$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: nLhQHOFSdd2pM5xI6JWyT4aY7k0JglGzb69n+cEXUsY= Subject key identifier: 7B:91:E7:8E:B7:3D:71:49:63:E2:08:88:83:7E:92:60:64:C6:F6:F5 Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 043B Signing time: Thu 03 Jul 2025 00:38:58 +0000 Manifest this update: Thu 03 Jul 2025 00:38:57 +0000 Manifest next update: Thu 10 Jul 2025 00:38:57 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: ELFuFsRnDxjAnVRBQ64jc/W0FpQpaoEKbG2Y2P12jxA=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Jul 3 00:38:57 2025 GMT Not After : Jul 10 00:38:57 2025 GMT Subject: CN=6865d122-ad06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c5:79:76:9b:bf:9e:95:79:70:8d:5a:ae:e6: a1:db:8d:68:49:df:dd:a1:b0:fe:cb:f8:1f:98:64: 10:1e:05:5c:24:20:2a:79:03:05:d7:66:db:68:76: 0f:46:f2:76:7a:9e:6f:fe:b5:54:c0:57:84:d7:5e: 59:3a:24:32:65:65:4d:74:c4:39:be:a1:0f:c9:40: 2a:f3:29:69:81:e5:43:04:ac:23:92:7c:05:b6:8e: 09:af:86:c2:6b:41:41:64:d8:41:26:fa:18:00:fd: b5:03:d6:13:7e:4b:2a:14:a7:d3:99:37:a6:fd:e1: 7d:91:68:40:e1:cb:d8:4f:4c:22:1f:fe:cc:66:15: b1:f7:27:5b:17:8a:67:81:c9:51:83:20:be:93:fc: 41:12:e0:f5:a7:f5:f3:67:0d:0f:78:1e:18:e3:04: cd:c3:e7:3d:ef:35:b1:8a:1a:42:fb:bc:aa:fe:24: 67:eb:49:99:fe:97:13:6f:b2:77:9f:bc:ce:7f:75: 38:a7:74:0c:b7:ae:4e:8c:9d:22:93:7a:d2:a3:74: 72:4b:b2:ea:95:d9:aa:0e:c8:12:2e:b4:0b:42:49: 98:de:a7:62:d0:d1:a3:7b:c6:00:c0:c1:6c:50:7f: 3e:cb:d6:5f:d1:6a:11:66:47:6b:88:ae:01:e6:fc: 69:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:91:E7:8E:B7:3D:71:49:63:E2:08:88:83:7E:92:60:64:C6:F6:F5 X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c6:a8:33:1a:0c:82:3c:8e:c6:84:4f:20:70:94:77:d2:ef: 0f:01:f1:00:1f:d7:01:9b:2c:92:ad:47:0a:78:31:9d:d0:97: d0:c3:0b:0e:96:6e:88:08:15:33:32:a0:cf:73:16:87:e6:f8: 79:79:7d:7b:07:7c:88:fb:4c:1c:4d:76:ec:f6:08:24:bd:db: b3:0d:3e:47:a4:28:53:a8:6b:32:49:bb:49:56:64:84:d2:9c: 65:e4:d9:4f:ae:dc:99:a1:5c:c7:07:8b:0f:ab:12:d8:1e:c3: 32:c7:1b:58:0b:17:03:5d:48:87:7e:c5:6d:f2:63:6c:e4:ad: 39:e4:88:2a:d6:70:78:82:71:26:85:15:9b:2c:36:1a:03:7d: b8:2d:d2:4b:2d:72:fe:90:ac:a0:7e:e2:95:ea:a1:34:8d:aa: 5a:e7:5d:33:1f:c0:20:90:00:27:49:b0:5c:ef:6e:98:51:0a: 82:2f:f3:9c:46:83:74:5b:b9:51:38:ff:d7:dd:2e:bc:51:bb: fb:dc:0b:a7:ed:80:e2:a5:d8:0c:e5:81:82:cf:15:08:80:14: 98:98:6f:44:54:ae:c8:9e:48:ab:45:2d:94:e1:6d:b3:f1:22: 1d:10:c0:a5:1d:48:b4:d5:f6:61:d6:cf:16:f2:06:ff:de:8a: db:66:b2:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjUwNzAzMDAzODU3WhcNMjUwNzEwMDAzODU3WjAYMRYwFAYD VQQDEw02ODY1ZDEyMi1hZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sV5dpu/npV5cI1aruah241oSd/dobD+y/gfmGQQHgVcJCAqeQMF12bbaHYP RvJ2ep5v/rVUwFeE115ZOiQyZWVNdMQ5vqEPyUAq8ylpgeVDBKwjknwFto4Jr4bC a0FBZNhBJvoYAP21A9YTfksqFKfTmTem/eF9kWhA4cvYT0wiH/7MZhWx9ydbF4pn gclRgyC+k/xBEuD1p/XzZw0PeB4Y4wTNw+c97zWxihpC+7yq/iRn60mZ/pcTb7J3 n7zOf3U4p3QMt65OjJ0ik3rSo3RyS7LqldmqDsgSLrQLQkmY3qdi0NGje8YAwMFs UH8+y9Zf0WoRZkdriK4B5vxpQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuR5463 PXFJY+IIiIN+kmBkxvb1MB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGxqgzGgyCPI7GhE8gcJR30u8PAfEAH9cBmyySrUcKeDGd0JfQwwsO lm6ICBUzMqDPcxaH5vh5eX17B3yI+0wcTXbs9ggkvduzDT5HpChTqGsySbtJVmSE 0pxl5NlPrtyZoVzHB4sPqxLYHsMyxxtYCxcDXUiHfsVt8mNs5K055Igq1nB4gnEm hRWbLDYaA324LdJLLXL+kKygfuKV6qE0japa510zH8AgkAAnSbBc726YUQqCL/Oc RoN0W7lROP/X3S68Ubv73Aun7YDipdgM5YGCzxUIgBSYmG9EVK7InkirRS2U4W2z 8SIdEMClHUi01fZh1s8W8gb/3orbZrIK -----END CERTIFICATE-----Generated at Fri Jul 4 18:34:52 2025 by rpki-client