$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft File: F2vOFchi1HunYKH2ZTj4HVxJO4E.mft (raw, json) Hash identifier: /K36YAEJ2HID7sMrpN16Lx4QZqSTWwkPaFRaIKqoqQ4= Subject key identifier: 0C:40:08:0E:12:C9:3B:BC:98:7A:13:76:4E:35:02:F6:DC:F7:E5:A8 Authority key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 Certificate issuer: /CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft Manifest number: 8E Signing time: Sat 23 Aug 2025 06:44:00 +0000 Manifest this update: Sat 23 Aug 2025 06:44:00 +0000 Manifest next update: Sat 30 Aug 2025 06:44:00 +0000 Files and hashes: 1: F2vOFchi1HunYKH2ZTj4HVxJO4E.crl (hash: 4XMT/JbVKg+w9Ao43JePR85hbty+/u/2Pb1rkb659Do=) 2: 2CE10886A68511EFB0CF9981C4F9AE02.roa (hash: veK+ihHT7rgGehPtR5m7GK/hbNWI81sjRNiKcGQwWGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Validity Not Before: Aug 23 06:44:00 2025 GMT Not After : Aug 30 06:44:00 2025 GMT Subject: CN=68a96330-39f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:23:9a:c8:6a:f6:d1:e2:df:ff:22:c7:84:24: ac:72:62:2e:e6:1f:04:22:9b:b6:c0:ae:b8:7f:60: 5a:f2:24:ad:58:3d:69:d8:4d:a3:31:27:34:7f:a5: b0:0c:03:ba:2f:c5:f0:61:84:33:92:d0:d8:d2:08: cb:19:80:7b:85:92:7f:a0:8e:f2:26:f9:79:13:a9: 8e:14:80:ed:20:05:65:ee:d8:09:28:60:99:ae:3b: c4:a4:11:68:fd:99:fb:7b:9f:bd:cf:e2:20:c6:df: d0:5b:6d:98:df:fe:72:e8:f9:9a:07:0d:93:e9:39: c2:7d:23:10:73:2a:45:99:e4:e4:74:7e:de:3e:73: 35:fa:b7:12:ca:f2:6a:50:d5:65:8c:59:d1:99:e3: 4d:27:83:55:ae:ef:d7:06:59:df:2b:15:e4:40:ae: 84:07:47:52:fd:a2:e5:c0:7f:92:63:8f:b8:7b:d4: 64:88:56:53:d5:c7:b8:f4:22:e7:e1:ae:43:a3:70: bb:3b:2e:75:18:6c:14:3a:7c:a2:80:c9:bd:53:f6: eb:cc:30:4e:fd:b3:a8:79:b6:ef:ef:9e:d7:6e:bf: 3a:69:69:c9:ee:be:4d:ed:e5:81:88:6f:6d:92:fd: 20:dc:9f:61:a6:b5:85:47:64:d8:e8:9e:a4:df:8a: 9d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:40:08:0E:12:C9:3B:BC:98:7A:13:76:4E:35:02:F6:DC:F7:E5:A8 X509v3 Authority Key Identifier: keyid:17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:9e:12:76:a1:93:9b:1a:a1:de:f1:76:f0:ba:a4:e4:21:97: cf:9b:bf:36:89:a8:e5:ac:07:fd:e7:8f:0d:3e:ba:af:df:64: 64:aa:a7:08:33:ca:bf:67:5d:f4:96:58:fe:b9:66:d2:83:dc: ba:f5:04:eb:73:72:14:db:bc:fe:e1:79:9d:d2:81:ff:f4:27: 11:21:1d:cb:c9:76:f5:08:34:6f:1d:a7:7e:a6:c4:6d:df:fa: 60:67:d2:a6:1a:00:a2:63:1b:0f:d1:90:70:b5:19:da:88:14: 46:1b:5b:c9:37:26:1e:9c:ab:98:2d:f2:59:61:39:0d:0d:36: 06:de:d6:09:f5:6f:5b:2e:cc:86:11:0e:2e:7a:30:0e:25:90: f1:44:d0:92:5d:12:03:2c:d2:ae:fb:ff:92:51:10:44:bf:d6: a7:90:fa:ec:9d:7e:ed:f6:78:50:a9:97:47:df:5e:a0:5f:eb: bd:cc:e1:ed:07:09:13:05:ef:55:11:30:2e:85:ce:e6:b4:fc: e6:e5:2d:cf:8c:63:e9:fb:09:cc:ce:d7:96:9a:40:07:df:d7: cc:a3:45:4c:b5:00:f7:7a:4d:bb:ed:ce:50:7e:4c:5f:9b:2b: 26:d8:aa:04:ea:91:22:ec:59:98:db:09:09:bc:da:a8:7e:d2: 67:33:77:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2RTQxMTAvBgNVBAUTKDE3NkJDRTE1Qzg2MkQ0N0JBNzYwQTFGNjY1MzhGODFE NUM0OTNCODEwHhcNMjUwODIzMDY0NDAwWhcNMjUwODMwMDY0NDAwWjAYMRYwFAYD VQQDEw02OGE5NjMzMC0zOWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6iOayGr20eLf/yLHhCSscmIu5h8EIpu2wK64f2Ba8iStWD1p2E2jMSc0f6Ww DAO6L8XwYYQzktDY0gjLGYB7hZJ/oI7yJvl5E6mOFIDtIAVl7tgJKGCZrjvEpBFo /Zn7e5+9z+Igxt/QW22Y3/5y6PmaBw2T6TnCfSMQcypFmeTkdH7ePnM1+rcSyvJq UNVljFnRmeNNJ4NVru/XBlnfKxXkQK6EB0dS/aLlwH+SY4+4e9RkiFZT1ce49CLn 4a5Do3C7Oy51GGwUOnyigMm9U/brzDBO/bOoebbv757Xbr86aWnJ7r5N7eWBiG9t kv0g3J9hprWFR2TY6J6k34qdRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxACA4S yTu8mHoTdk41Avbc9+WoMB8GA1UdIwQYMBaAFBdrzhXIYtR7p2Ch9mU4+B1cSTuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZFNC8zMkU5OTNDMEE2 ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9GMnZPRmNoaTFIdW5ZS0gyWlRqNEhWeEpP NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Yydk9GY2hpMUh1bllLSDJaVGo0SFZ4Sk80RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDZFNC8zMkU5OTNDMEE2ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9GMnZPRmNoaTFI dW5ZS0gyWlRqNEhWeEpPNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqnhJ2oZObGqHe8XbwuqTkIZfPm782iajlrAf9548NPrqv32RkqqcI M8q/Z130llj+uWbSg9y69QTrc3IU27z+4Xmd0oH/9CcRIR3LyXb1CDRvHad+psRt 3/pgZ9KmGgCiYxsP0ZBwtRnaiBRGG1vJNyYenKuYLfJZYTkNDTYG3tYJ9W9bLsyG EQ4uejAOJZDxRNCSXRIDLNKu+/+SURBEv9ankPrsnX7t9nhQqZdH316gX+u9zOHt BwkTBe9VETAuhc7mtPzm5S3PjGPp+wnMzteWmkAH39fMo0VMtQD3ek277c5Qfkxf mysm2KoE6pEi7FmY2wkJvNqoftJnM3fo -----END CERTIFICATE-----Generated at Sat Aug 23 10:28:12 2025 by rpki-client