$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft File: K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft (raw, json) Hash identifier: cPeHliYGsr75RRMGGhTCFjXBXkMEtBNs3GkhH0Y2B2E= Subject key identifier: 26:ED:5C:99:4B:7F:2A:EF:2A:DE:53:65:8A:1A:6D:AD:01:E1:41:9A Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft Manifest number: C0 Signing time: Thu 21 Aug 2025 06:01:01 +0000 Manifest this update: Thu 21 Aug 2025 06:01:01 +0000 Manifest next update: Thu 28 Aug 2025 06:01:01 +0000 Files and hashes: 1: K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl (hash: K82SX8p3lQApSnAGOVe3HTbEf95fdMETZ2e94dIp3nU=) 2: 7490D0DE5AE111EFAD7EB82CC4F9AE02.roa (hash: 2zLHgEDWGwo9zlyqNnj3rIHawpIWGW43p4pSnf/kapk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 06:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Aug 21 06:01:01 2025 GMT Not After : Aug 28 06:01:01 2025 GMT Subject: CN=68a6b61d-8d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:38:57:72:42:05:54:48:a9:eb:de:38:aa:df: d1:18:4b:5d:f5:dd:e7:b6:89:3b:23:17:63:28:0f: e1:39:78:fa:3c:a3:4e:a4:26:b2:e9:92:e4:54:dd: 65:3b:7d:d1:3a:c3:8f:bd:1b:52:47:b7:f5:53:27: 21:5a:75:2c:8d:c2:14:4b:1f:0a:79:af:91:18:e2: 3f:36:d6:6f:8f:26:39:0a:af:cd:90:78:97:c7:c6: 69:61:49:55:69:c0:19:fe:06:ab:d4:ab:da:7c:f9: c6:5f:4d:fd:8a:6d:65:b3:a1:8a:b5:8c:b3:7c:82: 8b:cc:d0:05:82:96:f7:3b:a7:fa:d5:be:3b:00:a7: f6:4c:76:af:9b:76:1c:03:cd:62:fe:78:1a:ac:57: 9d:73:d1:3e:be:51:ac:13:02:cc:62:a3:e8:f9:e1: 2a:9e:ec:7e:dc:20:79:bc:46:8b:2c:1a:d7:ae:8f: 03:b0:a7:6a:b3:9a:02:1d:3f:7b:4c:99:a0:e9:b8: 90:5d:4f:98:c2:f9:8a:ec:e1:28:5f:e9:e3:d8:df: 05:af:33:9d:33:7b:d7:cc:b2:69:f0:59:94:bf:0f: 57:d3:22:2a:96:d0:27:f4:87:a9:12:42:77:cd:95: 76:01:66:ac:c5:81:db:0b:39:9d:61:fb:73:25:cb: f1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:ED:5C:99:4B:7F:2A:EF:2A:DE:53:65:8A:1A:6D:AD:01:E1:41:9A X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:19:ab:a9:6f:bc:91:61:fa:3d:e1:3b:6e:20:3f:64:f7:da: 24:c1:78:f8:86:01:5a:f9:89:6d:da:66:02:6b:2f:b3:c0:a2: 7b:30:0d:1c:a8:eb:2d:7b:12:8b:8c:7c:f4:10:66:a0:68:e4: 80:1b:86:1d:3c:82:25:eb:5d:12:4a:40:0e:d0:86:4a:b6:76: fd:1b:aa:8a:fa:29:3a:f9:75:4c:25:c0:e5:f6:42:c3:bd:cf: 5a:0f:03:11:86:a7:0c:5c:95:d1:ce:00:44:0d:2b:fa:c5:82: 28:78:33:c2:66:68:76:9d:fb:b3:87:b5:a8:db:a8:75:a1:9e: 0d:32:77:d1:e5:ae:bd:52:d8:8f:00:97:ca:8e:20:f2:0a:ae: b6:99:d2:78:0e:82:73:b1:e6:1e:67:6d:f2:b1:ce:b4:8b:94: 5c:5c:dc:3c:4d:a7:ed:7b:5e:ec:a2:d7:e1:aa:a3:67:8e:bd: cb:e7:33:f0:58:83:80:47:a2:ac:bf:ad:c1:d1:4c:94:f1:86: cc:75:b6:15:85:d4:fd:95:42:96:61:cf:51:84:83:61:48:ce: 1e:a0:73:c8:e0:bc:ed:bd:7d:81:9d:03:5b:64:c5:a1:bc:67: 75:a2:de:3d:7c:13:e6:71:9d:ce:23:41:55:68:fe:8d:ec:67: 00:9b:69:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjUwODIxMDYwMTAxWhcNMjUwODI4MDYwMTAxWjAYMRYwFAYD VQQDEw02OGE2YjYxZC04ZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyThXckIFVEip6944qt/RGEtd9d3ntok7IxdjKA/hOXj6PKNOpCay6ZLkVN1l O33ROsOPvRtSR7f1UychWnUsjcIUSx8Kea+RGOI/NtZvjyY5Cq/NkHiXx8ZpYUlV acAZ/gar1KvafPnGX039im1ls6GKtYyzfIKLzNAFgpb3O6f61b47AKf2THavm3Yc A81i/ngarFedc9E+vlGsEwLMYqPo+eEqnux+3CB5vEaLLBrXro8DsKdqs5oCHT97 TJmg6biQXU+YwvmK7OEoX+nj2N8FrzOdM3vXzLJp8FmUvw9X0yIqltAn9IepEkJ3 zZV2AWasxYHbCzmdYftzJcvxpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbtXJlL fyrvKt5TZYoaba0B4UGaMB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NERFQS8zQkY1RjJFMDVBRTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgw QlpEbGx4aERQWUdEXzVSbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPGaupb7yRYfo94TtuID9k99okwXj4hgFa+Ylt2mYCay+zwKJ7MA0c qOstexKLjHz0EGagaOSAG4YdPIIl610SSkAO0IZKtnb9G6qK+ik6+XVMJcDl9kLD vc9aDwMRhqcMXJXRzgBEDSv6xYIoeDPCZmh2nfuzh7Wo26h1oZ4NMnfR5a69UtiP AJfKjiDyCq62mdJ4DoJzseYeZ23ysc60i5RcXNw8Tafte17sotfhqqNnjr3L5zPw WIOAR6Ksv63B0UyU8YbMdbYVhdT9lUKWYc9RhINhSM4eoHPI4LztvX2BnQNbZMWh vGd1ot49fBPmcZ3OI0FVaP6N7GcAm2kp -----END CERTIFICATE-----Generated at Fri Aug 22 16:28:48 2025 by rpki-client