$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft File: x8kdlvp-jS2SIZUipkBEI3UR4FE.mft (raw, json) Hash identifier: 0zVBSNOTCIqJCC+v0yaDQrupXc9YLx9wH1BJwgO8BZM= Subject key identifier: 51:BC:3B:BD:DD:67:B0:CF:9F:21:70:42:4D:AD:7F:63:97:AC:67:D9 Authority key identifier: C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51 Certificate issuer: /CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051 Certificate serial: 0392 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft Manifest number: 0389 Signing time: Mon 21 Jul 2025 01:06:49 +0000 Manifest this update: Mon 21 Jul 2025 01:06:48 +0000 Manifest next update: Mon 28 Jul 2025 01:06:48 +0000 Files and hashes: 1: x8kdlvp-jS2SIZUipkBEI3UR4FE.crl (hash: 74VKRmkGvoEsZYdROIKFKaNAfqq5a/REPjfwdjo3fRk=) 2: 89F6EEC4C82711EEBCC49737C4F9AE02.roa (hash: VO877qnYV5ysyh8xNP6j/NDwnBYHL9P7OWuoQhCU32U=) 3: C0BBFCC003A911EF9DE2F919C4F9AE02.roa (hash: Q0wzmAGM0ykkEHN1MJvFlbZ7walQQuiBKFZtznnJWt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.crl rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 914 (0x392) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52E8, serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051 Validity Not Before: Jul 21 01:06:48 2025 GMT Not After : Jul 28 01:06:48 2025 GMT Subject: CN=687d92a9-108a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5e:11:34:b2:55:dd:40:0b:76:01:56:0b:12: e7:dc:ec:62:b8:36:58:5c:bd:0b:38:6d:9e:1e:6e: 6c:46:76:b7:d8:30:e0:88:2e:f6:9a:58:fd:d2:22: 6b:6d:d8:9d:0b:26:2c:1f:96:9e:c4:b5:35:5e:ba: e8:d5:19:84:b4:e3:dd:b4:bc:f3:28:ed:84:8b:e5: db:31:da:10:63:06:85:97:db:ae:9a:2c:ae:84:e4: 8f:7a:5e:ab:69:07:51:6f:04:e5:81:71:00:84:81: 93:3a:10:69:51:c3:fb:da:59:70:eb:e7:19:3a:7d: 73:43:af:22:0e:8f:d6:55:1a:4f:ef:91:41:ad:93: d6:4c:26:d3:8f:fb:de:d9:08:b6:94:f4:86:60:fb: 58:f6:76:a5:5c:82:d6:d5:59:9b:6b:02:1c:5a:ec: f9:c7:b3:57:32:1e:02:36:f1:17:0b:0b:fe:f2:ac: 67:7d:b8:c3:2d:7f:70:00:11:56:f2:74:90:51:73: 4e:8b:16:46:9c:ed:8c:89:fd:bf:17:85:5f:88:4d: ce:6b:33:fa:4f:02:6b:02:00:47:05:ff:57:0f:d4: 26:30:f9:fb:07:a2:3d:d7:04:84:5f:80:c4:cd:cd: 9b:b4:b3:4c:05:7a:18:26:e5:ae:37:fb:fb:14:46: 50:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:BC:3B:BD:DD:67:B0:CF:9F:21:70:42:4D:AD:7F:63:97:AC:67:D9 X509v3 Authority Key Identifier: keyid:C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:10:9c:5f:cc:62:2c:5d:1a:05:e1:67:c5:ee:79:8a:87:e4: 17:11:51:43:bc:e8:36:1d:4f:e6:5e:f1:fd:88:ed:aa:9d:57: c7:02:f4:72:d5:d7:52:6a:a9:05:9c:4e:84:6e:eb:bd:fa:d2: 55:87:14:98:3f:04:a3:cd:dd:42:67:18:ce:2e:fd:7d:83:23: 37:34:54:78:f3:f6:d6:fc:9c:4f:15:8c:7f:20:16:64:ea:c1: b1:33:54:15:d6:8b:76:55:44:af:3a:d2:fc:93:6c:5a:a6:40: 44:ff:e4:6d:fb:88:31:c0:ec:87:b7:2e:c6:01:1d:4e:ea:f9: d4:b0:b0:c2:98:ad:37:3f:ac:56:3a:33:1f:55:af:af:b8:88: fc:33:a4:83:43:7d:69:e1:78:7a:23:c2:95:b7:23:c0:42:f6: 01:4e:96:55:5c:b6:e3:10:e9:5e:95:26:d2:20:e7:15:b6:02: bd:4b:e4:1f:9e:ec:41:1f:e4:06:e1:d7:b4:6d:b7:39:5d:e1: 88:34:c7:b8:a9:35:57:d2:6c:54:77:5c:a4:b7:47:fb:08:a8: 62:30:2b:92:9c:0d:44:56:45:1b:f5:7b:b0:2a:5e:f7:91:36: 9e:62:83:40:f9:2c:fd:50:26:05:e8:80:57:fe:b9:17:2e:df: 3e:16:5a:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRTgxMTAvBgNVBAUTKEM3QzkxRDk2RkE3RThEMkQ5MjIxOTUyMkE2NDA0NDIz NzUxMUUwNTEwHhcNMjUwNzIxMDEwNjQ4WhcNMjUwNzI4MDEwNjQ4WjAYMRYwFAYD VQQDEw02ODdkOTJhOS0xMDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApV4RNLJV3UALdgFWCxLn3OxiuDZYXL0LOG2eHm5sRna32DDgiC72mlj90iJr bdidCyYsH5aexLU1Xrro1RmEtOPdtLzzKO2Ei+XbMdoQYwaFl9uumiyuhOSPel6r aQdRbwTlgXEAhIGTOhBpUcP72llw6+cZOn1zQ68iDo/WVRpP75FBrZPWTCbTj/ve 2Qi2lPSGYPtY9nalXILW1VmbawIcWuz5x7NXMh4CNvEXCwv+8qxnfbjDLX9wABFW 8nSQUXNOixZGnO2Mif2/F4VfiE3OazP6TwJrAgBHBf9XD9QmMPn7B6I91wSEX4DE zc2btLNMBXoYJuWuN/v7FEZQcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFG8O73d Z7DPnyFwQk2tf2OXrGfZMB8GA1UdIwQYMBaAFMfJHZb6fo0tkiGVIqZARCN1EeBR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJFOC8xMTI3Q0QzRUFF NjUxMUVDQkNGOEM2NENDNEY5QUUwMi94OGtkbHZwLWpTMlNJWlVpcGtCRUkzVVI0 RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4a2RsdnAtalMyU0laVWlwa0JFSTNVUjRGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJFOC8xMTI3Q0QzRUFFNjUxMUVDQkNGOEM2NENDNEY5QUUwMi94OGtkbHZwLWpT MlNJWlVpcGtCRUkzVVI0RkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcEJxfzGIsXRoF4WfF7nmKh+QXEVFDvOg2HU/mXvH9iO2qnVfHAvRy 1ddSaqkFnE6Ebuu9+tJVhxSYPwSjzd1CZxjOLv19gyM3NFR48/bW/JxPFYx/IBZk 6sGxM1QV1ot2VUSvOtL8k2xapkBE/+Rt+4gxwOyHty7GAR1O6vnUsLDCmK03P6xW OjMfVa+vuIj8M6SDQ31p4Xh6I8KVtyPAQvYBTpZVXLbjEOlelSbSIOcVtgK9S+Qf nuxBH+QG4de0bbc5XeGINMe4qTVX0mxUd1ykt0f7CKhiMCuSnA1EVkUb9XuwKl73 kTaeYoNA+Sz9UCYF6IBX/rkXLt8+Flqx -----END CERTIFICATE-----Generated at Mon Jul 21 02:21:43 2025 by rpki-client