$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: PXGM+g1KFvrI7SY8wlxwlWolXz3PVPjkkdPZlKQGDgk= Subject key identifier: 0B:DF:4F:E8:86:90:39:BA:64:84:F8:97:1B:8C:6A:E0:B2:D0:01:E4 Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 0363 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 035E Signing time: Sat 09 Aug 2025 01:29:11 +0000 Manifest this update: Sat 09 Aug 2025 01:29:10 +0000 Manifest next update: Sat 16 Aug 2025 01:29:10 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: ZFqzBwhQZzQ1D2bMXUy3mWDu9mSkSgooL/L/ngnmncU=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: 3Kdq8iB7GHkmorOzNCkj5Eih8OtxQjBmOJhG+WoD4A8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 867 (0x363) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Aug 9 01:29:10 2025 GMT Not After : Aug 16 01:29:10 2025 GMT Subject: CN=6896a467-186f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:e6:da:3c:11:92:44:4f:ae:7c:7b:7f:cc: 11:78:de:19:64:de:d2:52:a4:27:2c:a8:0e:31:ea: 44:39:66:83:62:5d:c7:e0:c7:af:cf:83:c3:f8:ac: a6:ff:fb:64:7c:af:f2:ad:53:74:83:11:1b:a3:98: 3f:f4:42:0e:74:24:67:c5:54:f0:5d:40:d3:21:f8: d9:cf:42:cb:11:d3:46:2f:a6:43:75:39:bd:1a:6d: ee:ca:34:b6:bf:d3:69:32:50:b0:f3:52:de:27:40: cc:d2:dd:53:85:fe:70:a5:06:f0:2e:c6:73:45:7c: 35:1f:f9:64:cd:b8:57:6d:00:07:65:d3:ae:f4:f3: a1:a2:c1:4a:ab:d1:95:45:ba:0d:9f:82:1a:5c:37: 23:02:5f:03:24:11:04:83:82:31:28:0f:4b:69:2d: 8e:c0:50:d6:58:2a:1d:af:ed:af:91:aa:39:35:8a: fe:a7:bc:d5:ab:e3:43:b3:fe:96:91:17:88:ad:cd: 76:7c:ba:ed:92:f9:8e:d8:5d:cb:4c:a0:40:74:02: b1:f4:57:7a:dd:36:c1:ad:8c:93:de:bc:8a:9d:60: 0f:a4:44:e4:c2:2a:39:88:f0:6c:59:6c:54:32:65: 81:d2:69:ae:ed:70:d8:38:65:11:85:e6:85:e0:22: 7a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:DF:4F:E8:86:90:39:BA:64:84:F8:97:1B:8C:6A:E0:B2:D0:01:E4 X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:d6:7e:cb:df:f9:68:a1:6f:7d:70:b1:86:26:54:a7:39:be: 21:92:d8:c4:bc:56:61:9b:40:23:26:4b:2f:fe:c8:ff:78:55: f3:5a:ae:6d:a1:98:8f:88:36:03:6c:ec:75:d0:a4:94:bf:c1: 56:83:51:b4:9f:04:53:9b:fe:dc:3b:e6:46:76:74:ce:a9:36: ea:c1:39:0d:0b:8a:15:f6:03:e9:3b:fb:98:39:c8:fa:d5:4f: 99:4b:92:0f:fe:00:15:4e:4e:40:28:23:5f:05:ae:18:07:f1: 11:67:a0:07:9a:ac:d6:bc:73:8e:d1:b8:8b:74:73:06:39:15: 8b:79:5f:4c:ee:b4:94:c4:ca:6d:19:8e:cf:5b:9a:f5:98:c9: a6:3f:c1:a3:8c:54:47:13:ba:b7:d4:02:f8:2e:e1:3c:4e:a9: 7c:bc:51:ba:23:3b:3a:10:18:b8:31:67:f2:7c:aa:9b:71:d5: e5:29:50:19:90:b5:2b:29:1a:2e:99:44:5b:59:57:08:31:f4: 9c:5f:52:85:4c:b2:07:ee:2c:4b:40:e0:c5:05:3b:c9:cd:c6: 2b:62:77:0b:9b:a5:28:ca:84:cc:58:4e:0c:1b:4f:82:57:5c: 7a:2b:f6:7a:d4:18:d1:d6:16:ab:5b:24:43:58:5d:cb:10:69: bf:69:1d:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjUwODA5MDEyOTEwWhcNMjUwODE2MDEyOTEwWjAYMRYwFAYD VQQDEw02ODk2YTQ2Ny0xODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9nm2jwRkkRPrnx7f8wReN4ZZN7SUqQnLKgOMepEOWaDYl3H4Mevz4PD+Kym //tkfK/yrVN0gxEbo5g/9EIOdCRnxVTwXUDTIfjZz0LLEdNGL6ZDdTm9Gm3uyjS2 v9NpMlCw81LeJ0DM0t1Thf5wpQbwLsZzRXw1H/lkzbhXbQAHZdOu9POhosFKq9GV RboNn4IaXDcjAl8DJBEEg4IxKA9LaS2OwFDWWCodr+2vkao5NYr+p7zVq+NDs/6W kReIrc12fLrtkvmO2F3LTKBAdAKx9Fd63TbBrYyT3ryKnWAPpETkwio5iPBsWWxU MmWB0mmu7XDYOGURheaF4CJ6kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvfT+iG kDm6ZIT4lxuMauCy0AHkMB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb1n7L3/looW99cLGGJlSnOb4hktjEvFZhm0AjJksv/sj/eFXzWq5t oZiPiDYDbOx10KSUv8FWg1G0nwRTm/7cO+ZGdnTOqTbqwTkNC4oV9gPpO/uYOcj6 1U+ZS5IP/gAVTk5AKCNfBa4YB/ERZ6AHmqzWvHOO0biLdHMGORWLeV9M7rSUxMpt GY7PW5r1mMmmP8GjjFRHE7q31AL4LuE8Tql8vFG6Izs6EBi4MWfyfKqbcdXlKVAZ kLUrKRoumURbWVcIMfScX1KFTLIH7ixLQODFBTvJzcYrYncLm6UoyoTMWE4MG0+C V1x6K/Z61BjR1harWyRDWF3LEGm/aR1N -----END CERTIFICATE-----Generated at Sun Aug 10 20:59:18 2025 by rpki-client