$ rpki-client -vvf rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft File: 8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft (raw, json) Hash identifier: 0wJGxBjg3mTW24FdoMCHBiQqtJXzoPdhFEya4BT+3Vg= Subject key identifier: CB:38:8E:F3:43:27:B4:81:30:BA:80:51:CC:FF:EA:1F:47:9E:65:0D Authority key identifier: F2:92:8A:4B:10:DD:84:74:A6:DD:0A:C6:5C:D1:39:4F:02:15:5C:DE Certificate issuer: /CN=A91243F8/serialNumber=F2928A4B10DD8474A6DD0AC65CD1394F02155CDE Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft Manifest number: 0273 Signing time: Sat 19 Jul 2025 02:08:52 +0000 Manifest this update: Sat 19 Jul 2025 02:08:52 +0000 Manifest next update: Sat 26 Jul 2025 02:08:52 +0000 Files and hashes: 1: 8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl (hash: PuQPZQjZbKwxCu9fyTD6Am4gyWocJAKa8ygpBW68UUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243F8, serialNumber=F2928A4B10DD8474A6DD0AC65CD1394F02155CDE Validity Not Before: Jul 19 02:08:52 2025 GMT Not After : Jul 26 02:08:52 2025 GMT Subject: CN=687afe34-1013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:eb:53:cb:6e:60:c3:c1:21:66:e1:76:9c:e1: 3f:94:3f:f0:37:45:fb:09:30:2e:26:e2:51:d0:38: 2c:d3:38:37:2c:5e:ef:cc:3c:aa:a2:d7:9f:5c:a3: c4:b9:db:dc:fc:28:68:90:e2:53:fc:7b:1a:7e:bf: ce:64:d0:f9:99:ce:c9:3d:dc:80:d0:23:70:60:a7: b7:a7:58:eb:92:c7:9b:23:05:e1:2f:17:1f:41:d4: ba:34:19:87:c0:32:33:7b:88:00:c7:05:f8:48:73: 69:98:4f:e8:ed:33:af:73:42:d6:7b:4b:01:26:fa: 18:ff:e1:ba:69:a8:c8:52:e5:0c:c7:0b:74:6c:a0: 6c:34:95:1a:41:59:a7:67:f3:d6:6f:64:05:1b:5b: f5:b7:8e:67:3b:8e:f8:ae:47:65:1e:c3:27:c8:d2: a1:39:00:52:5d:58:67:0e:fe:e0:cd:7d:df:62:31: d8:da:92:a5:c0:97:97:dd:7d:79:e4:43:e9:d4:5d: 20:6b:44:cf:8c:35:6d:06:7b:51:3a:b3:39:8d:4f: fb:64:e4:f0:7d:be:8f:39:dc:20:4a:4a:3f:24:0c: f9:1b:ac:76:b4:4a:9d:1b:2c:e9:14:1e:38:42:19: b8:41:6c:d4:24:41:0f:1e:b5:03:73:32:a5:77:7a: 5a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:38:8E:F3:43:27:B4:81:30:BA:80:51:CC:FF:EA:1F:47:9E:65:0D X509v3 Authority Key Identifier: keyid:F2:92:8A:4B:10:DD:84:74:A6:DD:0A:C6:5C:D1:39:4F:02:15:5C:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:af:af:e3:c1:84:99:fa:32:75:ec:7e:54:9d:bc:8d:73:74: 71:5c:46:6b:6a:f5:8e:b3:ff:45:e8:a1:7b:98:f0:66:04:87: 48:c4:06:a9:fe:9d:4d:dc:56:dd:b2:7d:88:f4:fc:f7:32:fe: cf:1d:e5:a4:c3:47:5c:3c:d5:92:82:97:ab:11:20:53:74:2f: da:04:99:34:e3:6f:31:6d:10:7b:8d:d8:a7:ae:0a:65:bc:74: 39:ee:b8:02:b1:6f:fe:cc:8a:92:1f:ad:df:0a:b0:b3:37:69: e1:5b:18:f3:a2:20:e6:db:d1:ce:63:b3:54:96:21:cd:14:d1: 6e:66:26:38:51:f5:0c:f5:fb:bf:3f:c4:70:ff:b2:c9:3d:a3: 6c:0e:d8:6b:b1:8f:b5:d4:b6:7e:15:55:64:33:b8:cc:c3:ff: 2a:79:30:e2:f1:cd:f0:6f:22:8a:a5:1f:97:e0:e9:ce:2e:36: 20:2a:94:63:a1:17:b2:07:16:40:ee:c3:11:a3:95:e9:50:3e: c4:1d:02:4a:be:e5:d3:30:be:52:44:83:1f:d8:7c:e6:63:44: 37:c6:09:56:10:f0:f0:ab:95:fd:7b:52:f7:3d:18:f1:c0:45: dc:8d:d7:8d:fa:b7:a0:97:b2:de:71:86:6f:e0:f0:ba:d5:a4: f9:40:d0:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRjgxMTAvBgNVBAUTKEYyOTI4QTRCMTBERDg0NzRBNkREMEFDNjVDRDEzOTRG MDIxNTVDREUwHhcNMjUwNzE5MDIwODUyWhcNMjUwNzI2MDIwODUyWjAYMRYwFAYD VQQDEw02ODdhZmUzNC0xMDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzetTy25gw8EhZuF2nOE/lD/wN0X7CTAuJuJR0Dgs0zg3LF7vzDyqotefXKPE udvc/ChokOJT/Hsafr/OZND5mc7JPdyA0CNwYKe3p1jrksebIwXhLxcfQdS6NBmH wDIze4gAxwX4SHNpmE/o7TOvc0LWe0sBJvoY/+G6aajIUuUMxwt0bKBsNJUaQVmn Z/PWb2QFG1v1t45nO474rkdlHsMnyNKhOQBSXVhnDv7gzX3fYjHY2pKlwJeX3X15 5EPp1F0ga0TPjDVtBntROrM5jU/7ZOTwfb6POdwgSko/JAz5G6x2tEqdGyzpFB44 Qhm4QWzUJEEPHrUDczKld3paRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMs4jvND J7SBMLqAUcz/6h9HnmUNMB8GA1UdIwQYMBaAFPKSiksQ3YR0pt0KxlzROU8CFVze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGOC9CQTY0ODFGNjE2 RDExMUVEODgyNDg0MjhDNEY5QUUwMi84cEtLU3hEZGhIU20zUXJHWE5FNVR3SVZY TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhwS0tTeERkaEhTbTNRckdYTkU1VHdJVlhONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGOC9CQTY0ODFGNjE2RDExMUVEODgyNDg0MjhDNEY5QUUwMi84cEtLU3hEZGhI U20zUXJHWE5FNVR3SVZYTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRr6/jwYSZ+jJ17H5UnbyNc3RxXEZravWOs/9F6KF7mPBmBIdIxAap /p1N3Fbdsn2I9Pz3Mv7PHeWkw0dcPNWSgperESBTdC/aBJk0428xbRB7jdinrgpl vHQ57rgCsW/+zIqSH63fCrCzN2nhWxjzoiDm29HOY7NUliHNFNFuZiY4UfUM9fu/ P8Rw/7LJPaNsDthrsY+11LZ+FVVkM7jMw/8qeTDi8c3wbyKKpR+X4OnOLjYgKpRj oReyBxZA7sMRo5XpUD7EHQJKvuXTML5SRIMf2HzmY0Q3xglWEPDwq5X9e1L3PRjx wEXcjdeN+regl7LecYZv4PC61aT5QNAE -----END CERTIFICATE-----Generated at Sun Jul 20 03:27:02 2025 by rpki-client