$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft File: f_xaKedfnr4HnQUkfw3_DPmH8cI.mft (raw, json) Hash identifier: BYXDyC6NrBBFlXetvMu4wuNm8SOyIlRWWVeuJLAIdPQ= Subject key identifier: 00:31:8F:C8:93:39:94:11:FD:B3:3D:3D:3A:9F:D8:17:19:52:C2:7B Authority key identifier: 7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 Certificate issuer: /CN=A91B4C67/serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Certificate serial: 34B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft Manifest number: 34B0 Signing time: Fri 22 Aug 2025 15:07:35 +0000 Manifest this update: Fri 22 Aug 2025 15:07:35 +0000 Manifest next update: Fri 29 Aug 2025 15:07:35 +0000 Files and hashes: 1: f_xaKedfnr4HnQUkfw3_DPmH8cI.crl (hash: e4d/3sWZOgPBbIglvbn+bm+JurOG0syteQCpb/8kyiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13488 (0x34b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C67, serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Validity Not Before: Aug 22 15:07:35 2025 GMT Not After : Aug 29 15:07:35 2025 GMT Subject: CN=68a887b7-ac0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:40:fa:c0:42:9c:1e:58:de:05:48:52:1f:5a: 4e:23:ed:73:6b:5c:43:be:27:06:ab:57:f8:61:3c: 66:a1:66:0a:c7:3d:9e:92:26:5d:83:7c:16:8f:d0: cf:05:4f:b1:5e:76:be:43:1c:5b:2d:46:40:84:59: a7:be:8d:16:d0:4e:6c:b0:c7:04:01:75:88:2c:ab: 9e:d4:57:10:ad:67:c4:b4:e5:e6:02:0b:b0:f7:e7: ee:69:5b:f8:78:d4:47:1d:01:db:67:24:48:0a:b1: af:6e:67:7a:42:98:58:fb:4b:d4:d6:ef:d1:05:6f: e3:01:fe:61:ed:91:e5:13:45:69:ee:78:d4:97:05: 9e:30:a3:5b:c1:03:f8:99:fb:1e:bf:01:ac:b7:4a: b6:ce:2f:75:a5:41:86:52:33:52:8f:71:88:f2:b5: 75:8b:ca:0f:eb:0b:78:11:7a:7c:d6:dd:4f:01:bd: 2f:e2:35:8d:3d:4b:79:75:35:cf:99:ea:60:38:75: 4a:e5:3b:c9:9f:f1:d0:e4:8f:7e:7c:28:bf:b9:1a: 71:95:8b:60:0d:da:30:9f:c9:d5:78:ae:4d:5b:48: de:02:25:a3:fc:72:3d:b5:a3:2a:cf:fc:64:7f:e0: 6e:77:af:84:2f:46:ed:95:59:b7:c3:fe:af:81:f8: 62:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:31:8F:C8:93:39:94:11:FD:B3:3D:3D:3A:9F:D8:17:19:52:C2:7B X509v3 Authority Key Identifier: keyid:7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:0e:2d:be:10:b7:82:70:fd:bd:0d:17:41:b2:bf:74:41:35: be:e5:50:8a:68:62:6c:ca:8f:3b:a4:c4:c3:51:9d:92:00:e4: 3b:f5:b3:26:51:8e:ce:76:79:54:3e:f9:f8:03:c6:55:9e:68: cc:5d:e1:80:cf:9f:b5:17:53:fd:e3:da:6a:e9:03:6a:03:08: 14:ef:68:24:58:78:ae:d4:c5:d1:65:ad:26:72:e8:3e:f0:18: 85:36:5e:ac:cb:f7:e0:70:3f:ff:88:c6:d2:9b:82:eb:f6:54: 6a:97:35:ab:42:cc:44:ff:37:d0:a6:cd:8d:c8:62:13:48:5d: 2d:b4:d6:c3:71:db:2a:a4:96:07:ef:d0:bb:74:aa:15:df:f2: af:48:49:53:36:c5:1b:91:f2:c9:96:05:a4:9e:ef:59:dd:db: ef:0c:3d:d4:97:e5:94:be:ad:86:36:2a:74:d8:ff:97:18:35: f8:79:9a:e6:cb:fa:03:92:32:aa:96:21:00:e2:8c:c9:24:a9: 50:8f:70:0b:8d:43:2f:65:ec:36:ee:47:24:cc:8c:9f:00:f5: e1:48:33:67:14:a7:ce:a1:23:1c:93:a8:85:d3:1a:47:c7:2a: 82:8b:71:b1:7e:73:b3:99:67:92:0d:de:55:37:13:f5:6c:85: 49:1c:8b:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDNjcxMTAvBgNVBAUTKDdGRkM1QTI5RTc1RjlFQkUwNzlEMDUyNDdGMERGRjBD Rjk4N0YxQzIwHhcNMjUwODIyMTUwNzM1WhcNMjUwODI5MTUwNzM1WjAYMRYwFAYD VQQDEw02OGE4ODdiNy1hYzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ED6wEKcHljeBUhSH1pOI+1za1xDvicGq1f4YTxmoWYKxz2ekiZdg3wWj9DP BU+xXna+QxxbLUZAhFmnvo0W0E5ssMcEAXWILKue1FcQrWfEtOXmAguw9+fuaVv4 eNRHHQHbZyRICrGvbmd6QphY+0vU1u/RBW/jAf5h7ZHlE0Vp7njUlwWeMKNbwQP4 mfsevwGst0q2zi91pUGGUjNSj3GI8rV1i8oP6wt4EXp81t1PAb0v4jWNPUt5dTXP mepgOHVK5TvJn/HQ5I9+fCi/uRpxlYtgDdown8nVeK5NW0jeAiWj/HI9taMqz/xk f+Bud6+EL0btlVm3w/6vgfhiRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAxj8iT OZQR/bM9PTqf2BcZUsJ7MB8GA1UdIwQYMBaAFH/8WinnX56+B50FJH8N/wz5h/HC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEM2Ny9CRjNGQzJGQTFE QTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5yNEhuUVVrZnczX0RQbUg4 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeGFLZWRmbnI0SG5RVWtmdzNfRFBtSDhjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEM2Ny9CRjNGQzJGQTFEQTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5y NEhuUVVrZnczX0RQbUg4Y0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2Di2+ELeCcP29DRdBsr90QTW+5VCKaGJsyo87pMTDUZ2SAOQ79bMm UY7OdnlUPvn4A8ZVnmjMXeGAz5+1F1P949pq6QNqAwgU72gkWHiu1MXRZa0mcug+ 8BiFNl6sy/fgcD//iMbSm4Lr9lRqlzWrQsxE/zfQps2NyGITSF0ttNbDcdsqpJYH 79C7dKoV3/KvSElTNsUbkfLJlgWknu9Z3dvvDD3Ul+WUvq2GNip02P+XGDX4eZrm y/oDkjKqliEA4ozJJKlQj3ALjUMvZew27kckzIyfAPXhSDNnFKfOoSMck6iF0xpH xyqCi3GxfnOzmWeSDd5VNxP1bIVJHIur -----END CERTIFICATE-----Generated at Sat Aug 23 16:10:08 2025 by rpki-client