$ rpki-client -vvf rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft File: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft (raw, json) Hash identifier: nrUmhiegbDLa5yruRATSWxbXQEwM6hPviQGv56QEeaM= Subject key identifier: 6D:46:E3:CC:79:D9:EC:92:D6:AF:9C:C6:0C:21:5D:89:F6:1D:F5:56 Authority key identifier: F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C Certificate issuer: /CN=A917B12B/serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Certificate serial: 279C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft Manifest number: 2774 Signing time: Fri 22 Aug 2025 15:41:50 +0000 Manifest this update: Fri 22 Aug 2025 15:41:49 +0000 Manifest next update: Fri 29 Aug 2025 15:41:49 +0000 Files and hashes: 1: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl (hash: K4ZLP/8isanHeFpzdeV9WkUq1nOoeziXuFogFbsaejU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10140 (0x279c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B12B, serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Validity Not Before: Aug 22 15:41:49 2025 GMT Not After : Aug 29 15:41:49 2025 GMT Subject: CN=68a88fbd-cc4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6c:c6:cf:74:3e:4c:d2:ac:1e:af:82:52:83: 65:18:b8:2d:00:16:a1:43:5d:89:a2:bc:95:cf:14: f0:76:5f:f8:4b:46:8a:96:43:45:7b:90:e8:23:d9: 6d:6e:79:10:ce:8a:a7:1b:8c:db:28:b1:00:d7:8f: 6d:ab:2e:7d:cd:ad:ff:59:58:cb:26:f7:7e:cb:7f: 5f:23:ef:39:fa:f8:dc:27:c8:2a:28:86:0a:a7:d0: 8a:2c:e0:82:64:09:ab:4f:65:6f:9d:cd:73:bf:ea: a8:c7:9a:b5:ca:b3:2a:3a:13:11:f8:8b:34:9f:82: 73:c6:ee:f8:f1:9c:5c:e5:97:d8:9f:c5:a0:9c:28: 95:cf:cc:e5:81:d7:9b:85:b3:3d:a8:20:5e:81:dd: 15:ba:b1:7d:9d:ab:21:a4:66:a6:ca:4e:02:ce:04: 4e:7b:50:f9:a0:80:53:c5:a5:e0:99:24:81:e9:41: c1:4c:fe:2f:d1:18:0e:9c:bd:23:4e:54:3b:66:a2: 6e:f9:92:38:a4:4b:48:cd:27:e1:e1:f8:61:d3:38: d9:f9:ba:bf:df:38:26:a0:25:8a:70:76:75:d8:f0: 2b:f4:e4:10:80:c2:85:92:7b:53:b2:6f:1e:e9:1a: 04:cc:d9:b3:0d:42:67:be:6d:98:d2:1f:b0:30:77: cd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:46:E3:CC:79:D9:EC:92:D6:AF:9C:C6:0C:21:5D:89:F6:1D:F5:56 X509v3 Authority Key Identifier: keyid:F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:c4:11:60:a4:42:31:37:9d:44:78:90:cf:89:49:c3:2f:93: eb:d5:ac:f8:88:91:75:5f:77:84:2b:b8:dd:f3:71:fd:f2:65: cd:b8:dc:a4:56:c7:43:8f:89:55:ff:ac:4c:57:ef:37:99:69: 0b:da:16:b5:78:0c:03:0d:28:ae:0d:ae:7a:88:6f:01:b3:55: 5a:42:ed:84:76:f2:db:92:3f:80:b0:2c:70:0e:59:4a:47:42: 10:ab:64:ec:4b:35:c7:3b:6e:a1:19:8f:fa:46:44:64:1f:9a: eb:14:b2:26:30:ee:ce:2c:45:85:0e:82:14:6a:1a:9d:25:21: c5:d8:30:1a:6c:12:b5:1f:4b:d2:84:85:4b:9f:04:c7:9c:6c: 79:a2:b3:7d:74:d3:b1:ab:94:23:55:4e:4d:a8:5a:46:64:ab: 8e:4f:19:c6:98:b7:0a:fb:ea:40:af:88:97:83:06:83:40:ab: 78:d8:94:4c:b9:8b:9b:ba:1a:a9:fb:08:d4:9f:f1:ca:4b:74: ec:98:30:57:8c:b5:06:66:f0:a5:ae:8c:8d:bf:40:0f:b7:e7: e6:d3:37:e9:69:8e:36:29:d1:69:f0:84:fd:40:98:7a:e0:d3: 1d:0c:19:40:e8:0e:90:93:d9:20:bf:08:eb:d4:12:e9:da:bf: 7c:0a:14:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxMkIxMTAvBgNVBAUTKEYyNjkyMzQ1M0YwMTcwMzA5RkQ1OEJGM0IwQjVEQ0U0 M0ZGOUI0MUMwHhcNMjUwODIyMTU0MTQ5WhcNMjUwODI5MTU0MTQ5WjAYMRYwFAYD VQQDEw02OGE4OGZiZC1jYzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGzGz3Q+TNKsHq+CUoNlGLgtABahQ12JoryVzxTwdl/4S0aKlkNFe5DoI9lt bnkQzoqnG4zbKLEA149tqy59za3/WVjLJvd+y39fI+85+vjcJ8gqKIYKp9CKLOCC ZAmrT2Vvnc1zv+qox5q1yrMqOhMR+Is0n4Jzxu748Zxc5ZfYn8WgnCiVz8zlgdeb hbM9qCBegd0VurF9nashpGamyk4CzgROe1D5oIBTxaXgmSSB6UHBTP4v0RgOnL0j TlQ7ZqJu+ZI4pEtIzSfh4fhh0zjZ+bq/3zgmoCWKcHZ12PAr9OQQgMKFkntTsm8e 6RoEzNmzDUJnvm2Y0h+wMHfN1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1G48x5 2eyS1q+cxgwhXYn2HfVWMB8GA1UdIwQYMBaAFPJpI0U/AXAwn9WL87C13OQ/+bQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjEyQi9BNTA5RUMxRUJE OUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNEQ2YxWXZ6c0xYYzVEXzV0 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhta2pSVDhCY0RDZjFZdnpzTFhjNURfNXRCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjEyQi9BNTA5RUMxRUJEOUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNE Q2YxWXZ6c0xYYzVEXzV0QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMxBFgpEIxN51EeJDPiUnDL5Pr1az4iJF1X3eEK7jd83H98mXNuNyk VsdDj4lV/6xMV+83mWkL2ha1eAwDDSiuDa56iG8Bs1VaQu2EdvLbkj+AsCxwDllK R0IQq2TsSzXHO26hGY/6RkRkH5rrFLImMO7OLEWFDoIUahqdJSHF2DAabBK1H0vS hIVLnwTHnGx5orN9dNOxq5QjVU5NqFpGZKuOTxnGmLcK++pAr4iXgwaDQKt42JRM uYubuhqp+wjUn/HKS3TsmDBXjLUGZvClroyNv0APt+fm0zfpaY42KdFp8IT9QJh6 4NMdDBlA6A6Qk9kgvwjr1BLp2r98ChQ/ -----END CERTIFICATE-----Generated at Sun Aug 24 00:08:50 2025 by rpki-client