$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft File: 8CJFNT_B8ZSpAipKwBl33l_eNvk.mft (raw, json) Hash identifier: pth6qtH5i3G1SiExO7OWz56sAygJsgpxbnP0EdcmVCQ= Subject key identifier: BD:78:2B:D0:FC:7E:81:D7:C2:E7:00:B3:F6:5B:52:EB:4F:F8:DD:65 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 039D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft Manifest number: 0389 Signing time: Sat 23 Aug 2025 01:09:22 +0000 Manifest this update: Sat 23 Aug 2025 01:09:21 +0000 Manifest next update: Sat 30 Aug 2025 01:09:21 +0000 Files and hashes: 1: 8CJFNT_B8ZSpAipKwBl33l_eNvk.crl (hash: mto2p2IbCPGmSTl0XXCWvNvm6QG05qmO+y0w1IbjzmQ=) 2: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (hash: XtdmJSxuSqJLeY4yGf6y31fYXsFvKu/1qBD/nGzqK1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 925 (0x39d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: Aug 23 01:09:21 2025 GMT Not After : Aug 30 01:09:21 2025 GMT Subject: CN=68a914c1-7ce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c2:3c:e9:92:03:2d:1a:08:15:11:6f:a3:5d: 30:7c:95:f5:db:a1:7b:bd:3a:99:c7:29:f6:71:df: a9:9b:96:52:78:96:d8:2c:2b:eb:cb:96:4a:b6:88: 9f:04:94:44:24:7f:ce:36:a1:fa:2a:f5:29:8c:76: 04:8c:b0:18:a2:ab:a0:35:d0:7b:5d:e8:2e:f3:0a: 29:1e:4e:d2:53:56:64:c5:f6:b8:c0:ae:a5:32:e4: b2:4a:02:24:f4:b2:49:a6:b9:82:a9:1a:87:cd:06: 4c:8e:49:af:fc:0e:4d:67:03:af:30:fa:4b:1e:30: 96:dc:12:fd:42:62:4f:a0:41:ed:00:90:04:80:b9: de:dc:ad:d2:91:9a:36:05:1f:de:1e:0d:49:55:48: fb:9e:aa:a4:92:e1:dd:3f:2a:af:6d:67:ce:ca:dc: fe:d7:42:11:5d:79:70:74:6c:76:c1:b7:b5:3b:ab: ed:03:8d:d3:df:ec:32:59:07:7a:2e:5d:09:ad:79: a0:03:7b:3d:19:c9:c9:49:81:09:5e:8e:1d:08:1c: 5d:45:dd:91:51:20:da:e8:fe:6e:68:f2:f7:b2:a1: c0:cc:55:4c:65:1b:d4:25:cc:a1:ba:23:27:82:13: bf:0b:b9:e1:66:32:cf:e0:f2:77:06:9e:e4:e5:b5: 13:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:78:2B:D0:FC:7E:81:D7:C2:E7:00:B3:F6:5B:52:EB:4F:F8:DD:65 X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:3e:bb:02:b0:d0:8c:f4:6d:1e:87:81:86:6b:df:6a:70:97: 9f:4f:3d:3a:81:d9:de:8a:ac:c0:c6:fb:81:85:a8:9a:90:56: a4:ed:b7:a9:c9:be:99:84:6f:52:f4:3a:b9:00:4f:d6:a5:91: 7c:b7:84:2c:e1:4b:c4:40:1e:77:a8:18:e0:81:a3:1c:c0:da: b2:e3:bd:58:e5:e2:10:b8:7f:ba:4d:a4:c7:6f:8c:7c:78:fb: a4:a5:08:9f:c3:c5:20:25:f3:c4:85:41:4a:97:df:dc:23:48: 40:00:57:7e:e0:a5:4e:1e:a2:34:f2:2d:68:6d:2a:9c:d8:3b: 93:de:ab:13:09:ac:e0:93:4a:4a:17:86:90:c9:9f:ee:19:13: ce:9e:bd:52:01:7a:60:fb:4f:f0:3c:11:c3:6e:7e:cb:96:64: 06:cc:44:3f:90:57:80:71:f6:a0:15:36:fd:47:46:f9:2a:9d: 25:d6:54:16:16:a4:ba:c9:c2:3c:38:2c:15:23:50:de:13:fe: 35:1e:4d:4a:51:30:be:47:53:09:e2:a5:f4:dc:e1:85:fd:eb: da:d4:95:95:bf:05:7b:80:96:55:f7:28:b4:16:03:4e:63:9d: 18:58:99:27:6a:dd:f3:b7:6d:87:89:4e:df:09:e9:dd:59:c8: fc:04:51:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjUwODIzMDEwOTIxWhcNMjUwODMwMDEwOTIxWjAYMRYwFAYD VQQDEw02OGE5MTRjMS03Y2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsI86ZIDLRoIFRFvo10wfJX126F7vTqZxyn2cd+pm5ZSeJbYLCvry5ZKtoif BJREJH/ONqH6KvUpjHYEjLAYoqugNdB7Xegu8wopHk7SU1Zkxfa4wK6lMuSySgIk 9LJJprmCqRqHzQZMjkmv/A5NZwOvMPpLHjCW3BL9QmJPoEHtAJAEgLne3K3SkZo2 BR/eHg1JVUj7nqqkkuHdPyqvbWfOytz+10IRXXlwdGx2wbe1O6vtA43T3+wyWQd6 Ll0JrXmgA3s9GcnJSYEJXo4dCBxdRd2RUSDa6P5uaPL3sqHAzFVMZRvUJcyhuiMn ghO/C7nhZjLP4PJ3Bp7k5bUT+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL14K9D8 foHXwucAs/ZbUutP+N1lMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTk2QS8yODc4NUY2MEJGQkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjha U3BBaXBLd0JsMzNsX2VOdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfPrsCsNCM9G0eh4GGa99qcJefTz06gdneiqzAxvuBhaiakFak7bep yb6ZhG9S9Dq5AE/WpZF8t4Qs4UvEQB53qBjggaMcwNqy471Y5eIQuH+6TaTHb4x8 ePukpQifw8UgJfPEhUFKl9/cI0hAAFd+4KVOHqI08i1obSqc2DuT3qsTCazgk0pK F4aQyZ/uGRPOnr1SAXpg+0/wPBHDbn7LlmQGzEQ/kFeAcfagFTb9R0b5Kp0l1lQW FqS6ycI8OCwVI1DeE/41Hk1KUTC+R1MJ4qX03OGF/eva1JWVvwV7gJZV9yi0FgNO Y50YWJknat3zt22HiU7fCendWcj8BFFL -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:18 2025 by rpki-client