$ rpki-client -vvf rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft File: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft (raw, json) Hash identifier: 9Yuodl4o1rDTbtnnTR5LjeSVYN4jseYc5PGP0F3qLgA= Subject key identifier: 29:56:8C:5A:6E:50:EB:7A:53:A4:06:A1:8B:D3:86:88:48:E6:80:BF Authority key identifier: F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17 Certificate issuer: /CN=A91329C1/serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717 Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft Manifest number: 02A1 Signing time: Thu 03 Jul 2025 01:56:05 +0000 Manifest this update: Thu 03 Jul 2025 01:56:04 +0000 Manifest next update: Thu 10 Jul 2025 01:56:04 +0000 Files and hashes: 1: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl (hash: zgjmz4j9paipECZjbpCjL6kQMyWUToR5YEi9jwepDYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:56:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91329C1, serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717 Validity Not Before: Jul 3 01:56:04 2025 GMT Not After : Jul 10 01:56:04 2025 GMT Subject: CN=6865e334-508c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:b0:5a:4f:ad:61:c2:48:6b:36:fa:19:86: 0b:21:83:f9:e8:55:cf:d9:33:1f:09:2e:d4:7e:6d: 66:aa:d8:7b:f1:6a:93:6a:8c:3a:85:49:19:df:3a: 12:66:0d:75:48:61:01:b7:47:bc:c6:31:fa:a2:76: 21:25:22:81:85:d5:c8:54:23:c1:07:d2:49:23:ac: 34:7f:55:7f:ed:39:f7:16:28:5e:79:01:ba:d7:78: 2b:f1:dd:e9:48:28:67:d3:0b:56:7f:08:44:c8:ca: 27:a0:23:e3:77:1b:a7:fb:70:56:45:16:e5:8e:ea: d0:88:58:0d:fd:37:e8:e4:28:83:ba:e6:78:23:8e: 68:96:c3:03:b8:8b:43:a9:ce:fe:72:ac:28:27:15: 83:c5:d3:14:fa:1a:ee:d1:a8:f3:0f:70:8e:99:7d: e4:c0:53:a8:05:85:85:56:67:58:b2:bf:f5:1a:95: c7:7e:7e:30:ed:83:bf:f0:ea:fe:df:fe:df:c8:9f: dd:63:77:b7:4e:cf:f1:c7:46:eb:01:5a:c0:17:a9: be:49:58:06:73:2e:83:43:a2:e2:b1:01:cb:be:d9: f3:63:ac:d1:5d:29:af:65:81:87:1e:a8:49:2a:1f: 5b:56:a0:a8:d9:70:5c:20:78:d9:b6:78:22:05:21: 2b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:56:8C:5A:6E:50:EB:7A:53:A4:06:A1:8B:D3:86:88:48:E6:80:BF X509v3 Authority Key Identifier: keyid:F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:ea:b6:e6:4f:e0:f9:38:3a:27:28:6d:b3:14:68:68:ee:45: b1:52:b0:e4:fb:50:2a:8e:17:f0:5f:ce:e1:85:5c:db:14:62: 17:8c:b9:a7:91:bb:66:e2:0c:c4:19:a7:79:46:1c:d7:25:e4: b2:27:f8:0b:3a:8d:a3:48:b4:79:53:19:dc:be:df:f2:e9:46: a1:e4:e0:b6:25:ea:c7:98:6b:7b:ee:1d:c5:7d:27:8c:de:cb: 34:f2:8e:57:f4:8c:04:b9:42:de:8f:df:cd:c9:18:46:c8:70: dd:fb:c1:14:b5:8e:bf:97:b1:01:ff:5a:b7:58:3d:ad:a6:22: 28:82:70:be:03:6d:6e:39:2b:14:a5:d4:d2:1f:cf:dd:15:02: 8c:03:8c:67:fd:f1:08:31:21:2e:38:a0:8b:2a:ba:3d:ba:46: 48:4d:94:59:bf:04:c9:19:a6:81:1d:77:57:82:38:36:ca:4b: 0b:e3:b8:35:32:c7:9e:12:dc:54:c7:af:48:9b:8b:52:55:0f: 6a:02:59:f2:1c:94:b2:14:92:c6:c1:c1:d6:f4:1d:bd:af:42: e1:b7:e0:07:eb:58:8a:03:0c:57:4c:d2:f8:b7:c3:e0:f3:26: f9:78:37:ff:2d:5c:27:76:81:5d:07:af:c0:f6:db:fc:5a:a1: f0:df:9d:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI5QzExMTAvBgNVBAUTKEYyNTlCOEFDOUNGNDNCRDdDNTk0NTRFNUM4M0VDRjQ4 RjlGQjg3MTcwHhcNMjUwNzAzMDE1NjA0WhcNMjUwNzEwMDE1NjA0WjAYMRYwFAYD VQQDEw02ODY1ZTMzNC01MDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+GwWk+tYcJIazb6GYYLIYP56FXP2TMfCS7Ufm1mqth78WqTaow6hUkZ3zoS Zg11SGEBt0e8xjH6onYhJSKBhdXIVCPBB9JJI6w0f1V/7Tn3FiheeQG613gr8d3p SChn0wtWfwhEyMonoCPjdxun+3BWRRbljurQiFgN/Tfo5CiDuuZ4I45olsMDuItD qc7+cqwoJxWDxdMU+hru0ajzD3COmX3kwFOoBYWFVmdYsr/1GpXHfn4w7YO/8Or+ 3/7fyJ/dY3e3Ts/xx0brAVrAF6m+SVgGcy6DQ6LisQHLvtnzY6zRXSmvZYGHHqhJ Kh9bVqCo2XBcIHjZtngiBSErHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClWjFpu UOt6U6QGoYvThohI5oC/MB8GA1UdIwQYMBaAFPJZuKyc9DvXxZRU5cg+z0j5+4cX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjlDMS80NDIzNkYwNDA1 QkQxMUVEQTAwQTVGM0RDNEY5QUUwMi84bG00ckp6ME85ZkZsRlRseUQ3UFNQbjdo eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhsbTRySnowTzlmRmxGVGx5RDdQU1BuN2h4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjlDMS80NDIzNkYwNDA1QkQxMUVEQTAwQTVGM0RDNEY5QUUwMi84bG00ckp6ME85 ZkZsRlRseUQ3UFNQbjdoeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA76rbmT+D5ODonKG2zFGho7kWxUrDk+1AqjhfwX87hhVzbFGIXjLmn kbtm4gzEGad5RhzXJeSyJ/gLOo2jSLR5Uxncvt/y6Uah5OC2JerHmGt77h3FfSeM 3ss08o5X9IwEuULej9/NyRhGyHDd+8EUtY6/l7EB/1q3WD2tpiIognC+A21uOSsU pdTSH8/dFQKMA4xn/fEIMSEuOKCLKro9ukZITZRZvwTJGaaBHXdXgjg2yksL47g1 MseeEtxUx69Im4tSVQ9qAlnyHJSyFJLGwcHW9B29r0Lht+AH61iKAwxXTNL4t8Pg 8yb5eDf/LVwndoFdB6/A9tv8WqHw3533 -----END CERTIFICATE-----Generated at Thu Jul 3 06:00:48 2025 by rpki-client