$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: BJrVTP2fQu+DuWkA5uT91zts5S4kCb934rDTgc2mO/M= Subject key identifier: 4B:49:E6:CE:8D:B5:B3:C4:C2:49:D0:6F:E7:BB:CC:37:3C:D4:52:9E Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 02B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 02AA Signing time: Mon 21 Jul 2025 01:51:46 +0000 Manifest this update: Mon 21 Jul 2025 01:51:45 +0000 Manifest next update: Mon 28 Jul 2025 01:51:45 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: mjriVkBm6s1RQ/z0F+1pDKHIXL1WbLi1YNFxLqqKid8=) 2: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: u+f2WuZi/RfejSsKb+UJ5iop6uONOfiC5gYEcHsbs6w=) 3: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: YDAiAdPjFYhBL5YjXoGqzzo8vheOfOc5VPFiiANGCJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 690 (0x2b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Jul 21 01:51:45 2025 GMT Not After : Jul 28 01:51:45 2025 GMT Subject: CN=687d9d31-a057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fe:28:0a:74:59:29:e2:3f:46:ff:17:c9:88: d4:db:b2:32:a8:4f:4c:31:0a:9d:c2:fb:b6:1f:db: 8f:95:33:ac:6b:5c:65:27:ad:6c:57:1b:46:a0:d0: dc:d5:b7:ad:d7:2a:ea:2e:0a:d6:73:22:d6:35:da: 95:a9:6f:ff:18:18:7c:58:c3:60:8f:83:f6:24:98: 9a:27:24:2d:a0:74:63:c5:1a:17:01:f5:37:ef:06: e1:5e:b6:38:5c:12:15:51:a0:38:5a:f3:7f:7b:bd: b0:ab:1f:3f:cb:94:52:ca:d5:5b:fc:1f:13:57:dc: d6:66:8a:88:f0:e8:05:52:3a:45:87:95:60:24:3c: 9e:a9:72:f0:f2:07:b1:92:50:c5:10:82:81:3c:06: c0:9e:1c:f0:31:ec:89:9e:f7:2e:2f:a6:d0:37:bc: d1:af:e1:10:4e:bb:6d:7c:52:29:39:ff:4d:2e:74: e9:62:7a:f7:b9:66:3e:e8:f3:6c:0b:1f:16:90:e0: 79:c7:c6:a8:0c:af:e3:38:4e:72:a3:26:37:11:4f: 2c:d5:1b:33:00:bf:e0:c6:8a:b0:06:a2:53:98:75: 9e:35:3e:78:88:43:c2:76:c9:98:3c:ee:b8:b6:36: ab:88:d3:bf:16:73:e0:73:81:51:72:3a:51:96:ca: 76:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:49:E6:CE:8D:B5:B3:C4:C2:49:D0:6F:E7:BB:CC:37:3C:D4:52:9E X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:f6:65:e2:a6:a6:61:a0:2b:cb:ca:7c:84:72:c1:c3:d6:8e: ff:06:22:c0:f6:1d:ce:83:da:c1:37:2b:4d:a3:d0:9f:6b:bf: b6:2c:98:d3:a0:83:45:9d:ce:0e:10:ed:8a:ab:96:fd:1a:ac: 14:b3:5b:fd:73:ad:9f:22:08:c1:3e:a2:33:e3:72:2c:58:56: 7a:3b:cb:59:99:c4:98:9b:51:63:8b:0d:d2:38:4a:e6:da:0e: 85:9a:2e:2c:f6:4a:74:7f:04:27:99:03:bc:99:89:8c:ea:29: da:6a:8c:59:38:10:70:53:fd:b3:25:ae:a9:15:b0:e1:a5:32: 8e:ba:10:12:2b:61:14:fd:d8:6a:93:f7:ba:b2:b0:9d:f9:f9: 1f:11:af:24:2e:11:6a:45:b9:37:00:87:a2:18:39:81:f2:cc: 7e:06:1f:4b:b5:a6:a0:a6:ca:11:f2:3e:5b:00:b5:44:d1:5b: 3e:7f:5d:15:09:15:3f:7a:46:59:d7:c4:81:86:47:a6:74:55: 2d:1f:95:57:8e:e0:df:f3:1c:e2:06:5c:70:03:d2:e3:e3:ae: 46:31:a7:0f:f0:99:1f:42:8c:87:7b:73:0e:20:d0:24:47:2a: aa:ea:4b:9a:f8:04:6f:a1:df:12:30:5d:e5:64:a4:04:e6:91: ea:e9:27:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUwNzIxMDE1MTQ1WhcNMjUwNzI4MDE1MTQ1WjAYMRYwFAYD VQQDEw02ODdkOWQzMS1hMDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/4oCnRZKeI/Rv8XyYjU27IyqE9MMQqdwvu2H9uPlTOsa1xlJ61sVxtGoNDc 1bet1yrqLgrWcyLWNdqVqW//GBh8WMNgj4P2JJiaJyQtoHRjxRoXAfU37wbhXrY4 XBIVUaA4WvN/e72wqx8/y5RSytVb/B8TV9zWZoqI8OgFUjpFh5VgJDyeqXLw8gex klDFEIKBPAbAnhzwMeyJnvcuL6bQN7zRr+EQTrttfFIpOf9NLnTpYnr3uWY+6PNs Cx8WkOB5x8aoDK/jOE5yoyY3EU8s1RszAL/gxoqwBqJTmHWeNT54iEPCdsmYPO64 tjariNO/FnPgc4FRcjpRlsp2/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtJ5s6N tbPEwknQb+e7zDc81FKeMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc9mXipqZhoCvLynyEcsHD1o7/BiLA9h3Og9rBNytNo9Cfa7+2LJjT oINFnc4OEO2Kq5b9GqwUs1v9c62fIgjBPqIz43IsWFZ6O8tZmcSYm1Fjiw3SOErm 2g6Fmi4s9kp0fwQnmQO8mYmM6inaaoxZOBBwU/2zJa6pFbDhpTKOuhASK2EU/dhq k/e6srCd+fkfEa8kLhFqRbk3AIeiGDmB8sx+Bh9LtaagpsoR8j5bALVE0Vs+f10V CRU/ekZZ18SBhkemdFUtH5VXjuDf8xziBlxwA9Lj465GMacP8JkfQoyHe3MOINAk Ryqq6kua+ARvod8SMF3lZKQE5pHq6Sdi -----END CERTIFICATE-----Generated at Mon Jul 21 12:39:15 2025 by rpki-client