$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft File: 8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft (raw, json) Hash identifier: SWrcszuHYEyqzQtcx9H7REUz5EJQuMVQcvfFM7hgiyM= Subject key identifier: 4F:48:53:33:5A:C2:E9:92:6E:B8:5B:AC:33:27:D4:67:01:A4:D7:53 Authority key identifier: F2:E4:65:7F:B0:B1:51:42:73:C5:0E:EB:F9:0F:44:16:FD:A5:4B:07 Certificate issuer: /CN=A91C9916/serialNumber=F2E4657FB0B1514273C50EEBF90F4416FDA54B07 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft Manifest number: 0204 Signing time: Sat 23 Aug 2025 02:21:09 +0000 Manifest this update: Sat 23 Aug 2025 02:21:08 +0000 Manifest next update: Sat 30 Aug 2025 02:21:08 +0000 Files and hashes: 1: 8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl (hash: BpQxyDowDdHi0Z5ReqkMtDZuY1iO5mFDcxRsMm09RD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9916, serialNumber=F2E4657FB0B1514273C50EEBF90F4416FDA54B07 Validity Not Before: Aug 23 02:21:08 2025 GMT Not After : Aug 30 02:21:08 2025 GMT Subject: CN=68a92594-1d23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fc:63:f3:7f:4b:76:bc:e4:41:54:e1:fd:a1: 99:d7:53:e2:8b:0a:5c:bb:a2:6d:62:0d:ba:d1:b3: e4:e8:76:a1:65:cf:af:ef:99:75:c9:9a:c3:5e:ba: 79:3f:04:27:5a:f4:7e:d5:32:dc:59:04:60:3d:ec: b1:ef:fc:38:1c:10:61:74:f5:01:7d:e1:30:23:78: b7:96:f7:6a:2c:6c:e5:f7:af:a4:18:bc:81:40:69: ad:e7:2e:14:5e:9e:f9:df:91:33:d3:01:a9:d8:b9: 72:10:bb:da:e6:3a:f5:00:18:c8:a4:a0:98:e0:d3: 9b:f7:b8:29:5c:2a:01:1f:85:f0:b8:46:a6:bc:42: ab:95:fb:94:12:c9:67:84:fe:e9:b4:3c:af:b4:29: 3e:9f:4a:8e:37:97:ce:bb:c6:84:fc:3a:50:9f:97: bf:15:ad:ce:c8:1a:87:10:7a:9c:6c:0f:9b:ad:7b: 0a:15:a5:23:c3:5c:26:b1:48:e0:f7:b4:e0:87:a4: 84:bd:d0:6f:8d:bb:7b:e7:ae:3a:a5:de:95:6a:37: c0:95:f9:79:e3:4f:8b:ad:dc:05:52:68:98:08:de: 91:5a:64:05:5c:e9:f3:ce:0b:af:62:f8:55:90:9a: c3:9a:8c:15:11:76:84:0a:6a:d5:91:ea:c5:58:56: 7b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:48:53:33:5A:C2:E9:92:6E:B8:5B:AC:33:27:D4:67:01:A4:D7:53 X509v3 Authority Key Identifier: keyid:F2:E4:65:7F:B0:B1:51:42:73:C5:0E:EB:F9:0F:44:16:FD:A5:4B:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:f1:55:de:cc:02:cc:b6:8d:30:e5:5e:53:d6:c4:d8:0b:fa: e8:e7:98:91:e9:a5:a1:ac:03:90:05:b9:e7:03:1e:97:99:af: 85:6c:09:e5:43:22:02:37:ef:13:28:88:e1:18:68:bb:2c:96: db:c7:86:7b:f5:e5:33:65:82:c3:d3:20:93:e9:36:9d:dc:4e: a1:78:b5:17:6b:8e:7d:e0:29:f8:f8:48:b9:8b:5e:18:89:6a: bd:8d:f6:1e:de:f8:8f:b3:b4:9f:63:9a:c9:16:b1:1f:0c:fc: e8:0a:23:4d:a5:d4:d5:5b:4e:5d:3c:79:df:42:62:8a:09:93: 4d:fe:6d:85:ea:e7:23:8e:b7:a8:bc:ee:da:62:19:16:0a:93: 9a:35:80:a4:30:63:cb:db:92:ed:1e:e1:3c:57:8b:4e:a1:65: 05:57:68:28:08:88:47:80:00:4b:fd:69:59:b2:27:4b:b6:41: 9d:bf:d1:4a:84:04:c7:83:61:ed:34:a3:9e:b8:94:07:81:2b: a1:03:90:42:b7:45:6c:41:33:ed:63:d0:39:51:12:4c:31:99: dc:1f:7e:c1:92:db:98:e5:16:21:fb:13:ce:e0:01:81:4a:e8: 7b:3c:fe:6d:ad:9e:f5:e6:7f:2a:ca:f5:08:32:65:b3:32:53: 3a:b2:a0:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5MTYxMTAvBgNVBAUTKEYyRTQ2NTdGQjBCMTUxNDI3M0M1MEVFQkY5MEY0NDE2 RkRBNTRCMDcwHhcNMjUwODIzMDIyMTA4WhcNMjUwODMwMDIyMTA4WjAYMRYwFAYD VQQDEw02OGE5MjU5NC0xZDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfxj839LdrzkQVTh/aGZ11Piiwpcu6JtYg260bPk6HahZc+v75l1yZrDXrp5 PwQnWvR+1TLcWQRgPeyx7/w4HBBhdPUBfeEwI3i3lvdqLGzl96+kGLyBQGmt5y4U Xp7535Ez0wGp2LlyELva5jr1ABjIpKCY4NOb97gpXCoBH4XwuEamvEKrlfuUEsln hP7ptDyvtCk+n0qON5fOu8aE/DpQn5e/Fa3OyBqHEHqcbA+brXsKFaUjw1wmsUjg 97Tgh6SEvdBvjbt75646pd6VajfAlfl540+LrdwFUmiYCN6RWmQFXOnzzguvYvhV kJrDmowVEXaECmrVkerFWFZ71QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9IUzNa wumSbrhbrDMn1GcBpNdTMB8GA1UdIwQYMBaAFPLkZX+wsVFCc8UO6/kPRBb9pUsH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTkxNi8yMzlEQzQyNjYx OEIxMUVEODhBQkJDMjJDNEY5QUUwMi84dVJsZjdDeFVVSnp4UTdyLVE5RUZ2MmxT d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh1UmxmN0N4VVVKenhRN3ItUTlFRnYybFN3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTkxNi8yMzlEQzQyNjYxOEIxMUVEODhBQkJDMjJDNEY5QUUwMi84dVJsZjdDeFVV Snp4UTdyLVE5RUZ2MmxTd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm8VXezALMto0w5V5T1sTYC/ro55iR6aWhrAOQBbnnAx6Xma+FbAnl QyICN+8TKIjhGGi7LJbbx4Z79eUzZYLD0yCT6Tad3E6heLUXa4594Cn4+Ei5i14Y iWq9jfYe3viPs7SfY5rJFrEfDPzoCiNNpdTVW05dPHnfQmKKCZNN/m2F6ucjjreo vO7aYhkWCpOaNYCkMGPL25LtHuE8V4tOoWUFV2goCIhHgABL/WlZsidLtkGdv9FK hATHg2HtNKOeuJQHgSuhA5BCt0VsQTPtY9A5URJMMZncH37BktuY5RYh+xPO4AGB Suh7PP5trZ715n8qyvUIMmWzMlM6sqB2 -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:28 2025 by rpki-client