$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: sXIh8F2+qBsb6wx6CEADjgiG2MPQMh7MMdhPr90Qgac= Subject key identifier: AB:FC:B1:F0:4B:DE:A8:F6:B6:38:18:C5:69:E3:25:D4:D0:6B:7C:90 Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 068D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 0687 Signing time: Thu 04 Sep 2025 22:37:54 +0000 Manifest this update: Thu 04 Sep 2025 22:37:54 +0000 Manifest next update: Thu 11 Sep 2025 22:37:54 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: E4TXsrTaDUiCQbrHa3UKULLRt/MdeQTW6F496pr3Q24=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: oKHV5TBmq4GqrFfr2VIYxjHb/BXfTV1fp7LSb6WOO9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1677 (0x68d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF, serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: Sep 4 22:37:54 2025 GMT Not After : Sep 11 22:37:54 2025 GMT Subject: CN=68ba14c2-516d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:68:f5:31:23:e7:e1:7a:4c:56:10:ee:be:c2: 69:df:96:26:91:aa:05:b3:2c:5d:85:5e:77:56:5d: 31:0c:90:3e:a1:8d:d8:3e:1e:2d:6e:a3:de:55:08: c9:f7:89:ff:27:0c:2e:43:20:ea:fd:3c:22:7b:bf: 82:a1:9f:67:94:ad:17:6c:e8:79:2d:35:82:75:b3: d3:c2:74:55:bc:03:90:bc:89:92:6d:9e:10:2b:a9: 57:6a:3e:d2:3a:c1:e6:2c:61:13:92:00:89:fb:00: a3:67:a9:23:90:74:24:d5:5c:04:7a:f6:9d:3e:62: fc:63:04:e4:2d:6c:66:35:a9:09:5e:a7:ef:83:17: b3:94:55:d5:23:52:26:a3:48:3e:15:e8:54:32:cd: 01:15:10:73:f1:60:8a:33:3e:36:ce:e3:0f:c4:f3: ab:70:fc:64:ec:01:7e:48:3c:64:79:34:a7:db:bb: a0:93:29:12:bd:91:be:4c:d9:4c:b2:23:0a:e5:aa: 27:2f:a5:a3:86:6a:1c:4c:94:ad:a5:41:c0:72:3f: a7:73:5c:7c:4b:01:23:21:71:73:73:73:9b:c4:6e: 87:40:a9:f8:da:fa:76:d5:bb:03:47:1b:ae:17:31: ed:88:93:14:2c:6b:f6:4d:c1:f8:ff:48:c9:1a:f8: de:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:FC:B1:F0:4B:DE:A8:F6:B6:38:18:C5:69:E3:25:D4:D0:6B:7C:90 X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ed:4c:cd:5b:d9:85:8d:ee:b5:8e:01:e6:c8:55:c5:6b:f2: 28:38:46:b3:fb:6f:90:b8:65:78:08:c9:40:72:35:4f:3d:dd: d7:e7:3b:c6:c5:c4:a5:ce:93:23:d2:ef:45:c1:10:72:25:d9: 2e:4c:62:b3:07:0b:9d:28:af:d1:4e:86:6f:e8:a2:4e:fd:8d: ec:e4:7a:fb:19:fd:6b:9b:25:50:f3:e8:69:fc:e6:03:bd:7a: bc:7f:88:e4:d1:55:3f:60:0a:29:0b:5c:0e:6b:5e:ca:11:dc: 28:7f:ff:83:6d:32:0e:db:af:3a:ee:d7:d9:94:3e:2c:cd:ef: 83:84:aa:5e:79:5d:bd:85:62:af:a4:c5:21:3e:1f:d4:4f:83: 3f:3c:cb:97:22:0e:6f:86:1a:87:91:48:b9:25:42:cb:f2:a7: 11:08:59:eb:57:37:6e:56:3a:d1:4b:c6:ff:8f:b1:68:67:12: 7b:9a:0f:ed:52:71:ad:01:f1:5a:0a:a8:a1:d3:31:ae:b4:69: b0:33:6f:9d:ae:96:b6:d6:6e:67:3b:f4:e0:c4:ff:e6:4a:65: 3a:21:1e:c0:54:1c:6c:42:6f:5f:63:91:c4:43:10:8c:75:e2: e2:eb:0e:20:a2:01:8f:f8:cd:c2:dd:a0:cf:27:bb:ea:c1:88: 9b:88:73:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjUwOTA0MjIzNzU0WhcNMjUwOTExMjIzNzU0WjAYMRYwFAYD VQQDEw02OGJhMTRjMi01MTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2j1MSPn4XpMVhDuvsJp35YmkaoFsyxdhV53Vl0xDJA+oY3YPh4tbqPeVQjJ 94n/JwwuQyDq/Twie7+CoZ9nlK0XbOh5LTWCdbPTwnRVvAOQvImSbZ4QK6lXaj7S OsHmLGETkgCJ+wCjZ6kjkHQk1VwEevadPmL8YwTkLWxmNakJXqfvgxezlFXVI1Im o0g+FehUMs0BFRBz8WCKMz42zuMPxPOrcPxk7AF+SDxkeTSn27ugkykSvZG+TNlM siMK5aonL6WjhmocTJStpUHAcj+nc1x8SwEjIXFzc3ObxG6HQKn42vp21bsDRxuu FzHtiJMULGv2TcH4/0jJGvjeTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKv8sfBL 3qj2tjgYxWnjJdTQa3yQMB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB77UzNW9mFje61jgHmyFXFa/IoOEaz+2+QuGV4CMlAcjVPPd3X5zvG xcSlzpMj0u9FwRByJdkuTGKzBwudKK/RToZv6KJO/Y3s5Hr7Gf1rmyVQ8+hp/OYD vXq8f4jk0VU/YAopC1wOa17KEdwof/+DbTIO26867tfZlD4sze+DhKpeeV29hWKv pMUhPh/UT4M/PMuXIg5vhhqHkUi5JULL8qcRCFnrVzduVjrRS8b/j7FoZxJ7mg/t UnGtAfFaCqih0zGutGmwM2+drpa21m5nO/TgxP/mSmU6IR7AVBxsQm9fY5HEQxCM deLi6w4gogGP+M3C3aDPJ7vqwYibiHNM -----END CERTIFICATE-----Generated at Sat Sep 6 13:25:49 2025 by rpki-client