$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: gP+90gLkSUH0a3EdP8Y2Cj9rerAjUAuJJJOX3QjeAqM= Subject key identifier: 6A:2B:C5:DF:96:E9:2B:83:24:A3:AB:77:04:AE:9D:D2:20:5E:3E:CB Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 08E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 08BA Signing time: Thu 04 Sep 2025 20:47:43 +0000 Manifest this update: Thu 04 Sep 2025 20:47:43 +0000 Manifest next update: Thu 11 Sep 2025 20:47:43 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: oJcz7QDCEzLvXEyNOx6q1GjUHmUtv7qNnyZxbQZm3wk=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2276 (0x8e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Sep 4 20:47:43 2025 GMT Not After : Sep 11 20:47:43 2025 GMT Subject: CN=68b9faef-7193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:29:c8:1d:75:3e:6d:62:ed:94:11:b7:28:ae: 13:1f:29:d1:cf:51:4d:dc:19:52:84:cb:2b:da:60: d4:80:34:66:cd:69:a7:a7:2a:df:b8:7d:6c:d0:ea: 37:7c:00:f9:a6:6d:15:b7:dc:c0:9e:e2:df:a6:81: 41:2d:c5:6c:1c:90:7f:0d:99:e1:8b:b6:4c:f9:8d: 54:03:9e:f4:ae:37:eb:de:9d:47:f5:8e:df:cb:31: 45:55:06:3a:88:30:32:f3:22:ea:ff:47:f5:8d:76: 92:bd:0e:32:2b:ea:0a:95:82:9e:fb:5d:4f:dd:ec: b1:81:e7:40:93:75:91:d4:90:23:bd:64:05:24:70: 63:42:e2:89:81:6c:84:1e:f0:e1:5f:3c:38:6a:ae: a7:ef:a0:eb:32:4f:fd:e7:14:73:eb:5b:70:a9:db: 5f:f5:68:66:df:32:87:da:1f:3f:5b:7e:72:f4:de: 8a:33:97:8e:74:f7:76:37:5b:b2:b2:83:f4:b2:99: 2b:be:b3:f5:13:2b:47:5f:4e:bf:a7:c3:7f:3d:18: 44:92:6f:d4:b2:3e:5b:0a:0b:ba:eb:69:f4:5b:3e: f2:16:d9:14:c9:87:73:c7:54:cc:a1:12:fc:2b:f8: 67:ed:29:90:d8:2a:fb:27:37:c9:64:90:c0:af:ae: b4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:2B:C5:DF:96:E9:2B:83:24:A3:AB:77:04:AE:9D:D2:20:5E:3E:CB X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:48:0c:e3:cc:b4:3a:1d:89:f6:9a:35:8c:e2:52:4d:c8:bf: e3:6a:c0:9f:71:d2:a3:6c:2b:d1:2d:4b:e2:e8:d9:21:68:c4: db:be:02:f6:03:bd:d9:41:dd:bd:b7:1e:ae:7b:a2:95:1e:77: d5:c2:2e:c7:31:d5:33:75:67:85:65:34:53:84:6a:f1:a0:a8: 85:d9:ca:71:87:5c:0c:90:e1:f5:9d:a4:a9:03:ca:b7:4a:ff: 12:bb:4f:80:e3:69:65:ad:a7:f3:52:e3:d6:cb:46:eb:1d:00: 0e:d9:7f:a8:84:c4:c9:eb:9b:9d:3f:29:2d:ec:04:25:6b:e2: fe:3a:06:24:bc:6b:c3:8e:89:9f:4a:97:8a:34:d4:c5:45:07: d5:92:37:69:c4:18:ac:a9:da:07:f4:a8:fc:2b:e7:1f:1e:94: 27:d8:84:b7:d1:b7:df:28:42:06:56:63:68:0f:cd:f8:41:ee: 23:85:44:3f:0f:33:c4:9e:ab:86:c9:3c:6d:6a:d0:d1:63:41: ae:23:87:e0:85:1c:70:91:5f:c0:f4:4e:de:50:e6:64:22:ba: 76:74:de:81:88:86:0e:5e:8f:55:28:e8:f6:b2:3b:89:ac:f2: c1:eb:d6:00:2c:66:19:79:ac:b1:4d:0c:31:8d:ec:25:e1:e3: bf:c3:9d:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwOTA0MjA0NzQzWhcNMjUwOTExMjA0NzQzWjAYMRYwFAYD VQQDEw02OGI5ZmFlZi03MTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3inIHXU+bWLtlBG3KK4THynRz1FN3BlShMsr2mDUgDRmzWmnpyrfuH1s0Oo3 fAD5pm0Vt9zAnuLfpoFBLcVsHJB/DZnhi7ZM+Y1UA570rjfr3p1H9Y7fyzFFVQY6 iDAy8yLq/0f1jXaSvQ4yK+oKlYKe+11P3eyxgedAk3WR1JAjvWQFJHBjQuKJgWyE HvDhXzw4aq6n76DrMk/95xRz61twqdtf9Whm3zKH2h8/W35y9N6KM5eOdPd2N1uy soP0spkrvrP1EytHX06/p8N/PRhEkm/Usj5bCgu662n0Wz7yFtkUyYdzx1TMoRL8 K/hn7SmQ2Cr7JzfJZJDAr660QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGorxd+W 6SuDJKOrdwSundIgXj7LMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoSAzjzLQ6HYn2mjWM4lJNyL/jasCfcdKjbCvRLUvi6NkhaMTbvgL2 A73ZQd29tx6ue6KVHnfVwi7HMdUzdWeFZTRThGrxoKiF2cpxh1wMkOH1naSpA8q3 Sv8Su0+A42llrafzUuPWy0brHQAO2X+ohMTJ65udPykt7AQla+L+OgYkvGvDjomf SpeKNNTFRQfVkjdpxBisqdoH9Kj8K+cfHpQn2IS30bffKEIGVmNoD834Qe4jhUQ/ DzPEnquGyTxtatDRY0GuI4fghRxwkV/A9E7eUOZkIrp2dN6BiIYOXo9VKOj2sjuJ rPLB69YALGYZeayxTQwxjewl4eO/w52M -----END CERTIFICATE-----Generated at Sat Sep 6 14:27:26 2025 by rpki-client