$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft File: 34pOYRe8o2iUDWjphUeYuWZgndQ.mft (raw, json) Hash identifier: hwEO2Pk4EWOmmxWQXFb3qMqqNEQuWCthpsL/16WjlVg= Subject key identifier: 3B:23:DB:9C:97:16:B0:8A:B6:96:A1:1D:BD:0B:AA:57:5B:BA:4F:3A Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 08F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft Manifest number: 08E8 Signing time: Fri 18 Jul 2025 20:38:34 +0000 Manifest this update: Fri 18 Jul 2025 20:38:33 +0000 Manifest next update: Fri 25 Jul 2025 20:38:33 +0000 Files and hashes: 1: 34pOYRe8o2iUDWjphUeYuWZgndQ.crl (hash: 2xtg/spMKHEDRW+D7WQr7uTt5vfLBFwiZpi+TtEVg68=) 2: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (hash: ASBYl23bkyFf4r9vJSPXkAo/YYzd1cAPrmJW3FNKskU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:38:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530, serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: Jul 18 20:38:33 2025 GMT Not After : Jul 25 20:38:33 2025 GMT Subject: CN=687ab0c9-9dcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8d:c2:54:8f:f8:2a:8a:ab:9d:f4:6d:ad:73: 62:93:da:53:33:c0:dd:6c:9f:7b:f2:5b:b2:41:7b: d4:2f:36:47:69:e2:7e:1b:ba:a7:c3:d9:6c:df:a7: e3:0a:eb:0d:4f:e6:1c:1f:e0:1a:18:80:f0:af:ad: 06:b0:5a:85:35:ef:8f:7f:9c:37:4d:02:a2:49:fe: 2d:e6:c9:9f:8a:15:44:89:1a:d6:11:40:b8:e3:01: aa:bc:71:0f:ad:59:b7:8c:f5:8a:8f:eb:ac:d5:7b: e4:72:23:ca:ff:10:91:60:e2:f3:76:1a:5c:82:78: 74:bd:61:6a:53:1b:51:22:33:36:16:f8:ae:4f:b0: c0:d0:56:d2:c8:f0:e4:b1:b7:c8:6f:1c:65:0c:ba: cc:19:bd:09:03:0e:e4:a2:c9:db:2f:48:d6:6a:d2: 57:4d:17:35:ec:37:4c:df:29:98:6c:91:f7:86:b3: 6a:3c:07:3a:c4:8b:ad:43:ce:e3:88:ae:3c:6c:ad: 0f:27:10:bb:a9:f9:d9:f5:1b:e7:e9:1e:c7:bd:d7: ad:17:83:3e:c2:17:e3:55:2b:a1:e7:3d:22:30:58: 5a:d5:b2:93:7a:4c:ae:9f:25:f7:a1:bd:b2:d9:f9: 19:87:b5:64:98:3f:56:bd:86:1d:f2:70:26:c9:ad: ce:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:23:DB:9C:97:16:B0:8A:B6:96:A1:1D:BD:0B:AA:57:5B:BA:4F:3A X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:f8:03:98:14:1d:24:15:5a:9e:d9:e1:0d:f1:d2:29:ef:19: 75:a2:cd:ca:02:cd:af:38:36:b8:e5:64:63:bb:06:b3:45:5f: e9:ff:92:99:f5:34:4f:42:6b:f8:d9:a3:f3:d0:c7:6a:68:2c: 7a:45:6e:2f:0e:6b:92:11:05:b3:87:8f:23:bf:c8:8b:e0:c4: d0:06:78:a7:78:2d:db:70:1c:62:48:58:8c:3e:67:4c:ba:4e: 32:d4:ab:74:35:d4:80:5b:87:e8:db:f4:56:9e:82:4c:cf:8b: 8e:5f:80:6d:e8:d3:dc:41:c5:35:72:79:a3:cd:10:61:85:08: ea:6d:c6:b1:94:21:7b:bb:b4:3d:06:3d:80:4b:04:e2:5c:e7: 78:7a:7d:e5:6d:cc:e6:5b:cd:c1:d0:95:27:c6:c2:e6:99:53: 17:2d:4f:5c:b0:ec:e2:d1:49:9a:28:e0:5f:6c:a7:22:c9:87: c0:09:57:33:2e:56:c2:9a:3d:de:5e:db:91:1f:30:ae:ed:e8: af:53:1f:57:ca:6b:58:30:82:e4:7a:89:87:58:56:b2:68:aa: 5c:d3:ed:40:c4:8f:85:ac:11:79:6a:6f:15:a7:f9:fa:0f:fb: 49:de:27:31:b7:61:bc:fa:9b:f7:94:7f:90:38:08:2c:85:05: 89:2f:6c:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjUwNzE4MjAzODMzWhcNMjUwNzI1MjAzODMzWjAYMRYwFAYD VQQDEw02ODdhYjBjOS05ZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuI3CVI/4KoqrnfRtrXNik9pTM8DdbJ978luyQXvULzZHaeJ+G7qnw9ls36fj CusNT+YcH+AaGIDwr60GsFqFNe+Pf5w3TQKiSf4t5smfihVEiRrWEUC44wGqvHEP rVm3jPWKj+us1XvkciPK/xCRYOLzdhpcgnh0vWFqUxtRIjM2FviuT7DA0FbSyPDk sbfIbxxlDLrMGb0JAw7kosnbL0jWatJXTRc17DdM3ymYbJH3hrNqPAc6xIutQ87j iK48bK0PJxC7qfnZ9Rvn6R7HvdetF4M+whfjVSuh5z0iMFha1bKTekyunyX3ob2y 2fkZh7VkmD9WvYYd8nAmya3O3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsj25yX FrCKtpahHb0Lqldbuk86MB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODUzMC8xOEY2NkQ4NkIxRTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8y aVVEV2pwaFVlWXVXWmduZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi+AOYFB0kFVqe2eEN8dIp7xl1os3KAs2vODa45WRjuwazRV/p/5KZ 9TRPQmv42aPz0MdqaCx6RW4vDmuSEQWzh48jv8iL4MTQBnineC3bcBxiSFiMPmdM uk4y1Kt0NdSAW4fo2/RWnoJMz4uOX4Bt6NPcQcU1cnmjzRBhhQjqbcaxlCF7u7Q9 Bj2ASwTiXOd4en3lbczmW83B0JUnxsLmmVMXLU9csOzi0UmaKOBfbKciyYfACVcz LlbCmj3eXtuRHzCu7eivUx9XymtYMILkeomHWFayaKpc0+1AxI+FrBF5am8Vp/n6 D/tJ3icxt2G8+pv3lH+QOAgshQWJL2ww -----END CERTIFICATE-----Generated at Sun Jul 20 03:26:05 2025 by rpki-client