$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft File: 8Cl9DkUxodYqla9dLyLvJAja0pw.mft (raw, json) Hash identifier: e7iMqCOmgvHgOdqd9fNwdZ/WE8Koz2SrBEAEhM/nSi0= Subject key identifier: 1D:F5:00:38:B4:DB:C7:2B:65:FD:FD:A1:F2:8E:D4:0D:32:38:46:AF Authority key identifier: F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C Certificate issuer: /CN=A91BF312/serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Certificate serial: 07D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft Manifest number: 07C1 Signing time: Fri 22 Aug 2025 21:22:08 +0000 Manifest this update: Fri 22 Aug 2025 21:22:08 +0000 Manifest next update: Fri 29 Aug 2025 21:22:08 +0000 Files and hashes: 1: 8Cl9DkUxodYqla9dLyLvJAja0pw.crl (hash: ZtkCn4qLgRWhSyNJX96N2XG+CP9Zs54w+sjufRkxwF4=) 2: DF3CAFC44D9E11F0B1307858C4F9AE02.roa (hash: nNMfwVwGreVHShqHhiSA1wDrVojq2wBr5IqezlVe7oA=) 3: 23AF26C40C2B11EBAD607865C4F9AE02.roa (hash: lqzj6YduHCJKV8dYpz5WAfuKsZiHyQ1FWQ0JXN7wCvU=) 4: 5ECF5AFE37CC11F0AE950A5FC4F9AE02.roa (hash: npjQiEYYdVjWG8dKeFVFQ6M5ppQB2z0yEbCwP4ngirc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2003 (0x7d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF312, serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Validity Not Before: Aug 22 21:22:08 2025 GMT Not After : Aug 29 21:22:08 2025 GMT Subject: CN=68a8df80-2620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2f:3c:fe:90:79:58:21:f3:72:9a:de:7a:8e: ce:e9:e1:06:8a:1b:1f:66:0c:8c:d2:8b:ce:76:f8: ea:50:0d:cd:dd:78:3b:f5:04:25:c2:e3:4a:ad:41: f6:6d:83:98:5c:59:e7:3f:ec:74:db:6f:79:09:d3: b0:d5:dd:0a:b2:e2:2a:3d:98:be:5d:2d:4d:db:cc: 05:97:06:fa:5b:2b:85:ca:6f:4a:46:fc:1f:76:7a: f8:2b:d1:fa:24:08:ec:a5:e2:6a:15:37:44:d5:aa: a1:ab:0a:1b:1b:72:4a:70:1c:0c:8f:dc:f1:f2:cc: c4:53:95:29:20:c7:c7:eb:da:89:29:a2:41:86:0a: 7a:b9:2a:30:fb:7c:2d:cb:53:19:04:62:a7:7a:be: df:c0:40:b2:cd:01:23:ae:01:bf:cf:f8:32:68:e9: 4f:88:89:d1:33:1d:86:ca:08:dc:68:3d:e2:92:44: 2c:8c:5f:72:85:15:82:b5:b8:06:8e:e3:ad:56:ae: 75:8d:70:51:fc:72:45:e6:f2:1d:dc:8a:75:6e:e0: de:4d:88:15:ec:bc:76:2f:f4:2f:7f:2b:49:40:cc: 2d:26:1b:cd:f1:bc:38:d1:7e:91:8b:cb:94:34:0f: 63:30:67:ef:63:1f:0f:ff:63:9a:d9:8b:6a:5d:67: 0c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F5:00:38:B4:DB:C7:2B:65:FD:FD:A1:F2:8E:D4:0D:32:38:46:AF X509v3 Authority Key Identifier: keyid:F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:59:31:5f:16:21:e1:3e:6a:16:c7:c8:b3:62:c8:36:8a:6f: 92:a4:be:7a:d5:1e:a8:a8:55:2d:d5:9b:48:bb:a4:39:9e:d8: 4b:df:91:30:3b:0e:b9:1e:f1:1e:95:93:72:63:e3:fb:90:59: d7:93:ae:a8:6d:6c:79:78:ba:fd:56:66:a6:0c:99:cf:93:41: 91:2b:05:6b:18:6e:be:2a:35:d9:d1:ab:a2:0e:5d:d8:55:59: 8d:a7:de:ac:80:8c:3f:5b:e8:1b:26:f2:2d:ce:a7:be:c8:19: 99:99:66:45:65:33:68:38:3d:7d:4e:01:0d:6f:16:3d:f2:f1: d9:52:67:90:69:7c:85:ca:6a:e3:f5:90:cf:a4:19:d1:fe:77: 45:03:dd:71:a7:bb:85:7c:7b:ea:29:a9:d9:2c:7a:b9:6e:76: d1:e1:ac:8f:41:55:13:a2:36:3e:08:4a:94:1b:d0:27:08:35: 54:40:7f:18:06:bc:ba:4b:de:93:fe:90:0e:a4:10:e5:a1:3f: 97:4b:6c:b1:f4:d7:ab:77:ec:61:61:44:57:6c:f0:47:ce:c0: 5a:95:43:b7:b4:dd:a1:ea:f5:49:0a:93:4e:b6:d9:18:8c:67: 04:1c:c6:ca:f6:62:1f:ac:b9:46:fc:e7:44:bb:77:5e:7e:36: 9b:25:ea:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMTIxMTAvBgNVBAUTKEYwMjk3RDBFNDUzMUExRDYyQTk1QUY1RDJGMjJFRjI0 MDhEQUQyOUMwHhcNMjUwODIyMjEyMjA4WhcNMjUwODI5MjEyMjA4WjAYMRYwFAYD VQQDEw02OGE4ZGY4MC0yNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAty88/pB5WCHzcpreeo7O6eEGihsfZgyM0ovOdvjqUA3N3Xg79QQlwuNKrUH2 bYOYXFnnP+x02295CdOw1d0KsuIqPZi+XS1N28wFlwb6WyuFym9KRvwfdnr4K9H6 JAjspeJqFTdE1aqhqwobG3JKcBwMj9zx8szEU5UpIMfH69qJKaJBhgp6uSow+3wt y1MZBGKner7fwECyzQEjrgG/z/gyaOlPiInRMx2GygjcaD3ikkQsjF9yhRWCtbgG juOtVq51jXBR/HJF5vId3Ip1buDeTYgV7Lx2L/QvfytJQMwtJhvN8bw40X6Ri8uU NA9jMGfvYx8P/2Oa2YtqXWcMpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB31ADi0 28crZf39ofKO1A0yOEavMB8GA1UdIwQYMBaAFPApfQ5FMaHWKpWvXS8i7yQI2tKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMxMi9BQTkyQjk3ODBD MjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9kWXFsYTlkTHlMdkpBamEw cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDbDlEa1V4b2RZcWxhOWRMeUx2SkFqYTBwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjMxMi9BQTkyQjk3ODBDMjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9k WXFsYTlkTHlMdkpBamEwcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnWTFfFiHhPmoWx8izYsg2im+SpL561R6oqFUt1ZtIu6Q5nthL35Ew Ow65HvEelZNyY+P7kFnXk66obWx5eLr9VmamDJnPk0GRKwVrGG6+KjXZ0auiDl3Y VVmNp96sgIw/W+gbJvItzqe+yBmZmWZFZTNoOD19TgENbxY98vHZUmeQaXyFymrj 9ZDPpBnR/ndFA91xp7uFfHvqKanZLHq5bnbR4ayPQVUTojY+CEqUG9AnCDVUQH8Y Bry6S96T/pAOpBDloT+XS2yx9Nerd+xhYURXbPBHzsBalUO3tN2h6vVJCpNOttkY jGcEHMbK9mIfrLlG/OdEu3defjabJeqt -----END CERTIFICATE-----Generated at Sun Aug 24 01:27:12 2025 by rpki-client