$ rpki-client -vvf rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft File: 8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft (raw, json) Hash identifier: xcvaN7vS5vbvTANwOZI6WklQiLGr8TUIScv6K/Womqc= Subject key identifier: 7D:24:2B:EF:6E:D7:47:56:B5:50:27:5E:25:70:7C:F8:3A:BD:04:D6 Authority key identifier: F2:92:8A:4B:10:DD:84:74:A6:DD:0A:C6:5C:D1:39:4F:02:15:5C:DE Certificate issuer: /CN=A91243F8/serialNumber=F2928A4B10DD8474A6DD0AC65CD1394F02155CDE Certificate serial: 0292 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft Manifest number: 0292 Signing time: Wed 17 Sep 2025 02:07:09 +0000 Manifest this update: Wed 17 Sep 2025 02:07:08 +0000 Manifest next update: Wed 24 Sep 2025 02:07:08 +0000 Files and hashes: 1: 8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl (hash: xlb/z1Z4SVeCWlOKxafeGIJ2OeMPsIS3OkXqxSd+rA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:07:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243F8, serialNumber=F2928A4B10DD8474A6DD0AC65CD1394F02155CDE Validity Not Before: Sep 17 02:07:08 2025 GMT Not After : Sep 24 02:07:08 2025 GMT Subject: CN=68ca17cc-55ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:c1:fe:57:f8:4c:1a:9c:31:0e:09:4b:f8: a8:7d:ce:a3:12:c9:52:1b:59:59:a5:8c:f9:dd:ff: d4:ac:d3:d4:da:e5:2b:72:35:a6:a5:03:5f:ec:23: 3f:c3:91:59:a6:31:4b:9e:04:7e:6d:69:ab:3a:18: 83:36:c5:29:23:19:cc:b4:42:eb:df:87:33:51:a9: 10:ac:c7:a6:91:0d:9b:4a:22:76:f6:e3:86:12:e0: b4:24:91:6c:74:65:f1:d2:a3:bc:cb:de:97:63:a3: a1:e4:cd:b9:96:6b:bb:f1:11:ea:8c:80:a7:b6:98: ba:47:80:80:39:99:ca:62:35:83:ef:bf:fd:a8:87: a3:a2:04:49:df:0d:ef:ae:9f:05:94:d6:3e:c4:24: b2:91:86:fc:e0:0f:cf:19:b9:92:5e:4c:1b:42:a0: 8d:c1:7b:6e:68:88:0b:a4:ff:d8:ac:5b:86:86:6c: 63:7f:96:45:f7:91:75:3b:4b:95:f7:75:9f:4c:97: 2b:1c:46:57:b5:cf:2a:31:31:e2:86:61:8b:3d:84: be:67:d6:6f:62:6d:38:18:86:e8:17:30:c6:02:ea: cb:f3:85:f6:89:e1:c5:14:fc:5c:38:e8:8d:77:de: 1b:46:32:e6:74:2f:f4:7d:4e:1f:05:75:d5:dd:15: 63:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:24:2B:EF:6E:D7:47:56:B5:50:27:5E:25:70:7C:F8:3A:BD:04:D6 X509v3 Authority Key Identifier: keyid:F2:92:8A:4B:10:DD:84:74:A6:DD:0A:C6:5C:D1:39:4F:02:15:5C:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:b6:e0:a2:4f:e9:43:d8:d0:6e:28:ab:72:0b:15:e2:5e:8f: 40:cb:e3:46:65:1c:e5:96:0a:a0:cf:cc:bc:9b:35:70:a5:01: 76:21:09:b2:41:47:2e:22:56:e0:95:da:3c:07:b1:59:3c:a7: 10:e4:d4:a0:b0:2c:78:48:b9:fc:d2:5b:3e:65:bd:fc:4c:74: 28:8d:78:41:d2:8f:98:e1:74:24:2b:ca:f7:c4:43:aa:0c:8e: 8d:be:c5:d5:14:79:f2:70:44:ca:a7:f2:f7:d1:71:60:be:a8: cf:7a:b7:b4:08:65:db:3f:c9:d0:b2:af:11:1d:63:91:66:72: fd:9b:4e:d1:d6:fc:31:14:a0:db:1e:14:5f:24:95:0b:e3:cd: 96:a6:60:f6:5a:dc:16:6c:78:78:eb:ec:a3:b9:4f:48:fe:9e: 94:52:b2:1b:19:22:d1:25:07:51:46:d8:8b:5d:70:d8:fc:f5: 0e:0a:de:df:96:0a:80:44:11:a5:97:b6:f8:2d:1f:9c:fa:9b: 26:db:df:20:a6:25:a8:47:ea:98:6c:13:f7:78:89:d5:9c:00: 3d:47:d4:0d:19:66:8a:0e:4d:63:4c:dd:1f:10:f7:87:ae:d1: 3f:fa:12:80:ea:42:a8:6c:ba:05:df:73:19:4c:d9:4a:d9:79: 04:17:b5:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRjgxMTAvBgNVBAUTKEYyOTI4QTRCMTBERDg0NzRBNkREMEFDNjVDRDEzOTRG MDIxNTVDREUwHhcNMjUwOTE3MDIwNzA4WhcNMjUwOTI0MDIwNzA4WjAYMRYwFAYD VQQDEw02OGNhMTdjYy01NWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvojB/lf4TBqcMQ4JS/iofc6jEslSG1lZpYz53f/UrNPU2uUrcjWmpQNf7CM/ w5FZpjFLngR+bWmrOhiDNsUpIxnMtELr34czUakQrMemkQ2bSiJ29uOGEuC0JJFs dGXx0qO8y96XY6Oh5M25lmu78RHqjICntpi6R4CAOZnKYjWD77/9qIejogRJ3w3v rp8FlNY+xCSykYb84A/PGbmSXkwbQqCNwXtuaIgLpP/YrFuGhmxjf5ZF95F1O0uV 93WfTJcrHEZXtc8qMTHihmGLPYS+Z9ZvYm04GIboFzDGAurL84X2ieHFFPxcOOiN d94bRjLmdC/0fU4fBXXV3RVjQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0kK+9u 10dWtVAnXiVwfPg6vQTWMB8GA1UdIwQYMBaAFPKSiksQ3YR0pt0KxlzROU8CFVze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGOC9CQTY0ODFGNjE2 RDExMUVEODgyNDg0MjhDNEY5QUUwMi84cEtLU3hEZGhIU20zUXJHWE5FNVR3SVZY TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhwS0tTeERkaEhTbTNRckdYTkU1VHdJVlhONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGOC9CQTY0ODFGNjE2RDExMUVEODgyNDg0MjhDNEY5QUUwMi84cEtLU3hEZGhI U20zUXJHWE5FNVR3SVZYTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKtuCiT+lD2NBuKKtyCxXiXo9Ay+NGZRzllgqgz8y8mzVwpQF2IQmy QUcuIlbgldo8B7FZPKcQ5NSgsCx4SLn80ls+Zb38THQojXhB0o+Y4XQkK8r3xEOq DI6NvsXVFHnycETKp/L30XFgvqjPere0CGXbP8nQsq8RHWORZnL9m07R1vwxFKDb HhRfJJUL482WpmD2WtwWbHh46+yjuU9I/p6UUrIbGSLRJQdRRtiLXXDY/PUOCt7f lgqARBGll7b4LR+c+psm298gpiWoR+qYbBP3eInVnAA9R9QNGWaKDk1jTN0fEPeH rtE/+hKA6kKobLoF33MZTNlK2XkEF7Vd -----END CERTIFICATE-----Generated at Thu Sep 18 21:55:25 2025 by rpki-client