$ rpki-client -vvf rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft File: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft (raw, json) Hash identifier: RTxIpJmT//48u+G1vTN6DdVfyDmbdMcui0odzrvLyXc= Subject key identifier: 41:29:42:78:31:A0:33:83:33:A3:1C:65:5D:D9:31:34:50:54:40:00 Authority key identifier: 91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 Certificate issuer: /CN=A917408F/serialNumber=910F2F41408E13DAED7C21DC472DC5C58C458836 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft Manifest number: 86 Signing time: Thu 21 Aug 2025 06:53:19 +0000 Manifest this update: Thu 21 Aug 2025 06:53:18 +0000 Manifest next update: Thu 28 Aug 2025 06:53:18 +0000 Files and hashes: 1: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl (hash: 6mDidlcR3Ki6Uwz0qbmpkdVteGBIdGPzJmnjtre+HdI=) 2: 9CEF2622B76E11EF8FCC9767C4F9AE02.roa (hash: HSb6XjCDD/PrExNgC4kkLXSRksHnMNuj8kokihkx5ZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 06:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917408F, serialNumber=910F2F41408E13DAED7C21DC472DC5C58C458836 Validity Not Before: Aug 21 06:53:18 2025 GMT Not After : Aug 28 06:53:18 2025 GMT Subject: CN=68a6c25f-a512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:13:72:21:75:4b:60:2c:57:7b:72:42:dc:12: 81:3d:28:b6:ee:52:26:bd:57:75:e7:eb:17:97:b6: a3:1f:bb:d4:ea:bf:a7:be:a3:70:46:07:83:ea:7c: 5a:e7:d9:2f:e3:dc:4d:66:c2:3c:5a:4c:7a:cc:29: 82:d0:84:4f:c2:a8:3b:34:d7:0d:bb:70:9d:37:4a: 36:c3:0f:ef:23:d9:15:a5:37:9c:12:a9:b1:97:e6: 30:b1:8f:ad:22:1a:6f:a0:01:f8:35:8a:8a:12:a7: c2:cf:d8:47:22:9a:2e:59:b7:23:b4:13:26:7f:61: 3e:d4:3a:12:4d:4a:d9:e7:e4:1c:67:db:73:7d:ed: 1e:6f:36:a8:2b:30:7c:39:c8:5c:e3:df:b7:52:eb: 9c:e4:e9:6b:91:61:87:10:69:03:72:4e:ad:41:40: 06:6d:74:b5:06:6c:2e:9b:ff:e4:27:aa:dd:d1:64: d7:c1:98:99:1b:c6:1f:e8:d0:5e:3c:52:77:e4:c3: 3a:7e:b9:88:57:30:2d:48:69:6b:91:99:2c:b6:77: 49:c6:0f:0d:94:87:75:8a:ee:c6:81:0e:dd:02:df: dd:ff:90:cf:a3:a3:39:79:6f:f3:1b:8b:ea:8c:a8: 6e:1e:29:ac:c2:5c:7b:a1:31:94:3a:2e:6b:ad:6f: 14:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:29:42:78:31:A0:33:83:33:A3:1C:65:5D:D9:31:34:50:54:40:00 X509v3 Authority Key Identifier: keyid:91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:27:ce:c9:5c:97:ff:8c:78:31:a0:c3:35:98:fc:b8:33:4c: e6:e7:e3:71:b6:c2:6c:4e:21:0c:65:3c:6e:57:62:71:b2:e7: ba:ca:c4:3e:f4:25:4c:df:96:08:d3:32:8f:7b:47:1b:e6:e8: 57:bd:a6:3f:41:f4:df:43:9d:53:f9:89:1f:6c:f8:95:65:57: 08:58:75:8d:b6:9d:98:14:b7:e5:90:07:f3:b6:f2:14:23:42: 1a:59:5a:e5:06:f2:95:1e:af:72:65:fa:5d:b9:6d:9e:ae:c7: 1a:0d:c0:91:9b:35:ea:1a:2e:81:28:9e:53:ce:5e:65:96:99: 5f:00:5a:41:ea:6b:43:e6:84:99:95:e4:7c:92:18:45:46:2a: 79:77:b7:a2:41:15:46:87:ac:5e:b1:4c:d0:41:2e:bb:1d:aa: 5e:07:63:f4:50:7e:c8:c4:1c:e0:d2:aa:6a:f8:b9:74:56:49: e4:f8:2a:62:9c:c4:83:ae:d1:58:a8:73:16:70:11:89:67:07: 22:6a:9e:69:33:6d:11:2e:76:3b:ad:59:de:39:b9:86:6f:11: 0d:1d:88:6a:93:a7:70:e5:40:03:f7:c5:60:8a:4e:70:61:57: 74:ee:b0:3d:28:6e:0b:83:76:b1:71:d4:da:88:37:d2:ec:44: 52:b3:1e:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQwOEYxMTAvBgNVBAUTKDkxMEYyRjQxNDA4RTEzREFFRDdDMjFEQzQ3MkRDNUM1 OEM0NTg4MzYwHhcNMjUwODIxMDY1MzE4WhcNMjUwODI4MDY1MzE4WjAYMRYwFAYD VQQDEw02OGE2YzI1Zi1hNTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhNyIXVLYCxXe3JC3BKBPSi27lImvVd15+sXl7ajH7vU6r+nvqNwRgeD6nxa 59kv49xNZsI8Wkx6zCmC0IRPwqg7NNcNu3CdN0o2ww/vI9kVpTecEqmxl+YwsY+t IhpvoAH4NYqKEqfCz9hHIpouWbcjtBMmf2E+1DoSTUrZ5+QcZ9tzfe0ebzaoKzB8 Ochc49+3Uuuc5OlrkWGHEGkDck6tQUAGbXS1Bmwum//kJ6rd0WTXwZiZG8Yf6NBe PFJ35MM6frmIVzAtSGlrkZkstndJxg8NlId1iu7GgQ7dAt/d/5DPo6M5eW/zG4vq jKhuHimswlx7oTGUOi5rrW8UhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEpQngx oDODM6McZV3ZMTRQVEAAMB8GA1UdIwQYMBaAFJEPL0FAjhPa7Xwh3EctxcWMRYg2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDA4Ri8xNkNEOTg1OEI3 NkUxMUVGQUNGMEY4NjVDNEY5QUUwMi9rUTh2UVVDT0U5cnRmQ0hjUnkzRnhZeEZp RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tROHZRVUNPRTlydGZDSGNSeTNGeFl4RmlEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDA4Ri8xNkNEOTg1OEI3NkUxMUVGQUNGMEY4NjVDNEY5QUUwMi9rUTh2UVVDT0U5 cnRmQ0hjUnkzRnhZeEZpRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTJ87JXJf/jHgxoMM1mPy4M0zm5+NxtsJsTiEMZTxuV2Jxsue6ysQ+ 9CVM35YI0zKPe0cb5uhXvaY/QfTfQ51T+YkfbPiVZVcIWHWNtp2YFLflkAfztvIU I0IaWVrlBvKVHq9yZfpduW2erscaDcCRmzXqGi6BKJ5Tzl5llplfAFpB6mtD5oSZ leR8khhFRip5d7eiQRVGh6xesUzQQS67HapeB2P0UH7IxBzg0qpq+Ll0Vknk+Cpi nMSDrtFYqHMWcBGJZwciap5pM20RLnY7rVneObmGbxENHYhqk6dw5UAD98Vgik5w YVd07rA9KG4Lg3axcdTaiDfS7ERSsx5A -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:11 2025 by rpki-client