$ rpki-client -vvf rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft File: 8D39OxYGRUyhuoaQPnmtpwULoWo.mft (raw, json) Hash identifier: DF5ZNNXehm6B6HQjOc9fb/4vwWp/binkDaQ0yRgvKmI= Subject key identifier: E0:14:A0:6D:08:4C:13:00:79:CA:62:07:89:3D:7A:DC:87:56:44:FE Authority key identifier: F0:3D:FD:3B:16:06:45:4C:A1:BA:86:90:3E:79:AD:A7:05:0B:A1:6A Certificate issuer: /CN=A9172C46/serialNumber=F03DFD3B1606454CA1BA86903E79ADA7050BA16A Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D39OxYGRUyhuoaQPnmtpwULoWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft Manifest number: 12 Signing time: Sat 23 Aug 2025 08:20:48 +0000 Manifest this update: Sat 23 Aug 2025 08:20:47 +0000 Manifest next update: Sat 30 Aug 2025 08:20:47 +0000 Files and hashes: 1: 8D39OxYGRUyhuoaQPnmtpwULoWo.crl (hash: nrkheomQm6jcB7B2/wLZ3ywGZML5Su5hhjkcUgjScYI=) 2: 2E834C9C719311F08B21BD17C4F9AE02.roa (hash: S2srypxp7sEj5mgpvV1lWNa9dizgL57pVNGYl/RcGuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.crl rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D39OxYGRUyhuoaQPnmtpwULoWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172C46, serialNumber=F03DFD3B1606454CA1BA86903E79ADA7050BA16A Validity Not Before: Aug 23 08:20:47 2025 GMT Not After : Aug 30 08:20:47 2025 GMT Subject: CN=68a979df-e688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bb:7b:5b:88:ac:32:73:eb:db:09:9b:65:02: ca:5f:d0:15:a5:b1:91:88:e2:74:15:14:a4:e0:8a: b0:e1:d9:67:3b:ab:32:e2:f7:15:eb:ed:d8:c3:dc: 42:32:d5:57:35:8e:35:d9:59:ae:17:84:0d:ed:ff: c3:af:17:f7:77:10:a5:d5:27:4f:d0:f5:5c:f9:e6: 4b:07:a9:af:ce:62:e7:dd:7e:52:52:cd:92:20:e0: 09:9d:7d:39:c8:10:5e:6a:c9:7d:0c:f0:97:32:66: 6d:35:0b:6c:87:d5:86:94:1e:7a:fc:61:a8:4d:0c: 39:95:76:e1:a1:bb:be:96:2a:4e:75:48:e7:2f:e1: 63:dc:c1:bc:89:24:87:36:50:fb:7d:82:cc:c9:bd: c1:a3:4f:eb:95:7d:e9:15:fe:c9:e1:30:27:79:b1: bf:c5:92:43:5d:e4:a7:97:08:fe:b9:a7:33:6d:36: 27:e3:d0:dc:49:32:36:0d:f6:34:3a:cd:91:30:e6: 34:8f:a8:ce:62:27:49:f0:5a:9e:06:97:cb:e9:b8: cc:f0:3d:d8:12:77:00:51:7b:7d:31:9a:27:76:30: 4d:53:54:77:81:55:f7:d9:6d:bd:95:56:40:0a:22: 53:ce:49:be:b4:37:85:03:48:6f:5f:b3:d2:56:41: 1e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:14:A0:6D:08:4C:13:00:79:CA:62:07:89:3D:7A:DC:87:56:44:FE X509v3 Authority Key Identifier: keyid:F0:3D:FD:3B:16:06:45:4C:A1:BA:86:90:3E:79:AD:A7:05:0B:A1:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D39OxYGRUyhuoaQPnmtpwULoWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:e5:60:85:28:62:2c:45:56:4c:ba:ef:1b:17:d5:a2:08:39: f9:75:53:8f:a1:4c:c7:71:f0:cb:ed:15:f6:cc:03:f6:21:56: a7:50:c0:ae:ef:24:7f:92:c7:f1:4f:f3:5f:a4:a6:48:74:35: 38:76:7f:2f:88:47:16:98:01:e4:41:f5:65:ec:b5:d1:6e:12: d7:d3:47:6c:5b:5e:c8:b1:9e:25:2a:8e:04:c5:75:f4:a8:e8: 70:55:cf:d7:bd:7a:d7:fc:44:a3:e3:61:c2:79:5b:a3:07:e6: ad:90:90:4a:72:7d:23:86:1f:67:8c:13:43:92:88:c3:7a:b5: ec:3b:99:a7:99:68:87:f0:5c:a6:b7:98:60:2f:31:03:8f:d8: 99:9c:30:83:b2:5b:fd:78:07:87:b2:62:0f:f6:64:9b:d8:44: 11:fa:79:24:b7:63:a5:c7:b7:40:0d:1d:35:f2:fc:89:26:36: 7e:77:10:bc:b2:bb:95:a5:95:60:6d:6a:4b:8a:22:34:94:0f: 1b:3e:70:77:92:5d:2e:c9:38:fc:65:75:d8:67:94:e0:8e:3e: 57:11:20:b1:38:39:c4:6a:60:51:87:ce:d7:07:01:62:1c:48: 39:66:73:88:1a:eb:6a:07:8c:26:6e:30:fa:76:4f:f9:a9:97: 6e:86:06:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkM0NjExMC8GA1UEBRMoRjAzREZEM0IxNjA2NDU0Q0ExQkE4NjkwM0U3OUFEQTcw NTBCQTE2QTAeFw0yNTA4MjMwODIwNDdaFw0yNTA4MzAwODIwNDdaMBgxFjAUBgNV BAMTDTY4YTk3OWRmLWU2ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCou3tbiKwyc+vbCZtlAspf0BWlsZGI4nQVFKTgirDh2Wc7qzLi9xXr7djD3EIy 1Vc1jjXZWa4XhA3t/8OvF/d3EKXVJ0/Q9Vz55ksHqa/OYufdflJSzZIg4AmdfTnI EF5qyX0M8JcyZm01C2yH1YaUHnr8YahNDDmVduGhu76WKk51SOcv4WPcwbyJJIc2 UPt9gszJvcGjT+uVfekV/snhMCd5sb/FkkNd5KeXCP65pzNtNifj0NxJMjYN9jQ6 zZEw5jSPqM5iJ0nwWp4Gl8vpuMzwPdgSdwBRe30xmid2ME1TVHeBVffZbb2VVkAK IlPOSb60N4UDSG9fs9JWQR7hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4BSgbQhM EwB5ymIHiT163IdWRP4wHwYDVR0jBBgwFoAU8D39OxYGRUyhuoaQPnmtpwULoWow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQzQ2LzkwMDM4OUZFNzEw RDExRjA4MDgzNDUyRkM0RjlBRTAyLzhEMzlPeFlHUlV5aHVvYVFQbm10cHdVTG9X by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOEQzOU94WUdSVXlodW9hUVBubXRwd1VMb1dvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy QzQ2LzkwMDM4OUZFNzEwRDExRjA4MDgzNDUyRkM0RjlBRTAyLzhEMzlPeFlHUlV5 aHVvYVFQbm10cHdVTG9Xby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHLlYIUoYixFVky67xsX1aIIOfl1U4+hTMdx8MvtFfbMA/YhVqdQwK7v JH+Sx/FP81+kpkh0NTh2fy+IRxaYAeRB9WXstdFuEtfTR2xbXsixniUqjgTFdfSo 6HBVz9e9etf8RKPjYcJ5W6MH5q2QkEpyfSOGH2eME0OSiMN6tew7maeZaIfwXKa3 mGAvMQOP2JmcMIOyW/14B4eyYg/2ZJvYRBH6eSS3Y6XHt0ANHTXy/IkmNn53ELyy u5WllWBtakuKIjSUDxs+cHeSXS7JOPxlddhnlOCOPlcRILE4OcRqYFGHztcHAWIc SDlmc4ga62oHjCZuMPp2T/mpl26GBhY= -----END CERTIFICATE-----Generated at Sun Aug 24 00:47:21 2025 by rpki-client