$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: QS86y21hsJ4EEQAd8nEU6pt4PWoT9fuwkfxzGgpGvps= Subject key identifier: 61:16:5F:AD:94:BE:55:CB:59:77:29:96:CB:EE:E4:E7:CB:64:7A:B1 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 08DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 08B3 Signing time: Fri 22 Aug 2025 20:42:29 +0000 Manifest this update: Fri 22 Aug 2025 20:42:28 +0000 Manifest next update: Fri 29 Aug 2025 20:42:28 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: jfCcXcat/k52Xhwmwpyu4sFDCe4KCkt4QkKBXUKqQNA=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2269 (0x8dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Aug 22 20:42:28 2025 GMT Not After : Aug 29 20:42:28 2025 GMT Subject: CN=68a8d634-896f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:de:f3:56:5e:48:43:de:44:a3:88:a1:1f:6a: 16:ae:7a:6d:4f:5a:7c:4f:d5:1f:84:db:bf:16:89: 26:a3:36:13:7a:8f:3a:44:51:e8:45:3a:51:83:9c: b4:d4:48:48:9e:15:d7:d1:1b:bd:ba:77:0f:47:32: 0c:88:41:34:6c:03:90:85:f1:fb:7d:5b:ca:11:55: 39:28:b5:cf:de:9f:03:47:fa:f6:f4:ca:91:15:8d: fe:c9:d2:6d:2e:32:33:d1:5f:a4:37:b3:d7:c8:a2: 7e:7d:88:5d:aa:ba:b7:f9:87:4d:cf:a3:e2:c8:97: 84:a6:00:c7:3a:26:17:dc:3a:49:6e:bf:bd:fb:df: c4:e7:f7:80:e4:02:47:30:9e:c8:cb:d3:ab:1d:3e: cc:37:88:4f:17:19:6d:22:40:98:c5:33:34:59:0a: 31:86:5b:55:79:c1:b6:0b:f5:73:14:5a:bc:38:ae: c9:39:e7:44:c8:3e:09:84:7a:8d:87:86:80:a5:88: 64:be:23:99:d5:8b:2f:24:6f:2f:7b:d7:71:1b:2f: a7:01:b5:b3:79:75:43:4f:9a:a5:8f:e8:7a:c0:69: 86:b8:d6:65:5e:15:64:7b:82:02:0d:72:2f:d6:da: 0e:28:8a:48:82:16:19:d0:7e:6a:5d:5e:09:dd:3b: d3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:16:5F:AD:94:BE:55:CB:59:77:29:96:CB:EE:E4:E7:CB:64:7A:B1 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:00:cc:94:6d:24:36:b7:8d:b9:71:29:9e:6d:90:37:bb:70: c8:c3:57:09:e7:64:e4:3f:f9:88:36:99:ed:c7:ce:cf:a7:08: ec:0b:b5:59:58:af:de:30:f2:60:40:e5:3c:aa:80:3c:a0:3b: 05:2c:ec:dc:ec:55:54:18:ee:35:6b:06:07:8c:89:d6:32:a8: 1d:37:2f:86:7b:a3:40:51:f5:41:a9:ee:9a:35:22:63:7e:59: 93:0d:1c:35:51:14:00:25:c5:1e:28:21:f2:d4:10:1e:27:4d: d7:25:ed:9f:28:5d:70:03:a4:70:c7:21:2d:5e:cf:c0:62:fb: d0:ac:47:9f:4d:df:2e:a3:4c:30:2e:a5:a1:27:bd:e2:d7:f5: 52:09:29:1c:b5:ac:57:e7:34:36:07:03:e2:3e:e2:4a:db:6e: 10:57:9f:05:86:77:01:33:5f:8d:e2:15:5c:7c:17:54:a4:55: 5b:67:2c:1e:60:a8:19:6e:3d:27:34:b1:44:eb:e8:83:98:ab: 6e:b0:fd:14:18:a3:28:da:33:f6:7b:b2:1a:10:72:35:dc:de: 81:e3:ad:24:e0:37:bd:9e:f4:dc:cb:2d:9a:55:1d:ed:14:8b: 13:0b:91:2a:b8:26:28:cf:aa:a0:1c:59:64:1a:0b:f6:39:52: 27:fa:01:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwODIyMjA0MjI4WhcNMjUwODI5MjA0MjI4WjAYMRYwFAYD VQQDEw02OGE4ZDYzNC04OTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtt7zVl5IQ95Eo4ihH2oWrnptT1p8T9UfhNu/FokmozYTeo86RFHoRTpRg5y0 1EhInhXX0Ru9uncPRzIMiEE0bAOQhfH7fVvKEVU5KLXP3p8DR/r29MqRFY3+ydJt LjIz0V+kN7PXyKJ+fYhdqrq3+YdNz6PiyJeEpgDHOiYX3DpJbr+9+9/E5/eA5AJH MJ7Iy9OrHT7MN4hPFxltIkCYxTM0WQoxhltVecG2C/VzFFq8OK7JOedEyD4JhHqN h4aApYhkviOZ1YsvJG8ve9dxGy+nAbWzeXVDT5qlj+h6wGmGuNZlXhVke4ICDXIv 1toOKIpIghYZ0H5qXV4J3TvTTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGEWX62U vlXLWXcplsvu5OfLZHqxMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIAMyUbSQ2t425cSmebZA3u3DIw1cJ52TkP/mINpntx87PpwjsC7VZ WK/eMPJgQOU8qoA8oDsFLOzc7FVUGO41awYHjInWMqgdNy+Ge6NAUfVBqe6aNSJj flmTDRw1URQAJcUeKCHy1BAeJ03XJe2fKF1wA6RwxyEtXs/AYvvQrEefTd8uo0ww LqWhJ73i1/VSCSkctaxX5zQ2BwPiPuJK224QV58FhncBM1+N4hVcfBdUpFVbZywe YKgZbj0nNLFE6+iDmKtusP0UGKMo2jP2e7IaEHI13N6B460k4De9nvTcyy2aVR3t FIsTC5EquCYoz6qgHFlkGgv2OVIn+gHw -----END CERTIFICATE-----Generated at Sun Aug 24 03:21:26 2025 by rpki-client