$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: MfSv7To4FJf93BUiteyCldGtwVeu5/8aM+GtgByLVIk= Subject key identifier: C2:A2:AF:05:56:D2:8B:C5:56:9A:31:E7:ED:57:15:A9:45:2B:60:0A Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0E37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0E1C Signing time: Fri 04 Jul 2025 18:07:58 +0000 Manifest this update: Fri 04 Jul 2025 18:07:57 +0000 Manifest next update: Fri 11 Jul 2025 18:07:57 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: Ne1SZPvSHLlsoaWq+qj9g7UbQ6H5mop8GoiT4hBD8w4=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3639 (0xe37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Jul 4 18:07:57 2025 GMT Not After : Jul 11 18:07:57 2025 GMT Subject: CN=6868187d-5905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ad:c0:3f:16:5e:d7:f1:fb:d1:01:26:98:63: d4:7b:19:f9:12:42:6c:ca:b3:50:31:5e:e2:58:75: 6f:ed:60:d4:e6:1d:50:04:5a:2f:22:02:d5:44:51: 00:34:27:7a:c7:5b:c1:fb:59:a3:b0:d6:d9:e8:ba: e5:34:0e:db:ff:97:f8:92:09:6f:5b:27:0a:20:60: 7f:ec:18:f3:da:f8:f6:58:3f:b1:cc:5d:f1:91:79: 81:e4:9d:c7:58:16:c7:37:5d:c0:76:f7:03:0c:10: b5:4b:63:58:16:36:1e:7b:0e:28:d4:8f:de:a3:2e: 42:49:4e:75:2d:53:b1:d2:ca:41:f9:cb:3e:a0:cb: 2d:1b:6e:9d:68:12:58:e0:9e:52:0f:93:b1:92:05: 9c:40:82:a0:6f:92:dd:45:45:c5:a8:9b:a2:1d:a4: ba:57:db:3a:fe:0f:c3:fb:2c:8d:92:0a:2d:b4:f1: 03:6a:e3:4f:66:66:15:b7:32:ca:0d:c5:b0:b2:09: e0:8c:40:95:6c:e8:7b:c2:ec:90:76:55:0a:3d:1c: 0f:b6:2f:77:05:04:f3:74:a6:ac:7a:1f:f6:0b:04: 50:3a:11:b3:af:15:3c:b6:81:cc:d9:4e:c3:8c:7f: f4:fb:29:c7:18:01:57:36:3d:64:6f:f8:e4:a7:61: 00:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A2:AF:05:56:D2:8B:C5:56:9A:31:E7:ED:57:15:A9:45:2B:60:0A X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:d6:3e:ee:2a:0c:bc:b3:44:00:c0:84:74:c4:b8:09:8e:d0: fd:3d:a1:49:60:ec:35:f9:64:55:24:fd:f8:8c:73:61:9c:81: 4a:2b:c2:71:8b:09:68:fe:45:72:49:1c:d5:3e:19:9e:70:00: f6:5a:ef:0b:2e:8d:b3:2f:4f:5a:a7:87:ee:f5:3a:c5:bd:db: f5:bf:35:07:c9:fa:3d:74:d7:7b:20:ca:c6:74:ae:91:6c:7e: e8:e3:ab:08:94:30:02:2f:39:b3:1a:39:22:c7:fe:f0:81:5f: bf:c4:aa:ff:53:a4:b9:96:7d:2e:b3:bc:db:89:f0:7e:54:ef: b1:81:26:03:95:49:36:53:1f:4f:a2:81:99:b7:b3:ed:37:0d: 5a:28:41:26:1b:d0:bb:ed:ac:8c:93:58:f0:13:d6:97:cd:75: 0d:ba:86:f2:5d:ee:7b:f9:02:5a:b9:fa:53:a3:b5:99:20:c0: 84:7b:27:09:a1:2f:c6:c8:a2:eb:9f:e3:6d:43:23:4b:31:43: 09:76:da:54:d5:d1:ed:49:3f:08:76:e4:04:fc:35:b8:3b:ce: 16:90:59:0f:e2:21:b4:61:bc:24:25:88:03:f0:29:38:2d:bf: bb:22:4a:f3:85:56:46:95:15:fa:78:ba:27:31:3e:c1:52:e5: 83:dd:ed:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUwNzA0MTgwNzU3WhcNMjUwNzExMTgwNzU3WjAYMRYwFAYD VQQDEw02ODY4MTg3ZC01OTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA763APxZe1/H70QEmmGPUexn5EkJsyrNQMV7iWHVv7WDU5h1QBFovIgLVRFEA NCd6x1vB+1mjsNbZ6LrlNA7b/5f4kglvWycKIGB/7Bjz2vj2WD+xzF3xkXmB5J3H WBbHN13AdvcDDBC1S2NYFjYeew4o1I/eoy5CSU51LVOx0spB+cs+oMstG26daBJY 4J5SD5OxkgWcQIKgb5LdRUXFqJuiHaS6V9s6/g/D+yyNkgottPEDauNPZmYVtzLK DcWwsgngjECVbOh7wuyQdlUKPRwPti93BQTzdKaseh/2CwRQOhGzrxU8toHM2U7D jH/0+ynHGAFXNj1kb/jkp2EAOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKirwVW 0ovFVpox5+1XFalFK2AKMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa1j7uKgy8s0QAwIR0xLgJjtD9PaFJYOw1+WRVJP34jHNhnIFKK8Jx iwlo/kVySRzVPhmecAD2Wu8LLo2zL09ap4fu9TrFvdv1vzUHyfo9dNd7IMrGdK6R bH7o46sIlDACLzmzGjkix/7wgV+/xKr/U6S5ln0us7zbifB+VO+xgSYDlUk2Ux9P ooGZt7PtNw1aKEEmG9C77ayMk1jwE9aXzXUNuobyXe57+QJaufpTo7WZIMCEeycJ oS/GyKLrn+NtQyNLMUMJdtpU1dHtST8IduQE/DW4O84WkFkP4iG0YbwkJYgD8Ck4 Lb+7IkrzhVZGlRX6eLonMT7BUuWD3e07 -----END CERTIFICATE-----Generated at Sat Jul 5 22:39:27 2025 by rpki-client