$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft File: 8CpdEC9_M7JhEbSih0L3ui8empk.mft (raw, json) Hash identifier: xIqf2thMc36WRBAXB4+JvtHtpiKAml7N3MRbT/cAhwo= Subject key identifier: 6C:A9:85:A9:D8:92:8F:7E:45:EB:D5:13:DA:F0:04:B8:DE:C7:A5:79 Authority key identifier: F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 Certificate issuer: /CN=A913CB5F/serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Certificate serial: 0375 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft Manifest number: 0370 Signing time: Sun 07 Sep 2025 01:18:06 +0000 Manifest this update: Sun 07 Sep 2025 01:18:06 +0000 Manifest next update: Sun 14 Sep 2025 01:18:06 +0000 Files and hashes: 1: 8CpdEC9_M7JhEbSih0L3ui8empk.crl (hash: JP8ImluIh6v24ldMrTCaDzuzJ6NmoWOkfFTTZw+AaTo=) 2: 688AF35CC09511EC8CFFDB10C4F9AE02.roa (hash: S7JF/bNkGQBKzWyyMCIfasqHndqaViHJP5nFlj8AfpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 885 (0x375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB5F, serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Validity Not Before: Sep 7 01:18:06 2025 GMT Not After : Sep 14 01:18:06 2025 GMT Subject: CN=68bcdd4e-7b90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:34:66:4f:53:ae:e7:31:f8:75:c4:14:f8:49: 87:c9:96:75:4a:d6:10:4f:5e:24:78:cc:8d:e8:73: 0a:0e:92:00:13:d1:09:76:a9:b6:b0:08:eb:cc:a3: 6c:07:c8:bf:23:cd:c6:39:21:50:74:4e:6b:91:d1: a7:82:0d:93:98:3c:79:56:e7:9f:5c:bb:de:96:d8: d5:77:8c:c5:ec:80:d4:73:9d:b0:f7:55:e3:cb:0b: b6:e6:81:eb:12:f5:b6:60:20:e3:d5:c1:72:6d:f0: bf:5c:2a:44:5b:b1:e7:f9:31:90:f8:f8:d9:8f:db: 77:56:db:c9:34:ba:8f:09:d1:59:9f:97:14:d4:a6: bd:53:a8:90:6a:21:cd:8f:35:96:34:a3:03:1a:fb: 06:a2:c5:4a:e9:14:d3:8e:0a:2a:c5:48:41:31:23: 3e:b1:80:17:06:4c:44:df:ca:eb:ea:e4:ff:5d:94: da:fe:60:3c:a8:d1:2a:1f:91:e6:9b:fa:87:6b:e8: 16:dd:3e:e3:64:91:dd:39:5a:0e:3d:4e:00:25:5e: ef:6b:68:f2:20:8a:97:12:00:f7:12:db:f5:13:5a: 89:1f:02:8c:a1:33:a6:a5:39:ab:60:ee:c8:62:df: 6a:af:9f:2f:e7:10:e2:a5:72:9e:89:de:8d:10:d3: 7a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A9:85:A9:D8:92:8F:7E:45:EB:D5:13:DA:F0:04:B8:DE:C7:A5:79 X509v3 Authority Key Identifier: keyid:F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:3d:0b:1e:53:74:49:1a:23:2b:8e:42:c7:50:06:44:cc:ac: d6:fe:5e:7d:bf:1a:9d:4f:11:d2:4b:b3:e6:2b:ed:fc:44:7a: fd:69:44:df:e3:ec:8f:40:d3:db:27:22:2d:08:ea:c9:4a:ce: 6e:83:22:94:67:4a:af:3d:56:7c:3e:b3:1b:45:ec:a8:e9:aa: f0:87:b0:9b:2b:e1:31:bc:ea:35:bc:2a:72:56:cf:7b:f0:28: 70:df:df:3a:e1:3e:16:84:32:32:cd:9d:a8:d5:f8:53:43:04: b1:4f:18:e0:a8:e9:93:0e:00:ee:3e:0c:43:47:17:2c:76:a1: b4:57:16:6f:85:a2:85:5e:10:96:1c:cb:ef:d1:d2:26:6e:33: 5b:a7:69:46:cd:db:f0:fa:04:7e:65:ed:23:36:a4:c6:0b:22: f3:56:67:05:82:5f:3c:51:a7:84:23:87:f0:db:5a:8a:1d:00: 09:98:21:d6:f7:f0:4d:08:9f:e6:be:22:7e:e7:37:e0:5c:8c: 58:7a:8f:c4:ff:16:52:5c:c0:8f:00:1d:91:6a:92:74:5a:29: 79:88:77:e6:91:ee:c2:03:45:3a:e2:58:64:dd:4b:1e:9b:af: 30:d1:be:7c:03:f6:ca:1a:72:1f:22:b4:63:a9:84:e3:35:7c: 8d:8f:af:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCNUYxMTAvBgNVBAUTKEYwMkE1RDEwMkY3RjMzQjI2MTExQjRBMjg3NDJGN0JB MkYxRTlBOTkwHhcNMjUwOTA3MDExODA2WhcNMjUwOTE0MDExODA2WjAYMRYwFAYD VQQDEw02OGJjZGQ0ZS03YjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDRmT1Ou5zH4dcQU+EmHyZZ1StYQT14keMyN6HMKDpIAE9EJdqm2sAjrzKNs B8i/I83GOSFQdE5rkdGngg2TmDx5VuefXLveltjVd4zF7IDUc52w91Xjywu25oHr EvW2YCDj1cFybfC/XCpEW7Hn+TGQ+PjZj9t3VtvJNLqPCdFZn5cU1Ka9U6iQaiHN jzWWNKMDGvsGosVK6RTTjgoqxUhBMSM+sYAXBkxE38rr6uT/XZTa/mA8qNEqH5Hm m/qHa+gW3T7jZJHdOVoOPU4AJV7va2jyIIqXEgD3Etv1E1qJHwKMoTOmpTmrYO7I Yt9qr58v5xDipXKeid6NENN6fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyphanY ko9+RevVE9rwBLjex6V5MB8GA1UdIwQYMBaAFPAqXRAvfzOyYRG0oodC97ovHpqZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I1Ri8wMDVFNTlBQ0Mw OTIxMUVDODA0NEMxNjRDNEY5QUUwMi84Q3BkRUM5X003SmhFYlNpaDBMM3VpOGVt cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDcGRFQzlfTTdKaEViU2loMEwzdWk4ZW1way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0I1Ri8wMDVFNTlBQ0MwOTIxMUVDODA0NEMxNjRDNEY5QUUwMi84Q3BkRUM5X003 SmhFYlNpaDBMM3VpOGVtcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyPQseU3RJGiMrjkLHUAZEzKzW/l59vxqdTxHSS7PmK+38RHr9aUTf 4+yPQNPbJyItCOrJSs5ugyKUZ0qvPVZ8PrMbReyo6arwh7CbK+ExvOo1vCpyVs97 8Chw39864T4WhDIyzZ2o1fhTQwSxTxjgqOmTDgDuPgxDRxcsdqG0VxZvhaKFXhCW HMvv0dImbjNbp2lGzdvw+gR+Ze0jNqTGCyLzVmcFgl88UaeEI4fw21qKHQAJmCHW 9/BNCJ/mviJ+5zfgXIxYeo/E/xZSXMCPAB2RapJ0Wil5iHfmke7CA0U64lhk3Use m68w0b58A/bKGnIfIrRjqYTjNXyNj69a -----END CERTIFICATE-----Generated at Mon Sep 8 21:37:39 2025 by rpki-client