$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft File: I8MbHNaMzE0c6105mlAbYFD9HUY.mft (raw, json) Hash identifier: e8ziTII3gVtQlXJeg2bruMYOn8Yzrj4B0br/3nOrQOI= Subject key identifier: EE:0E:53:DA:F4:F9:B6:C0:F2:84:FF:7F:AF:71:F8:68:C4:FB:56:AB Authority key identifier: 23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 Certificate issuer: /CN=A91A0FC0/serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Certificate serial: 03C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft Manifest number: 0492 Signing time: Thu 03 Jul 2025 01:01:30 +0000 Manifest this update: Thu 03 Jul 2025 01:01:30 +0000 Manifest next update: Thu 10 Jul 2025 01:01:30 +0000 Files and hashes: 1: I8MbHNaMzE0c6105mlAbYFD9HUY.crl (hash: mi7c9JPD6w+IBMFMRWf1waDo1VcN+09DBDx5naFKBMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0FC0, serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Validity Not Before: Jul 3 01:01:30 2025 GMT Not After : Jul 10 01:01:30 2025 GMT Subject: CN=6865d66a-e32a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:16:f2:02:c8:50:37:a5:be:cd:77:e6:df:de: f4:76:ae:9e:25:12:f6:cf:bb:99:7d:7e:d6:84:cb: 32:0a:d0:87:87:1b:50:8e:7b:3b:4c:f1:00:6b:5a: 60:2f:13:78:80:cc:61:f8:2e:eb:fa:29:c1:d3:38: 94:79:e9:4a:49:98:2e:54:a1:a2:66:18:8b:da:32: c7:6f:68:83:9d:96:6a:d1:b8:22:a8:f8:f4:47:12: c2:0d:f7:d1:41:59:34:5b:72:bf:7f:02:41:ef:c7: b5:30:b0:5c:98:7a:6e:f3:70:2e:8b:93:b1:6e:11: f1:de:dd:f2:b0:21:40:9b:db:2d:47:6b:84:1d:57: 1a:cf:57:98:84:02:00:21:82:9c:24:ae:ac:82:0e: 72:4e:8d:fb:4c:99:7d:01:24:80:5c:f1:d1:06:a9: e7:23:ea:a0:63:28:63:e1:59:07:15:33:dd:93:5a: 15:79:b6:4f:2a:08:d0:27:ca:70:13:63:03:3a:00: 0b:88:ee:1e:bb:da:c7:78:8f:34:b9:de:99:a9:da: 12:0b:b6:26:1e:6b:ad:a6:75:20:54:b5:93:12:61: 2c:bd:7b:14:a2:f5:49:ea:ea:86:80:6d:fb:08:c0: 99:8c:38:8a:88:12:63:9b:78:5e:5c:ba:f4:93:dd: 93:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:0E:53:DA:F4:F9:B6:C0:F2:84:FF:7F:AF:71:F8:68:C4:FB:56:AB X509v3 Authority Key Identifier: keyid:23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:a1:1d:f1:26:33:5c:ca:21:9b:0f:36:e8:e1:c8:1b:f9:be: 0a:8a:03:46:46:dd:ed:19:d5:cb:68:21:c3:5a:af:80:f2:3d: a7:3b:c1:6a:94:ce:53:17:fd:b0:71:66:dc:70:67:06:a8:80: 98:09:bf:4c:fe:7f:53:fc:73:e1:e5:79:54:b9:38:67:88:ee: 02:59:10:94:08:bf:a0:3a:e6:98:33:ba:25:58:de:26:a7:7d: 22:4b:91:e1:13:34:c2:d4:22:df:17:1c:e6:9e:ab:ec:90:07: da:a7:c9:48:d3:dc:0f:fd:bb:17:68:76:47:6a:34:eb:88:55: b6:b0:0b:52:b0:e9:6f:93:a5:74:89:20:48:dc:2b:0e:7d:ea: 24:8f:6e:47:a2:1f:6f:06:47:56:2e:44:8b:7d:59:c2:08:9a: 35:99:1d:a0:f5:70:5c:2b:4c:c0:81:dd:94:f4:96:1d:be:41: 53:89:6d:b3:a9:52:53:b4:0a:2f:40:7d:25:26:e6:d0:16:46: 08:84:85:7e:1c:18:8e:a9:55:c6:14:3b:66:67:1f:6b:b2:69: 60:bf:23:a3:7f:ea:02:14:d5:b2:c3:89:e7:a4:f6:27:64:94: 10:42:82:4b:ba:df:8f:78:fa:32:28:a3:98:7f:a9:9a:5d:0b: 4c:84:0d:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBGQzAxMTAvBgNVBAUTKDIzQzMxQjFDRDY4Q0NDNEQxQ0VCNUQzOTlBNTAxQjYw NTBGRDFENDYwHhcNMjUwNzAzMDEwMTMwWhcNMjUwNzEwMDEwMTMwWjAYMRYwFAYD VQQDEw02ODY1ZDY2YS1lMzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9RbyAshQN6W+zXfm3970dq6eJRL2z7uZfX7WhMsyCtCHhxtQjns7TPEAa1pg LxN4gMxh+C7r+inB0ziUeelKSZguVKGiZhiL2jLHb2iDnZZq0bgiqPj0RxLCDffR QVk0W3K/fwJB78e1MLBcmHpu83Aui5OxbhHx3t3ysCFAm9stR2uEHVcaz1eYhAIA IYKcJK6sgg5yTo37TJl9ASSAXPHRBqnnI+qgYyhj4VkHFTPdk1oVebZPKgjQJ8pw E2MDOgALiO4eu9rHeI80ud6ZqdoSC7YmHmutpnUgVLWTEmEsvXsUovVJ6uqGgG37 CMCZjDiKiBJjm3heXLr0k92TEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4OU9r0 +bbA8oT/f69x+GjE+1arMB8GA1UdIwQYMBaAFCPDGxzWjMxNHOtdOZpQG2BQ/R1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEZDMC9DREUwOTg3Njk1 NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpFMGM2MTA1bWxBYllGRDlI VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4TWJITmFNekUwYzYxMDVtbEFiWUZEOUhVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpF MGM2MTA1bWxBYllGRDlIVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeoR3xJjNcyiGbDzbo4cgb+b4KigNGRt3tGdXLaCHDWq+A8j2nO8Fq lM5TF/2wcWbccGcGqICYCb9M/n9T/HPh5XlUuThniO4CWRCUCL+gOuaYM7olWN4m p30iS5HhEzTC1CLfFxzmnqvskAfap8lI09wP/bsXaHZHajTriFW2sAtSsOlvk6V0 iSBI3CsOfeokj25Hoh9vBkdWLkSLfVnCCJo1mR2g9XBcK0zAgd2U9JYdvkFTiW2z qVJTtAovQH0lJubQFkYIhIV+HBiOqVXGFDtmZx9rsmlgvyOjf+oCFNWyw4nnpPYn ZJQQQoJLut+PePoyKKOYf6maXQtMhA07 -----END CERTIFICATE-----Generated at Thu Jul 3 03:50:14 2025 by rpki-client