$ rpki-client -vvf rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft File: j8P43lI68p2yShWQ_UCgRHWuCiU.mft (raw, json) Hash identifier: z8zPM1gey7Rn6jRQVR3/T8eCXuRBuZHlbNKfVpKBi5g= Subject key identifier: F6:B1:63:55:E2:DB:D9:55:54:C3:CC:BF:C9:C3:DB:95:58:B2:43:A6 Authority key identifier: 8F:C3:F8:DE:52:3A:F2:9D:B2:4A:15:90:FD:40:A0:44:75:AE:0A:25 Certificate issuer: /CN=A911AB93/serialNumber=8FC3F8DE523AF29DB24A1590FD40A04475AE0A25 Certificate serial: 1E58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft Manifest number: 1F5B Signing time: Fri 04 Jul 2025 16:18:15 +0000 Manifest this update: Fri 04 Jul 2025 16:18:14 +0000 Manifest next update: Fri 11 Jul 2025 16:18:14 +0000 Files and hashes: 1: j8P43lI68p2yShWQ_UCgRHWuCiU.crl (hash: SlOO5XFSOM2djUWDqpv9/tq7HFMkMh9hEmgI4E62tz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.crl rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7768 (0x1e58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AB93, serialNumber=8FC3F8DE523AF29DB24A1590FD40A04475AE0A25 Validity Not Before: Jul 4 16:18:14 2025 GMT Not After : Jul 11 16:18:14 2025 GMT Subject: CN=6867fec6-3682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:47:ad:3e:69:0c:92:99:c0:68:62:d9:4d:cc: c4:ab:f7:55:83:c5:45:45:06:73:bc:c3:52:e8:f4: 61:77:10:24:af:61:c4:5f:44:56:c3:c2:f7:ea:ed: 3e:17:f4:44:f1:e7:db:9c:81:79:30:b3:82:a3:cc: 89:c3:dd:56:c3:c0:0d:17:d4:67:2f:e9:e5:b5:6e: a9:80:3c:3b:61:29:3b:9b:f6:a4:29:29:c7:af:95: aa:f5:45:f3:95:09:44:61:8b:13:d5:26:dc:49:14: 0c:10:55:4d:39:3c:64:bd:ed:82:61:24:a4:0a:43: 1a:61:c3:ae:6b:da:72:3d:62:d0:7b:f5:f8:df:87: 5b:89:19:41:d2:b5:fd:d4:e5:e6:1d:0a:a9:40:5e: 93:82:dc:be:b0:ae:ca:e4:84:88:2c:f8:ae:a6:d3: 64:77:97:87:7a:54:7d:d9:fa:7c:74:fc:d5:0f:09: 12:22:e8:2a:02:49:2a:8b:f7:6b:99:1d:b1:95:84: fc:a7:f1:bc:5b:54:e2:91:41:71:f4:88:66:96:89: 72:da:c7:13:37:b9:73:19:9f:96:26:cf:65:86:0e: 0d:17:9a:1a:55:7e:28:c8:27:db:3a:7d:4a:b8:27: 76:66:27:ea:29:ec:ea:2a:92:51:07:a4:b7:86:c2: d3:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B1:63:55:E2:DB:D9:55:54:C3:CC:BF:C9:C3:DB:95:58:B2:43:A6 X509v3 Authority Key Identifier: keyid:8F:C3:F8:DE:52:3A:F2:9D:B2:4A:15:90:FD:40:A0:44:75:AE:0A:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8P43lI68p2yShWQ_UCgRHWuCiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AB93/8D303946818B11E6BF1CB657C4F9AE02/j8P43lI68p2yShWQ_UCgRHWuCiU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c4:73:ba:2e:a5:2b:6b:13:ce:1d:eb:6d:d5:d9:09:9d:02: a6:6e:50:a0:1c:fe:6b:0a:08:1f:af:eb:97:31:b0:bd:8b:a8: 64:d1:f4:13:95:ed:64:ab:28:a1:41:3c:4c:56:b6:db:e9:74: 6d:94:aa:5f:69:ff:4d:9e:bb:6c:64:67:9c:4d:88:12:0b:f2: 06:f9:52:5d:8e:5d:2a:5a:e0:79:64:fd:7a:0e:0d:17:86:fb: b4:29:90:8c:27:a7:41:11:7f:20:ef:57:2c:b0:1b:82:13:1b: 9b:f1:38:e3:15:c9:13:43:62:e1:9a:f1:75:ff:81:b3:25:c6: cc:06:d0:d0:e5:08:2e:d8:7a:e9:bf:eb:5f:00:6b:98:9f:2a: 7d:a0:52:a7:3f:fe:86:7c:aa:9b:ca:57:0f:20:97:6c:62:74: be:2a:7a:df:66:0d:39:bb:a5:90:66:ef:07:48:8c:bb:a7:24: 96:f8:a9:8f:19:38:0b:e4:59:00:27:57:2d:bf:98:f6:03:c3: 92:97:3a:50:0a:10:cc:df:74:8b:9e:08:e5:9e:93:f9:29:29: 4a:a9:1f:4d:22:bf:e3:90:02:8c:92:dc:a2:7b:8c:45:1c:1b: c3:9f:2f:e5:90:0f:91:6b:22:ba:c2:45:33:ee:9c:c2:e6:5d: 43:08:63:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCOTMxMTAvBgNVBAUTKDhGQzNGOERFNTIzQUYyOURCMjRBMTU5MEZENDBBMDQ0 NzVBRTBBMjUwHhcNMjUwNzA0MTYxODE0WhcNMjUwNzExMTYxODE0WjAYMRYwFAYD VQQDEw02ODY3ZmVjNi0zNjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEetPmkMkpnAaGLZTczEq/dVg8VFRQZzvMNS6PRhdxAkr2HEX0RWw8L36u0+ F/RE8efbnIF5MLOCo8yJw91Ww8ANF9RnL+nltW6pgDw7YSk7m/akKSnHr5Wq9UXz lQlEYYsT1SbcSRQMEFVNOTxkve2CYSSkCkMaYcOua9pyPWLQe/X434dbiRlB0rX9 1OXmHQqpQF6Tgty+sK7K5ISILPiuptNkd5eHelR92fp8dPzVDwkSIugqAkkqi/dr mR2xlYT8p/G8W1TikUFx9Ihmloly2scTN7lzGZ+WJs9lhg4NF5oaVX4oyCfbOn1K uCd2ZifqKezqKpJRB6S3hsLTUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaxY1Xi 29lVVMPMv8nD25VYskOmMB8GA1UdIwQYMBaAFI/D+N5SOvKdskoVkP1AoER1rgol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUI5My84RDMwMzk0Njgx OEIxMUU2QkYxQ0I2NTdDNEY5QUUwMi9qOFA0M2xJNjhwMnlTaFdRX1VDZ1JIV3VD aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4UDQzbEk2OHAyeVNoV1FfVUNnUkhXdUNpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUI5My84RDMwMzk0NjgxOEIxMUU2QkYxQ0I2NTdDNEY5QUUwMi9qOFA0M2xJNjhw MnlTaFdRX1VDZ1JIV3VDaVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaxHO6LqUraxPOHett1dkJnQKmblCgHP5rCggfr+uXMbC9i6hk0fQT le1kqyihQTxMVrbb6XRtlKpfaf9NnrtsZGecTYgSC/IG+VJdjl0qWuB5ZP16Dg0X hvu0KZCMJ6dBEX8g71cssBuCExub8TjjFckTQ2LhmvF1/4GzJcbMBtDQ5Qgu2Hrp v+tfAGuYnyp9oFKnP/6GfKqbylcPIJdsYnS+KnrfZg05u6WQZu8HSIy7pySW+KmP GTgL5FkAJ1ctv5j2A8OSlzpQChDM33SLngjlnpP5KSlKqR9NIr/jkAKMktyie4xF HBvDny/lkA+RayK6wkUz7pzC5l1DCGPV -----END CERTIFICATE-----Generated at Fri Jul 4 22:02:56 2025 by rpki-client