$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: CVSqhtw9t6BvfcL5zcInfedeSM3+hYdd9rYnldr7frE= Subject key identifier: BF:52:E0:42:19:FB:5D:CF:DF:99:75:9D:A3:30:76:9D:85:08:2A:AA Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: C6 Signing time: Sat 23 Aug 2025 01:01:16 +0000 Manifest this update: Sat 23 Aug 2025 01:01:16 +0000 Manifest next update: Sat 30 Aug 2025 01:01:16 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: pNsplDLLmkfGNtRaGwDDOS+u+7cBmRS1a5a1X7G2DSE=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: kCmrnMtq0oO23W6srUkZmhxFZ7143rIIMei/dep36jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Aug 23 01:01:16 2025 GMT Not After : Aug 30 01:01:16 2025 GMT Subject: CN=68a912dc-febd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7f:9b:a3:b1:ae:50:9b:df:02:a3:71:76:9b: 4a:8b:b6:e6:00:b7:c9:de:9e:ae:b9:6d:1b:08:3f: d8:af:8b:ea:ac:76:ea:33:d3:8f:d1:a6:28:8c:61: cd:5e:9b:ff:63:fe:68:d7:fd:22:dc:f1:e3:7f:0d: bd:20:aa:a5:07:3f:4b:9e:71:a6:b7:0c:53:c4:a6: d1:bf:0a:5f:a7:6e:b5:28:04:81:29:f6:12:0d:27: c1:ff:d9:e8:3c:5d:68:cd:fa:30:59:66:32:98:64: 7f:c9:bd:79:da:a1:f5:24:a8:13:53:ce:96:0e:3e: d5:3f:66:fc:ea:8e:d4:18:3e:13:fb:99:9d:94:71: d6:86:cb:99:c6:91:d3:85:0f:3c:d3:fc:8e:ac:b9: 91:8e:9a:72:f9:79:41:e9:07:09:23:f5:72:f1:88: ef:8a:f8:d2:54:7f:d7:5c:95:c7:c8:dc:45:3a:f0: 3f:3a:11:a0:60:8a:29:03:04:6a:68:c2:cd:cd:78: 8c:c6:7e:f9:05:a9:e7:81:8f:41:1d:74:92:a0:2b: 3b:ba:8a:6b:97:74:f7:fe:f9:50:97:48:4a:0d:67: 84:87:0b:6e:bb:9c:b1:f3:0c:cd:ea:0a:ef:0a:b2: 03:d7:aa:7b:52:bd:f4:49:cc:71:12:88:7e:04:a3: e5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:52:E0:42:19:FB:5D:CF:DF:99:75:9D:A3:30:76:9D:85:08:2A:AA X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:1f:96:a5:d5:db:84:9b:08:2d:b4:3c:bd:34:a7:1c:6f:f1: 94:41:61:ec:3e:5b:2f:eb:b2:4a:38:5e:7b:40:a2:36:6a:83: 58:9d:c9:64:ef:83:b9:eb:74:b3:38:98:a8:51:a3:61:8b:c3: 0c:37:a6:d9:0e:39:1e:99:06:75:66:85:c4:5d:c5:83:a7:f2: 57:0f:97:f9:a5:57:f8:6a:45:e7:5f:e2:e1:90:54:9e:d1:4e: 88:5b:ae:ad:61:b6:6e:ea:91:85:0d:bc:eb:be:8a:80:90:34: 24:2f:64:78:7d:cc:ab:c8:fe:40:89:6a:c4:bc:d1:7f:d3:90: 77:33:b2:ea:a8:0f:6e:0d:97:b2:bc:f8:41:07:5c:98:37:9d: e8:40:af:dd:ff:71:e8:b5:91:91:89:03:c1:ce:45:36:17:7e: 76:0f:5d:c8:24:da:ba:15:ff:84:bb:bc:4b:95:0b:28:2b:0d: 4e:5e:de:4a:af:26:4c:ba:3b:cf:4a:13:e8:80:89:cc:09:1c: b5:87:5b:b6:63:ca:15:d7:f5:46:35:a2:c4:ea:7a:79:88:8d: d3:07:de:33:dd:b8:d2:36:91:e2:ef:ed:b0:6a:09:96:0f:c0: 4e:d0:3a:15:50:8c:dc:ce:ee:bb:b1:04:d1:a6:5f:a1:ae:79: 0f:e1:c9:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDN0MxMTAvBgNVBAUTKDA4QUI1NDc5QUFGMEM4NDhBNTE0MkQ2RkU0REM5OTE2 MkI0NUMzMzcwHhcNMjUwODIzMDEwMTE2WhcNMjUwODMwMDEwMTE2WjAYMRYwFAYD VQQDEw02OGE5MTJkYy1mZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3+bo7GuUJvfAqNxdptKi7bmALfJ3p6uuW0bCD/Yr4vqrHbqM9OP0aYojGHN Xpv/Y/5o1/0i3PHjfw29IKqlBz9LnnGmtwxTxKbRvwpfp261KASBKfYSDSfB/9no PF1ozfowWWYymGR/yb152qH1JKgTU86WDj7VP2b86o7UGD4T+5mdlHHWhsuZxpHT hQ880/yOrLmRjppy+XlB6QcJI/Vy8YjvivjSVH/XXJXHyNxFOvA/OhGgYIopAwRq aMLNzXiMxn75BanngY9BHXSSoCs7uoprl3T3/vlQl0hKDWeEhwtuu5yx8wzN6grv CrID16p7Ur30ScxxEoh+BKPltwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9S4EIZ +13P35l1naMwdp2FCCqqMB8GA1UdIwQYMBaAFAirVHmq8MhIpRQtb+TcmRYrRcM3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM3Qy9BNEMxNDYyODU1 NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lFaWxGQzF2NU55WkZpdEZ3 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM3Qy9BNEMxNDYyODU1NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lF aWxGQzF2NU55WkZpdEZ3emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4H5al1duEmwgttDy9NKccb/GUQWHsPlsv67JKOF57QKI2aoNYnclk 74O563SzOJioUaNhi8MMN6bZDjkemQZ1ZoXEXcWDp/JXD5f5pVf4akXnX+LhkFSe 0U6IW66tYbZu6pGFDbzrvoqAkDQkL2R4fcyryP5AiWrEvNF/05B3M7LqqA9uDZey vPhBB1yYN53oQK/d/3HotZGRiQPBzkU2F352D13IJNq6Ff+Eu7xLlQsoKw1OXt5K ryZMujvPShPogInMCRy1h1u2Y8oV1/VGNaLE6np5iI3TB94z3bjSNpHi7+2wagmW D8BO0DoVUIzczu67sQTRpl+hrnkP4cl9 -----END CERTIFICATE-----Generated at Sat Aug 23 21:49:45 2025 by rpki-client