$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft File: 34UAobIJAKu39Z62mwcBjfgEXF4.mft (raw, json) Hash identifier: Dorcfb30OW8dfEgZ+Cr9JHQAMouhEJUMYyUmQkz9nMg= Subject key identifier: F5:38:E5:C1:E7:CC:36:A9:16:C1:08:71:7F:B1:97:F5:B5:6D:6E:48 Authority key identifier: DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E Certificate issuer: /CN=A916EB73/serialNumber=DF8500A1B20900ABB7F59EB69B07018DF8045C5E Certificate serial: 34B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft Manifest number: 34AD Signing time: Fri 08 Aug 2025 15:21:44 +0000 Manifest this update: Fri 08 Aug 2025 15:21:43 +0000 Manifest next update: Fri 15 Aug 2025 15:21:43 +0000 Files and hashes: 1: 34UAobIJAKu39Z62mwcBjfgEXF4.crl (hash: QKsl0kAsmVFl0UdTO2ZaVXg9w+A0OKzraL5oiGOxWfQ=) 2: B92D2816064311EAAFD3B416C4F9AE02.roa (hash: buGGZeDXwMHm5dXTyfYB98NmzEX65VEiY2DWWPYjPI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB73, serialNumber=DF8500A1B20900ABB7F59EB69B07018DF8045C5E Validity Not Before: Aug 8 15:21:43 2025 GMT Not After : Aug 15 15:21:43 2025 GMT Subject: CN=68961607-4acb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8a:82:62:70:28:ec:bf:c9:e2:50:b4:64:30: 31:cb:47:46:40:9f:ff:fa:e0:14:8a:ea:da:39:01: 70:18:87:b7:ad:8e:86:4c:91:f2:09:4d:f5:05:9b: 1c:49:c5:75:6d:8c:8f:45:0d:ff:48:43:64:12:67: 48:de:f9:3c:58:0e:f3:f7:63:6c:c6:9a:c2:01:1d: d1:61:0d:cc:9e:44:8d:d3:a1:9e:d8:3e:bd:e3:8d: 50:1c:0b:06:1b:a6:cd:67:c2:4c:ba:e6:8c:f6:15: 79:39:20:b0:0c:33:e1:2e:6f:08:49:52:4f:91:84: d8:af:c5:a7:61:83:56:f9:c6:d0:e6:83:3e:1a:33: 50:75:48:b3:c2:f9:56:c4:3a:4f:a9:50:dd:b9:ce: 2a:7e:27:c2:1d:39:19:4f:94:c0:ee:66:f5:ce:8f: 82:fd:b6:9f:e3:b7:08:12:62:19:d7:b1:d0:9a:7f: 7e:89:74:0d:7d:e6:b3:80:72:0e:e4:2b:4a:d8:2f: 58:e8:37:33:b8:a9:bb:41:5c:54:ce:4a:d1:f4:da: ce:d6:d4:8d:b5:a7:c0:c0:4f:f5:12:aa:7a:51:96: 31:a0:47:7f:57:2a:17:50:1c:6d:68:91:3c:59:3e: 5c:a5:72:dd:2a:fa:ef:be:3a:b1:57:cd:f9:3b:40: 41:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:38:E5:C1:E7:CC:36:A9:16:C1:08:71:7F:B1:97:F5:B5:6D:6E:48 X509v3 Authority Key Identifier: keyid:DF:85:00:A1:B2:09:00:AB:B7:F5:9E:B6:9B:07:01:8D:F8:04:5C:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34UAobIJAKu39Z62mwcBjfgEXF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB73/B88FDE8C1DAA11E2A5C890A608B02CD2/34UAobIJAKu39Z62mwcBjfgEXF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:a0:54:0d:96:37:c1:93:de:7a:ac:b8:18:9f:3f:39:04:80: b7:a1:dd:a6:dd:fa:c3:a0:c5:52:89:f1:9d:00:74:84:1d:18: 7a:14:71:1c:b5:d7:8e:65:80:4d:51:25:25:48:bc:72:36:5c: 98:d2:f2:c9:ff:cf:0f:2e:f1:6b:c8:e6:31:b4:13:be:92:9d: 89:bf:de:11:c5:bc:bc:57:ab:a1:45:b3:ad:25:ab:46:57:88: b8:89:de:53:74:d6:ab:f2:0a:f4:ca:81:19:a0:ee:9f:65:fe: e2:2f:0e:dc:a3:9c:98:b1:9c:e8:a8:a7:bc:02:79:63:4a:6c: 56:aa:38:3d:c0:43:51:68:01:c8:24:d8:d4:84:ff:35:ba:2a: 59:9c:58:ad:b7:19:81:f9:ea:72:be:d4:f7:7c:72:b5:6d:44: 76:41:83:23:b4:88:da:67:d1:6b:51:69:18:3e:c4:4a:cb:b0: 69:02:4c:21:26:cb:51:fc:f0:e4:83:2a:da:7c:37:fd:c1:ad: 13:57:7e:82:d3:26:16:5e:c2:54:09:8b:4c:4d:aa:b8:b8:f4: 61:36:8b:a7:eb:eb:24:18:86:50:a9:ab:3f:df:53:5d:fa:3f: a4:42:fe:fa:c5:42:35:56:a0:8f:b1:7a:9b:59:43:ef:8f:5d: dc:ee:85:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCNzMxMTAvBgNVBAUTKERGODUwMEExQjIwOTAwQUJCN0Y1OUVCNjlCMDcwMThE RjgwNDVDNUUwHhcNMjUwODA4MTUyMTQzWhcNMjUwODE1MTUyMTQzWjAYMRYwFAYD VQQDEw02ODk2MTYwNy00YWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIqCYnAo7L/J4lC0ZDAxy0dGQJ//+uAUiuraOQFwGIe3rY6GTJHyCU31BZsc ScV1bYyPRQ3/SENkEmdI3vk8WA7z92NsxprCAR3RYQ3MnkSN06Ge2D69441QHAsG G6bNZ8JMuuaM9hV5OSCwDDPhLm8ISVJPkYTYr8WnYYNW+cbQ5oM+GjNQdUizwvlW xDpPqVDduc4qfifCHTkZT5TA7mb1zo+C/baf47cIEmIZ17HQmn9+iXQNfeazgHIO 5CtK2C9Y6DczuKm7QVxUzkrR9NrO1tSNtafAwE/1Eqp6UZYxoEd/VyoXUBxtaJE8 WT5cpXLdKvrvvjqxV835O0BBlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPU45cHn zDapFsEIcX+xl/W1bW5IMB8GA1UdIwQYMBaAFN+FAKGyCQCrt/WetpsHAY34BFxe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI3My9CODhGREU4QzFE QUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFLdTM5WjYybXdjQmpmZ0VY RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0VUFvYklKQUt1MzlaNjJtd2NCamZnRVhGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI3My9CODhGREU4QzFEQUExMUUyQTVDODkwQTYwOEIwMkNEMi8zNFVBb2JJSkFL dTM5WjYybXdjQmpmZ0VYRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1oFQNljfBk956rLgYnz85BIC3od2m3frDoMVSifGdAHSEHRh6FHEc tdeOZYBNUSUlSLxyNlyY0vLJ/88PLvFryOYxtBO+kp2Jv94Rxby8V6uhRbOtJatG V4i4id5TdNar8gr0yoEZoO6fZf7iLw7co5yYsZzoqKe8AnljSmxWqjg9wENRaAHI JNjUhP81uipZnFittxmB+epyvtT3fHK1bUR2QYMjtIjaZ9FrUWkYPsRKy7BpAkwh JstR/PDkgyrafDf9wa0TV36C0yYWXsJUCYtMTaq4uPRhNoun6+skGIZQqas/31Nd +j+kQv76xUI1VqCPsXqbWUPvj13c7oUz -----END CERTIFICATE-----Generated at Sat Aug 9 10:48:06 2025 by rpki-client