$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: nAWJmpAgISOcdoSdtlxtDIvDhbeX3sZBqsIXh1Vx1eU= Subject key identifier: 7C:DC:74:73:EF:36:A9:45:AB:40:D8:33:25:36:57:00:89:2E:60:B4 Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: AC Signing time: Wed 17 Sep 2025 06:48:26 +0000 Manifest this update: Wed 17 Sep 2025 06:48:26 +0000 Manifest next update: Wed 24 Sep 2025 06:48:26 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: 64Q/qWKD9IlfzjRst2n5XhaoMq/vK5GWZmQBrxcK6ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: Sep 17 06:48:26 2025 GMT Not After : Sep 24 06:48:26 2025 GMT Subject: CN=68ca59ba-16b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:26:66:95:e8:27:35:07:69:ac:2d:79:ad:33: 3f:c1:fa:1d:0e:aa:c8:9e:7d:2d:55:0b:d4:32:07: 17:2d:a8:c2:98:ac:c7:37:c4:d6:d6:2d:22:9f:36: 92:a7:95:bf:77:a9:9f:5f:fc:ef:3b:58:e6:95:da: de:b4:db:29:83:f1:e8:a6:e4:cd:84:9f:df:cf:99: d6:1c:b1:d4:c5:82:0c:39:3f:c1:6b:38:ac:66:f4: 20:64:82:40:fa:ac:a0:f2:af:d2:c5:d3:38:5b:6e: c8:69:09:06:27:2e:ac:f7:fd:9a:b6:e2:96:81:76: 30:17:ff:3e:eb:16:6a:5e:f7:f1:da:5d:e4:bd:a2: 57:75:02:a6:67:36:44:42:4c:5f:a7:17:00:22:ba: 56:ba:0a:96:37:31:33:e3:ae:6e:4c:07:44:06:da: f2:75:13:dc:ea:ec:22:3e:af:79:a5:1d:34:13:90: a5:41:d9:8a:d6:b0:76:8c:fa:df:be:f3:43:af:c9: b4:c0:21:9b:47:a9:7c:5c:6c:24:fb:46:e6:77:1e: fd:c0:ca:29:23:d4:74:c3:f8:fd:d7:e4:78:42:04: d0:cd:0d:37:8b:a0:49:52:da:21:af:75:b2:0f:3b: 3e:0a:da:d9:a8:df:0e:68:c1:83:74:92:f0:54:fd: 30:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:DC:74:73:EF:36:A9:45:AB:40:D8:33:25:36:57:00:89:2E:60:B4 X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:3c:e3:d0:72:8a:e4:9e:e5:25:6b:0f:ed:aa:96:4e:5d:fc: 99:e2:32:45:cc:e4:d0:e4:81:24:00:dc:09:8e:d9:83:1e:8a: 88:be:49:83:38:2d:db:c3:05:c4:ec:83:8a:9b:ef:57:46:19: 8f:f0:a9:7e:e8:fe:88:98:29:58:31:49:31:98:0a:72:a6:21: 2f:c9:ae:ff:df:e1:3b:f7:86:40:2a:44:15:36:5b:ca:9c:cc: 3a:6b:f1:9b:d0:b6:5e:15:bf:c5:1c:5b:c5:7e:4b:42:a5:3b: 10:92:5e:c2:37:d7:68:e9:48:27:fd:48:10:33:a3:89:c8:3a: df:9c:ce:75:d7:54:75:7a:7d:cb:5a:2e:ee:4e:be:14:cf:2b: 47:a3:49:9a:39:d6:18:9b:17:9c:ce:70:06:83:08:87:3e:a2: ec:b5:d7:5f:1f:2e:b0:13:81:ff:4a:5f:97:eb:d6:53:87:54: 92:d5:03:3a:1b:46:cb:96:69:19:82:0d:5b:3f:3f:82:f1:0f: a3:72:f6:bf:bb:ec:7e:87:79:72:26:8e:8e:f5:c7:0a:77:bd: bf:67:be:ca:84:29:a7:7e:c3:fd:93:63:0c:54:86:9c:f2:d2: 8e:3c:53:67:8b:d6:a2:3f:50:d8:10:20:2e:6f:31:75:46:6c: f9:3e:a5:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwRTMxMTAvBgNVBAUTKERCQzZGMjI1NkRERTVDMkM0NkE4MEVCMjQzMkYyNTcy RURDNTM3RDYwHhcNMjUwOTE3MDY0ODI2WhcNMjUwOTI0MDY0ODI2WjAYMRYwFAYD VQQDEw02OGNhNTliYS0xNmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CZmlegnNQdprC15rTM/wfodDqrInn0tVQvUMgcXLajCmKzHN8TW1i0inzaS p5W/d6mfX/zvO1jmldretNspg/HopuTNhJ/fz5nWHLHUxYIMOT/BazisZvQgZIJA +qyg8q/SxdM4W27IaQkGJy6s9/2atuKWgXYwF/8+6xZqXvfx2l3kvaJXdQKmZzZE QkxfpxcAIrpWugqWNzEz465uTAdEBtrydRPc6uwiPq95pR00E5ClQdmK1rB2jPrf vvNDr8m0wCGbR6l8XGwk+0bmdx79wMopI9R0w/j91+R4QgTQzQ03i6BJUtohr3Wy Dzs+CtrZqN8OaMGDdJLwVP0wdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzcdHPv NqlFq0DYMyU2VwCJLmC0MB8GA1UdIwQYMBaAFNvG8iVt3lwsRqgOskMvJXLtxTfW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBFMy9CMzVBQjlGQThD N0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhDeEdxQTZ5UXk4bGN1M0ZO OVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBFMy9CMzVBQjlGQThDN0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhD eEdxQTZ5UXk4bGN1M0ZOOVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKPOPQcorknuUlaw/tqpZOXfyZ4jJFzOTQ5IEkANwJjtmDHoqIvkmD OC3bwwXE7IOKm+9XRhmP8Kl+6P6ImClYMUkxmApypiEvya7/3+E794ZAKkQVNlvK nMw6a/Gb0LZeFb/FHFvFfktCpTsQkl7CN9do6Ugn/UgQM6OJyDrfnM5111R1en3L Wi7uTr4UzytHo0maOdYYmxecznAGgwiHPqLstddfHy6wE4H/Sl+X69ZTh1SS1QM6 G0bLlmkZgg1bPz+C8Q+jcva/u+x+h3lyJo6O9ccKd72/Z77KhCmnfsP9k2MMVIac 8tKOPFNni9aiP1DYECAubzF1Rmz5PqVB -----END CERTIFICATE-----Generated at Thu Sep 18 23:28:11 2025 by rpki-client