$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: K3XLKPY9SoItrtFLwlYMb6rTHIsARL+vF6V/zYJV2V8= Subject key identifier: 76:A8:89:DE:15:3E:56:8E:5E:38:44:1E:42:3B:5F:20:9B:2C:A5:66 Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: 8B Signing time: Sat 23 Aug 2025 06:46:27 +0000 Manifest this update: Sat 23 Aug 2025 06:46:26 +0000 Manifest next update: Sat 30 Aug 2025 06:46:26 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: VslXzYXs4VTErnLddjqrKJWOCv3mzb+x4Ka31+7AuuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Aug 23 06:46:26 2025 GMT Not After : Aug 30 06:46:26 2025 GMT Subject: CN=68a963c3-fd72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:dc:75:bd:b4:8e:d5:80:18:ff:c0:73:cd:63: b1:13:e4:b8:f5:c8:28:c3:7c:dc:14:80:e7:13:6f: f9:a5:1c:6f:31:88:7a:7d:13:de:6c:31:17:d0:6e: 66:a7:55:14:22:a9:f8:9c:91:b4:2a:85:5d:b9:b6: bc:7d:ed:b5:e7:99:46:e1:29:58:69:68:14:b7:28: ef:5c:cf:7f:9f:44:56:05:98:7e:81:f9:af:ab:1a: 67:2d:59:8b:a2:12:91:6f:fb:70:9b:1f:0c:d4:64: 49:ca:93:15:d4:03:29:f7:e6:9b:53:b1:ed:88:83: 01:e4:00:6b:dd:d4:02:6f:5f:73:f1:af:30:fa:36: 3c:79:91:84:7b:e6:04:ed:42:7b:c5:c9:e5:d6:2f: f8:e2:7e:94:58:07:83:65:d0:4b:52:d3:d3:34:1e: ef:1f:c5:5a:2a:1e:1e:59:f8:ea:57:be:b7:11:de: 9c:52:a5:cd:d9:17:28:c2:2a:30:db:6f:01:18:d0: bf:a0:9a:8c:be:7b:fc:9e:5b:ec:53:27:09:5b:33: c7:d6:74:0d:2c:32:fa:e4:e1:be:56:ff:48:81:e7: bd:89:c1:18:fa:58:5d:7f:78:36:98:87:df:b1:bb: a4:19:73:cf:5a:ec:d8:46:76:87:ae:aa:9c:a6:31: 57:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A8:89:DE:15:3E:56:8E:5E:38:44:1E:42:3B:5F:20:9B:2C:A5:66 X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:52:95:d5:7c:41:ba:4d:b7:4a:e6:c3:d1:6b:bc:1b:d2:66: 23:4d:61:b0:49:36:15:88:91:24:e9:44:53:46:75:59:e1:57: ec:56:0d:d2:5e:77:b6:ff:2a:fa:19:ea:60:ea:8d:25:98:9e: f9:b8:f8:87:a6:da:ed:9f:fa:fd:13:b4:79:8e:f6:cc:7e:94: 35:54:3d:8f:fd:ed:aa:ce:dd:2b:30:05:6c:41:d3:6e:5b:44: c1:89:eb:da:f9:96:e2:a6:26:cb:4c:a6:54:89:e5:b7:c0:2f: 88:7a:b8:ee:db:02:ab:2d:29:a5:22:2c:4e:5b:22:93:db:12: e7:06:25:0f:e9:8e:2e:f0:50:aa:0b:83:e2:cd:dc:00:fc:e6: 0a:e5:0b:0b:36:49:f7:bc:40:d4:5b:36:d2:11:a8:68:c3:3d: 48:74:86:8f:22:12:16:be:8b:ac:43:5d:36:c4:36:27:fa:3b: b2:c1:21:5b:7a:51:09:44:7f:de:dc:32:71:4c:ee:79:f1:d6: b0:32:6b:79:df:66:30:10:02:2d:4a:c2:21:19:42:14:07:93: 88:02:fb:b1:1e:61:f3:be:b3:55:9e:44:20:7a:35:77:2d:f2: 8a:47:02:6c:4a:cc:9c:59:79:ee:63:ea:d3:19:a6:0e:3c:cc: 8e:b4:93:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjUwODIzMDY0NjI2WhcNMjUwODMwMDY0NjI2WjAYMRYwFAYD VQQDEw02OGE5NjNjMy1mZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dx1vbSO1YAY/8BzzWOxE+S49cgow3zcFIDnE2/5pRxvMYh6fRPebDEX0G5m p1UUIqn4nJG0KoVduba8fe2155lG4SlYaWgUtyjvXM9/n0RWBZh+gfmvqxpnLVmL ohKRb/twmx8M1GRJypMV1AMp9+abU7HtiIMB5ABr3dQCb19z8a8w+jY8eZGEe+YE 7UJ7xcnl1i/44n6UWAeDZdBLUtPTNB7vH8VaKh4eWfjqV763Ed6cUqXN2Rcowiow 228BGNC/oJqMvnv8nlvsUycJWzPH1nQNLDL65OG+Vv9Igee9icEY+lhdf3g2mIff sbukGXPPWuzYRnaHrqqcpjFXMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHaoid4V PlaOXjhEHkI7XyCbLKVmMB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0UpXVfEG6TbdK5sPRa7wb0mYjTWGwSTYViJEk6URTRnVZ4VfsVg3S Xne2/yr6Gepg6o0lmJ75uPiHptrtn/r9E7R5jvbMfpQ1VD2P/e2qzt0rMAVsQdNu W0TBieva+ZbipibLTKZUieW3wC+Ierju2wKrLSmlIixOWyKT2xLnBiUP6Y4u8FCq C4PizdwA/OYK5QsLNkn3vEDUWzbSEahowz1IdIaPIhIWvousQ102xDYn+juywSFb elEJRH/e3DJxTO558dawMmt532YwEAItSsIhGUIUB5OIAvuxHmHzvrNVnkQgejV3 LfKKRwJsSsycWXnuY+rTGaYOPMyOtJNd -----END CERTIFICATE-----Generated at Sat Aug 23 18:16:27 2025 by rpki-client