$ rpki-client -vvf rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft File: MYj5ufXpCvsNsN5lZfAskL7qSNA.mft (raw, json) Hash identifier: jlXho7krjVcS8LlQByPSlbWPdWJbWvA6xQWkXw6gOQ0= Subject key identifier: E8:63:C4:64:E5:D8:50:4D:22:FA:24:2E:D3:33:C2:ED:93:E8:4E:C9 Authority key identifier: 31:88:F9:B9:F5:E9:0A:FB:0D:B0:DE:65:65:F0:2C:90:BE:EA:48:D0 Certificate issuer: /CN=A9184AB8/serialNumber=3188F9B9F5E90AFB0DB0DE6565F02C90BEEA48D0 Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft Manifest number: 78 Signing time: Sat 23 Aug 2025 07:05:32 +0000 Manifest this update: Sat 23 Aug 2025 07:05:32 +0000 Manifest next update: Sat 30 Aug 2025 07:05:32 +0000 Files and hashes: 1: MYj5ufXpCvsNsN5lZfAskL7qSNA.crl (hash: KmwKlN8xTRgUJSJMoFUmjzKXaNXj+xisRnxhe1UuoFo=) 2: ED63E306F5EC11EFBB174335C4F9AE02.roa (hash: sDxPGPWuMnoYPL5SXwZzSX89Yi7Im2b2Bj3YLGK0a00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.crl rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184AB8, serialNumber=3188F9B9F5E90AFB0DB0DE6565F02C90BEEA48D0 Validity Not Before: Aug 23 07:05:32 2025 GMT Not After : Aug 30 07:05:32 2025 GMT Subject: CN=68a9683c-31fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d7:66:e0:a6:26:7c:21:4c:0f:f5:db:3f:d6: e4:85:97:92:4c:3e:da:f0:1c:f9:c1:3e:95:0e:86: 8d:31:80:d0:f6:0c:92:ca:a1:40:c6:fb:97:51:6f: 8b:98:25:d4:26:4a:20:0b:b8:d7:33:23:da:15:28: f0:33:5d:41:3e:f4:af:41:13:d0:c5:4f:7c:51:43: 72:de:47:a5:8f:31:49:f9:61:ff:78:4b:eb:a0:98: 10:b2:bd:b2:8b:e7:cc:8e:5d:2d:1a:11:c4:f6:2f: 87:2b:cc:e5:27:87:b1:0c:40:46:79:dd:fc:13:f1: f6:4f:6f:d7:7c:e6:06:66:ac:31:96:a1:7e:47:53: 1e:02:2d:a6:fc:93:3e:a0:db:fb:0a:1a:2a:cf:75: 51:70:66:20:18:ba:88:35:6c:ef:f6:1e:73:10:74: 72:89:e4:c6:20:d7:78:41:df:43:9f:dc:3c:60:e7: aa:7d:f6:91:30:57:9d:96:1d:16:88:62:50:f5:b0: 7b:79:cb:63:76:16:80:97:74:ee:4a:3b:a0:4d:ce: be:b9:23:04:d8:b6:80:18:1f:75:e1:94:e0:80:a6: 0d:19:f9:d7:1c:0d:29:ab:e5:ab:be:34:69:77:0f: 4d:f4:cf:72:51:13:fd:24:76:3a:79:17:37:4b:b8: f0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:63:C4:64:E5:D8:50:4D:22:FA:24:2E:D3:33:C2:ED:93:E8:4E:C9 X509v3 Authority Key Identifier: keyid:31:88:F9:B9:F5:E9:0A:FB:0D:B0:DE:65:65:F0:2C:90:BE:EA:48:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:37:19:d8:e6:1f:75:ec:77:12:ad:ec:73:05:88:b2:8d:41: e6:df:95:12:4e:5d:ce:e2:43:32:8d:f1:d7:a8:54:71:0b:81: b0:7b:18:1d:42:7a:0f:a5:ec:5b:f3:6f:4e:06:9e:3d:1c:09: 0c:db:45:a5:85:ce:89:dd:e0:a4:2b:cd:51:b8:85:a6:f4:83: 04:88:72:67:78:da:c0:80:e4:6e:55:64:92:bc:d4:09:a5:fa: 21:89:d4:26:ff:5f:d8:cf:6d:6d:d2:f3:48:d4:31:0c:9c:29: c6:25:d5:26:a5:77:d9:38:66:09:30:6e:19:84:56:6a:80:fc: b1:7a:24:e0:08:3e:c8:dc:df:3b:5f:a0:6f:a6:bd:2a:ae:c9: a8:72:5c:30:9f:d1:16:6f:80:44:df:d7:63:45:b3:27:1e:95: 8c:f0:6d:99:27:78:ee:44:1d:f7:7a:7b:eb:29:2d:f2:14:d8: eb:ec:56:e0:2a:43:37:af:a3:40:84:3a:65:37:48:dc:f1:c1: a5:63:0d:12:63:8b:98:10:35:ff:08:31:74:52:ac:30:25:7f: 9a:2c:e2:dc:38:85:e0:6e:67:33:8f:a0:43:e4:cd:3d:85:69: f4:3d:32:89:8f:9a:af:80:db:c0:eb:8f:17:0d:43:21:7b:b9: 09:f4:f3:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NEFCODExMC8GA1UEBRMoMzE4OEY5QjlGNUU5MEFGQjBEQjBERTY1NjVGMDJDOTBC RUVBNDhEMDAeFw0yNTA4MjMwNzA1MzJaFw0yNTA4MzAwNzA1MzJaMBgxFjAUBgNV BAMTDTY4YTk2ODNjLTMxZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm12bgpiZ8IUwP9ds/1uSFl5JMPtrwHPnBPpUOho0xgND2DJLKoUDG+5dRb4uY JdQmSiALuNczI9oVKPAzXUE+9K9BE9DFT3xRQ3LeR6WPMUn5Yf94S+ugmBCyvbKL 58yOXS0aEcT2L4crzOUnh7EMQEZ53fwT8fZPb9d85gZmrDGWoX5HUx4CLab8kz6g 2/sKGirPdVFwZiAYuog1bO/2HnMQdHKJ5MYg13hB30Of3Dxg56p99pEwV52WHRaI YlD1sHt5y2N2FoCXdO5KO6BNzr65IwTYtoAYH3XhlOCApg0Z+dccDSmr5au+NGl3 D030z3JRE/0kdjp5FzdLuPDRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6GPEZOXY UE0i+iQu0zPC7ZPoTskwHwYDVR0jBBgwFoAUMYj5ufXpCvsNsN5lZfAskL7qSNAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0QUI4LzNCMEE5QzY0RDFC MDExRUY4QzIwREQzMkM0RjlBRTAyL01ZajV1ZlhwQ3ZzTnNONWxaZkFza0w3cVNO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVlqNXVmWHBDdnNOc041bFpmQXNrTDdxU05BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0 QUI4LzNCMEE5QzY0RDFCMDExRUY4QzIwREQzMkM0RjlBRTAyL01ZajV1ZlhwQ3Zz TnNONWxaZkFza0w3cVNOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKM3GdjmH3XsdxKt7HMFiLKNQebflRJOXc7iQzKN8deoVHELgbB7GB1C eg+l7Fvzb04Gnj0cCQzbRaWFzond4KQrzVG4hab0gwSIcmd42sCA5G5VZJK81Aml +iGJ1Cb/X9jPbW3S80jUMQycKcYl1Sald9k4ZgkwbhmEVmqA/LF6JOAIPsjc3ztf oG+mvSquyahyXDCf0RZvgETf12NFsycelYzwbZkneO5EHfd6e+spLfIU2OvsVuAq Qzevo0CEOmU3SNzxwaVjDRJji5gQNf8IMXRSrDAlf5os4tw4heBuZzOPoEPkzT2F afQ9MomPmq+A28DrjxcNQyF7uQn08yM= -----END CERTIFICATE-----Generated at Sun Aug 24 00:20:09 2025 by rpki-client