$ rpki-client -vvf rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft File: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft (raw, json) Hash identifier: xKVsNkQF8yeCCOpKQXwLjCgbf3kcPujZIo1YkvelaaU= Subject key identifier: 76:BB:43:35:CF:43:71:6A:7D:B6:D4:B5:48:2B:EB:79:DB:40:66:11 Authority key identifier: F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C Certificate issuer: /CN=A917B12B/serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Certificate serial: 2783 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft Manifest number: 275B Signing time: Fri 04 Jul 2025 15:51:27 +0000 Manifest this update: Fri 04 Jul 2025 15:51:26 +0000 Manifest next update: Fri 11 Jul 2025 15:51:26 +0000 Files and hashes: 1: 8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl (hash: lA8PP9IzAhBbz4HzzbcXUxTclMZH2iRMerWLeMLgWjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10115 (0x2783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B12B, serialNumber=F26923453F0170309FD58BF3B0B5DCE43FF9B41C Validity Not Before: Jul 4 15:51:26 2025 GMT Not After : Jul 11 15:51:26 2025 GMT Subject: CN=6867f87f-eba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:37:6a:5e:f3:7f:6b:7d:07:ba:2e:e2:d7:c6: 7f:0a:b5:82:cc:d8:f1:9e:b6:90:0b:0c:3d:6a:e9: 9e:17:7a:a5:57:45:e5:0e:65:45:2a:21:1a:89:d0: bc:6e:47:86:5d:0c:76:8c:36:77:d9:cb:40:21:17: 20:53:b5:ad:96:50:a3:db:6f:d5:c4:ec:87:51:fe: b4:cc:c5:75:de:3c:5e:0a:c9:01:95:56:3d:4f:9b: 79:27:6e:f3:7f:97:9e:09:a2:71:0f:3e:39:75:ce: 1d:4a:a3:50:73:81:a8:98:d3:df:1c:fe:bc:c5:81: 5c:2a:9b:13:6b:fb:b6:ca:cf:09:bc:5c:f5:80:1f: 56:e7:eb:8d:e6:c5:50:4f:56:af:ad:7b:48:96:81: 6c:e0:0d:a3:b3:cc:33:33:6b:d8:6b:e3:63:89:94: 88:97:c9:9b:3e:4b:8d:ec:6e:39:b0:f1:63:3b:5b: 7b:69:26:1b:1e:af:f7:04:22:46:63:58:aa:ac:c4: ce:4f:89:54:5c:4d:9d:45:89:35:39:75:02:2a:55: fb:d8:18:f9:07:dc:e5:cf:3b:0b:fc:39:6d:18:56: 4f:05:e7:44:6d:ef:ce:da:3f:dd:08:b6:80:af:ce: f1:0d:02:28:4b:65:11:44:50:b5:14:82:ed:7d:0b: 85:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:BB:43:35:CF:43:71:6A:7D:B6:D4:B5:48:2B:EB:79:DB:40:66:11 X509v3 Authority Key Identifier: keyid:F2:69:23:45:3F:01:70:30:9F:D5:8B:F3:B0:B5:DC:E4:3F:F9:B4:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mkjRT8BcDCf1YvzsLXc5D_5tBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B12B/A509EC1EBD9D11E49996554CC4F9AE02/8mkjRT8BcDCf1YvzsLXc5D_5tBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:95:79:37:9a:77:24:c0:62:3e:db:fa:8a:31:04:d3:29:98: 75:c7:3e:c9:ac:f7:8d:4d:ca:47:24:a8:d1:fd:93:2d:5c:bd: 3d:d4:de:8c:db:b8:4d:bc:65:be:3a:ce:25:64:09:8f:0b:eb: 62:0f:a6:01:2d:80:80:3a:67:a6:90:27:41:ee:88:e0:7c:8b: e9:59:b9:fb:16:d5:1f:46:6f:ed:77:a0:b8:35:11:fd:e3:3b: ae:ef:75:f7:9c:73:88:15:b3:0e:fa:ab:12:9a:a4:1d:5f:0b: 71:26:58:5a:51:8d:79:e8:02:4c:e6:20:ce:a1:8f:50:cc:45: e8:80:59:74:02:d1:30:11:c1:8e:2d:bc:8e:aa:ad:3f:b5:47: 65:82:c4:17:35:0e:88:e2:ab:df:2c:e4:ff:93:19:9b:97:9e: e6:91:e3:c8:bd:93:7e:56:d7:47:b2:13:ed:d9:ca:f4:5f:a4: cb:c0:a2:23:e8:3f:93:9d:07:a9:54:d0:d8:7f:af:53:84:8d: 40:0d:ce:63:67:92:72:7f:56:14:78:76:ca:5e:5d:d8:8f:06: c2:5a:6f:6e:41:16:db:e0:8a:25:47:05:a2:81:6f:96:59:da: 5c:77:f4:1e:f1:01:a6:38:f0:25:4c:ce:9b:82:2b:fc:07:05: 21:c4:eb:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxMkIxMTAvBgNVBAUTKEYyNjkyMzQ1M0YwMTcwMzA5RkQ1OEJGM0IwQjVEQ0U0 M0ZGOUI0MUMwHhcNMjUwNzA0MTU1MTI2WhcNMjUwNzExMTU1MTI2WjAYMRYwFAYD VQQDEw02ODY3Zjg3Zi1lYmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzdqXvN/a30Hui7i18Z/CrWCzNjxnraQCww9aumeF3qlV0XlDmVFKiEaidC8 bkeGXQx2jDZ32ctAIRcgU7WtllCj22/VxOyHUf60zMV13jxeCskBlVY9T5t5J27z f5eeCaJxDz45dc4dSqNQc4GomNPfHP68xYFcKpsTa/u2ys8JvFz1gB9W5+uN5sVQ T1avrXtIloFs4A2js8wzM2vYa+NjiZSIl8mbPkuN7G45sPFjO1t7aSYbHq/3BCJG Y1iqrMTOT4lUXE2dRYk1OXUCKlX72Bj5B9zlzzsL/DltGFZPBedEbe/O2j/dCLaA r87xDQIoS2URRFC1FILtfQuFpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHa7QzXP Q3FqfbbUtUgr63nbQGYRMB8GA1UdIwQYMBaAFPJpI0U/AXAwn9WL87C13OQ/+bQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjEyQi9BNTA5RUMxRUJE OUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNEQ2YxWXZ6c0xYYzVEXzV0 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhta2pSVDhCY0RDZjFZdnpzTFhjNURfNXRCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjEyQi9BNTA5RUMxRUJEOUQxMUU0OTk5NjU1NENDNEY5QUUwMi84bWtqUlQ4QmNE Q2YxWXZ6c0xYYzVEXzV0QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvlXk3mnckwGI+2/qKMQTTKZh1xz7JrPeNTcpHJKjR/ZMtXL091N6M 27hNvGW+Os4lZAmPC+tiD6YBLYCAOmemkCdB7ojgfIvpWbn7FtUfRm/td6C4NRH9 4zuu73X3nHOIFbMO+qsSmqQdXwtxJlhaUY156AJM5iDOoY9QzEXogFl0AtEwEcGO LbyOqq0/tUdlgsQXNQ6I4qvfLOT/kxmbl57mkePIvZN+VtdHshPt2cr0X6TLwKIj 6D+TnQepVNDYf69ThI1ADc5jZ5Jyf1YUeHbKXl3YjwbCWm9uQRbb4IolRwWigW+W Wdpcd/Qe8QGmOPAlTM6bgiv8BwUhxOvi -----END CERTIFICATE-----Generated at Sat Jul 5 05:28:16 2025 by rpki-client