:98:b9: 70:13:77:82:88:1f:e1:55:aa:ae:5e:dd:7d:01:0e: 4c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:95:14:48:DF:B6:B1:AF:00:FF:BE:A7:8C:F8:72:B3:EB:AA:F8:01 X509v3 Authority Key Identifier: keyid:8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:1b:21:04:4e:44:f5:b2:80:31:fe:1b:a0:3b:7b:a8:fc:a9: c9:b9:6c:02:ea:b0:a1:81:98:b8:0f:b0:4e:1d:4f:32:40:dc: 62:97:e4:f0:9f:24:bb:72:7c:e9:39:da:b7:ef:e5:b1:84:26: 55:c3:16:ba:d9:b2:78:e6:10:3b:a9:5c:47:d9:ca:13:56:10: 70:8e:65:15:91:82:8e:bf:ac:4d:f6:f5:85:71:f3:92:ee:77: 73:27:e6:ef:dd:e3:9d:dc:40:e4:e8:26:55:bb:87:5b:f4:74: 59:3a:7a:f0:49:57:46:55:f7:c3:f1:96:66:29:27:e2:f6:22: 72:f2:f1:0d:62:8e:13:b8:3f:16:60:47:7e:b5:39:3a:8a:c1: e2:c3:29:dd:38:b7:b5:c7:1b:94:2f:6a:f6:27:39:9d:d4:b1: 7e:50:84:66:46:24:36:a3:a3:04:c1:37:49:2f:42:c8:50:a9: 53:5a:0b:7d:3c:ff:ef:ad:af:35:61:9a:5f:7b:6e:e2:41:3b: 5b:53:48:45:76:6c:d9:13:9a:34:e5:55:4f:91:b0:5b:86:79: f5:da:d0:44:34:48:34:37:a8:ff:02:72:72:c4:ec:d4:9f:85: 4f:e5:b4:9a:d9:ad:ba:2f:a0:3b:7a:a4:e4:2e:ab:34:ab:22: e9:c8:d6:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ0QTQxMTAvBgNVBAUTKDhGQzY2MUExOTMzMkFFODY0QkM4NzkwMDc0NERBMzM3 RjlBNzAwQTkwHhcNMjUwODIzMDE0MDEzWhcNMjUwODMwMDE0MDEzWjAYMRYwFAYD VQQDEw02OGE5MWJmZC01MjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWvVvzZTqoP/GDttLN4V2jmVKnzlTqIqUYvYFCCZnhR3LI6eiQZg9RVfWom8 Um+s7fXPFQs79HC2sPx3qQjjIIY2/qO6/dZSlECb81SWLrXuUDFQ8JTzJh/jZY4h BVMKPCaO/SL9MFJUILATtoiTYL6N6gtag0z9bKuwRkGZlG9K2JhHqJPTjGJccd/z HZRNQ0eTvLqKL70av9+haQuLaJ8o3aOyNoLgsBV2FXWzM1QLps3kkffwPPJYERai xNFE6C1ibMGQg2UMo0xsivy5rwveQ/azJ3+tnDgpGbq6FzsZ5gAXk8UQT/qjs2CD mLlwE3eCiB/hVaquXt19AQ5MuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqVFEjf trGvAP++p4z4crPrqvgBMB8GA1UdIwQYMBaAFI/GYaGTMq6GS8h5AHRNozf5pwCp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDRBNC8yRDIzQTRDQzAy MDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJvWkx5SGtBZEUyak5fbW5B S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4WmhvWk15cm9aTHlIa0FkRTJqTl9tbkFLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDRBNC8yRDIzQTRDQzAyMDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJv Wkx5SGtBZEUyak5fbW5BS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUGyEETkT1soAx/hugO3uo/KnJuWwC6rChgZi4D7BOHU8yQNxil+Tw nyS7cnzpOdq37+WxhCZVwxa62bJ45hA7qVxH2coTVhBwjmUVkYKOv6xN9vWFcfOS 7ndzJ+bv3eOd3EDk6CZVu4db9HRZOnrwSVdGVffD8ZZmKSfi9iJy8vENYo4TuD8W YEd+tTk6isHiwyndOLe1xxuUL2r2Jzmd1LF+UIRmRiQ2o6MEwTdJL0LIUKlTWgt9 PP/vra81YZpfe27iQTtbU0hFdmzZE5o05VVPkbBbhnn12tBENEg0N6j/AnJyxOzU n4VP5bSa2a26L6A7eqTkLqs0qyLpyNa0 -----END CERTIFICATE-----Generated at Sat Aug 23 17:06:01 2025 by rpki-client