$ rpki-client -vvf rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/8yjXnK7LFF8i39-M3sLQVpxpdnw.mft File: 8yjXnK7LFF8i39-M3sLQVpxpdnw.mft (raw, json) Hash identifier: 28xdt0EecfL2QzlswkByChUUS0n9Wg0fr/n8kYRn3sk= Subject key identifier: C9:20:D1:E9:66:41:2C:DF:E2:F8:2F:1D:0A:21:38:79:2F:19:3C:DD Authority key identifier: F3:28:D7:9C:AE:CB:14:5F:22:DF:DF:8C:DE:C2:D0:56:9C:69:76:7C Certificate issuer: /CN=A91415AA/serialNumber=F328D79CAECB145F22DFDF8CDEC2D0569C69767C Certificate serial: 0A85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8yjXnK7LFF8i39-M3sLQVpxpdnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/8yjXnK7LFF8i39-M3sLQVpxpdnw.mft Manifest number: 138F Signing time: Fri 18 Jul 2025 19:49:35 +0000 Manifest this update: Fri 18 Jul 2025 19:49:34 +0000 Manifest next update: Fri 25 Jul 2025 19:49:34 +0000 Files and hashes: 1: 8yjXnK7LFF8i39-M3sLQVpxpdnw.crl (hash: EV4Svtqze/nuh4l2LOV4ay00PW3A9xpCYq5eEOOvheY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/8yjXnK7LFF8i39-M3sLQVpxpdnw.crl rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/8yjXnK7LFF8i39-M3sLQVpxpdnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8yjXnK7LFF8i39-M3sLQVpxpdnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:49:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2693 (0xa85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91415AA, serialNumber=F328D79CAECB145F22DFDF8CDEC2D0569C69767C Validity Not Before: Jul 18 19:49:34 2025 GMT Not After : Jul 25 19:49:34 2025 GMT Subject: CN=687aa54e-0901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3c:03:b6:31:ea:4b:3d:3f:37:aa:09:12:33: be:d5:62:d3:53:ad:2b:65:d6:c0:c9:e8:ec:17:e2: ec:63:85:21:50:2a:96:e1:20:18:14:38:d0:38:f6: 46:1b:13:4d:08:b7:f0:59:2e:d2:77:8f:89:80:f8: fb:90:cc:50:42:08:ef:1d:1b:4f:54:ff:bf:1e:df: d0:e6:c7:1a:b5:12:21:87:1d:04:34:4a:04:b2:ce: 77:f6:af:cd:fa:8e:43:93:61:b3:38:98:f9:a8:4c: c2:ac:b5:47:c0:6b:52:0b:9d:a5:6f:c6:1c:bc:27: 66:dd:04:ad:63:c6:24:29:32:9e:f0:df:c9:05:6f: c8:a2:f5:91:fe:6f:69:13:18:c9:be:84:fa:b1:9f: d1:da:73:4e:b3:9a:ed:91:9c:27:cd:20:14:62:5b: 63:74:c8:f9:18:84:f8:96:34:72:2d:e8:59:78:30: 53:9b:14:73:a7:c9:26:43:cf:85:ed:73:ca:e8:78: 08:39:28:b2:60:c4:2b:f1:f6:77:c5:61:7b:18:d9: 84:b6:15:54:f0:71:c3:f1:10:44:a8:37:5b:1e:63: 75:6c:90:19:4e:80:29:75:11:1c:ec:9c:4b:74:3e: 5b:4b:1c:36:7a:63:c5:69:7d:b6:b0:9f:3d:ae:f8: 82:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:20:D1:E9:66:41:2C:DF:E2:F8:2F:1D:0A:21:38:79:2F:19:3C:DD X509v3 Authority Key Identifier: keyid:F3:28:D7:9C:AE:CB:14:5F:22:DF:DF:8C:DE:C2:D0:56:9C:69:76:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/8yjXnK7LFF8i39-M3sLQVpxpdnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8yjXnK7LFF8i39-M3sLQVpxpdnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91415AA/3EFA241462E011EAA6D59A2CC4F9AE02/8yjXnK7LFF8i39-M3sLQVpxpdnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:db:e3:7b:15:6e:60:84:40:75:63:86:1b:0e:e6:15:23:25: b5:fa:63:2c:05:22:26:79:06:ae:8a:99:c2:b0:f5:e7:3e:3e: 9e:cc:56:3b:f7:4b:0c:ae:1b:47:11:93:c1:ea:c8:98:94:3a: 0f:91:32:0d:f3:6e:7c:09:39:85:5d:0d:d6:77:18:52:4a:f5: 90:02:10:f1:06:78:0f:21:69:60:1e:58:6f:80:96:b6:f0:94: 9e:03:d3:03:c0:4d:87:4a:5e:c8:0b:e2:ff:41:f7:81:03:6d: 74:f2:45:cc:af:ad:d6:13:d1:cf:58:17:d7:fe:7a:21:29:20: e0:e3:a8:78:c5:6a:2d:b8:3b:63:f3:2e:44:1f:60:44:0f:3b: 4c:21:af:66:14:6f:ac:03:61:26:25:ae:78:2b:df:6a:44:7d: da:4d:d8:79:7f:12:42:61:c5:b5:fa:74:d8:77:32:ea:40:4b: 27:f2:80:ae:f8:1e:aa:cb:d3:ea:c5:00:aa:45:36:f6:de:8f: 7c:bb:db:fb:71:4b:10:a1:42:ce:b4:e5:fd:0e:ae:5a:9e:ba: 9c:6e:2f:15:da:54:67:e0:c9:4b:f0:bc:16:39:ac:8f:40:fd: ae:b6:ca:45:55:ff:b2:09:f1:1c:37:d3:b2:66:ec:bf:62:d8: c7:3b:72:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1QUExMTAvBgNVBAUTKEYzMjhENzlDQUVDQjE0NUYyMkRGREY4Q0RFQzJEMDU2 OUM2OTc2N0MwHhcNMjUwNzE4MTk0OTM0WhcNMjUwNzI1MTk0OTM0WjAYMRYwFAYD VQQDEw02ODdhYTU0ZS0wOTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTwDtjHqSz0/N6oJEjO+1WLTU60rZdbAyejsF+LsY4UhUCqW4SAYFDjQOPZG GxNNCLfwWS7Sd4+JgPj7kMxQQgjvHRtPVP+/Ht/Q5scatRIhhx0ENEoEss539q/N +o5Dk2GzOJj5qEzCrLVHwGtSC52lb8YcvCdm3QStY8YkKTKe8N/JBW/IovWR/m9p ExjJvoT6sZ/R2nNOs5rtkZwnzSAUYltjdMj5GIT4ljRyLehZeDBTmxRzp8kmQ8+F 7XPK6HgIOSiyYMQr8fZ3xWF7GNmEthVU8HHD8RBEqDdbHmN1bJAZToApdREc7JxL dD5bSxw2emPFaX22sJ89rviCQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkg0elm QSzf4vgvHQohOHkvGTzdMB8GA1UdIwQYMBaAFPMo15yuyxRfIt/fjN7C0FacaXZ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTVBQS8zRUZBMjQxNDYy RTAxMUVBQTZENTlBMkNDNEY5QUUwMi84eWpYbks3TEZGOGkzOS1NM3NMUVZweHBk bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh5alhuSzdMRkY4aTM5LU0zc0xRVnB4cGRudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTVBQS8zRUZBMjQxNDYyRTAxMUVBQTZENTlBMkNDNEY5QUUwMi84eWpYbks3TEZG OGkzOS1NM3NMUVZweHBkbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA2+N7FW5ghEB1Y4YbDuYVIyW1+mMsBSImeQauipnCsPXnPj6ezFY7 90sMrhtHEZPB6siYlDoPkTIN8258CTmFXQ3WdxhSSvWQAhDxBngPIWlgHlhvgJa2 8JSeA9MDwE2HSl7IC+L/QfeBA2108kXMr63WE9HPWBfX/nohKSDg46h4xWotuDtj 8y5EH2BEDztMIa9mFG+sA2EmJa54K99qRH3aTdh5fxJCYcW1+nTYdzLqQEsn8oCu +B6qy9PqxQCqRTb23o98u9v7cUsQoULOtOX9Dq5anrqcbi8V2lRn4MlL8LwWOayP QP2utspFVf+yCfEcN9OyZuy/YtjHO3Kc -----END CERTIFICATE-----Generated at Sun Jul 20 06:19:42 2025 by rpki-client