$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft File: 8YaDAEWuVIbpCXNDfanSB6VmhpE.mft (raw, json) Hash identifier: e/grExR2a+ElVdr/jyi3/2heOMzRa48A5x2fVr79B2I= Subject key identifier: C2:28:AA:80:56:FF:59:8B:4C:55:D7:85:6F:EC:7D:68:20:A1:4C:5A Authority key identifier: F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 Certificate issuer: /CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691 Certificate serial: 3203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft Manifest number: 3203 Signing time: Fri 18 Jul 2025 15:29:43 +0000 Manifest this update: Fri 18 Jul 2025 15:29:42 +0000 Manifest next update: Fri 25 Jul 2025 15:29:42 +0000 Files and hashes: 1: 8YaDAEWuVIbpCXNDfanSB6VmhpE.crl (hash: 3tvvdeYSV5OOMv6N0AbZKf6MboF2jGtHQZ0wrgR7NAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12803 (0x3203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAA, serialNumber=F186830045AE5486E90973437DA9D207A5668691 Validity Not Before: Jul 18 15:29:42 2025 GMT Not After : Jul 25 15:29:42 2025 GMT Subject: CN=687a6867-bb1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:15:30:ec:d3:79:59:e7:fe:7d:14:bf:8b:fd: c2:58:b3:ab:42:84:d9:ee:93:c2:9c:7b:d8:f4:0f: 5d:8e:01:76:32:72:c9:47:13:f5:c6:a0:a2:b0:66: 05:12:d0:14:d4:76:86:8a:c1:73:92:e5:19:fd:17: f7:eb:7d:1e:2b:8c:e6:2a:39:e1:8c:0d:27:1f:40: 86:7b:74:9c:23:32:30:23:eb:f2:40:47:4d:b6:47: ce:00:77:3e:60:e2:12:51:36:89:e6:21:8d:3d:2a: a1:77:97:3c:28:bc:b3:b3:60:50:8c:b4:00:eb:ff: 13:33:4e:dd:18:08:1f:cc:68:b0:b6:0b:45:d1:b6: a0:21:52:ff:84:e8:4a:07:fc:59:fb:f2:e4:46:7f: 6b:6f:2f:63:8c:9c:2b:7f:12:eb:b0:e0:d2:eb:ce: 86:a3:ae:8f:cb:22:8b:9a:cd:51:ea:a9:2c:88:4e: 48:1e:74:03:b3:e4:04:1d:d9:c3:d2:74:71:be:be: a9:84:2c:81:aa:f1:fd:a6:21:70:2d:8e:99:e8:dd: ae:e2:47:3f:9b:42:c5:d0:6b:f7:27:48:7c:6d:35: 80:54:30:d9:f0:b4:ad:a4:5a:0e:65:97:3a:c7:2d: 8d:19:dd:65:10:28:09:41:00:52:99:a1:c8:55:59: 55:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:28:AA:80:56:FF:59:8B:4C:55:D7:85:6F:EC:7D:68:20:A1:4C:5A X509v3 Authority Key Identifier: keyid:F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:20:4b:41:8f:52:3a:18:ab:e4:6a:96:f8:38:43:0c:22:0c: f7:a3:78:66:07:b0:f6:7c:f9:f9:d0:1b:89:3d:36:be:cf:02: 19:1f:4e:e6:d4:b5:1d:44:a2:68:df:71:c6:89:a7:bd:c7:25: a1:61:b6:ac:15:2b:55:58:e1:09:ef:9b:66:72:ab:f6:4d:2b: 9c:80:17:84:39:56:b9:2b:ae:cf:a5:b7:0c:ee:51:cb:20:f0: c3:29:05:05:1d:96:eb:d1:21:21:6b:28:17:9e:4a:78:51:1b: 47:c4:61:e0:7e:ce:16:b1:e1:56:1f:30:7e:67:65:b7:56:8c: 0e:ec:df:dd:b6:87:c3:13:bd:78:fc:81:f9:6d:38:f9:18:55: 23:2e:2e:9a:62:4f:ab:ff:06:a5:03:04:f3:c1:4a:ac:a0:95: 2e:fb:c9:f3:8c:58:02:a5:a9:11:64:8f:38:17:0e:b9:f1:e7: 8a:a7:38:17:b0:c9:29:64:18:5e:31:5d:bd:5f:ed:2e:1f:9e: c8:ed:25:95:4f:97:cb:7f:29:72:0b:ce:e4:c4:89:bb:52:55: f6:17:83:ae:be:91:9b:ee:37:5d:71:e3:70:4c:24:38:1e:8c: cd:7b:b9:28:c4:b9:91:b3:65:13:b7:bb:f4:87:14:23:2a:c3: 72:ab:0f:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUExMTAvBgNVBAUTKEYxODY4MzAwNDVBRTU0ODZFOTA5NzM0MzdEQTlEMjA3 QTU2Njg2OTEwHhcNMjUwNzE4MTUyOTQyWhcNMjUwNzI1MTUyOTQyWjAYMRYwFAYD VQQDEw02ODdhNjg2Ny1iYjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBUw7NN5Wef+fRS/i/3CWLOrQoTZ7pPCnHvY9A9djgF2MnLJRxP1xqCisGYF EtAU1HaGisFzkuUZ/Rf3630eK4zmKjnhjA0nH0CGe3ScIzIwI+vyQEdNtkfOAHc+ YOISUTaJ5iGNPSqhd5c8KLyzs2BQjLQA6/8TM07dGAgfzGiwtgtF0bagIVL/hOhK B/xZ+/LkRn9rby9jjJwrfxLrsODS686Go66PyyKLms1R6qksiE5IHnQDs+QEHdnD 0nRxvr6phCyBqvH9piFwLY6Z6N2u4kc/m0LF0Gv3J0h8bTWAVDDZ8LStpFoOZZc6 xy2NGd1lECgJQQBSmaHIVVlVGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIoqoBW /1mLTFXXhW/sfWggoUxaMB8GA1UdIwQYMBaAFPGGgwBFrlSG6QlzQ32p0gelZoaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBQS84QjI4MjQ1MjlG RjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJYnBDWE5EZmFuU0I2Vm1o cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZYURBRVd1VklicENYTkRmYW5TQjZWbWhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBQS84QjI4MjQ1MjlGRjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJ YnBDWE5EZmFuU0I2Vm1ocEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYIEtBj1I6GKvkapb4OEMMIgz3o3hmB7D2fPn50BuJPTa+zwIZH07m 1LUdRKJo33HGiae9xyWhYbasFStVWOEJ75tmcqv2TSucgBeEOVa5K67PpbcM7lHL IPDDKQUFHZbr0SEhaygXnkp4URtHxGHgfs4WseFWHzB+Z2W3VowO7N/dtofDE714 /IH5bTj5GFUjLi6aYk+r/walAwTzwUqsoJUu+8nzjFgCpakRZI84Fw658eeKpzgX sMkpZBheMV29X+0uH57I7SWVT5fLfylyC87kxIm7UlX2F4OuvpGb7jddceNwTCQ4 HozNe7koxLmRs2UTt7v0hxQjKsNyqw9N -----END CERTIFICATE-----Generated at Sun Jul 20 10:22:08 2025 by rpki-client