$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft File: k32ZUe4fk_ysJDM7CD-dfy458Pk.mft (raw, json) Hash identifier: gpJhvvY+LnmE/aepdl1pNBGyC+XpchX67iF8f2dBdRk= Subject key identifier: 93:26:E5:C2:AE:F2:31:C2:7E:42:64:DF:8A:E8:5A:4B:F3:76:EB:FC Authority key identifier: 93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 Certificate issuer: /CN=A919C8C4/serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Certificate serial: 08C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft Manifest number: 08C0 Signing time: Wed 20 Aug 2025 20:32:40 +0000 Manifest this update: Wed 20 Aug 2025 20:32:40 +0000 Manifest next update: Wed 27 Aug 2025 20:32:40 +0000 Files and hashes: 1: k32ZUe4fk_ysJDM7CD-dfy458Pk.crl (hash: TZB59FQEbYza/8bbt/2P/X7KU2PeqKSBNLoUZrAQUG4=) 2: 6A3C327ABD1711EA8A3C8E20C4F9AE02.roa (hash: chUNg5uPEOUI/4y/JkNyLjCI88SKibEBtbB6b3Giy1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 20:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2247 (0x8c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8C4, serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Validity Not Before: Aug 20 20:32:40 2025 GMT Not After : Aug 27 20:32:40 2025 GMT Subject: CN=68a630e8-809b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ca:39:de:a8:5d:15:fe:90:cf:26:05:86:ec: 7d:8d:2d:72:b7:a7:03:85:0e:c3:a2:3c:7d:01:2f: e0:ba:00:18:32:24:75:0e:00:43:26:bf:60:df:c6: 40:0f:27:d1:82:f2:19:cc:a9:57:a5:1d:34:ab:7e: 81:56:ea:75:e5:c5:a3:a3:ce:9c:3f:3f:c3:c7:20: da:2f:4f:f6:98:2c:c8:8a:68:eb:66:06:9b:bc:9c: 81:5c:de:8d:2e:e1:cd:aa:53:08:90:bb:df:4a:58: 76:82:44:c7:b7:09:5e:ee:02:10:17:ad:52:fb:21: 38:13:91:95:b4:c5:32:41:1f:f3:ea:d6:87:5c:7b: e8:65:4a:f2:27:f5:39:61:a9:4a:aa:8f:65:d5:00: e9:bb:c7:8a:9f:5a:0d:ed:dd:14:ea:85:7d:64:ef: 0b:1a:ce:71:bd:1c:04:38:4e:7e:9a:9d:c9:60:5f: 6d:34:d8:1a:c6:7a:f6:6e:66:66:11:bf:df:e4:bc: 62:58:d1:2d:c5:67:cf:26:fd:4e:fc:23:46:77:2f: 28:99:fc:68:6c:e7:92:8b:02:34:62:1b:09:5c:67: 2a:d8:06:7a:45:19:b9:91:67:9d:da:21:ea:da:42: e4:fb:25:33:47:20:83:51:47:3a:a0:34:8a:be:3d: 53:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:26:E5:C2:AE:F2:31:C2:7E:42:64:DF:8A:E8:5A:4B:F3:76:EB:FC X509v3 Authority Key Identifier: keyid:93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:9c:f6:db:73:7b:9a:8f:b0:be:97:9e:02:11:96:76:5a:7b: 49:1b:37:1a:e9:2b:e7:34:61:dd:22:41:49:5a:9b:d2:49:2f: ad:e8:5a:c2:a4:ba:b4:7a:ad:16:6c:fa:93:46:d9:96:e7:fb: 7a:15:de:76:ed:68:74:68:31:b4:76:16:ba:17:6b:22:bb:ea: 1a:6d:98:ed:25:9f:f3:2f:28:3d:48:40:8b:84:02:38:a8:c6: 76:5d:63:6a:01:00:1c:5d:d5:79:3d:e4:80:8c:31:09:8e:75: 68:3c:54:fc:eb:d0:c8:ec:1f:58:4e:23:9a:8d:c6:82:7a:5b: a0:d6:89:0a:43:46:34:2e:d5:e2:33:76:c1:ca:a9:de:01:6b: e4:d9:c7:ba:8c:95:2f:01:02:5b:ef:71:68:7a:17:05:b7:8b: ff:21:fa:a7:a5:b1:83:9c:5c:71:4c:f5:fe:89:e3:b3:14:ae: a9:53:0d:b1:92:6e:4d:06:99:28:fd:32:09:cd:ce:ae:9b:c0: 64:2a:93:29:be:0e:d8:56:0e:78:df:89:30:f4:f1:79:92:95: 04:c2:25:89:c1:42:56:7f:1f:25:18:fe:4b:42:4a:42:ac:5c: c5:af:b6:03:de:0c:d3:38:f4:cc:e8:7a:e1:15:60:a8:d9:91: f4:a4:ec:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4QzQxMTAvBgNVBAUTKDkzN0Q5OTUxRUUxRjkzRkNBQzI0MzMzQjA4M0Y5RDdG MkUzOUYwRjkwHhcNMjUwODIwMjAzMjQwWhcNMjUwODI3MjAzMjQwWjAYMRYwFAYD VQQDEw02OGE2MzBlOC04MDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMo53qhdFf6QzyYFhux9jS1yt6cDhQ7Dojx9AS/gugAYMiR1DgBDJr9g38ZA DyfRgvIZzKlXpR00q36BVup15cWjo86cPz/DxyDaL0/2mCzIimjrZgabvJyBXN6N LuHNqlMIkLvfSlh2gkTHtwle7gIQF61S+yE4E5GVtMUyQR/z6taHXHvoZUryJ/U5 YalKqo9l1QDpu8eKn1oN7d0U6oV9ZO8LGs5xvRwEOE5+mp3JYF9tNNgaxnr2bmZm Eb/f5LxiWNEtxWfPJv1O/CNGdy8omfxobOeSiwI0YhsJXGcq2AZ6RRm5kWed2iHq 2kLk+yUzRyCDUUc6oDSKvj1TjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMm5cKu 8jHCfkJk34roWkvzduv8MB8GA1UdIwQYMBaAFJN9mVHuH5P8rCQzOwg/nX8uOfD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhDNC9DMjQ0QzgzQUJE MTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0ZmtfeXNKRE03Q0QtZGZ5NDU4 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szMlpVZTRma195c0pETTdDRC1kZnk0NThQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhDNC9DMjQ0QzgzQUJEMTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0Zmtf eXNKRE03Q0QtZGZ5NDU4UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+nPbbc3uaj7C+l54CEZZ2WntJGzca6SvnNGHdIkFJWpvSSS+t6FrC pLq0eq0WbPqTRtmW5/t6Fd527Wh0aDG0dha6F2siu+oabZjtJZ/zLyg9SECLhAI4 qMZ2XWNqAQAcXdV5PeSAjDEJjnVoPFT869DI7B9YTiOajcaCelug1okKQ0Y0LtXi M3bByqneAWvk2ce6jJUvAQJb73FoehcFt4v/IfqnpbGDnFxxTPX+ieOzFK6pUw2x km5NBpko/TIJzc6um8BkKpMpvg7YVg5434kw9PF5kpUEwiWJwUJWfx8lGP5LQkpC rFzFr7YD3gzTOPTM6HrhFWCo2ZH0pOz7 -----END CERTIFICATE-----Generated at Thu Aug 21 06:56:37 2025 by rpki-client