$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: 2Eq3wnC74hQO7AkreoUPAw3mmBwectz1BLv3ghPQsLc= Subject key identifier: 0A:B3:7C:F2:D2:30:FC:69:F6:DA:BA:E6:C0:E8:92:35:14:C6:A2:60 Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0E50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0E35 Signing time: Fri 22 Aug 2025 17:55:08 +0000 Manifest this update: Fri 22 Aug 2025 17:55:07 +0000 Manifest next update: Fri 29 Aug 2025 17:55:07 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: YU9N9bBndoqT/PQkCCNSLwp90+7574pz9THS0b32am0=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3664 (0xe50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Aug 22 17:55:07 2025 GMT Not After : Aug 29 17:55:07 2025 GMT Subject: CN=68a8aefc-9954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:97:5e:6c:21:d8:10:01:96:e7:99:b2:72:ea: 9d:4f:5b:cb:6a:50:93:a7:f3:24:04:f3:d4:6a:ae: 1a:af:65:20:30:51:2f:4d:63:ad:2d:94:9d:6f:40: 32:e7:0a:69:c5:ed:95:bc:fc:21:e4:21:a5:60:40: ed:a2:29:d5:1b:c7:1d:69:2d:a2:c7:aa:80:6f:63: 8a:5e:e9:89:af:26:75:45:6f:c3:dc:e8:75:c5:3e: 30:ff:3c:10:23:ad:79:5f:69:48:ed:fc:e6:60:69: 9a:4e:0a:0b:bb:bf:b0:13:c9:20:ef:3e:90:1c:d5: 0d:ba:78:5b:bf:b9:02:f2:b4:a3:a7:bf:7d:e4:92: 0d:ec:d5:ee:6c:a4:10:0c:a8:0e:23:76:49:58:94: 92:7e:f9:91:3f:25:df:52:e1:b1:52:a2:f0:de:95: 6a:99:07:e0:40:d2:75:09:f1:27:44:b4:eb:5b:8a: 09:71:07:4b:64:5e:5d:3a:1c:18:87:b3:25:74:4f: 1a:05:e0:ab:61:6c:98:7c:72:c2:21:f1:9a:99:c0: 62:00:a8:aa:d0:29:b1:fd:04:af:48:5b:03:b9:21: ba:b0:f8:42:4b:fe:0d:db:fe:38:12:48:2d:bb:89: ed:fa:d7:ee:52:0c:c8:5f:50:79:44:c3:bc:10:af: ec:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B3:7C:F2:D2:30:FC:69:F6:DA:BA:E6:C0:E8:92:35:14:C6:A2:60 X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:e9:d2:46:cd:a8:66:16:8f:c5:fe:5e:c2:d1:73:6f:e4:63: a5:e6:e4:8c:66:9c:15:e1:69:80:d7:86:a4:f0:f9:fa:32:53: cd:a4:29:1f:4b:87:44:17:b8:c7:c2:da:ce:4d:01:7c:d7:ee: 57:c7:45:b6:7f:04:8a:0d:59:38:65:27:25:18:c3:c7:4d:0e: 27:be:16:66:a9:54:33:6b:79:61:7a:7b:c9:02:f5:ee:1a:f6: 35:3a:7b:45:12:b4:2a:e4:cb:fc:66:2e:bc:09:a2:ce:6d:49: 40:48:fa:b1:00:44:2b:3f:c9:5d:dd:f8:b9:78:3b:34:e3:14: 9c:53:0b:fc:51:da:58:dc:6c:b1:59:06:79:8f:14:c1:22:24: 7b:ad:2c:62:d2:e9:56:cc:96:d2:15:d7:ae:0e:7c:28:55:20: 91:55:96:aa:13:4e:26:b5:99:46:92:5c:72:d4:bf:5c:90:e4: c3:b7:fb:8a:97:e9:2d:71:b0:62:51:c1:80:3d:83:4c:5b:4d: 18:4c:76:2c:fb:46:34:aa:97:f6:ac:06:de:27:4b:e7:4f:9f: 6a:69:8e:3f:c8:7d:08:45:77:8e:8c:aa:7d:a1:c7:e0:19:13: 12:8c:fe:4e:0d:78:d3:0a:38:68:28:0a:12:60:85:ed:18:c5: f0:49:ff:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUwODIyMTc1NTA3WhcNMjUwODI5MTc1NTA3WjAYMRYwFAYD VQQDEw02OGE4YWVmYy05OTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpdebCHYEAGW55mycuqdT1vLalCTp/MkBPPUaq4ar2UgMFEvTWOtLZSdb0Ay 5wppxe2VvPwh5CGlYEDtoinVG8cdaS2ix6qAb2OKXumJryZ1RW/D3Oh1xT4w/zwQ I615X2lI7fzmYGmaTgoLu7+wE8kg7z6QHNUNunhbv7kC8rSjp7995JIN7NXubKQQ DKgOI3ZJWJSSfvmRPyXfUuGxUqLw3pVqmQfgQNJ1CfEnRLTrW4oJcQdLZF5dOhwY h7MldE8aBeCrYWyYfHLCIfGamcBiAKiq0Cmx/QSvSFsDuSG6sPhCS/4N2/44Ekgt u4nt+tfuUgzIX1B5RMO8EK/sHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqzfPLS MPxp9tq65sDokjUUxqJgMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR6dJGzahmFo/F/l7C0XNv5GOl5uSMZpwV4WmA14ak8Pn6MlPNpCkf S4dEF7jHwtrOTQF81+5Xx0W2fwSKDVk4ZSclGMPHTQ4nvhZmqVQza3lhenvJAvXu GvY1OntFErQq5Mv8Zi68CaLObUlASPqxAEQrP8ld3fi5eDs04xScUwv8UdpY3Gyx WQZ5jxTBIiR7rSxi0ulWzJbSFdeuDnwoVSCRVZaqE04mtZlGklxy1L9ckOTDt/uK l+ktcbBiUcGAPYNMW00YTHYs+0Y0qpf2rAbeJ0vnT59qaY4/yH0IRXeOjKp9ocfg GRMSjP5ODXjTCjhoKAoSYIXtGMXwSf9O -----END CERTIFICATE-----Generated at Sat Aug 23 20:26:56 2025 by rpki-client