$ rpki-client -vvf rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft File: m8V5k3xyDN2n11YYtyJj0kza_K4.mft (raw, json) Hash identifier: 8GiIwHbAJ9/aftwY1DW4TiOHlsa6SCC0k4Z8WHSfQk8= Subject key identifier: 8F:7F:14:C9:6B:6A:96:15:53:9D:DA:1F:47:60:60:9C:63:21:8C:13 Authority key identifier: 9B:C5:79:93:7C:72:0C:DD:A7:D7:56:18:B7:22:63:D2:4C:DA:FC:AE Certificate issuer: /CN=A91396E7/serialNumber=9BC579937C720CDDA7D75618B72263D24CDAFCAE Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft Manifest number: 8D Signing time: Fri 25 Jul 2025 06:50:56 +0000 Manifest this update: Fri 25 Jul 2025 06:50:56 +0000 Manifest next update: Fri 01 Aug 2025 06:50:56 +0000 Files and hashes: 1: m8V5k3xyDN2n11YYtyJj0kza_K4.crl (hash: +0HS+uaQgIrcOLfvHtSdehg6mhBIH7AsQAmiZXfbxQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.crl rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 06:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91396E7, serialNumber=9BC579937C720CDDA7D75618B72263D24CDAFCAE Validity Not Before: Jul 25 06:50:56 2025 GMT Not After : Aug 1 06:50:56 2025 GMT Subject: CN=68832950-3ed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:17:a2:1c:46:7f:78:56:79:10:15:c3:35:dd: 6c:3a:58:0a:f8:33:89:ba:ba:f9:c7:7c:61:70:9c: 58:bd:4b:f8:64:4a:a4:29:db:2f:56:de:33:8c:21: 6e:49:61:54:0a:24:8f:ad:8a:43:34:81:0e:19:52: 32:fc:a9:b4:21:53:dc:b6:0e:42:4d:a8:56:00:92: 05:05:07:fe:57:bf:58:c5:ee:65:0c:0b:3f:1b:53: b8:de:02:6d:e4:77:18:85:74:c3:2f:52:f2:7a:13: 66:32:9a:0c:d7:3c:44:a6:1f:55:82:c8:a0:71:bd: 73:8b:4a:4b:ba:85:2d:5d:04:7e:e3:19:4e:d7:f3: 20:4a:0b:d0:2e:06:f8:e7:33:46:34:b9:4e:dd:84: 27:05:9a:24:5c:10:c5:02:34:89:ec:43:63:03:98: 33:b9:de:76:e2:d0:ae:d9:33:06:a5:06:60:f7:87: 1e:92:0f:e5:b2:14:81:00:fa:47:a7:d3:32:64:1c: 73:89:fd:92:34:24:65:59:21:4a:2e:ff:19:e0:c3: f5:75:e4:aa:d1:10:30:75:ce:11:fa:1b:b9:2a:c1: f3:e6:68:57:d0:9e:46:18:ad:52:63:88:42:f1:28: 62:d0:34:20:83:7a:74:91:6f:88:e8:77:1b:da:fb: 19:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7F:14:C9:6B:6A:96:15:53:9D:DA:1F:47:60:60:9C:63:21:8C:13 X509v3 Authority Key Identifier: keyid:9B:C5:79:93:7C:72:0C:DD:A7:D7:56:18:B7:22:63:D2:4C:DA:FC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8V5k3xyDN2n11YYtyJj0kza_K4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91396E7/0F388428912511EF942A2B28C4F9AE02/m8V5k3xyDN2n11YYtyJj0kza_K4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:0d:c6:c9:cb:fc:1a:c4:58:f1:b6:30:4a:8e:d5:c3:05:61: 1c:0a:c5:34:a3:de:55:03:0a:f4:b4:f5:e2:0b:24:04:30:3f: 9c:1d:d7:ac:1b:de:69:be:5c:1c:8b:66:12:e6:6d:fc:1c:c7: eb:b3:b1:2c:e4:79:77:c6:aa:6a:4c:d7:60:4f:a5:36:93:5f: a2:2d:4e:a9:b0:43:ff:51:3b:72:9a:22:d8:23:80:1d:c8:c9: 40:3a:47:7a:ba:0a:0c:ea:3f:1a:69:02:3f:67:cb:8b:c6:b4: 21:c0:7f:d2:e6:63:e4:db:4f:18:f4:b6:b8:bb:d4:c9:7c:80: 86:22:83:b7:e7:c1:f8:5f:49:56:52:20:b3:27:4b:5c:af:cc: de:5f:f8:19:de:ee:02:d1:ee:ae:c3:c8:77:1a:dd:66:1e:47: 2e:82:2d:14:04:e8:8b:17:b0:bc:b8:5c:2c:a7:e7:f3:25:2c: 11:45:f8:93:5c:b1:35:3c:c5:df:ed:73:b0:b0:33:99:28:e4: d9:64:c9:5e:de:74:08:95:23:4f:04:c3:b0:ef:c4:40:63:25: c4:27:36:7f:e5:56:cb:75:1a:16:23:8f:e6:7a:7c:4c:65:bc: 18:20:de:ae:7b:ab:ef:1e:0c:01:1e:8d:e6:36:4f:f5:08:ff: b4:81:a8:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk2RTcxMTAvBgNVBAUTKDlCQzU3OTkzN0M3MjBDRERBN0Q3NTYxOEI3MjI2M0Qy NENEQUZDQUUwHhcNMjUwNzI1MDY1MDU2WhcNMjUwODAxMDY1MDU2WjAYMRYwFAYD VQQDEw02ODgzMjk1MC0zZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsReiHEZ/eFZ5EBXDNd1sOlgK+DOJurr5x3xhcJxYvUv4ZEqkKdsvVt4zjCFu SWFUCiSPrYpDNIEOGVIy/Km0IVPctg5CTahWAJIFBQf+V79Yxe5lDAs/G1O43gJt 5HcYhXTDL1LyehNmMpoM1zxEph9Vgsigcb1zi0pLuoUtXQR+4xlO1/MgSgvQLgb4 5zNGNLlO3YQnBZokXBDFAjSJ7ENjA5gzud524tCu2TMGpQZg94cekg/lshSBAPpH p9MyZBxzif2SNCRlWSFKLv8Z4MP1deSq0RAwdc4R+hu5KsHz5mhX0J5GGK1SY4hC 8Shi0DQgg3p0kW+I6Hcb2vsZSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9/FMlr apYVU53aH0dgYJxjIYwTMB8GA1UdIwQYMBaAFJvFeZN8cgzdp9dWGLciY9JM2vyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTZFNy8wRjM4ODQyODkx MjUxMUVGOTQyQTJCMjhDNEY5QUUwMi9tOFY1azN4eUROMm4xMVlZdHlKajBremFf SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL204VjVrM3h5RE4ybjExWVl0eUpqMGt6YV9LNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTZFNy8wRjM4ODQyODkxMjUxMUVGOTQyQTJCMjhDNEY5QUUwMi9tOFY1azN4eURO Mm4xMVlZdHlKajBremFfSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARDcbJy/waxFjxtjBKjtXDBWEcCsU0o95VAwr0tPXiCyQEMD+cHdes G95pvlwci2YS5m38HMfrs7Es5Hl3xqpqTNdgT6U2k1+iLU6psEP/UTtymiLYI4Ad yMlAOkd6ugoM6j8aaQI/Z8uLxrQhwH/S5mPk208Y9La4u9TJfICGIoO358H4X0lW UiCzJ0tcr8zeX/gZ3u4C0e6uw8h3Gt1mHkcugi0UBOiLF7C8uFwsp+fzJSwRRfiT XLE1PMXf7XOwsDOZKOTZZMle3nQIlSNPBMOw78RAYyXEJzZ/5VbLdRoWI4/menxM ZbwYIN6ue6vvHgwBHo3mNk/1CP+0gahL -----END CERTIFICATE-----Generated at Sat Jul 26 02:04:10 2025 by rpki-client