$ rpki-client -vvf rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft File: x8MjS9JtrWKeLX70REhP5UHYFI4.mft (raw, json) Hash identifier: ZBnrxBvWCQAQ4A54RBZHygmHI3UAP2QFdve/TS/4Fjw= Subject key identifier: A2:C5:8B:95:4A:5E:B2:06:89:B3:78:D3:DF:78:8F:9B:48:F9:B4:D0 Authority key identifier: C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E Certificate issuer: /CN=A91E36C4/serialNumber=C7C3234BD26DAD629E2D7EF444484FE541D8148E Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft Manifest number: 3D Signing time: Thu 03 Jul 2025 07:47:49 +0000 Manifest this update: Thu 03 Jul 2025 07:47:48 +0000 Manifest next update: Thu 10 Jul 2025 07:47:48 +0000 Files and hashes: 1: x8MjS9JtrWKeLX70REhP5UHYFI4.crl (hash: 402jdQ3vgqsRZ3Fyq43flz+QUHWspdHzQ/ZrBYQGGHw=) 2: FA429FD6FEED11EF826A3F81C4F9AE02.roa (hash: 39w+18fUPSiKVB8OhUL0ki9Bi8qUl1J3wP6kCBvBYqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E36C4, serialNumber=C7C3234BD26DAD629E2D7EF444484FE541D8148E Validity Not Before: Jul 3 07:47:48 2025 GMT Not After : Jul 10 07:47:48 2025 GMT Subject: CN=686635a5-3e58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:62:3e:6d:bc:77:dc:c9:99:64:e2:01:2b:c2: bc:ec:fc:fe:c1:9c:a5:bf:22:02:d2:d3:0d:d3:db: c5:8b:ed:b4:71:6b:8a:9e:df:ad:89:ba:84:8c:c5: 11:89:c4:7b:e5:06:21:34:19:01:42:8f:fb:5e:83: 86:b2:0a:26:67:d7:44:dc:58:89:e1:db:39:8d:f5: 5b:31:0e:cc:9f:27:fc:36:72:0b:f7:c0:95:ee:60: 26:a5:3a:97:b9:05:83:19:35:65:1f:d0:3f:01:29: ea:a6:e7:b7:67:fa:0d:c8:c0:d3:5a:6e:4a:00:23: f7:3f:01:f8:2e:45:a0:84:af:83:5f:be:34:dd:cb: b7:39:6d:ab:ec:7d:fb:61:4c:c6:ab:45:f0:77:52: b6:d5:1b:5b:7a:be:3d:94:bf:44:67:1c:16:c0:d8: f6:09:0f:93:8e:ec:9b:1b:ef:48:60:61:40:bb:20: e7:09:48:3e:49:e5:77:2e:d2:87:d8:a4:03:05:eb: 0c:ce:ad:d7:4f:8c:7a:26:99:a4:8c:a3:5b:2a:bd: d3:23:5a:90:00:09:8a:cb:8a:a6:b8:54:89:37:31: 7a:34:c2:3a:8b:1c:32:9c:f4:3d:39:e4:d6:83:36: 02:38:db:92:bf:da:33:2a:5b:e1:fb:7a:49:7c:b6: 72:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C5:8B:95:4A:5E:B2:06:89:B3:78:D3:DF:78:8F:9B:48:F9:B4:D0 X509v3 Authority Key Identifier: keyid:C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:1e:ad:89:6f:8d:79:30:53:95:5a:49:34:22:35:f6:5c:a9: cf:a4:5f:a1:0b:1f:bb:e3:1b:f5:52:b4:3a:ba:4d:01:36:31: b5:45:53:57:b0:24:6f:3f:6f:c5:39:fd:49:de:c5:d9:5d:4b: 41:a2:54:96:f4:c0:6e:54:3f:4d:db:df:28:93:46:66:ec:6d: d5:f3:62:c0:8c:3a:4b:79:ac:be:46:4e:a3:da:f4:62:23:4c: 17:9a:58:57:96:de:01:84:e8:72:d3:51:2d:62:c9:b4:f8:9a: 9b:f3:89:0c:29:32:87:96:47:ef:c9:48:ce:6f:fb:a9:e0:29: 6a:91:99:f1:aa:7b:49:eb:ad:65:4e:de:0f:0e:60:f4:f3:90: 97:01:bc:99:2d:19:ae:13:67:00:30:2c:ad:d3:4e:ab:56:a3: 0d:5b:73:f0:42:12:f2:f6:1f:b5:aa:bf:fd:23:87:6a:72:10: 60:4c:d2:be:44:29:30:02:17:99:1e:17:53:41:28:ad:06:02: 65:c9:24:63:24:d6:e6:19:61:e6:5a:d0:0c:6b:f4:b8:e8:09: 04:38:69:bc:37:90:33:d8:cb:06:83:2a:e5:e2:f8:bc:78:b3: 56:e1:45:b2:93:4b:ad:83:e2:ae:9e:66:dc:76:81:62:12:f8: 85:2d:32:d3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzZDNDExMC8GA1UEBRMoQzdDMzIzNEJEMjZEQUQ2MjlFMkQ3RUY0NDQ0ODRGRTU0 MUQ4MTQ4RTAeFw0yNTA3MDMwNzQ3NDhaFw0yNTA3MTAwNzQ3NDhaMBgxFjAUBgNV BAMTDTY4NjYzNWE1LTNlNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjYj5tvHfcyZlk4gErwrzs/P7BnKW/IgLS0w3T28WL7bRxa4qe362JuoSMxRGJ xHvlBiE0GQFCj/teg4ayCiZn10TcWInh2zmN9VsxDsyfJ/w2cgv3wJXuYCalOpe5 BYMZNWUf0D8BKeqm57dn+g3IwNNabkoAI/c/AfguRaCEr4NfvjTdy7c5bavsffth TMarRfB3UrbVG1t6vj2Uv0RnHBbA2PYJD5OO7Jsb70hgYUC7IOcJSD5J5Xcu0ofY pAMF6wzOrddPjHommaSMo1sqvdMjWpAACYrLiqa4VIk3MXo0wjqLHDKc9D055NaD NgI425K/2jMqW+H7ekl8tnItAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUosWLlUpe sgaJs3jT33iPm0j5tNAwHwYDVR0jBBgwFoAUx8MjS9JtrWKeLX70REhP5UHYFI4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNkM0L0MxNjA1ODUyRkVF RDExRUY5RkY2Q0U4MEM0RjlBRTAyL3g4TWpTOUp0cldLZUxYNzBSRWhQNVVIWUZJ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveDhNalM5SnRyV0tlTFg3MFJFaFA1VUhZRkk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz NkM0L0MxNjA1ODUyRkVFRDExRUY5RkY2Q0U4MEM0RjlBRTAyL3g4TWpTOUp0cldL ZUxYNzBSRWhQNVVIWUZJNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFgerYlvjXkwU5VaSTQiNfZcqc+kX6ELH7vjG/VStDq6TQE2MbVFU1ew JG8/b8U5/UnexdldS0GiVJb0wG5UP03b3yiTRmbsbdXzYsCMOkt5rL5GTqPa9GIj TBeaWFeW3gGE6HLTUS1iybT4mpvziQwpMoeWR+/JSM5v+6ngKWqRmfGqe0nrrWVO 3g8OYPTzkJcBvJktGa4TZwAwLK3TTqtWow1bc/BCEvL2H7Wqv/0jh2pyEGBM0r5E KTACF5keF1NBKK0GAmXJJGMk1uYZYeZa0Axr9LjoCQQ4abw3kDPYywaDKuXi+Lx4 s1bhRbKTS62D4q6eZtx2gWIS+IUtMtM= -----END CERTIFICATE-----Generated at Thu Jul 3 10:05:14 2025 by rpki-client