$ rpki-client -vvf rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft File: 8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft (raw, json) Hash identifier: aj2UkkrMvPVlyfXP/nG1DLf5DAjrLrHQS6wCheVkkF0= Subject key identifier: DB:7E:D1:00:14:47:A0:E4:E3:75:3A:A2:02:C4:19:DD:F0:5D:0D:38 Authority key identifier: F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83 Certificate issuer: /CN=A9114CE7/serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283 Certificate serial: 020E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft Manifest number: 020A Signing time: Sat 23 Aug 2025 02:21:00 +0000 Manifest this update: Sat 23 Aug 2025 02:21:00 +0000 Manifest next update: Sat 30 Aug 2025 02:21:00 +0000 Files and hashes: 1: 8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl (hash: /IgwK4y1t1bcdjuo/Lb3ifKZmnJUa337+7TM6Ab1z90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114CE7, serialNumber=F28D6D11C3C5546E4241818A73B470EECA6D7283 Validity Not Before: Aug 23 02:21:00 2025 GMT Not After : Aug 30 02:21:00 2025 GMT Subject: CN=68a9258c-7bd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7d:67:c8:1f:bc:0f:a8:e7:6e:b4:9f:08:0f: 8f:72:7b:2a:8f:fb:8c:7b:36:05:9d:5e:df:c2:74: a0:0e:53:ad:54:2e:89:70:d8:c8:04:a2:bb:07:97: 44:e0:ca:a9:d9:86:c7:3d:b3:58:37:01:7a:95:7e: 14:47:d3:06:a4:ae:72:d3:7d:82:ec:77:ce:58:f6: 72:2b:6f:59:bb:51:a0:da:3a:f6:6c:2a:e4:2a:5f: 95:0b:5e:9b:e7:b7:a0:35:02:4d:d6:a1:01:51:0f: bc:71:94:cd:20:b6:59:93:e8:f8:8e:04:ed:b1:49: aa:9b:99:6f:eb:15:04:ba:14:64:92:7f:35:74:6a: 7a:4d:76:5b:e0:95:71:d2:46:0f:5e:8a:38:5c:5a: 43:e1:89:67:5b:e6:52:4d:79:ed:56:fe:42:bb:79: 46:29:4b:9a:f8:f0:7d:e4:2d:9f:0c:8a:d2:d3:64: a5:b3:d8:ed:7d:4d:c1:99:88:0a:a7:48:b0:61:aa: b5:ec:dc:43:b0:7a:07:35:d8:15:fa:80:66:89:f2: 7d:34:c4:9d:1b:a0:ab:7e:95:f1:b3:a6:bd:d9:98: 85:c6:d3:e4:c9:fe:28:ed:54:81:9d:5c:bd:b7:ba: 34:af:72:15:08:90:dc:3f:74:b9:69:24:ea:97:97: 49:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:7E:D1:00:14:47:A0:E4:E3:75:3A:A2:02:C4:19:DD:F0:5D:0D:38 X509v3 Authority Key Identifier: keyid:F2:8D:6D:11:C3:C5:54:6E:42:41:81:8A:73:B4:70:EE:CA:6D:72:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8o1tEcPFVG5CQYGKc7Rw7sptcoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114CE7/5B2B131C60CD11ED84F75F4CC4F9AE02/8o1tEcPFVG5CQYGKc7Rw7sptcoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:24:cb:7d:74:41:eb:90:8e:33:01:5c:4c:2c:d1:42:7a:9b: 3d:34:2d:18:df:6b:91:89:f5:5f:74:f7:ba:7e:bb:80:e9:fb: ed:50:7a:06:44:e1:d6:db:7e:03:56:50:7d:1b:32:32:db:12: 34:56:01:02:f3:a7:73:54:38:87:12:ec:da:65:31:de:a0:31: 49:67:73:bd:da:6a:41:77:2c:8f:cc:a6:0a:8f:40:bb:17:b5: c7:15:0a:7c:1e:86:57:81:02:b3:57:43:6c:01:f5:cf:0b:f6: 4c:9e:07:89:14:b5:ec:33:ec:b5:d7:a5:98:a5:fc:5b:d3:9c: 5c:4b:1d:67:d3:bc:a5:2b:70:c5:60:d3:66:e2:e2:34:b5:73: 62:4a:b8:fa:6a:88:89:f9:ab:11:d8:d1:79:6c:a5:25:d8:28: e4:f4:a2:cc:14:84:de:83:11:24:29:97:64:59:d1:d5:b3:55: ce:d0:10:76:7b:67:78:61:4d:26:42:59:cc:06:e6:6f:8b:ef: c8:a3:31:23:42:56:c0:b5:f6:82:ce:1d:48:fe:2f:fb:3a:c1: 08:6b:a0:fd:ba:95:c8:c6:1b:f6:09:7e:ac:ca:50:9f:bc:b9: 20:f3:d2:f2:83:3e:ca:93:d4:34:a0:cb:e2:d5:4b:be:03:58: 0a:6f:f9:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRDRTcxMTAvBgNVBAUTKEYyOEQ2RDExQzNDNTU0NkU0MjQxODE4QTczQjQ3MEVF Q0E2RDcyODMwHhcNMjUwODIzMDIyMTAwWhcNMjUwODMwMDIyMTAwWjAYMRYwFAYD VQQDEw02OGE5MjU4Yy03YmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwn1nyB+8D6jnbrSfCA+Pcnsqj/uMezYFnV7fwnSgDlOtVC6JcNjIBKK7B5dE 4Mqp2YbHPbNYNwF6lX4UR9MGpK5y032C7HfOWPZyK29Zu1Gg2jr2bCrkKl+VC16b 57egNQJN1qEBUQ+8cZTNILZZk+j4jgTtsUmqm5lv6xUEuhRkkn81dGp6TXZb4JVx 0kYPXoo4XFpD4YlnW+ZSTXntVv5Cu3lGKUua+PB95C2fDIrS02Sls9jtfU3BmYgK p0iwYaq17NxDsHoHNdgV+oBmifJ9NMSdG6CrfpXxs6a92ZiFxtPkyf4o7VSBnVy9 t7o0r3IVCJDcP3S5aSTql5dJtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNt+0QAU R6Dk43U6ogLEGd3wXQ04MB8GA1UdIwQYMBaAFPKNbRHDxVRuQkGBinO0cO7KbXKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNENFNy81QjJCMTMxQzYw Q0QxMUVEODRGNzVGNENDNEY5QUUwMi84bzF0RWNQRlZHNUNRWUdLYzdSdzdzcHRj b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhvMXRFY1BGVkc1Q1FZR0tjN1J3N3NwdGNvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NENFNy81QjJCMTMxQzYwQ0QxMUVEODRGNzVGNENDNEY5QUUwMi84bzF0RWNQRlZH NUNRWUdLYzdSdzdzcHRjb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlJMt9dEHrkI4zAVxMLNFCeps9NC0Y32uRifVfdPe6fruA6fvtUHoG ROHW234DVlB9GzIy2xI0VgEC86dzVDiHEuzaZTHeoDFJZ3O92mpBdyyPzKYKj0C7 F7XHFQp8HoZXgQKzV0NsAfXPC/ZMngeJFLXsM+y116WYpfxb05xcSx1n07ylK3DF YNNm4uI0tXNiSrj6aoiJ+asR2NF5bKUl2Cjk9KLMFITegxEkKZdkWdHVs1XO0BB2 e2d4YU0mQlnMBuZvi+/IozEjQlbAtfaCzh1I/i/7OsEIa6D9upXIxhv2CX6sylCf vLkg89Lygz7Kk9Q0oMvi1Uu+A1gKb/lk -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:35 2025 by rpki-client