$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft File: 8YaDAEWuVIbpCXNDfanSB6VmhpE.mft (raw, json) Hash identifier: rI6YTkb4QS/WA8XKDbK03WwOCbM9puFy8H4ysD0BlGQ= Subject key identifier: 8E:05:EA:5E:48:33:31:60:13:52:23:3E:2F:7C:26:1A:51:51:88:4E Authority key identifier: F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 Certificate issuer: /CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691 Certificate serial: 3215 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft Manifest number: 3215 Signing time: Fri 22 Aug 2025 15:28:08 +0000 Manifest this update: Fri 22 Aug 2025 15:28:08 +0000 Manifest next update: Fri 29 Aug 2025 15:28:08 +0000 Files and hashes: 1: 8YaDAEWuVIbpCXNDfanSB6VmhpE.crl (hash: Hjm89JaDE7f+1tizOK2U1Nd+p7BGwiqnrU7O69uaIwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12821 (0x3215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAA, serialNumber=F186830045AE5486E90973437DA9D207A5668691 Validity Not Before: Aug 22 15:28:08 2025 GMT Not After : Aug 29 15:28:08 2025 GMT Subject: CN=68a88c88-90d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:86:35:25:85:6f:dc:51:f2:ac:7a:d7:83:db: 3b:9a:11:54:6c:6f:4e:9f:7a:ee:53:a6:76:c4:91: a2:ea:ca:14:9e:66:42:76:87:df:21:2d:48:8d:43: 85:42:3b:8a:a6:e2:d3:a0:1f:72:2c:33:a0:68:66: cd:4d:21:11:e7:15:53:6e:5a:3e:cb:93:53:40:80: f8:be:b0:8f:d9:0a:6f:18:4f:e4:9a:e4:52:bd:9e: e8:18:4e:af:e8:d0:2d:a1:17:08:1c:4a:42:60:2f: 1f:9d:23:9f:cd:04:31:68:ef:25:9d:80:58:91:62: 74:2d:74:1b:ed:14:d7:35:51:4f:d2:6b:f9:d3:bb: 0e:a2:e6:5d:14:a7:7e:be:61:31:05:f6:8e:f7:ed: 06:78:b1:f0:3b:93:72:27:85:61:2b:31:25:e9:15: 2d:6d:94:a9:b8:24:b3:19:2a:c5:87:d2:29:a9:a8: d6:60:03:0e:bd:45:54:ad:49:6a:40:a6:01:db:c2: f7:fb:1d:ec:e2:21:d3:3c:e7:32:68:dc:52:8f:66: ff:68:96:cd:56:1d:79:f0:13:05:66:6d:e1:07:e7: 8c:7f:c8:9f:c1:51:50:d9:f3:3f:e2:c2:73:30:98: 8f:d2:50:84:ca:2f:6a:96:81:01:fe:88:64:75:12: 40:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:05:EA:5E:48:33:31:60:13:52:23:3E:2F:7C:26:1A:51:51:88:4E X509v3 Authority Key Identifier: keyid:F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:70:f4:f6:f3:3e:72:38:d6:ab:89:a1:87:e3:08:3c:c9:40: 29:11:c8:60:3d:89:b9:b8:12:75:b6:8b:28:a8:72:64:54:9e: 7a:24:39:67:21:59:aa:41:ec:0d:2c:3c:39:19:fe:c4:73:b5: 75:7b:61:f1:08:de:a6:4e:7d:35:6b:27:9e:c2:52:d4:6d:01: f4:07:6c:e4:f8:62:a0:ce:58:09:66:ed:f5:d4:08:83:ee:70: b0:d2:d9:45:2d:1c:e1:f7:86:9d:06:fb:b4:29:a1:4c:9a:36: 30:fe:4c:72:76:ea:a7:45:7b:ae:b9:ea:7f:59:96:d7:87:a0: 0f:67:1c:b9:59:f6:38:bc:1e:48:95:fa:e2:bc:c6:3a:7a:7d: 78:81:f1:4f:38:34:c3:92:94:cf:9c:0f:72:bf:be:9a:f6:15: f5:70:70:72:aa:05:d1:66:0f:38:d9:e6:2d:5f:2a:99:0a:1b: c3:22:c4:69:e7:d9:04:9f:23:5c:07:eb:fa:7e:89:1e:82:65: 60:6e:d4:8f:76:31:a1:e2:a9:9b:2d:ef:db:3f:fa:e7:84:a7: 45:f6:9c:96:0d:19:fc:55:6b:57:32:83:43:38:3a:e6:e9:f1: 93:11:06:4b:14:79:2d:62:88:72:f2:36:83:0e:95:3a:50:5f: ee:51:14:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUExMTAvBgNVBAUTKEYxODY4MzAwNDVBRTU0ODZFOTA5NzM0MzdEQTlEMjA3 QTU2Njg2OTEwHhcNMjUwODIyMTUyODA4WhcNMjUwODI5MTUyODA4WjAYMRYwFAYD VQQDEw02OGE4OGM4OC05MGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYY1JYVv3FHyrHrXg9s7mhFUbG9On3ruU6Z2xJGi6soUnmZCdoffIS1IjUOF QjuKpuLToB9yLDOgaGbNTSER5xVTblo+y5NTQID4vrCP2QpvGE/kmuRSvZ7oGE6v 6NAtoRcIHEpCYC8fnSOfzQQxaO8lnYBYkWJ0LXQb7RTXNVFP0mv507sOouZdFKd+ vmExBfaO9+0GeLHwO5NyJ4VhKzEl6RUtbZSpuCSzGSrFh9IpqajWYAMOvUVUrUlq QKYB28L3+x3s4iHTPOcyaNxSj2b/aJbNVh158BMFZm3hB+eMf8ifwVFQ2fM/4sJz MJiP0lCEyi9qloEB/ohkdRJAGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4F6l5I MzFgE1IjPi98JhpRUYhOMB8GA1UdIwQYMBaAFPGGgwBFrlSG6QlzQ32p0gelZoaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBQS84QjI4MjQ1MjlG RjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJYnBDWE5EZmFuU0I2Vm1o cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZYURBRVd1VklicENYTkRmYW5TQjZWbWhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBQS84QjI4MjQ1MjlGRjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJ YnBDWE5EZmFuU0I2Vm1ocEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFcPT28z5yONariaGH4wg8yUApEchgPYm5uBJ1tosoqHJkVJ56JDln IVmqQewNLDw5Gf7Ec7V1e2HxCN6mTn01ayeewlLUbQH0B2zk+GKgzlgJZu311AiD 7nCw0tlFLRzh94adBvu0KaFMmjYw/kxyduqnRXuuuep/WZbXh6APZxy5WfY4vB5I lfrivMY6en14gfFPODTDkpTPnA9yv76a9hX1cHByqgXRZg842eYtXyqZChvDIsRp 59kEnyNcB+v6fokegmVgbtSPdjGh4qmbLe/bP/rnhKdF9pyWDRn8VWtXMoNDODrm 6fGTEQZLFHktYohy8jaDDpU6UF/uURSS -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:09 2025 by rpki-client