$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: qffM1AKPcRacZXCFeGw1L7ZKwjQ79UuO/6MtetSq4Wo= Subject key identifier: EC:F6:1E:6B:8D:F7:11:75:F1:1A:F2:9E:42:AE:A9:D1:65:30:BE:3D Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: E8 Signing time: Sat 23 Aug 2025 05:30:56 +0000 Manifest this update: Sat 23 Aug 2025 05:30:56 +0000 Manifest next update: Sat 30 Aug 2025 05:30:56 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: aywie31oAgXYIt8Muf3jmKS9nkoygNVPQkdr/mSErJM=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Aug 23 05:30:56 2025 GMT Not After : Aug 30 05:30:56 2025 GMT Subject: CN=68a95210-4141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ad:54:09:40:32:22:32:ee:47:e6:28:75:75: 12:54:35:4a:12:e3:eb:eb:3d:b8:fb:03:b4:c8:61: 95:5f:32:93:13:94:64:91:66:e7:d1:92:2c:10:41: 09:b1:25:e7:aa:cf:aa:9f:41:d7:be:85:43:d3:a2: 6d:6c:5e:32:12:ed:d4:93:62:58:a9:cb:35:90:7c: 02:6f:37:e6:ab:f6:e8:a6:d3:ea:7b:3d:1d:46:f6: ca:0b:f1:ce:39:ca:98:bb:7a:49:ed:5d:f5:3d:79: 8c:c9:bf:62:13:6b:47:1b:75:21:e5:10:91:a0:d5: b7:1b:4a:83:c4:3d:5f:38:d8:fe:a4:b1:24:6f:82: f5:63:65:eb:34:a9:77:49:85:04:e7:b5:12:43:97: 71:58:c9:c2:77:e3:99:92:5b:e9:61:f5:19:33:b1: fd:74:6c:43:90:76:ec:d3:a6:78:1e:a8:51:17:19: f5:bf:e4:fd:9c:85:a3:f2:d1:f7:84:eb:be:14:18: c2:d2:fa:bf:17:fc:ae:86:d3:e4:ef:7e:8a:e9:2b: 99:fc:d1:ba:fe:2c:17:52:09:13:2b:d1:bc:d8:58: c3:bb:71:0a:3a:cc:c5:80:5a:5c:74:a5:8b:df:99: 02:6c:ca:9e:0f:94:23:67:87:c4:34:ae:a6:93:0e: 45:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F6:1E:6B:8D:F7:11:75:F1:1A:F2:9E:42:AE:A9:D1:65:30:BE:3D X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:f0:33:b1:8a:8c:d2:87:a7:f6:1f:af:0a:76:7a:22:4c:f5: 7f:12:58:50:a0:55:8c:dd:0b:5f:aa:58:4c:1a:bb:2c:c8:b3: 12:4a:31:db:54:5b:96:98:0d:fd:78:0c:f6:9c:f4:a2:e8:09: 99:ec:86:db:62:53:1f:24:ab:ef:66:91:68:54:8e:4c:c3:a0: 77:83:4a:e3:4d:d4:14:d4:9e:2e:4b:0b:a2:e1:e4:6e:f5:e3: 01:06:fe:e1:56:30:c8:22:ea:60:05:93:07:d1:a1:59:70:37: dd:cb:a3:db:de:cf:a5:21:2d:31:00:0a:eb:87:56:7f:22:27: 94:97:88:b2:d3:a5:09:75:26:8b:3c:c8:0c:49:ae:ff:2d:48: 24:71:fb:6d:5f:32:7e:d7:96:4d:12:ac:8c:c3:81:95:8d:d4: 6e:11:d1:0a:43:06:98:87:25:9a:fd:3f:eb:c1:d7:c2:a4:3b: 5b:0c:7a:50:bf:03:50:b8:9f:00:b2:88:df:8c:a1:b5:12:59: 1b:12:b9:b8:e2:74:46:48:28:62:a8:a3:3f:d2:f6:2f:d1:4c: 5e:d7:2d:71:1b:5d:4f:00:0e:20:63:05:6f:9f:a2:0d:77:b0: d5:fe:4d:8c:cf:97:1f:31:27:fd:88:1f:44:ac:f2:38:5a:28: 44:6c:e2:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUwODIzMDUzMDU2WhcNMjUwODMwMDUzMDU2WjAYMRYwFAYD VQQDEw02OGE5NTIxMC00MTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA261UCUAyIjLuR+YodXUSVDVKEuPr6z24+wO0yGGVXzKTE5RkkWbn0ZIsEEEJ sSXnqs+qn0HXvoVD06JtbF4yEu3Uk2JYqcs1kHwCbzfmq/boptPqez0dRvbKC/HO OcqYu3pJ7V31PXmMyb9iE2tHG3Uh5RCRoNW3G0qDxD1fONj+pLEkb4L1Y2XrNKl3 SYUE57USQ5dxWMnCd+OZklvpYfUZM7H9dGxDkHbs06Z4HqhRFxn1v+T9nIWj8tH3 hOu+FBjC0vq/F/yuhtPk736K6SuZ/NG6/iwXUgkTK9G82FjDu3EKOszFgFpcdKWL 35kCbMqeD5QjZ4fENK6mkw5FLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOz2HmuN 9xF18RrynkKuqdFlML49MB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC08DOxiozSh6f2H68KdnoiTPV/ElhQoFWM3QtfqlhMGrssyLMSSjHb VFuWmA39eAz2nPSi6AmZ7IbbYlMfJKvvZpFoVI5Mw6B3g0rjTdQU1J4uSwui4eRu 9eMBBv7hVjDIIupgBZMH0aFZcDfdy6Pb3s+lIS0xAArrh1Z/IieUl4iy06UJdSaL PMgMSa7/LUgkcfttXzJ+15ZNEqyMw4GVjdRuEdEKQwaYhyWa/T/rwdfCpDtbDHpQ vwNQuJ8AsojfjKG1ElkbErm44nRGSChiqKM/0vYv0Uxe1y1xG11PAA4gYwVvn6IN d7DV/k2Mz5cfMSf9iB9ErPI4WihEbOIc -----END CERTIFICATE-----Generated at Sat Aug 23 10:35:44 2025 by rpki-client