$ rpki-client -vvf rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft File: Aul8r2u1VIcberzm6NeDIOuURpE.mft (raw, json) Hash identifier: 5Nv1R+SBNBI6bPX6LVQ5Tm69qXP5yqBOgEVxEVNBxJQ= Subject key identifier: 8E:1E:4C:0A:0E:67:22:D2:C4:9C:6D:E2:12:1A:2A:F5:CA:31:B4:53 Authority key identifier: 02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 Certificate issuer: /CN=A917A47E/serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Certificate serial: 2414 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft Manifest number: 23FE Signing time: Fri 22 Aug 2025 15:51:36 +0000 Manifest this update: Fri 22 Aug 2025 15:51:36 +0000 Manifest next update: Fri 29 Aug 2025 15:51:36 +0000 Files and hashes: 1: Aul8r2u1VIcberzm6NeDIOuURpE.crl (hash: fY7tvKitIxMChuV7Ai1jKhxZbkMqB6O7WeB9bFrTuPk=) 2: 0B72CFAC049211EBB8144531C4F9AE02.roa (hash: 8qQ0fcDr/aGVnyD7P+G/6xo5kjUt3vBtdFXB7xYrVKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9236 (0x2414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A47E, serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Validity Not Before: Aug 22 15:51:36 2025 GMT Not After : Aug 29 15:51:36 2025 GMT Subject: CN=68a89208-a268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7e:45:d3:0d:5c:4c:19:36:d6:af:4c:c0:ba: 44:97:28:dc:10:78:7d:23:3e:a1:fc:29:16:1e:c1: 56:da:37:6a:3b:a3:e3:40:3a:c2:50:cb:12:9a:09: 48:e4:3a:1f:94:50:e2:c1:9e:52:9e:5d:58:80:d8: 49:c0:62:a8:f5:ae:a1:44:48:ba:5e:ba:d4:21:af: bb:ae:af:8a:75:fc:31:8d:36:85:f5:56:bf:52:69: 2e:c8:ed:26:ef:78:7e:b4:a4:3f:4d:f2:4c:26:15: 60:a1:f9:06:54:cc:4c:88:52:01:40:81:45:ac:7d: 4b:9d:25:83:00:f1:64:4b:76:ec:06:19:3c:45:f0: d5:99:74:53:91:5a:70:36:2f:b1:f3:5d:ab:a5:2e: 2c:45:5c:3c:0c:b1:c0:c1:80:3a:3c:6c:80:69:35: 35:d7:7c:3e:62:33:78:a0:d9:7e:49:16:cc:bc:b8: 47:e2:7a:64:44:87:bc:67:69:10:6b:01:4c:dd:f1: f5:63:15:26:ca:2b:75:2e:6e:98:b0:86:54:46:58: 97:5c:92:5e:ea:1a:19:1f:5c:3b:d4:b3:79:6e:dd: 35:02:61:1f:18:0d:41:70:c7:e4:a0:05:d7:44:14: 8b:5b:92:12:26:9a:15:be:5d:40:9c:94:cb:85:aa: c2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:1E:4C:0A:0E:67:22:D2:C4:9C:6D:E2:12:1A:2A:F5:CA:31:B4:53 X509v3 Authority Key Identifier: keyid:02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:9b:97:d7:ff:20:55:12:07:1b:88:11:0a:a5:92:5e:23:1b: f7:67:c6:c1:9b:a5:7c:42:bb:10:fb:94:19:35:91:dd:ae:36: 9b:70:53:56:80:6b:96:68:9a:b4:08:9b:c7:ce:cb:2b:9a:a4: 11:ab:3a:47:0a:79:ef:42:5e:24:b1:d4:7e:60:d1:0a:c8:a8: ca:c0:07:85:7d:63:a0:0b:02:1c:f0:30:58:d0:32:e8:d6:a6: 18:1b:44:ae:46:8e:ea:9d:f9:91:7e:d7:b6:93:50:34:3c:43: ca:1f:b3:29:15:d5:9b:6d:5e:72:0e:7b:82:1d:f7:06:8e:3f: 18:b1:93:12:27:4d:9f:76:a1:36:5d:15:40:ba:06:12:4e:37: ea:69:a1:3c:73:c7:7d:10:3b:49:e3:0e:33:02:d1:70:4c:25: af:7d:41:31:5e:0f:2c:33:de:56:62:3f:c6:5e:42:7c:05:4e: 83:21:5f:f7:f2:89:be:a7:8e:79:da:4e:50:cb:33:a4:41:17: 91:78:5b:8b:a6:d2:aa:33:3a:0f:8e:bd:1e:08:b7:42:18:55: 8e:f3:2b:64:23:db:f3:d1:3b:c1:cb:59:f7:2d:ba:8e:a7:06: 0b:cf:e8:d7:ae:cb:0d:65:b3:89:6b:7c:d6:24:d6:e2:30:2d: 8f:15:ac:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0N0UxMTAvBgNVBAUTKDAyRTk3Q0FGNkJCNTU0ODcxQjdBQkNFNkU4RDc4MzIw RUI5NDQ2OTEwHhcNMjUwODIyMTU1MTM2WhcNMjUwODI5MTU1MTM2WjAYMRYwFAYD VQQDEw02OGE4OTIwOC1hMjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqn5F0w1cTBk21q9MwLpElyjcEHh9Iz6h/CkWHsFW2jdqO6PjQDrCUMsSmglI 5DoflFDiwZ5Snl1YgNhJwGKo9a6hREi6XrrUIa+7rq+KdfwxjTaF9Va/UmkuyO0m 73h+tKQ/TfJMJhVgofkGVMxMiFIBQIFFrH1LnSWDAPFkS3bsBhk8RfDVmXRTkVpw Ni+x812rpS4sRVw8DLHAwYA6PGyAaTU113w+YjN4oNl+SRbMvLhH4npkRIe8Z2kQ awFM3fH1YxUmyit1Lm6YsIZURliXXJJe6hoZH1w71LN5bt01AmEfGA1BcMfkoAXX RBSLW5ISJpoVvl1AnJTLharC3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4eTAoO ZyLSxJxt4hIaKvXKMbRTMB8GA1UdIwQYMBaAFALpfK9rtVSHG3q85ujXgyDrlEaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ3RS8zRTZCRUM1NjY5 MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJY2JlcnptNk5lRElPdVVS cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F1bDhyMnUxVkljYmVyem02TmVESU91VVJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTQ3RS8zRTZCRUM1NjY5MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJ Y2JlcnptNk5lRElPdVVScEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABm5fX/yBVEgcbiBEKpZJeIxv3Z8bBm6V8QrsQ+5QZNZHdrjabcFNW gGuWaJq0CJvHzssrmqQRqzpHCnnvQl4ksdR+YNEKyKjKwAeFfWOgCwIc8DBY0DLo 1qYYG0SuRo7qnfmRfte2k1A0PEPKH7MpFdWbbV5yDnuCHfcGjj8YsZMSJ02fdqE2 XRVAugYSTjfqaaE8c8d9EDtJ4w4zAtFwTCWvfUExXg8sM95WYj/GXkJ8BU6DIV/3 8om+p4552k5QyzOkQReReFuLptKqMzoPjr0eCLdCGFWO8ytkI9vz0TvBy1n3LbqO pwYLz+jXrssNZbOJa3zWJNbiMC2PFazI -----END CERTIFICATE-----Generated at Sun Aug 24 03:32:39 2025 by rpki-client