$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: Z1PyaRCnDIhpdMKoR52cKOai50jhwbMGInS3tvR7dm4= Subject key identifier: DD:30:9E:28:EC:4D:82:11:05:D4:19:6C:BA:65:2D:B7:EC:EE:E8:D9 Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 0225 Signing time: Tue 01 Jul 2025 02:38:10 +0000 Manifest this update: Tue 01 Jul 2025 02:38:10 +0000 Manifest next update: Tue 08 Jul 2025 02:38:10 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: vJ91Y+9CNF8roRV9IpclQfMJ13awli1SvDkEDIeRiA8=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: LAWmMRc8daUtEB7NaiA0m2Tl41sqEulVfrA7do1Thps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Jul 1 02:38:10 2025 GMT Not After : Jul 8 02:38:10 2025 GMT Subject: CN=68634a12-ee98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:46:ae:da:04:62:c8:76:74:ff:d3:0a:c0:dc: 73:04:66:30:88:fb:d7:df:7d:4e:7f:c1:a1:ee:39: c6:3c:df:1b:5c:75:91:58:65:36:59:89:ff:51:55: d9:e5:72:03:61:0b:fe:4a:9d:2a:3b:e2:49:be:95: 6f:9e:34:4f:d9:a3:4b:f2:58:1e:1a:76:70:f5:63: 3a:1b:c0:a4:c8:75:c0:e1:8c:b9:8f:09:07:9f:1b: 4b:3d:55:46:b1:c1:28:71:b3:0c:5f:24:4f:f3:fe: 31:a1:68:3a:dc:c3:dc:4e:68:f4:6d:4f:c9:b6:f4: f0:26:24:f5:78:39:28:a4:05:92:64:04:dd:51:28: 31:96:1d:8b:c6:84:43:c5:6d:c7:b1:d2:6e:5e:bc: c3:07:ac:00:8a:28:e9:34:e4:8f:37:ba:b1:d6:42: d0:bf:ae:ac:2c:9a:a8:1d:3f:0f:aa:b6:95:ab:12: b0:1d:fa:b4:f1:9e:40:3f:e8:76:f5:3b:d0:ca:f1: 4d:8e:c0:d8:6a:28:7a:34:30:71:ce:e7:54:9e:e3: e9:fa:aa:2d:53:2c:cb:db:ea:f7:fa:01:d8:13:04: 2e:c3:6e:ce:36:09:14:b2:6b:cc:b9:5a:68:9c:c4: 0c:0f:37:54:26:37:cb:cb:e3:d6:f7:bf:5f:2b:e0: 3e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:30:9E:28:EC:4D:82:11:05:D4:19:6C:BA:65:2D:B7:EC:EE:E8:D9 X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:6f:8b:b9:de:d4:91:72:cd:8d:95:b9:1e:ba:0d:b6:fe:9a: 33:b3:da:2e:16:00:41:e1:21:ac:29:58:3a:d7:a8:19:04:4a: 87:47:4e:f8:6c:23:20:43:d9:13:cc:c9:69:d4:dd:4c:66:cf: fa:ab:a6:38:f4:12:4b:e2:f4:3b:5e:dc:c5:a7:f9:d7:ac:ba: 57:d2:86:41:e1:22:ea:1d:d3:7a:c0:2f:f3:00:90:56:40:b2: ff:2f:0e:3e:7b:d4:5f:ee:a9:32:63:0e:ea:7e:96:b4:e7:a8: 9c:25:86:11:6d:89:6d:75:58:c9:f1:dd:95:d4:9d:7a:53:76: 7b:3b:5b:8f:de:58:a0:22:9b:2f:05:51:61:58:6f:94:5a:38: 61:d2:b2:e1:31:fd:11:90:d9:94:96:7f:5a:d4:54:10:60:91: 85:a7:40:39:8f:9e:71:a7:f3:9d:93:b8:7c:8d:eb:0f:10:2b: 27:af:a1:d7:6e:05:39:0a:85:11:f2:a1:66:6c:65:b0:61:4d: 11:23:67:ba:89:ac:31:cc:e5:dd:2e:32:01:06:08:9a:93:1f: d9:a3:11:d7:0e:8b:e2:b5:8f:db:31:6f:88:8f:8f:9d:8d:12: a6:06:b3:59:8f:4b:2e:93:9d:1d:3b:9a:62:20:2e:f6:4a:91: 33:23:d4:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjUwNzAxMDIzODEwWhcNMjUwNzA4MDIzODEwWjAYMRYwFAYD VQQDEw02ODYzNGExMi1lZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Eau2gRiyHZ0/9MKwNxzBGYwiPvX331Of8Gh7jnGPN8bXHWRWGU2WYn/UVXZ 5XIDYQv+Sp0qO+JJvpVvnjRP2aNL8lgeGnZw9WM6G8CkyHXA4Yy5jwkHnxtLPVVG scEocbMMXyRP8/4xoWg63MPcTmj0bU/JtvTwJiT1eDkopAWSZATdUSgxlh2LxoRD xW3HsdJuXrzDB6wAiijpNOSPN7qx1kLQv66sLJqoHT8PqraVqxKwHfq08Z5AP+h2 9TvQyvFNjsDYaih6NDBxzudUnuPp+qotUyzL2+r3+gHYEwQuw27ONgkUsmvMuVpo nMQMDzdUJjfLy+PW979fK+A+WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0wnijs TYIRBdQZbLplLbfs7ujZMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnb4u53tSRcs2Nlbkeug22/pozs9ouFgBB4SGsKVg616gZBEqHR074 bCMgQ9kTzMlp1N1MZs/6q6Y49BJL4vQ7XtzFp/nXrLpX0oZB4SLqHdN6wC/zAJBW QLL/Lw4+e9Rf7qkyYw7qfpa056icJYYRbYltdVjJ8d2V1J16U3Z7O1uP3ligIpsv BVFhWG+UWjhh0rLhMf0RkNmUln9a1FQQYJGFp0A5j55xp/Odk7h8jesPECsnr6HX bgU5CoUR8qFmbGWwYU0RI2e6iawxzOXdLjIBBgiakx/ZoxHXDovitY/bMW+Ij4+d jRKmBrNZj0suk50dO5piIC72SpEzI9Qv -----END CERTIFICATE-----Generated at Wed Jul 2 01:01:19 2025 by rpki-client