$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft File: 8VAZIKVfOnwnEDkUn_oop8HMOPE.mft (raw, json) Hash identifier: Wnf4U/bfnw5SNNpvWZNCR2lAmj+mFLJHkFTr6AZV3cc= Subject key identifier: 8F:0B:A1:CB:AE:E9:58:39:93:0D:4C:68:A4:00:90:6E:A0:57:05:CA Authority key identifier: F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 Certificate issuer: /CN=A91B49C0/serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Certificate serial: 036F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft Manifest number: 036B Signing time: Sun 29 Jun 2025 00:28:47 +0000 Manifest this update: Sun 29 Jun 2025 00:28:47 +0000 Manifest next update: Sun 06 Jul 2025 00:28:47 +0000 Files and hashes: 1: 8VAZIKVfOnwnEDkUn_oop8HMOPE.crl (hash: lx4nC3i4kZK0PTtpB9TO1d83VtrMx5/tqN0Z0uQYA7c=) 2: 8304B142B34711EC90A6DA67C4F9AE02.roa (hash: WXC/B6Dbe8kPnOwbgfCf/9me935cYsiOJufkenUuGQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 00:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49C0, serialNumber=F1501920A55F3A7C271039149FFA28A7C1CC38F1 Validity Not Before: Jun 29 00:28:47 2025 GMT Not After : Jul 6 00:28:47 2025 GMT Subject: CN=686088bf-f5a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d4:35:77:87:a1:62:23:32:3d:3d:01:5a:58: f7:68:8d:df:13:3c:d2:cb:21:63:3d:4c:69:96:73: 31:92:ac:2c:03:31:35:fb:63:e0:92:84:90:0a:48: 36:88:50:1d:9d:e5:d0:f1:5c:49:5d:7d:24:4a:18: 4c:6a:a8:ca:ec:7e:8b:20:7f:9f:2a:03:c6:28:59: 73:7c:02:97:43:11:51:2f:42:7f:e3:3d:54:02:22: d2:53:0d:ae:bb:3e:08:d1:c7:66:94:22:db:84:af: 9c:51:cd:8f:35:89:47:d4:45:a5:92:c7:2f:58:a7: 02:c5:21:79:bc:b0:5e:e1:9c:95:56:2a:84:af:e0: 66:8c:14:23:08:10:55:10:d3:13:e0:b4:ab:99:a6: 5f:98:a6:03:62:8d:02:c3:f5:e1:f8:33:9f:c5:80: 84:93:19:39:d4:c8:8d:5b:d4:5c:51:ad:8b:63:51: 59:5f:fe:5b:53:34:fd:06:d3:8e:9c:56:bc:aa:a1: df:95:1f:49:52:80:f4:2d:36:c0:65:bf:48:32:bc: dc:45:21:2a:72:b7:75:11:0c:4b:b4:d8:0e:33:7e: de:ed:ab:1b:17:b3:39:35:40:5b:2f:1f:fa:8c:62: 2d:8f:ad:da:dc:c2:b2:01:af:e6:6b:06:de:c1:c7: e1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:0B:A1:CB:AE:E9:58:39:93:0D:4C:68:A4:00:90:6E:A0:57:05:CA X509v3 Authority Key Identifier: keyid:F1:50:19:20:A5:5F:3A:7C:27:10:39:14:9F:FA:28:A7:C1:CC:38:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VAZIKVfOnwnEDkUn_oop8HMOPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49C0/6CB38358B34411ECABCE2A62C4F9AE02/8VAZIKVfOnwnEDkUn_oop8HMOPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:77:f1:08:02:53:16:d2:b3:a7:2c:0c:36:15:9e:a2:f4:44: 22:3e:30:57:d4:14:f9:b5:2c:bc:73:73:c5:79:f8:b1:7e:42: 3b:30:c2:70:97:cb:34:e5:be:f0:38:e3:4c:87:86:f1:c9:94: 1f:e2:16:79:2e:fa:63:72:64:85:aa:c7:04:34:31:76:c5:ef: 91:15:e9:63:5a:e2:cf:c7:c8:e0:50:2e:0f:2a:2f:af:7f:bb: c2:9f:7b:11:46:d0:3c:c8:f7:33:e7:4b:f1:9d:07:7e:78:c9: b7:f4:36:a8:77:6e:c2:53:27:0e:d9:72:25:38:12:21:93:a1: 9f:43:90:ad:c5:60:f8:cd:63:96:27:35:57:44:a0:30:f5:56: 40:18:1e:d1:d8:55:61:3d:0d:e0:61:57:ee:1b:90:bb:9e:db: 75:b5:83:82:dc:b3:5d:58:09:bb:94:9f:bb:77:51:6e:88:84: f8:1c:52:b1:5c:bb:90:97:0a:2a:d1:8a:70:9a:b9:8f:36:90: 1f:6e:ff:a7:1c:d8:2b:1e:e2:b5:ce:54:ab:26:5d:3c:f5:af: 80:9b:10:72:60:57:50:2e:22:a7:57:4f:ed:e2:cd:54:70:d6: 35:72:cd:ee:1f:e3:b5:0c:8c:34:82:fd:a7:c8:f3:2b:de:13: 5f:df:c3:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5QzAxMTAvBgNVBAUTKEYxNTAxOTIwQTU1RjNBN0MyNzEwMzkxNDlGRkEyOEE3 QzFDQzM4RjEwHhcNMjUwNjI5MDAyODQ3WhcNMjUwNzA2MDAyODQ3WjAYMRYwFAYD VQQDEw02ODYwODhiZi1mNWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7dQ1d4ehYiMyPT0BWlj3aI3fEzzSyyFjPUxplnMxkqwsAzE1+2PgkoSQCkg2 iFAdneXQ8VxJXX0kShhMaqjK7H6LIH+fKgPGKFlzfAKXQxFRL0J/4z1UAiLSUw2u uz4I0cdmlCLbhK+cUc2PNYlH1EWlkscvWKcCxSF5vLBe4ZyVViqEr+BmjBQjCBBV ENMT4LSrmaZfmKYDYo0Cw/Xh+DOfxYCEkxk51MiNW9RcUa2LY1FZX/5bUzT9BtOO nFa8qqHflR9JUoD0LTbAZb9IMrzcRSEqcrd1EQxLtNgOM37e7asbF7M5NUBbLx/6 jGItj63a3MKyAa/mawbewcfhIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8Locuu 6Vg5kw1MaKQAkG6gVwXKMB8GA1UdIwQYMBaAFPFQGSClXzp8JxA5FJ/6KKfBzDjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlDMC82Q0IzODM1OEIz NDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9ud25FRGtVbl9vb3A4SE1P UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhWQVpJS1ZmT253bkVEa1VuX29vcDhITU9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlDMC82Q0IzODM1OEIzNDQxMUVDQUJDRTJBNjJDNEY5QUUwMi84VkFaSUtWZk9u d25FRGtVbl9vb3A4SE1PUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhd/EIAlMW0rOnLAw2FZ6i9EQiPjBX1BT5tSy8c3PFefixfkI7MMJw l8s05b7wOONMh4bxyZQf4hZ5LvpjcmSFqscENDF2xe+RFeljWuLPx8jgUC4PKi+v f7vCn3sRRtA8yPcz50vxnQd+eMm39Daod27CUycO2XIlOBIhk6GfQ5CtxWD4zWOW JzVXRKAw9VZAGB7R2FVhPQ3gYVfuG5C7ntt1tYOC3LNdWAm7lJ+7d1FuiIT4HFKx XLuQlwoq0YpwmrmPNpAfbv+nHNgrHuK1zlSrJl089a+AmxByYFdQLiKnV0/t4s1U cNY1cs3uH+O1DIw0gv2nyPMr3hNf38O0 -----END CERTIFICATE-----Generated at Mon Jun 30 19:21:10 2025 by rpki-client