$ rpki-client -vvf rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft File: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft (raw, json) Hash identifier: j8EyE0C5ky6sPhEKr0tDiodx6fLEduoPTm2VWYI3l0E= Subject key identifier: E3:94:C5:C0:D5:34:42:D4:5E:E6:D0:82:A7:2F:E4:61:EE:F8:A2:88 Authority key identifier: F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A Certificate issuer: /CN=A91709F5/serialNumber=F12895792117E90703A0020F4F359831DB2F937A Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft Manifest number: 4F Signing time: Thu 03 Jul 2025 07:31:15 +0000 Manifest this update: Thu 03 Jul 2025 07:31:15 +0000 Manifest next update: Thu 10 Jul 2025 07:31:15 +0000 Files and hashes: 1: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl (hash: PmwfFMo2bL/yUJSrdBUEiPj4dp13qoPi0rZDmkd9PaU=) 2: A42925E8DFDA11EFB5E94125C4F9AE02.roa (hash: mx4Ct5Tnd5YkFq5qkT60Yq1dgh6KZfYC5nrKRxnyy28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709F5, serialNumber=F12895792117E90703A0020F4F359831DB2F937A Validity Not Before: Jul 3 07:31:15 2025 GMT Not After : Jul 10 07:31:15 2025 GMT Subject: CN=686631c3-c219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:10:9f:d6:60:ce:53:26:8a:a9:86:ba:f3:d1: e2:66:5f:ac:85:25:23:25:4f:7a:8d:e0:1f:ed:55: 0a:3c:1f:9b:1d:57:a7:75:c6:9a:41:40:36:58:d9: 30:97:6f:4a:94:c8:32:e6:3b:a0:6c:45:7a:b1:51: ef:13:fc:6c:81:a9:6a:68:23:11:33:ec:ef:60:84: 34:0f:88:0f:ce:9a:30:8f:81:a0:bb:54:04:f1:04: 4c:6e:e1:d7:e4:a4:43:5a:12:c6:b7:0f:c3:c7:c3: 5d:df:da:6b:f6:8f:ef:5d:c6:69:09:17:8a:75:ea: c4:77:14:bd:76:7e:4e:c7:f1:ae:9a:96:55:c5:ab: b2:32:20:f9:ca:0e:ec:35:d1:6a:70:59:b5:99:d9: 05:fd:34:d8:7e:f2:9f:db:47:f3:46:f5:fe:11:00: 18:3f:66:82:1e:14:4b:41:db:d2:73:ba:c4:9f:0c: d3:e0:e8:99:50:f5:08:81:91:19:72:01:25:aa:42: 5c:06:27:b9:b0:28:c2:c6:f4:0e:9b:24:45:ed:88: 34:34:52:c6:7b:f5:b0:ef:41:7c:89:9d:02:85:a4: 8b:33:fe:dd:ed:3b:a5:9b:b3:d1:d0:c5:ab:47:dc: 7b:97:db:1f:df:83:11:7f:94:54:ec:dc:e0:c3:0f: 80:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:94:C5:C0:D5:34:42:D4:5E:E6:D0:82:A7:2F:E4:61:EE:F8:A2:88 X509v3 Authority Key Identifier: keyid:F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:cc:48:d2:a7:94:25:ef:b7:0c:c9:6c:1e:3a:77:c8:67:84: f7:d5:23:a5:51:ac:4a:7f:66:8b:42:05:15:92:1c:cb:a1:6a: 79:2c:9d:2f:92:9b:fc:8f:80:b2:8f:70:af:69:54:93:de:84: bb:a4:3b:5b:66:61:b9:5f:fb:1b:7c:23:cf:90:b1:06:48:41: 57:1a:b4:a1:1a:fa:96:76:cb:0b:d9:21:ea:61:9e:ab:72:c8: e0:af:27:ed:d2:58:17:22:8d:f1:18:56:70:e0:d9:84:b6:66: 27:15:8d:c2:b1:41:19:e7:21:c0:70:35:b1:75:c2:48:f9:f0: 7b:3c:db:47:2b:8b:05:82:83:d5:96:a3:74:7a:cf:21:ee:78: 72:52:28:58:03:46:9e:d8:0f:11:01:3a:ee:e0:30:42:6f:a7: 31:18:53:5c:d4:58:d6:24:e2:6d:90:73:7f:06:03:94:5b:52: 52:0f:cf:0b:c6:00:db:1d:68:65:54:aa:f6:71:9a:61:38:45: 2b:ff:ec:d0:c3:f2:38:a2:00:20:79:56:9c:c0:68:47:8a:44: 01:13:b7:93:0d:af:b2:35:77:cb:58:f0:97:08:5b:86:88:a3: c7:a1:c2:7e:10:8e:fb:1a:33:97:82:43:8f:d2:74:07:53:68: e2:92:33:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDlGNTExMC8GA1UEBRMoRjEyODk1NzkyMTE3RTkwNzAzQTAwMjBGNEYzNTk4MzFE QjJGOTM3QTAeFw0yNTA3MDMwNzMxMTVaFw0yNTA3MTAwNzMxMTVaMBgxFjAUBgNV BAMTDTY4NjYzMWMzLWMyMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCEJ/WYM5TJoqphrrz0eJmX6yFJSMlT3qN4B/tVQo8H5sdV6d1xppBQDZY2TCX b0qUyDLmO6BsRXqxUe8T/GyBqWpoIxEz7O9ghDQPiA/OmjCPgaC7VATxBExu4dfk pENaEsa3D8PHw13f2mv2j+9dxmkJF4p16sR3FL12fk7H8a6allXFq7IyIPnKDuw1 0WpwWbWZ2QX9NNh+8p/bR/NG9f4RABg/ZoIeFEtB29JzusSfDNPg6JlQ9QiBkRly ASWqQlwGJ7mwKMLG9A6bJEXtiDQ0UsZ79bDvQXyJnQKFpIsz/t3tO6Wbs9HQxatH 3HuX2x/fgxF/lFTs3ODDD4C3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU45TFwNU0 QtRe5tCCpy/kYe74oogwHwYDVR0jBBgwFoAU8SiVeSEX6QcDoAIPTzWYMdsvk3ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOUY1LzMyODNFN0Q0REZE QTExRUY4QjQ3ODYyNEM0RjlBRTAyLzhTaVZlU0VYNlFjRG9BSVBUeldZTWRzdmsz by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOFNpVmVTRVg2UWNEb0FJUFR6V1lNZHN2azNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw OUY1LzMyODNFN0Q0REZEQTExRUY4QjQ3ODYyNEM0RjlBRTAyLzhTaVZlU0VYNlFj RG9BSVBUeldZTWRzdmszby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGTMSNKnlCXvtwzJbB46d8hnhPfVI6VRrEp/ZotCBRWSHMuhanksnS+S m/yPgLKPcK9pVJPehLukO1tmYblf+xt8I8+QsQZIQVcatKEa+pZ2ywvZIephnqty yOCvJ+3SWBcijfEYVnDg2YS2ZicVjcKxQRnnIcBwNbF1wkj58Hs820criwWCg9WW o3R6zyHueHJSKFgDRp7YDxEBOu7gMEJvpzEYU1zUWNYk4m2Qc38GA5RbUlIPzwvG ANsdaGVUqvZxmmE4RSv/7NDD8jiiACB5VpzAaEeKRAETt5MNr7I1d8tY8JcIW4aI o8ehwn4QjvsaM5eCQ4/SdAdTaOKSMwU= -----END CERTIFICATE-----Generated at Fri Jul 4 14:27:15 2025 by rpki-client