$ rpki-client -vvf rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft File: 8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft (raw, json) Hash identifier: gvBNahTV+KLsj1833zpfucUDytGIxz/rzCbyeFASFtk= Subject key identifier: 2C:0A:33:68:54:90:BC:9C:1D:8D:89:94:64:01:3C:12:5F:CD:77:B2 Authority key identifier: F2:6A:81:01:91:69:52:FB:20:BE:01:E8:FC:7C:90:ED:C9:EE:9F:78 Certificate issuer: /CN=A91955D9/serialNumber=F26A8101916952FB20BE01E8FC7C90EDC9EE9F78 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft Manifest number: 81 Signing time: Wed 23 Jul 2025 07:01:21 +0000 Manifest this update: Wed 23 Jul 2025 07:01:21 +0000 Manifest next update: Wed 30 Jul 2025 07:01:21 +0000 Files and hashes: 1: 8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl (hash: qVBGYK55uW7oL2PgmiLcT0qtAfwOL7Rlwc5+dhA9q8A=) 2: 0D041790A28611EFBD5A8C11C4F9AE02.roa (hash: 97I65+Q066TDiRkq5FVajUp8ATxWSUAGmGMHS8ACfSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955D9, serialNumber=F26A8101916952FB20BE01E8FC7C90EDC9EE9F78 Validity Not Before: Jul 23 07:01:21 2025 GMT Not After : Jul 30 07:01:21 2025 GMT Subject: CN=688088c1-28ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ca:3a:0c:da:fe:5a:d9:e3:cb:25:c4:68:2e: 5c:cf:60:6e:e0:37:13:57:fd:3a:1d:55:73:4b:9e: e5:af:23:0b:8c:d4:ac:64:e5:e1:67:b9:90:b7:1d: 79:0c:66:92:a1:71:8d:f6:4a:9d:57:32:f3:c3:17: 8b:45:1f:47:0a:91:70:d7:01:e0:5c:08:9a:4d:5f: e9:aa:86:dc:f5:99:b2:02:97:ef:31:c2:42:1c:c6: 8b:e9:9d:f8:b9:b5:31:39:75:5e:18:ff:ea:74:90: 85:49:60:b1:61:88:f3:55:7b:d8:da:31:83:26:01: e9:ec:67:f9:23:66:a8:c6:91:03:1f:d5:c6:7c:06: f2:de:31:59:ac:bc:d2:19:90:6f:f9:bc:cb:5d:23: ac:3b:17:51:e0:d1:50:4c:ab:d0:86:7f:92:44:9e: 98:ea:d7:d4:fd:dd:30:7c:76:63:d2:aa:2d:f6:5a: 3f:b9:ac:f2:bb:42:70:52:ff:7f:5f:2c:e0:6b:4e: 7a:cd:e8:df:ff:b0:37:d6:bf:5b:0a:d8:4e:8e:2f: 38:fc:5e:cc:76:5f:06:72:18:de:ac:cb:bf:9d:28: f9:b3:e7:99:5a:0b:ba:d6:a3:c2:cc:c5:03:e2:37: 18:74:da:ad:9f:2a:07:ad:bf:ba:24:8c:44:4f:22: c3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0A:33:68:54:90:BC:9C:1D:8D:89:94:64:01:3C:12:5F:CD:77:B2 X509v3 Authority Key Identifier: keyid:F2:6A:81:01:91:69:52:FB:20:BE:01:E8:FC:7C:90:ED:C9:EE:9F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8mqBAZFpUvsgvgHo_HyQ7cnun3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955D9/CD54D738A28511EFB66B1811C4F9AE02/8mqBAZFpUvsgvgHo_HyQ7cnun3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:24:2c:9a:dd:6a:54:0a:3f:81:ce:17:82:24:f9:15:81:42: 52:0b:c8:a3:22:29:5b:ef:9d:1c:aa:07:d4:fa:6f:46:af:db: e9:6a:38:d6:6d:38:96:0b:15:0d:78:e9:33:40:13:50:86:65: 53:95:7d:ad:89:3b:c4:01:b3:dd:47:12:a4:06:0d:27:38:f3: bf:4d:1d:5f:83:06:7e:51:b8:ad:0b:98:09:2b:41:19:6a:3a: a0:c5:eb:25:e3:3d:6e:f7:77:92:ea:23:ce:6a:68:66:51:ba: 5b:be:e5:3d:bd:a6:e3:45:3d:b6:45:a3:a0:5e:0f:a5:ea:a4: 49:32:00:e2:56:ea:d2:ad:6b:a9:9e:8a:18:71:e0:76:53:dd: f4:5e:82:cf:d7:ab:c1:7e:34:be:e4:b2:67:3c:17:59:77:fb: 82:7b:00:5f:00:cc:31:4d:c8:52:73:30:bc:9e:db:65:79:ab: 72:e4:f2:79:5e:e0:a4:2e:ec:a4:d9:9f:9d:55:8a:4c:2a:4a: a3:61:ba:cf:ee:28:97:67:b3:88:0d:36:78:8e:fc:1e:9e:98: fc:3d:ec:42:85:0a:2d:38:c1:19:e0:bc:a6:cf:4b:d8:e3:7a: 96:0d:6d:2e:b1:da:db:cd:78:3e:dd:4e:13:5b:05:9a:2b:78: 67:f9:e4:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1RDkxMTAvBgNVBAUTKEYyNkE4MTAxOTE2OTUyRkIyMEJFMDFFOEZDN0M5MEVE QzlFRTlGNzgwHhcNMjUwNzIzMDcwMTIxWhcNMjUwNzMwMDcwMTIxWjAYMRYwFAYD VQQDEw02ODgwODhjMS0yOGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2co6DNr+WtnjyyXEaC5cz2Bu4DcTV/06HVVzS57lryMLjNSsZOXhZ7mQtx15 DGaSoXGN9kqdVzLzwxeLRR9HCpFw1wHgXAiaTV/pqobc9ZmyApfvMcJCHMaL6Z34 ubUxOXVeGP/qdJCFSWCxYYjzVXvY2jGDJgHp7Gf5I2aoxpEDH9XGfAby3jFZrLzS GZBv+bzLXSOsOxdR4NFQTKvQhn+SRJ6Y6tfU/d0wfHZj0qot9lo/uazyu0JwUv9/ Xyzga056zejf/7A31r9bCthOji84/F7Mdl8GchjerMu/nSj5s+eZWgu61qPCzMUD 4jcYdNqtnyoHrb+6JIxETyLDuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwKM2hU kLycHY2JlGQBPBJfzXeyMB8GA1UdIwQYMBaAFPJqgQGRaVL7IL4B6Px8kO3J7p94 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVEOS9DRDU0RDczOEEy ODUxMUVGQjY2QjE4MTFDNEY5QUUwMi84bXFCQVpGcFV2c2d2Z0hvX0h5UTdjbnVu M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhtcUJBWkZwVXZzZ3ZnSG9fSHlRN2NudW4zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTVEOS9DRDU0RDczOEEyODUxMUVGQjY2QjE4MTFDNEY5QUUwMi84bXFCQVpGcFV2 c2d2Z0hvX0h5UTdjbnVuM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBJCya3WpUCj+BzheCJPkVgUJSC8ijIilb750cqgfU+m9Gr9vpajjW bTiWCxUNeOkzQBNQhmVTlX2tiTvEAbPdRxKkBg0nOPO/TR1fgwZ+UbitC5gJK0EZ ajqgxesl4z1u93eS6iPOamhmUbpbvuU9vabjRT22RaOgXg+l6qRJMgDiVurSrWup nooYceB2U930XoLP16vBfjS+5LJnPBdZd/uCewBfAMwxTchSczC8nttleaty5PJ5 XuCkLuyk2Z+dVYpMKkqjYbrP7iiXZ7OIDTZ4jvwenpj8PexChQotOMEZ4Lymz0vY 43qWDW0usdrbzXg+3U4TWwWaK3hn+eS3 -----END CERTIFICATE-----Generated at Thu Jul 24 01:41:57 2025 by rpki-client