$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: lFcIiBaZrrBEwE/Evq1UB94/pzYUkdNnPcjLPkUBgmU= Subject key identifier: B9:98:03:82:5E:05:63:85:F1:A9:5A:49:28:B0:23:71:7F:B0:A4:77 Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 0351 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 034C Signing time: Sat 05 Jul 2025 01:32:56 +0000 Manifest this update: Sat 05 Jul 2025 01:32:55 +0000 Manifest next update: Sat 12 Jul 2025 01:32:55 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: c77ZvmgRV5W79Citg8TfW64ZlLSXVHwyZZwdKHj5pI8=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: 3Kdq8iB7GHkmorOzNCkj5Eih8OtxQjBmOJhG+WoD4A8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Jul 5 01:32:55 2025 GMT Not After : Jul 12 01:32:55 2025 GMT Subject: CN=686880c7-d8fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:13:54:cd:d8:46:38:67:31:82:50:9b:d4:c0: 23:99:fa:ec:c1:47:14:8c:73:4c:80:81:d0:6f:7b: ce:4d:1c:90:b2:e4:8b:50:d2:cc:17:9d:b7:f2:30: b7:52:95:71:5d:fa:d2:12:fa:4e:c9:82:ea:8b:3f: 67:be:db:00:f9:be:80:73:5c:b7:ec:d3:42:90:ac: ba:75:48:20:0e:ab:cb:4c:38:16:6a:d6:91:17:c8: a9:d3:24:88:c8:fb:1a:ea:e8:c7:04:cc:10:c8:df: eb:b3:5e:5a:84:16:58:5f:b9:94:38:db:b2:25:9a: a8:2b:d0:78:11:9e:5d:08:4d:e8:03:95:ad:cf:69: ef:92:85:49:67:00:15:52:53:af:30:15:0a:ae:b8: ed:0c:c5:5c:3d:d1:3f:ca:ff:0f:48:12:7b:ac:24: 50:92:ee:f5:67:94:78:a7:59:e9:5f:74:15:09:ee: 47:1b:a0:52:7d:59:98:6e:30:08:95:00:5d:0d:e4: 6b:2c:cb:38:cc:36:6e:89:7b:30:31:f0:3f:fc:b5: 57:a9:e9:e9:ff:ab:23:98:dd:d5:f0:6c:f0:a4:a1: d1:a8:cb:d1:9b:bc:d7:ba:c7:d0:a9:f4:15:73:7e: 37:ac:41:32:e2:51:fc:cd:2c:fd:4b:5f:ef:29:7f: 54:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:98:03:82:5E:05:63:85:F1:A9:5A:49:28:B0:23:71:7F:B0:A4:77 X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:a4:95:a5:2c:a6:85:b7:2a:b5:bc:78:0e:42:84:6b:b7:5d: 6f:09:66:f9:3c:1f:32:2f:ec:9c:69:bb:d7:aa:4d:f7:f0:d6: e1:8a:97:5e:e4:ab:e5:53:83:fc:48:e7:af:6e:49:99:bc:ba: 78:2e:e4:6b:61:dd:1d:16:2b:34:6f:e2:69:88:63:92:cf:61: 54:fb:35:91:5d:af:a7:a1:d5:52:75:fa:19:99:cf:05:33:53: 9c:fc:5f:73:c1:02:5f:1f:c4:cc:c0:41:32:80:90:66:42:92: af:8e:ae:9d:0a:c9:df:a5:2e:96:ab:b8:87:db:11:56:3e:3e: c0:1e:a6:c3:45:c2:6d:fd:f6:0d:92:a3:23:8f:6b:5d:7e:ad: 27:ec:75:46:ac:80:56:00:e1:79:18:8e:3a:bb:4e:d4:ed:16: 6c:53:b9:1b:36:41:e9:98:38:a2:33:3b:1e:df:00:e0:33:be: ab:94:48:9e:08:1a:fe:c3:60:04:00:b3:24:0d:02:6e:64:b9: d1:7e:c5:87:b2:a1:9f:b2:7c:d0:76:69:9f:fb:b8:a2:47:71: 98:a8:2f:da:41:2f:88:75:43:fc:d3:1d:20:19:54:d2:13:0d: 69:be:90:9b:5c:c4:45:91:8d:6d:05:9f:a2:cf:78:81:5b:c6: b7:a3:93:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjUwNzA1MDEzMjU1WhcNMjUwNzEyMDEzMjU1WjAYMRYwFAYD VQQDEw02ODY4ODBjNy1kOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxNUzdhGOGcxglCb1MAjmfrswUcUjHNMgIHQb3vOTRyQsuSLUNLMF5238jC3 UpVxXfrSEvpOyYLqiz9nvtsA+b6Ac1y37NNCkKy6dUggDqvLTDgWataRF8ip0ySI yPsa6ujHBMwQyN/rs15ahBZYX7mUONuyJZqoK9B4EZ5dCE3oA5Wtz2nvkoVJZwAV UlOvMBUKrrjtDMVcPdE/yv8PSBJ7rCRQku71Z5R4p1npX3QVCe5HG6BSfVmYbjAI lQBdDeRrLMs4zDZuiXswMfA//LVXqenp/6sjmN3V8GzwpKHRqMvRm7zXusfQqfQV c343rEEy4lH8zSz9S1/vKX9UHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmYA4Je BWOF8alaSSiwI3F/sKR3MB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrpJWlLKaFtyq1vHgOQoRrt11vCWb5PB8yL+ycabvXqk338Nbhipde 5KvlU4P8SOevbkmZvLp4LuRrYd0dFis0b+JpiGOSz2FU+zWRXa+nodVSdfoZmc8F M1Oc/F9zwQJfH8TMwEEygJBmQpKvjq6dCsnfpS6Wq7iH2xFWPj7AHqbDRcJt/fYN kqMjj2tdfq0n7HVGrIBWAOF5GI46u07U7RZsU7kbNkHpmDiiMzse3wDgM76rlEie CBr+w2AEALMkDQJuZLnRfsWHsqGfsnzQdmmf+7iiR3GYqC/aQS+IdUP80x0gGVTS Ew1pvpCbXMRFkY1tBZ+iz3iBW8a3o5NS -----END CERTIFICATE-----Generated at Sun Jul 6 00:05:35 2025 by rpki-client