$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft File: iP8qX1-BdhNDU35LVLXmoW8gfqk.mft (raw, json) Hash identifier: eSqeVA9d6Z98CQq4ecGYy/V6/3ySWo6eGIADDMQ/PW8= Subject key identifier: 3B:BE:C1:E7:85:06:8C:5D:84:4F:8B:7F:BC:8B:A7:FC:25:DD:D9:FA Authority key identifier: 88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 Certificate issuer: /CN=A91CF1E7/serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft Manifest number: 0158 Signing time: Sat 05 Jul 2025 04:20:24 +0000 Manifest this update: Sat 05 Jul 2025 04:20:23 +0000 Manifest next update: Sat 12 Jul 2025 04:20:23 +0000 Files and hashes: 1: iP8qX1-BdhNDU35LVLXmoW8gfqk.crl (hash: vjUCFOmclNQV/VnkrQnwq68pIu6EGXJ9NsqZrAejiG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF1E7, serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Validity Not Before: Jul 5 04:20:23 2025 GMT Not After : Jul 12 04:20:23 2025 GMT Subject: CN=6868a807-bac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:1f:f3:17:b9:12:47:3b:a8:f1:62:b8:cf:63: 84:c0:69:0b:18:20:5d:42:50:a0:02:89:88:f1:15: e4:a6:6b:41:49:83:c5:e2:a0:7c:95:73:e9:41:6a: 61:66:d6:54:ad:97:05:fe:73:54:21:ae:d7:f1:df: ae:1e:e7:f7:2d:91:0f:31:26:7d:9a:65:ff:f6:6d: f0:1e:1e:84:bf:a2:a7:08:8d:f5:e7:be:27:e6:00: f3:8f:15:0b:cd:f2:56:ce:4a:d9:0a:88:80:e3:33: 17:6e:78:be:bd:a0:3a:91:c8:a4:e9:38:6a:7b:70: 2c:5a:c8:05:f0:1e:e9:26:7d:f2:6e:6a:df:29:30: 99:bd:c4:9e:e2:a0:0d:ff:16:b1:d3:46:6c:58:d9: 7b:f6:12:b1:4b:72:27:d8:bb:5a:2c:6f:07:45:7c: 1d:c7:3b:85:63:5d:07:4a:82:ff:a6:52:4c:78:90: d3:ea:1e:2f:30:a0:fb:2f:29:ae:d7:ff:71:83:36: 92:7d:26:7d:b3:9b:01:aa:ba:eb:d9:d3:80:e4:c6: 46:6d:53:4d:f9:7f:aa:02:13:81:e1:30:2a:33:17: 80:11:5b:6c:dd:f9:7f:c0:e5:58:aa:9c:04:8a:a3: e3:fb:60:a5:00:da:50:d6:0b:01:89:f0:da:80:22: 4f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BE:C1:E7:85:06:8C:5D:84:4F:8B:7F:BC:8B:A7:FC:25:DD:D9:FA X509v3 Authority Key Identifier: keyid:88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:8b:45:27:ab:e2:0b:aa:0a:55:c7:47:2a:3f:63:e9:bf:90: 69:f4:41:3c:7d:0e:c8:82:0a:a8:10:11:ec:db:a5:fc:75:bf: 4c:c4:e4:af:d3:e0:80:6b:09:40:10:f3:20:14:aa:02:d6:79: a7:80:9e:9e:2a:b3:75:3f:78:97:89:d6:c9:1a:40:34:5d:d3: ef:9f:2a:da:a4:18:b1:4f:3b:6c:2d:78:ef:24:99:78:fd:df: c5:61:2d:a1:0c:6b:ac:fb:d3:eb:70:e4:de:17:b9:f3:0e:84: 83:0c:2c:0a:b8:d9:ea:c0:fe:1b:7d:18:5d:30:60:9c:08:a3: 12:e4:8e:35:c5:08:17:32:ae:04:e8:ad:2c:a8:ae:2e:7b:28: 3c:c2:53:f2:ac:57:de:8a:ce:87:15:3c:46:22:89:db:79:87: d5:d6:29:5f:47:61:28:b1:d5:17:30:94:2a:35:46:7a:99:7d: 03:63:c6:f0:4a:49:51:62:de:43:2c:ae:51:83:f0:d1:d2:bb: 44:d1:87:14:f7:07:cb:33:ba:a7:8b:8a:f1:3e:d0:07:81:f8: cc:9b:1c:cc:4b:35:9b:7f:90:ab:2b:c0:4e:a3:35:f6:bf:c2: d3:94:aa:62:87:d2:83:87:79:49:9e:23:1f:3f:01:26:7d:df: 95:b6:50:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YxRTcxMTAvBgNVBAUTKDg4RkYyQTVGNUY4MTc2MTM0MzUzN0U0QjU0QjVFNkEx NkYyMDdFQTkwHhcNMjUwNzA1MDQyMDIzWhcNMjUwNzEyMDQyMDIzWjAYMRYwFAYD VQQDEw02ODY4YTgwNy1iYWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8R/zF7kSRzuo8WK4z2OEwGkLGCBdQlCgAomI8RXkpmtBSYPF4qB8lXPpQWph ZtZUrZcF/nNUIa7X8d+uHuf3LZEPMSZ9mmX/9m3wHh6Ev6KnCI31574n5gDzjxUL zfJWzkrZCoiA4zMXbni+vaA6kcik6Thqe3AsWsgF8B7pJn3ybmrfKTCZvcSe4qAN /xax00ZsWNl79hKxS3In2LtaLG8HRXwdxzuFY10HSoL/plJMeJDT6h4vMKD7Lymu 1/9xgzaSfSZ9s5sBqrrr2dOA5MZGbVNN+X+qAhOB4TAqMxeAEVts3fl/wOVYqpwE iqPj+2ClANpQ1gsBifDagCJPQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDu+weeF BoxdhE+Lf7yLp/wl3dn6MB8GA1UdIwQYMBaAFIj/Kl9fgXYTQ1N+S1S15qFvIH6p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjFFNy8xREJFMUEzMjQ3 QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRoTkRVMzVMVkxYbW9XOGdm cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lQOHFYMS1CZGhORFUzNUxWTFhtb1c4Z2Zxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjFFNy8xREJFMUEzMjQ3QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRo TkRVMzVMVkxYbW9XOGdmcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfi0Unq+ILqgpVx0cqP2Ppv5Bp9EE8fQ7IggqoEBHs26X8db9MxOSv 0+CAawlAEPMgFKoC1nmngJ6eKrN1P3iXidbJGkA0XdPvnyrapBixTztsLXjvJJl4 /d/FYS2hDGus+9PrcOTeF7nzDoSDDCwKuNnqwP4bfRhdMGCcCKMS5I41xQgXMq4E 6K0sqK4ueyg8wlPyrFfeis6HFTxGIonbeYfV1ilfR2EosdUXMJQqNUZ6mX0DY8bw SklRYt5DLK5Rg/DR0rtE0YcU9wfLM7qni4rxPtAHgfjMmxzMSzWbf5CrK8BOozX2 v8LTlKpih9KDh3lJniMfPwEmfd+VtlAy -----END CERTIFICATE-----Generated at Sun Jul 6 00:47:19 2025 by rpki-client