$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: +eQINKI4YQy3H8voh3Go1EUSibKHZGpzlf2crz5iHM4= Subject key identifier: 85:79:A6:69:EC:DA:CA:96:5E:62:97:A0:AD:F7:B3:A9:07:8A:DE:1A Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0C8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0C7C Signing time: Sun 24 Aug 2025 18:18:52 +0000 Manifest this update: Sun 24 Aug 2025 18:18:52 +0000 Manifest next update: Sun 31 Aug 2025 18:18:52 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: D1XOZjWqF5dXBtfTVhaDt0W0tSWRQLosIo3LNWhU7oI=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: hMRVZDPhI9uQhHlcLsQL6+B9hhuCOLqR+jjUlDn3sAQ=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: s3U0q40HWyXJCTwtjWa8KKHr421/tnOx6JMPLRqROA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3215 (0xc8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Aug 24 18:18:52 2025 GMT Not After : Aug 31 18:18:52 2025 GMT Subject: CN=68ab578c-7aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:28:e7:94:60:c5:6c:1d:5b:d9:d0:33:48:7f: d2:af:04:7b:e1:2f:bf:0f:4f:ed:cc:98:89:27:d7: 4a:22:26:56:80:14:26:9a:6b:6f:e3:7d:fe:3e:2e: 59:37:1c:de:f2:55:5b:bc:bc:0d:ba:62:e8:ec:d7: f5:18:b6:a9:54:75:90:bf:de:eb:61:a0:0e:23:42: fc:b9:67:65:80:a4:95:cc:7c:92:3b:23:9c:42:14: 1d:ff:e9:71:6b:69:04:38:43:3d:11:00:32:b8:2e: d8:32:e2:3d:37:44:4e:cd:1f:b2:e2:e5:a4:fb:28: d7:71:a5:84:2a:98:2c:94:9c:13:1b:c8:fa:06:b3: 90:35:8f:33:1d:7e:fc:4c:e0:2d:91:a8:74:6a:23: 5c:7c:c2:7e:06:66:dc:05:43:64:7d:c9:e6:bf:dc: 9b:f6:c1:ae:3d:c1:6d:97:4b:bd:37:7c:7c:69:5c: 4b:0a:ba:ff:24:bf:6e:7e:c5:5b:a8:a4:03:3d:8d: a4:2c:4d:11:79:69:6c:40:b8:98:de:df:c0:f9:66: bb:4d:3d:b3:e3:11:7a:01:ad:33:23:ac:6d:f8:36: 02:cb:0e:b6:02:63:06:f3:b4:f6:e6:a0:ed:05:6e: 85:3b:84:0d:96:5f:db:96:bf:5b:b3:47:60:88:4c: 51:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:79:A6:69:EC:DA:CA:96:5E:62:97:A0:AD:F7:B3:A9:07:8A:DE:1A X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:e8:08:f1:b1:61:e9:05:12:e6:ec:34:0c:d5:53:ed:0f:d9: ff:f6:a4:81:ce:10:f4:81:7c:ca:78:a2:79:c3:84:a7:7b:17: cc:99:1c:cf:7a:0a:7a:3a:85:36:50:1f:34:2d:43:1e:26:83: 16:cc:fe:2e:73:1e:be:1d:6a:73:59:2b:92:c8:56:df:f7:64: 80:4a:3a:6f:91:a8:ea:3d:5c:7e:04:33:56:1b:d7:25:9a:29: 97:6a:ef:05:ff:fe:89:5e:f9:ec:35:55:64:82:17:80:4c:1b: 86:fc:c8:84:ca:74:a8:ba:6a:1f:1e:6d:8d:91:5a:31:2f:df: d8:1b:04:a1:30:1a:f9:f3:94:12:22:44:f3:5c:19:ef:1a:71: d4:e3:20:5d:33:20:73:04:f9:0a:43:8b:65:ad:f3:21:4d:bf: d6:d8:d7:76:e6:19:de:cd:ed:82:c5:35:48:4d:8c:93:42:74: 49:c7:8e:c6:a8:39:13:d9:25:70:d4:ad:6c:90:0b:98:90:8f: 59:8d:04:56:bd:8c:94:bb:97:4f:87:6f:93:c3:88:66:e7:7a: 45:1c:e1:20:84:73:d7:72:3d:ac:2a:5a:31:b7:cb:01:4d:c1: a8:86:6d:39:5f:8e:bd:e2:cb:a1:1d:f1:83:89:c6:60:88:d6: 26:e9:8c:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjUwODI0MTgxODUyWhcNMjUwODMxMTgxODUyWjAYMRYwFAYD VQQDEw02OGFiNTc4Yy03YWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CjnlGDFbB1b2dAzSH/SrwR74S+/D0/tzJiJJ9dKIiZWgBQmmmtv433+Pi5Z Nxze8lVbvLwNumLo7Nf1GLapVHWQv97rYaAOI0L8uWdlgKSVzHySOyOcQhQd/+lx a2kEOEM9EQAyuC7YMuI9N0ROzR+y4uWk+yjXcaWEKpgslJwTG8j6BrOQNY8zHX78 TOAtkah0aiNcfMJ+BmbcBUNkfcnmv9yb9sGuPcFtl0u9N3x8aVxLCrr/JL9ufsVb qKQDPY2kLE0ReWlsQLiY3t/A+Wa7TT2z4xF6Aa0zI6xt+DYCyw62AmMG87T25qDt BW6FO4QNll/blr9bs0dgiExRAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIV5pmns 2sqWXmKXoK33s6kHit4aMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD6AjxsWHpBRLm7DQM1VPtD9n/9qSBzhD0gXzKeKJ5w4SnexfMmRzP egp6OoU2UB80LUMeJoMWzP4ucx6+HWpzWSuSyFbf92SASjpvkajqPVx+BDNWG9cl mimXau8F//6JXvnsNVVkgheATBuG/MiEynSoumofHm2NkVoxL9/YGwShMBr585QS IkTzXBnvGnHU4yBdMyBzBPkKQ4tlrfMhTb/W2Nd25hneze2CxTVITYyTQnRJx47G qDkT2SVw1K1skAuYkI9ZjQRWvYyUu5dPh2+Tw4hm53pFHOEghHPXcj2sKloxt8sB TcGohm05X4694suhHfGDicZgiNYm6YyZ -----END CERTIFICATE-----Generated at Sun Aug 24 22:09:21 2025 by rpki-client