$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: 0Zyzw1MgIR6TKGOBJrPDKBnaP8wNX9DTem4f95drnnY= Subject key identifier: 27:19:29:B1:95:36:81:F0:B9:FA:D6:08:9B:22:B7:CE:00:9B:B7:8E Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 066F Signing time: Sun 20 Jul 2025 22:34:30 +0000 Manifest this update: Sun 20 Jul 2025 22:34:30 +0000 Manifest next update: Sun 27 Jul 2025 22:34:30 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: KOFKxcco7tVKcAs854FLvR1QlNJ3P0mzSMsAt26Cp10=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: oKHV5TBmq4GqrFfr2VIYxjHb/BXfTV1fp7LSb6WOO9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF, serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: Jul 20 22:34:30 2025 GMT Not After : Jul 27 22:34:30 2025 GMT Subject: CN=687d6ef6-87ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f3:5d:20:1b:55:e9:a5:b4:dc:c6:21:98:59: 90:b5:50:a4:ee:30:a6:09:17:64:02:ff:4e:0d:09: db:57:4d:37:70:59:49:d6:b5:f2:21:74:15:7d:d4: ea:1e:c9:fd:1c:cc:57:c2:9c:31:6d:0b:c8:a5:cb: 3f:4e:4e:9b:b6:ed:2d:42:a4:65:94:1b:70:f0:54: f8:7e:b2:c2:45:59:54:e5:a2:b0:45:25:d1:c9:68: 90:a7:4e:7a:84:6b:cb:fa:3c:31:3d:ff:25:5b:b4: 4d:a5:5e:9e:51:47:68:de:4d:ad:da:5e:db:68:54: d2:e0:4d:f8:bf:f9:9e:eb:b4:2d:28:6b:b1:1c:25: 26:bd:9d:8a:31:fb:83:a0:6b:b0:14:7e:fd:25:4c: 97:ba:41:83:a3:6f:e8:71:24:d4:86:7b:1d:5b:19: 5c:b9:cc:8e:29:16:03:7a:9d:de:89:29:6d:bb:ef: 1c:15:12:ae:2a:5e:5b:41:ad:86:60:22:24:96:27: 2f:cc:ff:b3:97:01:10:30:fb:a7:58:9e:40:7d:e9: 17:ac:08:84:da:c0:a3:c5:a8:31:e0:21:85:83:05: 44:01:69:02:2c:e9:d6:56:19:b9:c3:e6:b2:76:59: 4d:f2:26:c0:e6:17:78:04:fa:09:9c:1c:64:fe:99: bc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:19:29:B1:95:36:81:F0:B9:FA:D6:08:9B:22:B7:CE:00:9B:B7:8E X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d4:fe:ab:b2:f8:7a:9c:70:e4:80:34:98:84:a7:91:dd:66: ce:d4:ec:55:dc:2c:20:10:7b:8a:92:5c:7a:b1:7d:63:43:ee: ca:a0:d7:c0:89:da:6a:8f:99:56:cc:94:da:30:48:08:92:9d: af:d9:9f:b3:68:7e:17:0c:50:f7:2b:db:ee:66:6f:6b:c3:65: 12:53:1c:cb:4a:af:bf:1e:67:62:9d:d8:ba:6f:58:71:d5:3e: 4c:61:7d:64:cd:d4:c8:31:c9:a3:f3:3a:7a:4b:36:3d:c2:44: e8:b2:c2:51:1a:38:98:ec:5c:a3:49:30:42:51:8b:71:69:ee: 1c:3d:24:6f:4f:9c:67:16:79:2b:c5:a5:f1:4a:7b:b7:a1:41: d9:75:db:bf:05:c9:8f:f2:44:13:7b:f7:3b:ec:1c:fd:84:53: 1c:6b:7f:c8:59:12:37:a8:86:6c:82:19:16:75:f0:25:16:e4: ec:51:89:31:e4:e0:08:fc:46:d6:18:3e:0b:56:fe:d5:28:82: 64:cd:bd:7a:a6:8a:68:0b:11:61:7c:5a:5f:52:51:37:7c:72: fe:94:24:b2:65:d9:90:45:31:05:3e:08:2c:8e:53:77:3e:1f: 23:d6:14:60:7b:38:a2:7b:31:94:95:3b:50:94:7c:d0:88:53: 9b:91:90:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjUwNzIwMjIzNDMwWhcNMjUwNzI3MjIzNDMwWjAYMRYwFAYD VQQDEw02ODdkNmVmNi04N2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPNdIBtV6aW03MYhmFmQtVCk7jCmCRdkAv9ODQnbV003cFlJ1rXyIXQVfdTq Hsn9HMxXwpwxbQvIpcs/Tk6btu0tQqRllBtw8FT4frLCRVlU5aKwRSXRyWiQp056 hGvL+jwxPf8lW7RNpV6eUUdo3k2t2l7baFTS4E34v/me67QtKGuxHCUmvZ2KMfuD oGuwFH79JUyXukGDo2/ocSTUhnsdWxlcucyOKRYDep3eiSltu+8cFRKuKl5bQa2G YCIklicvzP+zlwEQMPunWJ5AfekXrAiE2sCjxagx4CGFgwVEAWkCLOnWVhm5w+ay dllN8ibA5hd4BPoJnBxk/pm8gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcZKbGV NoHwufrWCJsit84Am7eOMB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ1P6rsvh6nHDkgDSYhKeR3WbO1OxV3CwgEHuKklx6sX1jQ+7KoNfA idpqj5lWzJTaMEgIkp2v2Z+zaH4XDFD3K9vuZm9rw2USUxzLSq+/Hmdindi6b1hx 1T5MYX1kzdTIMcmj8zp6SzY9wkTossJRGjiY7FyjSTBCUYtxae4cPSRvT5xnFnkr xaXxSnu3oUHZddu/BcmP8kQTe/c77Bz9hFMca3/IWRI3qIZsghkWdfAlFuTsUYkx 5OAI/EbWGD4LVv7VKIJkzb16popoCxFhfFpfUlE3fHL+lCSyZdmQRTEFPggsjlN3 Ph8j1hRgeziiezGUlTtQlHzQiFObkZDH -----END CERTIFICATE-----Generated at Mon Jul 21 02:39:45 2025 by rpki-client