$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft File: 38UozwAG40FK-3_obR_er2SLXJ0.mft (raw, json) Hash identifier: 6ZtuL8LWbMtd9yZWhh2g48xzggJcwBPbGTj1EFmzKUQ= Subject key identifier: C2:10:1C:47:7F:70:0E:BD:CB:7F:DF:EB:A8:5D:5E:39:82:28:5A:22 Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft Manifest number: 82 Signing time: Tue 01 Jul 2025 07:21:49 +0000 Manifest this update: Tue 01 Jul 2025 07:21:48 +0000 Manifest next update: Tue 08 Jul 2025 07:21:48 +0000 Files and hashes: 1: 38UozwAG40FK-3_obR_er2SLXJ0.crl (hash: uInxeJuYgc88aAukyvxoyHB6G6DK7e3LSaJ0RPNL1bM=) 2: 6CF3FF44901111EF922BFC29C4F9AE02.roa (hash: kYva9N1B9q6x51z8ic6e8oPHZgI7EM6Un1P8CXMlwJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Jul 1 07:21:48 2025 GMT Not After : Jul 8 07:21:48 2025 GMT Subject: CN=68638c8d-1a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e4:49:72:b9:54:4b:66:f6:fd:24:19:9b:63: 45:68:0a:f1:cc:a0:78:b8:6b:1a:ea:0e:aa:20:96: f1:7a:e0:c7:41:0d:cb:5a:15:7c:5c:74:4b:38:4e: e5:2e:e3:24:0d:d9:eb:8d:b1:bd:5a:64:8d:82:ed: 9a:b5:cf:6e:25:4e:04:c9:3b:97:36:06:5c:6b:50: 1e:fa:d7:b8:43:01:1d:dc:c7:86:55:ce:74:5f:26: 5a:72:d3:91:bf:c7:80:70:51:b4:45:c6:62:80:86: d6:82:87:7e:80:f0:7e:4b:e3:ad:cb:0e:42:3f:79: d4:63:d4:e4:8d:ae:16:53:b9:91:af:fd:03:16:a8: 70:dc:9f:e9:6e:f8:5f:d1:78:6b:2d:7b:76:90:29: 2f:49:36:59:d9:57:84:61:e2:62:d5:87:e9:64:4b: 45:f0:7b:8f:ef:ad:53:76:40:57:5b:6c:a5:16:2f: d9:8a:ed:42:53:14:52:9a:51:e4:8f:38:cc:8c:cf: 06:72:90:3e:70:89:17:0a:ad:77:9f:22:e1:1b:14: 26:8b:36:df:6b:53:4a:aa:78:11:6f:13:2b:d5:54: 54:4e:4c:7a:40:b6:d9:f0:bb:04:a9:f6:7e:12:4d: 76:75:d8:31:1a:52:ee:b3:0c:6b:76:0b:01:96:cd: 4b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:10:1C:47:7F:70:0E:BD:CB:7F:DF:EB:A8:5D:5E:39:82:28:5A:22 X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:1b:fc:3b:d6:0a:a2:d7:10:35:55:e7:5f:92:94:80:e0:73: bd:16:02:23:fd:68:5f:df:d6:46:62:c2:6e:d6:8d:5e:d2:a9: a0:22:99:8c:da:00:69:3c:f0:eb:5f:1f:4f:67:73:87:90:c8: af:14:9c:f9:b4:80:37:74:47:e6:6f:8d:03:69:52:6d:5a:75: 22:97:7b:74:1d:93:d9:09:cd:5e:24:11:6e:c1:01:34:cc:cb: 2c:5a:0a:7c:4c:a0:71:3e:d2:8a:80:cb:10:d4:b3:a3:b8:97: 15:b7:f1:97:73:33:9e:16:40:ce:7f:52:41:6d:04:67:43:52: e0:e3:f3:3b:f6:fe:a9:05:dc:b8:90:ba:b0:d7:4b:40:5d:2f: 71:fa:4b:7a:b8:f9:79:c7:f4:0a:aa:c0:d1:ef:dc:30:a2:30: 29:79:f7:35:ed:f6:43:bb:14:94:c4:16:62:c4:ce:5c:00:0e: ff:0b:d6:17:da:43:a1:c2:81:be:e7:6d:af:a6:02:ee:a2:bb: f3:03:86:d7:16:73:d3:a3:37:ad:d0:b7:53:b5:a1:26:99:81: 7f:75:30:1c:01:7a:bc:50:32:87:1f:ea:4c:4a:36:82:a4:1c: 4f:01:22:a2:53:bc:a6:5e:7d:91:9f:9f:da:41:08:7b:a8:a9: ac:ac:d8:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBM0IxMTAvBgNVBAUTKERGQzUyOENGMDAwNkUzNDE0QUZCN0ZFODZEMUZERUFG NjQ4QjVDOUQwHhcNMjUwNzAxMDcyMTQ4WhcNMjUwNzA4MDcyMTQ4WjAYMRYwFAYD VQQDEw02ODYzOGM4ZC0xYTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+RJcrlUS2b2/SQZm2NFaArxzKB4uGsa6g6qIJbxeuDHQQ3LWhV8XHRLOE7l LuMkDdnrjbG9WmSNgu2atc9uJU4EyTuXNgZca1Ae+te4QwEd3MeGVc50XyZactOR v8eAcFG0RcZigIbWgod+gPB+S+Otyw5CP3nUY9Tkja4WU7mRr/0DFqhw3J/pbvhf 0XhrLXt2kCkvSTZZ2VeEYeJi1YfpZEtF8HuP761TdkBXW2ylFi/Ziu1CUxRSmlHk jzjMjM8GcpA+cIkXCq13nyLhGxQmizbfa1NKqngRbxMr1VRUTkx6QLbZ8LsEqfZ+ Ek12ddgxGlLuswxrdgsBls1LiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIQHEd/ cA69y3/f66hdXjmCKFoiMB8GA1UdIwQYMBaAFN/FKM8ABuNBSvt/6G0f3q9ki1yd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEzQi8yMjcwMTlEQTkw MTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQwRkstM19vYlJfZXIyU0xY SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEzQi8yMjcwMTlEQTkwMTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQw RkstM19vYlJfZXIyU0xYSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARG/w71gqi1xA1VedfkpSA4HO9FgIj/Whf39ZGYsJu1o1e0qmgIpmM 2gBpPPDrXx9PZ3OHkMivFJz5tIA3dEfmb40DaVJtWnUil3t0HZPZCc1eJBFuwQE0 zMssWgp8TKBxPtKKgMsQ1LOjuJcVt/GXczOeFkDOf1JBbQRnQ1Lg4/M79v6pBdy4 kLqw10tAXS9x+kt6uPl5x/QKqsDR79wwojApefc17fZDuxSUxBZixM5cAA7/C9YX 2kOhwoG+522vpgLuorvzA4bXFnPTozet0LdTtaEmmYF/dTAcAXq8UDKHH+pMSjaC pBxPASKiU7ymXn2Rn5/aQQh7qKmsrNgJ -----END CERTIFICATE-----Generated at Wed Jul 2 22:43:27 2025 by rpki-client