$ rpki-client -vvf rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft File: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft (raw, json) Hash identifier: VGVq268fv5P4w/dtZearXnzIBskRi8Muyt/8JrmulPI= Subject key identifier: FB:89:89:D2:35:9C:14:A7:63:04:25:11:2C:2A:10:F3:1A:EE:71:0C Authority key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 Certificate issuer: /CN=A91516FF/serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft Manifest number: 4C Signing time: Sat 09 Aug 2025 07:59:38 +0000 Manifest this update: Sat 09 Aug 2025 07:59:38 +0000 Manifest next update: Sat 16 Aug 2025 07:59:38 +0000 Files and hashes: 1: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl (hash: 0hJf4BUNg4M0WeyOxKqED15QEB+QjAmJHNv6uZQUixs=) 2: 572A655C6E8E11F0BC00AD68C4F9AE02.roa (hash: cUCnwUzBgOkdgH52sYU+IHvJQMt7Wg+jJl+nGicq16I=) 3: 692243D640AA11F096F2746AC4F9AE02.roa (hash: rkd9k1u1dkPxEMEh5w+r9Bswb8IlB1n+y2yWKJIM8Tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Validity Not Before: Aug 9 07:59:38 2025 GMT Not After : Aug 16 07:59:38 2025 GMT Subject: CN=6896ffea-be6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d5:48:72:2f:97:36:97:27:80:5e:08:03:2f: 6c:02:5a:70:ed:8d:ca:a2:8d:85:f9:6a:72:30:6e: f2:bc:2b:c4:64:26:0c:c9:6f:b6:96:bd:7e:cd:2d: 7e:d5:f7:75:87:9f:86:ac:ee:70:f6:bf:66:b3:db: bd:f3:09:dd:83:54:49:49:ce:6a:db:74:6c:da:7e: 7f:25:2a:cd:0c:c3:fb:bf:63:0c:2a:8f:87:43:50: d0:e8:ab:13:42:13:a5:78:86:7c:d7:0b:fb:ac:07: 95:a2:bf:f0:71:ca:80:5e:d6:dd:6e:f4:9b:37:10: 36:9c:db:f8:08:aa:a5:25:40:52:2f:f0:2c:cc:db: 11:33:ac:a2:84:35:d6:4a:9a:e6:fc:e2:ff:79:87: d5:19:32:ed:ee:7b:09:eb:27:bc:9a:6a:68:0f:5a: c7:bc:4b:af:0d:2e:18:7a:95:8a:f8:9f:0c:bf:3c: b0:ac:0f:09:20:3e:cc:95:a8:b4:8c:b2:e8:e0:04: 3f:32:9e:9a:4e:8d:4e:b0:19:95:87:40:a6:15:9b: 9a:db:d5:92:42:cc:25:d4:dc:01:16:7e:57:0f:c6: af:f0:87:4d:21:a8:dd:fe:54:76:98:6e:08:04:a5: d0:2e:72:62:9c:b2:7f:1c:25:7e:1e:e2:51:20:f8: 0e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:89:89:D2:35:9C:14:A7:63:04:25:11:2C:2A:10:F3:1A:EE:71:0C X509v3 Authority Key Identifier: keyid:DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:f1:94:68:cd:36:91:b6:eb:8c:75:04:3a:f0:be:41:b1:19: ca:c5:74:bf:df:ec:92:29:e0:aa:70:c8:92:a7:d2:6f:bc:02: 50:94:aa:20:54:ad:a4:23:52:23:7a:a0:79:63:59:26:24:66: 51:8c:a8:84:b7:01:41:88:dd:0f:f3:4a:8f:f8:f0:56:4e:15: ed:b4:fe:a6:74:c9:eb:b5:c4:b2:40:0d:b6:23:20:f3:d6:74: a8:e2:13:74:c9:d7:87:e7:3f:43:0e:7c:94:cb:33:fa:5a:21: 1d:27:de:8c:bb:5e:59:0a:10:a8:8e:9a:a8:ad:90:70:f0:4d: e8:20:1f:88:78:f2:47:06:30:01:f0:56:63:2f:03:58:80:b0: e1:db:d9:e8:8e:1a:71:ab:65:2a:81:b8:c6:79:9b:83:2a:13: ae:23:75:bd:a9:33:b0:d1:b1:8a:e5:7a:87:15:29:f6:cd:8f: 71:a7:e1:3e:8f:5a:7c:5f:85:54:ee:c5:42:11:80:f2:fb:bc: 59:ac:7c:e2:3d:b2:00:d3:26:9c:f3:e4:52:b6:08:98:08:e2: 27:08:2b:ca:8e:ff:1a:d8:62:a9:ac:19:bc:98:4e:ef:1c:6a: d2:8b:a8:cc:43:4b:c8:90:7b:17:5f:bf:4b:c6:c6:83:17:ea: f6:80:5b:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTZGRjExMC8GA1UEBRMoREZDQThGREFBNUZFRjk0OEUwRUNGNkY5QzcwMzYzOUI1 NjUzOUQ5OTAeFw0yNTA4MDkwNzU5MzhaFw0yNTA4MTYwNzU5MzhaMBgxFjAUBgNV BAMTDTY4OTZmZmVhLWJlNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV1UhyL5c2lyeAXggDL2wCWnDtjcqijYX5anIwbvK8K8RkJgzJb7aWvX7NLX7V 93WHn4as7nD2v2az273zCd2DVElJzmrbdGzafn8lKs0Mw/u/Ywwqj4dDUNDoqxNC E6V4hnzXC/usB5Wiv/BxyoBe1t1u9Js3EDac2/gIqqUlQFIv8CzM2xEzrKKENdZK mub84v95h9UZMu3uewnrJ7yaamgPWse8S68NLhh6lYr4nwy/PLCsDwkgPsyVqLSM sujgBD8ynppOjU6wGZWHQKYVm5rb1ZJCzCXU3AEWflcPxq/wh00hqN3+VHaYbggE pdAucmKcsn8cJX4e4lEg+A5rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+4mJ0jWc FKdjBCURLCoQ8xrucQwwHwYDVR0jBBgwFoAU38qP2qX++Ujg7Pb5xwNjm1ZTnZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxNkZGLzJEQTU1OTEyMTQx NjExRjBBODUyMzIxOUM0RjlBRTAyLzM4cVAycVgtLVVqZzdQYjV4d05qbTFaVG5a ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzhxUDJxWC0tVWpnN1BiNXh3TmptMVpUblprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUx NkZGLzJEQTU1OTEyMTQxNjExRjBBODUyMzIxOUM0RjlBRTAyLzM4cVAycVgtLVVq ZzdQYjV4d05qbTFaVG5aay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAArxlGjNNpG264x1BDrwvkGxGcrFdL/f7JIp4KpwyJKn0m+8AlCUqiBU raQjUiN6oHljWSYkZlGMqIS3AUGI3Q/zSo/48FZOFe20/qZ0yeu1xLJADbYjIPPW dKjiE3TJ14fnP0MOfJTLM/paIR0n3oy7XlkKEKiOmqitkHDwTeggH4h48kcGMAHw VmMvA1iAsOHb2eiOGnGrZSqBuMZ5m4MqE64jdb2pM7DRsYrleocVKfbNj3Gn4T6P WnxfhVTuxUIRgPL7vFmsfOI9sgDTJpzz5FK2CJgI4icIK8qO/xrYYqmsGbyYTu8c atKLqMxDS8iQexdfv0vGxoMX6vaAW5U= -----END CERTIFICATE-----Generated at Sun Aug 10 04:27:36 2025 by rpki-client