$ rpki-client -vvf rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft File: 8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft (raw, json) Hash identifier: hbCYOih6m7LJuAPo2U5XXYy7VRhNNhL5Cu4DkaU6jqo= Subject key identifier: D2:52:D9:D4:B2:81:A5:45:AF:9B:47:AF:32:23:FC:BC:56:18:DF:AD Authority key identifier: F0:7F:B1:3E:F9:1E:22:11:B0:FE:BC:85:5A:DD:AF:30:1B:06:71:A4 Certificate issuer: /CN=A91D087E/serialNumber=F07FB13EF91E2211B0FEBC855ADDAF301B0671A4 Certificate serial: 0C70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft Manifest number: 0C67 Signing time: Sun 20 Jul 2025 18:24:40 +0000 Manifest this update: Sun 20 Jul 2025 18:24:39 +0000 Manifest next update: Sun 27 Jul 2025 18:24:39 +0000 Files and hashes: 1: 8H-xPvkeIhGw_ryFWt2vMBsGcaQ.crl (hash: 6rCtJrvvJi48H/IRli2FCXfKMgoBmw4asSfrxg14ccE=) 2: 8A7C342604FE11EAB778E81CC4F9AE02.roa (hash: W5qhrk3NsiS79KgqelHi0v6nSmVUxngvNJSR/yTxWhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.crl rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3184 (0xc70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D087E, serialNumber=F07FB13EF91E2211B0FEBC855ADDAF301B0671A4 Validity Not Before: Jul 20 18:24:39 2025 GMT Not After : Jul 27 18:24:39 2025 GMT Subject: CN=687d3467-9311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8a:f1:d4:c8:0e:cb:1a:c1:c7:ce:78:b6:72: 86:95:b6:54:a2:b0:50:4c:0e:a4:9d:e6:74:53:68: de:55:a2:36:89:dc:c3:f6:eb:33:b2:01:e6:4b:a4: 3e:90:a6:23:f9:86:e8:85:73:cf:0d:12:8d:e1:3a: 3b:eb:c9:33:db:e3:b5:ba:d0:e8:24:dc:d0:03:6b: 67:d5:2e:ea:bb:a5:49:41:18:a0:ff:a6:ed:e4:1a: bd:64:41:27:1c:fb:52:cb:06:71:34:df:32:0e:f2: 2e:a8:ca:b8:b7:53:27:84:6b:d2:9e:e8:06:68:c3: 8a:90:f3:01:5f:a8:b1:d3:1c:f8:ae:3f:61:b8:04: dd:d4:d2:bc:30:5d:72:f9:d3:15:be:65:d8:a4:5e: 11:cb:2b:91:2b:8e:95:0b:be:e4:67:08:e8:40:cb: 19:1d:1a:52:1c:e7:c3:16:b4:fc:5d:8c:98:d8:48: 57:da:d8:a7:b4:97:67:6a:21:32:e1:c5:89:cc:42: 1a:0a:6f:54:07:7a:9d:e7:90:09:f1:56:ea:d1:42: 37:cb:3f:bb:5a:1b:4b:1b:6e:99:39:c3:f1:87:be: 29:b7:e6:de:a0:14:2e:23:66:02:20:30:0e:a9:af: 85:5c:ab:1f:15:b6:de:0d:f3:8a:97:6b:5c:40:e2: 2c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:52:D9:D4:B2:81:A5:45:AF:9B:47:AF:32:23:FC:BC:56:18:DF:AD X509v3 Authority Key Identifier: keyid:F0:7F:B1:3E:F9:1E:22:11:B0:FE:BC:85:5A:DD:AF:30:1B:06:71:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:24:ce:5f:02:a5:85:2e:9b:03:81:cd:f7:c4:29:14:96:b6: 5a:71:d6:2c:26:4f:b6:b7:ac:cf:5e:f8:de:56:b8:a9:1c:71: fa:d0:4b:be:87:75:aa:d5:4d:b1:a8:48:33:7b:78:92:36:7b: a4:3a:b8:b0:b3:e7:b4:dc:a5:3d:b1:3e:b2:6a:f5:e4:34:26: 4f:4e:4b:bd:0e:a5:61:14:d3:c5:8e:72:f8:5a:30:87:e3:12: 2a:ac:a1:dc:7d:5f:a6:24:9c:23:ce:9e:09:40:e8:0d:e1:5b: 55:c4:bd:70:78:48:c5:05:f3:f0:57:7c:f1:f8:6d:83:62:cf: 39:ae:06:00:56:99:2e:22:6f:40:eb:50:10:dc:6c:8f:5d:17: 1e:a7:f6:2e:cf:63:62:16:81:22:97:af:47:a8:42:4f:ee:c1: 27:bd:7d:94:6c:8a:d8:40:d6:53:1d:c6:99:9b:67:59:b6:4b: 09:3b:bb:6b:61:6f:56:62:b6:a9:92:dd:1c:f5:cc:d0:47:a6: 2f:bc:d5:cf:75:5f:bf:28:7a:46:e3:90:f7:4f:d4:b7:9e:5c: 24:56:c8:ef:05:51:c6:fb:e3:51:70:29:94:e3:e2:cb:12:f7: aa:f1:5a:f7:0d:e3:7a:fe:c4:30:f4:8c:2a:e0:9e:99:6b:73: 38:2a:17:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA4N0UxMTAvBgNVBAUTKEYwN0ZCMTNFRjkxRTIyMTFCMEZFQkM4NTVBRERBRjMw MUIwNjcxQTQwHhcNMjUwNzIwMTgyNDM5WhcNMjUwNzI3MTgyNDM5WjAYMRYwFAYD VQQDEw02ODdkMzQ2Ny05MzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYrx1MgOyxrBx854tnKGlbZUorBQTA6kneZ0U2jeVaI2idzD9uszsgHmS6Q+ kKYj+YbohXPPDRKN4To768kz2+O1utDoJNzQA2tn1S7qu6VJQRig/6bt5Bq9ZEEn HPtSywZxNN8yDvIuqMq4t1MnhGvSnugGaMOKkPMBX6ix0xz4rj9huATd1NK8MF1y +dMVvmXYpF4RyyuRK46VC77kZwjoQMsZHRpSHOfDFrT8XYyY2EhX2tintJdnaiEy 4cWJzEIaCm9UB3qd55AJ8Vbq0UI3yz+7WhtLG26ZOcPxh74pt+beoBQuI2YCIDAO qa+FXKsfFbbeDfOKl2tcQOIsEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJS2dSy gaVFr5tHrzIj/LxWGN+tMB8GA1UdIwQYMBaAFPB/sT75HiIRsP68hVrdrzAbBnGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDg3RS9CMDE5RjFDQTA0 RkMxMUVBOENBRUQ0MTVDNEY5QUUwMi84SC14UHZrZUloR3dfcnlGV3Qydk1Cc0dj YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhILXhQdmtlSWhHd19yeUZXdDJ2TUJzR2NhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDg3RS9CMDE5RjFDQTA0RkMxMUVBOENBRUQ0MTVDNEY5QUUwMi84SC14UHZrZUlo R3dfcnlGV3Qydk1Cc0djYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmJM5fAqWFLpsDgc33xCkUlrZacdYsJk+2t6zPXvjeVripHHH60Eu+ h3Wq1U2xqEgze3iSNnukOriws+e03KU9sT6yavXkNCZPTku9DqVhFNPFjnL4WjCH 4xIqrKHcfV+mJJwjzp4JQOgN4VtVxL1weEjFBfPwV3zx+G2DYs85rgYAVpkuIm9A 61AQ3GyPXRcep/Yuz2NiFoEil69HqEJP7sEnvX2UbIrYQNZTHcaZm2dZtksJO7tr YW9WYrapkt0c9czQR6YvvNXPdV+/KHpG45D3T9S3nlwkVsjvBVHG++NRcCmU4+LL Eveq8Vr3DeN6/sQw9Iwq4J6Za3M4Khe/ -----END CERTIFICATE-----Generated at Mon Jul 21 06:59:39 2025 by rpki-client