$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft File: 8YaDAEWuVIbpCXNDfanSB6VmhpE.mft (raw, json) Hash identifier: Tpptbs3Lc06F4GwZfn0K4OzH/vgXYKSGbMECdcMN1ZQ= Subject key identifier: 68:29:E9:1E:DC:77:69:6C:17:DB:4D:05:94:48:7F:D1:2F:05:37:53 Authority key identifier: F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 Certificate issuer: /CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691 Certificate serial: 31FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft Manifest number: 31FB Signing time: Wed 02 Jul 2025 15:32:01 +0000 Manifest this update: Wed 02 Jul 2025 15:32:00 +0000 Manifest next update: Wed 09 Jul 2025 15:32:00 +0000 Files and hashes: 1: 8YaDAEWuVIbpCXNDfanSB6VmhpE.crl (hash: 44VqNkHig3NBVUEMaD13HDKC8ImdqBJ2/u6FeLYGs5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12795 (0x31fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAA, serialNumber=F186830045AE5486E90973437DA9D207A5668691 Validity Not Before: Jul 2 15:32:00 2025 GMT Not After : Jul 9 15:32:00 2025 GMT Subject: CN=686550f1-3277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6a:ff:00:ca:eb:c0:d0:3d:e1:71:58:7a:e5: 9a:54:9b:d2:e3:fa:ac:42:60:24:d1:e9:96:26:e7: bd:1e:14:44:b9:e2:c7:65:64:f6:fe:48:f7:54:de: 11:ca:51:8d:86:c2:f5:e8:c8:d1:d1:51:be:57:3d: ec:93:a2:40:1b:ba:b7:ce:a1:2f:d3:50:95:87:94: e2:41:a4:bd:1b:bc:b4:83:4e:82:3b:96:1f:42:1a: 9c:b6:81:5c:4a:53:34:3d:34:a0:34:b3:4f:37:15: 8a:63:3f:5f:9b:b6:5d:ad:92:a4:9b:ab:64:67:ad: 16:d7:f7:5c:9b:85:ae:a6:45:c8:0b:ce:2e:f1:4a: 3e:51:69:06:cf:7e:89:27:1f:9f:ff:22:da:54:3a: 80:95:57:13:83:ef:c1:87:63:5a:9e:6f:f7:6a:e3: 47:73:ac:ef:ba:0b:f6:77:95:dc:4b:c3:f0:71:7a: 52:60:58:97:36:c2:12:8b:cf:87:8d:d3:09:d1:ed: 5c:0e:10:9e:b4:ea:21:5e:10:26:d2:b5:f2:21:ab: a4:65:f2:14:47:7a:17:72:2e:a4:33:8d:26:98:d3: f4:67:03:ba:d4:86:80:07:3e:85:76:3e:d8:eb:88: e5:b4:88:24:a9:7b:e1:f4:ec:d9:4a:cf:1b:ea:c5: c6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:29:E9:1E:DC:77:69:6C:17:DB:4D:05:94:48:7F:D1:2F:05:37:53 X509v3 Authority Key Identifier: keyid:F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:35:7a:79:12:0f:ff:78:f0:f7:f1:18:05:aa:43:a4:b6:fe: ab:57:7a:57:bb:aa:48:a2:a4:30:6f:4f:99:93:a9:29:7c:35: 44:bb:5c:cc:b7:74:fc:7f:7e:a8:25:59:8b:92:4d:17:79:ec: 89:c5:fd:3d:75:94:11:1f:d4:15:6a:bd:66:3d:78:f9:ae:88: 13:46:31:97:6c:bb:91:d3:e1:76:bd:27:b0:68:64:88:9e:d0: 71:ee:39:dd:48:af:f9:22:33:81:a9:81:ee:8d:cb:d8:b7:bd: 7b:02:51:4c:bc:10:0f:07:17:3d:89:ad:2e:db:74:df:65:44: 90:e2:af:6f:79:4e:65:1e:f2:9d:13:13:54:7a:dc:47:91:fc: 8f:8a:ba:fa:41:da:a2:96:e3:8d:bd:f7:27:94:51:e5:a2:31: de:04:bb:b5:34:b0:7b:08:35:ed:4d:e9:d6:ad:a8:36:bf:97: b1:4e:49:01:65:dd:29:fd:57:50:0d:fd:69:12:16:fc:34:ec: 8d:5d:e4:75:20:b6:e9:16:d9:00:21:65:a2:d7:9c:e7:23:a4: 4f:1d:11:93:f0:eb:6a:62:97:3b:87:e4:f7:a1:19:cd:98:f0: c0:96:51:0e:96:05:3a:58:4f:0a:65:bc:aa:f8:ae:0b:98:74: d3:46:06:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUExMTAvBgNVBAUTKEYxODY4MzAwNDVBRTU0ODZFOTA5NzM0MzdEQTlEMjA3 QTU2Njg2OTEwHhcNMjUwNzAyMTUzMjAwWhcNMjUwNzA5MTUzMjAwWjAYMRYwFAYD VQQDEw02ODY1NTBmMS0zMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42r/AMrrwNA94XFYeuWaVJvS4/qsQmAk0emWJue9HhREueLHZWT2/kj3VN4R ylGNhsL16MjR0VG+Vz3sk6JAG7q3zqEv01CVh5TiQaS9G7y0g06CO5YfQhqctoFc SlM0PTSgNLNPNxWKYz9fm7ZdrZKkm6tkZ60W1/dcm4WupkXIC84u8Uo+UWkGz36J Jx+f/yLaVDqAlVcTg+/Bh2Nanm/3auNHc6zvugv2d5XcS8PwcXpSYFiXNsISi8+H jdMJ0e1cDhCetOohXhAm0rXyIaukZfIUR3oXci6kM40mmNP0ZwO61IaABz6Fdj7Y 64jltIgkqXvh9OzZSs8b6sXGZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgp6R7c d2lsF9tNBZRIf9EvBTdTMB8GA1UdIwQYMBaAFPGGgwBFrlSG6QlzQ32p0gelZoaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBQS84QjI4MjQ1MjlG RjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJYnBDWE5EZmFuU0I2Vm1o cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZYURBRVd1VklicENYTkRmYW5TQjZWbWhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBQS84QjI4MjQ1MjlGRjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJ YnBDWE5EZmFuU0I2Vm1ocEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1NXp5Eg//ePD38RgFqkOktv6rV3pXu6pIoqQwb0+Zk6kpfDVEu1zM t3T8f36oJVmLkk0XeeyJxf09dZQRH9QVar1mPXj5rogTRjGXbLuR0+F2vSewaGSI ntBx7jndSK/5IjOBqYHujcvYt717AlFMvBAPBxc9ia0u23TfZUSQ4q9veU5lHvKd ExNUetxHkfyPirr6QdqiluONvfcnlFHlojHeBLu1NLB7CDXtTenWrag2v5exTkkB Zd0p/VdQDf1pEhb8NOyNXeR1ILbpFtkAIWWi15znI6RPHRGT8OtqYpc7h+T3oRnN mPDAllEOlgU6WE8KZbyq+K4LmHTTRgap -----END CERTIFICATE-----Generated at Thu Jul 3 14:17:08 2025 by rpki-client