$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: Eu9eiAbbkRbC0reHWwSvwUzlyhaYhCL3/K/PGGuq40Q= Subject key identifier: 9B:88:D6:A9:AD:E1:14:47:D1:EF:9F:26:05:28:C2:02:91:19:9C:21 Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 07DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 07D8 Signing time: Wed 02 Jul 2025 21:19:44 +0000 Manifest this update: Wed 02 Jul 2025 21:19:43 +0000 Manifest next update: Wed 09 Jul 2025 21:19:43 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: PJjA90HHpXSiQOBv75pLw2grZ5HSgoLJj0HIQiQXCNg=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: AWPlkT/VPOlTrND3SaqX87pYECk2GQcIiP0u70mzoFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2014 (0x7de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458, serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Jul 2 21:19:43 2025 GMT Not After : Jul 9 21:19:43 2025 GMT Subject: CN=6865a270-2dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:15:91:de:bf:d3:d3:3f:f8:df:25:09:06:c4: 90:1c:7d:5c:21:6f:b7:4a:ad:ba:10:ad:d3:37:e3: 5d:64:68:df:98:2d:49:a4:39:7c:db:0a:c9:2c:28: 45:77:d0:34:45:78:5b:85:ad:6a:31:fb:b0:08:12: 97:4e:8e:5d:c7:fa:00:f1:04:98:d5:5e:83:32:34: b9:26:17:19:1a:c6:d1:52:53:59:0b:d6:62:93:cc: e4:b6:87:a7:2e:56:36:ad:8b:68:5e:e1:27:1d:9f: 30:59:c6:1c:da:cc:d5:62:ca:83:36:74:e0:0e:29: 87:05:ed:a7:13:6b:40:4f:a1:8b:e4:2c:d9:99:12: c1:4f:dc:44:b1:26:bb:2d:ef:76:e4:c6:99:71:ae: c0:93:dd:66:ac:b6:02:59:4c:8f:34:63:99:cc:67: 70:16:87:f3:42:77:75:b1:72:8e:8c:bb:88:f3:6a: a5:2a:d1:12:00:b3:e4:e1:f0:3f:3b:cc:bb:c3:a7: 3b:8e:5b:fb:11:53:bd:60:52:49:25:a7:1c:46:5d: 50:14:2d:13:89:55:73:82:4f:a0:58:8f:05:67:d4: 9d:7e:f4:11:50:fe:b4:8c:dc:23:90:6d:a0:a4:f5: f3:c4:db:6c:69:50:f1:18:1a:18:14:30:08:bb:37: 7f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:88:D6:A9:AD:E1:14:47:D1:EF:9F:26:05:28:C2:02:91:19:9C:21 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:e4:f6:32:f2:b4:10:e0:34:93:59:02:3e:37:a8:80:42:2c: 8a:89:92:bf:a5:63:57:e0:ab:46:ce:27:17:99:ca:02:c5:4d: c5:3f:ed:32:64:27:e3:70:b6:e2:7d:e9:e1:b8:8c:22:d6:e4: d7:71:05:66:75:bc:88:ef:34:49:cc:0a:37:fe:85:33:ac:75: eb:e6:ee:f8:70:1e:f1:03:b0:2c:55:1e:0a:62:88:56:51:66: a9:49:fb:c9:cc:99:44:c6:b5:26:69:db:48:fa:9c:05:9f:f7: 1d:6c:ea:7e:e3:1f:75:35:19:4b:3f:37:95:63:6b:a6:5c:e6: 35:0e:16:c2:ba:8c:ef:7d:0e:4e:52:b4:a9:fe:d4:79:7c:1a: b7:3e:a8:83:b9:84:58:cb:a0:9e:19:af:95:f7:c2:49:9d:89: 49:30:33:cd:7a:23:e3:2a:8c:8e:56:86:b0:ae:ed:f5:b9:81: e1:f8:bf:28:38:6f:4f:3f:ff:fc:6b:b3:f5:45:bc:05:62:85: 6d:84:27:f9:f5:d5:fa:f1:63:47:27:12:eb:31:27:eb:94:3c: 3f:0c:d5:fa:c0:3a:84:90:6f:ba:83:6a:cd:c3:6e:b7:dc:0d: a3:9b:e2:9b:71:74:fa:3f:b8:9e:c7:0c:49:0a:6b:fa:80:92: 76:53:69:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjUwNzAyMjExOTQzWhcNMjUwNzA5MjExOTQzWjAYMRYwFAYD VQQDEw02ODY1YTI3MC0yZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BWR3r/T0z/43yUJBsSQHH1cIW+3Sq26EK3TN+NdZGjfmC1JpDl82wrJLChF d9A0RXhbha1qMfuwCBKXTo5dx/oA8QSY1V6DMjS5JhcZGsbRUlNZC9Zik8zktoen LlY2rYtoXuEnHZ8wWcYc2szVYsqDNnTgDimHBe2nE2tAT6GL5CzZmRLBT9xEsSa7 Le925MaZca7Ak91mrLYCWUyPNGOZzGdwFofzQnd1sXKOjLuI82qlKtESALPk4fA/ O8y7w6c7jlv7EVO9YFJJJaccRl1QFC0TiVVzgk+gWI8FZ9SdfvQRUP60jNwjkG2g pPXzxNtsaVDxGBoYFDAIuzd/lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuI1qmt 4RRH0e+fJgUowgKRGZwhMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd5PYy8rQQ4DSTWQI+N6iAQiyKiZK/pWNX4KtGzicXmcoCxU3FP+0y ZCfjcLbifenhuIwi1uTXcQVmdbyI7zRJzAo3/oUzrHXr5u74cB7xA7AsVR4KYohW UWapSfvJzJlExrUmadtI+pwFn/cdbOp+4x91NRlLPzeVY2umXOY1DhbCuozvfQ5O UrSp/tR5fBq3PqiDuYRYy6CeGa+V98JJnYlJMDPNeiPjKoyOVoawru31uYHh+L8o OG9PP//8a7P1RbwFYoVthCf59dX68WNHJxLrMSfrlDw/DNX6wDqEkG+6g2rNw263 3A2jm+KbcXT6P7iexwxJCmv6gJJ2U2nZ -----END CERTIFICATE-----Generated at Thu Jul 3 06:09:38 2025 by rpki-client