$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft File: I8MbHNaMzE0c6105mlAbYFD9HUY.mft (raw, json) Hash identifier: 0d8bsjmGG031oiWLWVgpISNrjJEztvUoozPs4DWsfrQ= Subject key identifier: F3:36:99:80:06:21:FE:65:54:01:AC:E6:FA:6A:64:FA:5A:CE:BB:6B Authority key identifier: 23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 Certificate issuer: /CN=A91A0FC0/serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Certificate serial: 03DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft Manifest number: 04C6 Signing time: Sat 23 Aug 2025 00:49:33 +0000 Manifest this update: Sat 23 Aug 2025 00:49:32 +0000 Manifest next update: Sat 30 Aug 2025 00:49:32 +0000 Files and hashes: 1: I8MbHNaMzE0c6105mlAbYFD9HUY.crl (hash: bCBzqUqTQw7j7lEN0vVNhQhaawj6tmQSu7Sm2c2wkCc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0FC0, serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Validity Not Before: Aug 23 00:49:32 2025 GMT Not After : Aug 30 00:49:32 2025 GMT Subject: CN=68a9101d-4609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a0:f0:64:70:d9:e9:92:7d:89:a9:25:10:76: 5c:1e:c8:02:e9:e3:32:e2:51:26:21:7b:20:67:8a: 32:1c:52:67:4a:c0:28:b3:fa:f0:fe:5b:30:85:1e: 77:6e:82:a9:ce:a6:61:c1:e1:09:55:a3:10:f3:43: bc:6d:3c:1b:b9:2b:36:c2:88:ab:43:8f:9e:fe:e1: cf:da:5f:92:99:8c:d0:7c:81:0b:5f:27:de:db:92: 04:49:fd:b4:6b:1d:26:f2:c2:2f:75:44:19:2e:4c: e4:b7:8b:a8:b8:fd:11:f0:61:12:5b:b9:a2:78:17: d1:e7:b9:c4:80:b7:3d:0a:30:07:58:f1:b1:2d:fb: 98:a4:98:66:18:23:ef:2a:5b:3d:9c:b5:26:70:3c: 12:81:63:8a:3b:d0:c8:1e:35:68:4c:45:d9:ea:6c: 1a:05:c0:ac:09:c1:49:5c:78:ec:88:fc:b2:bc:79: a8:f4:11:e1:85:3f:52:2b:8d:86:56:16:dc:e7:ca: a4:3d:2f:c3:bc:db:99:34:81:2d:08:3a:d4:07:47: f3:9e:91:b7:b7:82:fc:ea:e9:66:d1:48:e7:a8:cf: fd:e9:8e:4c:5a:ec:30:08:79:02:53:06:36:67:eb: fa:57:aa:f0:8e:e5:a9:0d:86:87:ca:52:c4:42:3e: 29:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:36:99:80:06:21:FE:65:54:01:AC:E6:FA:6A:64:FA:5A:CE:BB:6B X509v3 Authority Key Identifier: keyid:23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:11:31:d9:6b:e8:c1:9b:91:d8:ae:d2:94:47:56:65:e9:b4: b5:eb:2f:15:27:e1:34:fd:fe:a1:26:aa:90:65:79:9e:06:c8: c6:f4:73:c2:68:55:2a:ee:70:80:99:d6:80:b7:fb:68:09:7d: ce:9f:d3:ce:a7:dd:b8:ea:5d:94:7c:5d:82:6e:00:24:74:1f: d7:d8:c4:27:ad:e8:3e:1f:3d:7a:f8:90:88:2e:9e:e2:55:50: 9c:60:d6:7b:d6:c2:23:88:dc:48:42:65:3f:a2:d2:a7:3b:13: 74:37:76:fb:8a:e2:38:2d:05:8e:c7:3a:a5:f6:8d:04:b0:2b: c7:40:42:50:10:cb:00:1a:64:13:49:fb:39:3d:b2:60:86:82: d9:24:17:27:2a:41:70:11:44:93:bd:8a:63:74:bb:18:dc:a4: b3:85:58:a3:63:51:79:a3:6a:00:2c:c6:73:63:1a:f3:5a:59: ee:77:ff:8e:52:f6:05:1a:1d:99:b0:f2:1f:f7:98:e0:df:36: 9a:a9:a8:9e:eb:e6:56:f1:7b:48:4a:e5:a9:dd:c7:f4:69:b0: be:7f:87:86:58:e6:e9:e9:57:38:15:e3:71:84:00:25:6b:12: c8:25:f9:d8:58:ba:f7:3c:00:13:4a:11:0f:13:a5:6c:df:47: a8:ae:a8:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBGQzAxMTAvBgNVBAUTKDIzQzMxQjFDRDY4Q0NDNEQxQ0VCNUQzOTlBNTAxQjYw NTBGRDFENDYwHhcNMjUwODIzMDA0OTMyWhcNMjUwODMwMDA0OTMyWjAYMRYwFAYD VQQDEw02OGE5MTAxZC00NjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46DwZHDZ6ZJ9iaklEHZcHsgC6eMy4lEmIXsgZ4oyHFJnSsAos/rw/lswhR53 boKpzqZhweEJVaMQ80O8bTwbuSs2woirQ4+e/uHP2l+SmYzQfIELXyfe25IESf20 ax0m8sIvdUQZLkzkt4uouP0R8GESW7mieBfR57nEgLc9CjAHWPGxLfuYpJhmGCPv Kls9nLUmcDwSgWOKO9DIHjVoTEXZ6mwaBcCsCcFJXHjsiPyyvHmo9BHhhT9SK42G Vhbc58qkPS/DvNuZNIEtCDrUB0fznpG3t4L86ulm0UjnqM/96Y5MWuwwCHkCUwY2 Z+v6V6rwjuWpDYaHylLEQj4p5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPM2mYAG If5lVAGs5vpqZPpazrtrMB8GA1UdIwQYMBaAFCPDGxzWjMxNHOtdOZpQG2BQ/R1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEZDMC9DREUwOTg3Njk1 NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpFMGM2MTA1bWxBYllGRDlI VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4TWJITmFNekUwYzYxMDVtbEFiWUZEOUhVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpF MGM2MTA1bWxBYllGRDlIVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtETHZa+jBm5HYrtKUR1Zl6bS16y8VJ+E0/f6hJqqQZXmeBsjG9HPC aFUq7nCAmdaAt/toCX3On9POp9246l2UfF2CbgAkdB/X2MQnreg+Hz16+JCILp7i VVCcYNZ71sIjiNxIQmU/otKnOxN0N3b7iuI4LQWOxzql9o0EsCvHQEJQEMsAGmQT Sfs5PbJghoLZJBcnKkFwEUSTvYpjdLsY3KSzhVijY1F5o2oALMZzYxrzWlnud/+O UvYFGh2ZsPIf95jg3zaaqaie6+ZW8XtISuWp3cf0abC+f4eGWObp6Vc4FeNxhAAl axLIJfnYWLr3PAATShEPE6Vs30eorqi6 -----END CERTIFICATE-----Generated at Sat Aug 23 21:24:41 2025 by rpki-client