$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft File: S8VilW0H0G-q3JIziLmGYPcofJo.mft (raw, json) Hash identifier: UdHiGNZcrnk+wrvdy/PzOapEZcD9VZ16Li5ZgJ8QL0s= Subject key identifier: 55:BB:96:C4:DA:37:3D:DE:5A:54:F0:B3:3B:E3:C6:C5:B9:98:92:B0 Authority key identifier: 4B:C5:62:95:6D:07:D0:6F:AA:DC:92:33:88:B9:86:60:F7:28:7C:9A Certificate issuer: /CN=A91BF039/serialNumber=4BC562956D07D06FAADC923388B98660F7287C9A Certificate serial: 0B17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S8VilW0H0G-q3JIziLmGYPcofJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft Manifest number: 0B10 Signing time: Sun 20 Jul 2025 19:24:29 +0000 Manifest this update: Sun 20 Jul 2025 19:24:29 +0000 Manifest next update: Sun 27 Jul 2025 19:24:29 +0000 Files and hashes: 1: S8VilW0H0G-q3JIziLmGYPcofJo.crl (hash: lldiym4jI12BNpi99eaFmxz/FR5W4BPprgv+E9OxXeA=) 2: 6D49440845BC11EAB591BD20C4F9AE02.roa (hash: d1emA2UMoO8VznsV+Ait8FlVXTOyXdepIAgXYTBBJeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.crl rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S8VilW0H0G-q3JIziLmGYPcofJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2839 (0xb17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF039, serialNumber=4BC562956D07D06FAADC923388B98660F7287C9A Validity Not Before: Jul 20 19:24:29 2025 GMT Not After : Jul 27 19:24:29 2025 GMT Subject: CN=687d426d-cf44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e4:a6:72:4b:b5:ca:bc:df:95:34:fa:1f:20: ef:bb:b5:91:62:e8:a9:6d:ee:67:04:97:0c:1a:e4: 0a:78:5c:b0:b8:25:ec:6a:6a:46:ee:f8:7b:b7:c6: 89:16:72:5f:8f:4e:27:e4:79:f1:02:c8:ab:14:cd: 12:6f:00:cc:85:93:c9:0f:9b:1f:ba:e4:c1:12:52: 0d:70:bc:1c:3f:c0:77:7b:d1:88:e7:73:10:7a:90: 18:cf:a4:c0:e1:09:70:ae:ee:4e:30:13:08:d1:c2: ee:ee:33:c7:63:9a:d0:f8:26:c8:d5:3e:3e:93:c2: ba:2e:3b:43:ab:48:3e:0a:c5:87:15:de:d7:14:f3: b2:34:7c:3b:96:16:61:7a:0d:27:04:21:00:06:d8: 60:55:ea:40:ed:a0:47:3e:d7:19:56:c4:82:33:57: 5a:e6:ba:a4:39:5f:e5:45:25:16:d6:30:26:ad:89: 90:d7:a5:98:04:b3:66:c4:e7:e6:04:ce:13:d5:e6: 6c:4e:df:b0:ba:04:d0:72:63:93:b6:1c:c1:5a:8b: 96:7d:39:63:78:c8:c2:c0:ab:9d:7e:50:99:fe:69: 53:0e:24:35:94:81:65:4b:d0:d3:82:05:0d:e5:82: 3d:47:a6:20:8f:57:2a:1a:4f:8f:df:52:8d:2f:ad: af:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BB:96:C4:DA:37:3D:DE:5A:54:F0:B3:3B:E3:C6:C5:B9:98:92:B0 X509v3 Authority Key Identifier: keyid:4B:C5:62:95:6D:07:D0:6F:AA:DC:92:33:88:B9:86:60:F7:28:7C:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S8VilW0H0G-q3JIziLmGYPcofJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF039/25676DF045BB11EAA648771EC4F9AE02/S8VilW0H0G-q3JIziLmGYPcofJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:cf:a7:b1:ba:20:9c:8e:1b:92:32:84:7b:4e:4e:01:ca:0c: 0f:8e:d1:b9:56:24:11:44:14:72:5d:cd:f0:55:ff:eb:12:0e: db:3a:33:a2:a7:df:87:51:4c:e9:c2:b9:fa:38:2a:65:b6:7f: b1:fd:f5:d9:84:3d:e9:70:4d:83:d4:5a:7b:82:d7:f3:04:42: d6:77:27:72:11:f6:7b:c3:dc:57:9b:0d:33:96:f6:cd:6c:40: f4:45:28:50:a6:f2:0f:eb:6f:de:0d:ba:d2:bb:4f:38:5c:1a: ec:d8:e0:4c:3c:0d:61:8b:04:8e:15:15:4c:a4:de:30:06:21: 24:71:e0:39:c9:10:ca:b7:41:d8:ec:b7:86:47:ec:e0:65:7e: 84:cb:4e:1e:46:c2:bb:b2:96:6e:37:9e:f1:58:96:cf:9e:9e: 5e:46:70:d7:73:ef:64:32:e1:4d:1a:a3:70:ac:a0:89:42:88: a3:21:d7:c9:69:17:5a:a3:b4:0c:8f:e7:18:ef:50:da:32:2b: ea:c3:8f:4a:2a:61:3c:97:35:09:b4:96:14:d1:e6:6a:3e:9e: 26:89:79:c7:e1:6e:ef:30:47:d3:e5:68:93:ee:e3:25:59:9c: 6b:fc:f7:33:e9:33:34:cb:2d:e8:3c:0f:ca:7e:d2:d4:11:2a: 0a:fc:5f:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYwMzkxMTAvBgNVBAUTKDRCQzU2Mjk1NkQwN0QwNkZBQURDOTIzMzg4Qjk4NjYw RjcyODdDOUEwHhcNMjUwNzIwMTkyNDI5WhcNMjUwNzI3MTkyNDI5WjAYMRYwFAYD VQQDEw02ODdkNDI2ZC1jZjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueSmcku1yrzflTT6HyDvu7WRYuipbe5nBJcMGuQKeFywuCXsampG7vh7t8aJ FnJfj04n5HnxAsirFM0SbwDMhZPJD5sfuuTBElINcLwcP8B3e9GI53MQepAYz6TA 4Qlwru5OMBMI0cLu7jPHY5rQ+CbI1T4+k8K6LjtDq0g+CsWHFd7XFPOyNHw7lhZh eg0nBCEABthgVepA7aBHPtcZVsSCM1da5rqkOV/lRSUW1jAmrYmQ16WYBLNmxOfm BM4T1eZsTt+wugTQcmOTthzBWouWfTljeMjCwKudflCZ/mlTDiQ1lIFlS9DTggUN 5YI9R6Ygj1cqGk+P31KNL62vnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFW7lsTa Nz3eWlTwszvjxsW5mJKwMB8GA1UdIwQYMBaAFEvFYpVtB9BvqtySM4i5hmD3KHya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjAzOS8yNTY3NkRGMDQ1 QkIxMUVBQTY0ODc3MUVDNEY5QUUwMi9TOFZpbFcwSDBHLXEzSkl6aUxtR1lQY29m Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M4VmlsVzBIMEctcTNKSXppTG1HWVBjb2ZKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjAzOS8yNTY3NkRGMDQ1QkIxMUVBQTY0ODc3MUVDNEY5QUUwMi9TOFZpbFcwSDBH LXEzSkl6aUxtR1lQY29mSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+z6exuiCcjhuSMoR7Tk4BygwPjtG5ViQRRBRyXc3wVf/rEg7bOjOi p9+HUUzpwrn6OCpltn+x/fXZhD3pcE2D1Fp7gtfzBELWdydyEfZ7w9xXmw0zlvbN bED0RShQpvIP62/eDbrSu084XBrs2OBMPA1hiwSOFRVMpN4wBiEkceA5yRDKt0HY 7LeGR+zgZX6Ey04eRsK7spZuN57xWJbPnp5eRnDXc+9kMuFNGqNwrKCJQoijIdfJ aRdao7QMj+cY71DaMivqw49KKmE8lzUJtJYU0eZqPp4miXnH4W7vMEfT5WiT7uMl WZxr/Pcz6TM0yy3oPA/KftLUESoK/F+N -----END CERTIFICATE-----Generated at Mon Jul 21 07:13:09 2025 by rpki-client