$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft File: 8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft (raw, json) Hash identifier: suuYutmYrUmZYd5QhxjowcRL9ItekGE8yHWjWyYVjT4= Subject key identifier: 73:3A:79:ED:FE:DE:2E:F3:B5:81:41:4B:01:6E:0E:5C:96:CB:90:43 Authority key identifier: F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E Certificate issuer: /CN=A917E1FA/serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft Manifest number: 2E Signing time: Sat 23 Aug 2025 08:00:09 +0000 Manifest this update: Sat 23 Aug 2025 08:00:09 +0000 Manifest next update: Sat 30 Aug 2025 08:00:09 +0000 Files and hashes: 1: 8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl (hash: Clba6xYhR01vsX3ViA6tOM2WSyH8SvYq4z1ZwvohjDQ=) 2: FEC5694C482311F0B2B5E45DC4F9AE02.roa (hash: lNd0dhVh9oVMjkR+5hS3U5ljCVkdpvgCie/KVi3bQe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=F15C5C5BA521453707C81F5FEC0811BF21CFF40E Validity Not Before: Aug 23 08:00:09 2025 GMT Not After : Aug 30 08:00:09 2025 GMT Subject: CN=68a97509-13ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d7:c0:97:a1:7f:f1:3a:72:87:88:b4:ef:9d: e4:a3:12:0a:c0:e2:b1:c8:c8:bd:87:cc:d4:00:59: da:6f:b8:ed:f6:48:0f:ab:da:07:29:3a:df:76:21: 92:a9:e0:e9:c6:95:1e:11:72:0d:26:63:6b:8c:5f: 6b:10:82:f5:ba:fe:18:b3:95:96:14:8f:45:bb:37: b2:2d:48:79:b8:5c:b3:04:a9:ff:04:3d:60:2e:04: c8:c1:92:0e:a2:1a:13:30:62:24:e9:32:f4:26:8e: db:e0:b6:4a:9b:61:ed:f4:f6:a8:e5:97:55:ea:2f: c7:f2:05:a4:9e:2b:68:b9:cf:3d:b5:c6:fe:38:d7: 2e:9b:52:d9:26:10:e9:ff:57:5d:06:00:6f:96:fe: 75:60:5b:b2:74:87:bc:48:7b:c9:91:e3:51:5a:45: 1c:ad:41:e6:84:ed:63:7f:10:64:fa:c2:d8:cf:a3: bf:c3:bb:1b:f4:24:88:f4:b3:f3:fe:44:e4:6f:34: 99:f4:12:db:c0:ac:85:05:a0:14:01:79:45:77:35: 92:e6:f2:c0:91:ae:3e:08:b5:11:9d:b0:b8:29:2e: 85:98:28:7b:12:4e:1a:48:b5:12:2f:e8:43:03:e4: ea:1f:fb:d3:2b:3d:65:eb:5b:9c:a8:9c:0e:aa:b2: 9f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3A:79:ED:FE:DE:2E:F3:B5:81:41:4B:01:6E:0E:5C:96:CB:90:43 X509v3 Authority Key Identifier: keyid:F1:5C:5C:5B:A5:21:45:37:07:C8:1F:5F:EC:08:11:BF:21:CF:F4:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8VxcW6UhRTcHyB9f7AgRvyHP9A4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/9A873EB045A311F095EFFD48C4F9AE02/8VxcW6UhRTcHyB9f7AgRvyHP9A4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:a6:e6:37:58:e2:33:d9:d5:60:79:19:f6:7b:ff:ba:4b:8a: 47:dc:72:32:1b:02:a3:af:7f:b2:97:eb:2b:18:2c:41:a5:5e: 43:b2:59:23:a2:9a:8a:17:6c:f5:2c:19:53:f4:10:71:99:44: 7e:80:a5:be:01:30:c8:b6:9b:86:95:f5:9d:85:06:d6:50:08: 41:da:c3:dd:88:a0:8b:9e:39:7c:54:7b:85:90:10:72:03:6a: 1f:b0:ba:bd:1f:c4:3e:a4:9b:c4:61:cb:5c:61:bf:1b:7f:4e: f7:a2:eb:6f:70:6b:9e:f2:99:ee:2f:b5:08:2e:3c:dd:d1:1a: 9a:ee:c2:4f:b1:e6:08:0e:86:04:e4:30:bf:30:4a:17:e3:33: 87:13:c1:28:de:33:91:34:43:6e:75:ba:dd:dd:e5:e6:5f:fd: 32:5e:61:f3:b2:c3:2d:52:43:9f:7a:e9:f4:ef:d1:4e:4e:d8: 23:ab:38:68:85:30:b3:b7:47:2c:66:ac:b4:4d:ec:cb:16:2d: 04:a8:97:26:cb:c0:b9:a3:61:57:40:02:03:98:ff:3d:d2:b2: 0e:64:07:75:8b:7d:83:49:4e:e0:cf:f8:33:6e:89:94:a8:56: 3c:be:f1:ea:73:98:0a:91:b2:02:32:9a:e0:94:60:8b:4e:fd: 91:a5:04:c4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTFGQTExMC8GA1UEBRMoRjE1QzVDNUJBNTIxNDUzNzA3QzgxRjVGRUMwODExQkYy MUNGRjQwRTAeFw0yNTA4MjMwODAwMDlaFw0yNTA4MzAwODAwMDlaMBgxFjAUBgNV BAMTDTY4YTk3NTA5LTEzZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl18CXoX/xOnKHiLTvneSjEgrA4rHIyL2HzNQAWdpvuO32SA+r2gcpOt92IZKp 4OnGlR4Rcg0mY2uMX2sQgvW6/hizlZYUj0W7N7ItSHm4XLMEqf8EPWAuBMjBkg6i GhMwYiTpMvQmjtvgtkqbYe309qjll1XqL8fyBaSeK2i5zz21xv441y6bUtkmEOn/ V10GAG+W/nVgW7J0h7xIe8mR41FaRRytQeaE7WN/EGT6wtjPo7/Duxv0JIj0s/P+ RORvNJn0EtvArIUFoBQBeUV3NZLm8sCRrj4ItRGdsLgpLoWYKHsSThpItRIv6EMD 5Oof+9MrPWXrW5yonA6qsp+pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUczp57f7e LvO1gUFLAW4OXJbLkEMwHwYDVR0jBBgwFoAU8VxcW6UhRTcHyB9f7AgRvyHP9A4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMUZBLzlBODczRUIwNDVB MzExRjA5NUVGRkQ0OEM0RjlBRTAyLzhWeGNXNlVoUlRjSHlCOWY3QWdSdnlIUDlB NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOFZ4Y1c2VWhSVGNIeUI5ZjdBZ1J2eUhQOUE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MUZBLzlBODczRUIwNDVBMzExRjA5NUVGRkQ0OEM0RjlBRTAyLzhWeGNXNlVoUlRj SHlCOWY3QWdSdnlIUDlBNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHim5jdY4jPZ1WB5GfZ7/7pLikfccjIbAqOvf7KX6ysYLEGlXkOyWSOi mooXbPUsGVP0EHGZRH6Apb4BMMi2m4aV9Z2FBtZQCEHaw92IoIueOXxUe4WQEHID ah+wur0fxD6km8Rhy1xhvxt/Tvei629wa57yme4vtQguPN3RGpruwk+x5ggOhgTk ML8wShfjM4cTwSjeM5E0Q251ut3d5eZf/TJeYfOywy1SQ5966fTv0U5O2COrOGiF MLO3RyxmrLRN7MsWLQSolybLwLmjYVdAAgOY/z3Ssg5kB3WLfYNJTuDP+DNuiZSo Vjy+8epzmAqRsgIymuCUYItO/ZGlBMQ= -----END CERTIFICATE-----Generated at Sat Aug 23 12:42:08 2025 by rpki-client