$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft File: f_xaKedfnr4HnQUkfw3_DPmH8cI.mft (raw, json) Hash identifier: H4vDxndMQAcSiJ92ljUnIT40e5WdTvc8UjNTqjueHs4= Subject key identifier: 65:9F:5C:E3:04:95:33:F6:9F:63:0E:F1:CC:AA:2B:A3:86:A5:57:28 Authority key identifier: 7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 Certificate issuer: /CN=A91B4C67/serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Certificate serial: 34A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft Manifest number: 34A8 Signing time: Wed 06 Aug 2025 15:08:02 +0000 Manifest this update: Wed 06 Aug 2025 15:08:01 +0000 Manifest next update: Wed 13 Aug 2025 15:08:01 +0000 Files and hashes: 1: f_xaKedfnr4HnQUkfw3_DPmH8cI.crl (hash: tnJUWAHYo7Zbtbwpfbp4NZlnHz5R7PotFhkCnLqE+tU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13480 (0x34a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C67, serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Validity Not Before: Aug 6 15:08:01 2025 GMT Not After : Aug 13 15:08:01 2025 GMT Subject: CN=68936fd1-bf37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0e:f6:5c:9c:5f:69:e4:12:51:2c:45:e6:be: 2c:7d:e7:79:b4:3d:be:4c:dc:1d:ae:54:43:fc:77: 2d:a3:5e:22:6e:08:3f:94:54:69:d8:25:36:9b:1e: eb:8a:8e:eb:87:84:f4:94:2f:2c:5e:89:05:fd:f0: a8:c0:85:30:21:15:e0:3a:c3:f5:c9:f7:00:fe:55: 9a:48:fd:92:f6:da:9c:fe:a5:53:7b:5e:5d:91:e9: 55:34:14:30:5b:02:54:f3:88:1c:c5:c2:3c:89:53: c7:ef:ac:6b:7d:43:11:40:49:42:0e:a3:dd:95:ab: e0:3d:65:7f:a9:7a:de:70:aa:3b:10:8f:b8:93:fb: 50:b9:70:84:f3:46:8e:86:9f:1d:a7:3f:c7:58:95: 45:57:15:1a:6c:51:66:ec:6b:7b:ea:34:9a:0d:e8: bf:b0:a6:ab:41:94:c7:f6:c6:fe:8f:95:1f:52:56: 4d:85:2e:0d:e6:40:94:0f:16:b5:93:c8:54:8e:12: f4:fd:6a:e5:fd:89:f9:a8:1c:c2:2c:d1:bd:0e:76: 48:65:31:6d:7f:d4:8a:2c:56:32:e3:92:e4:9d:8f: e2:80:16:f5:8e:c9:fd:cf:9b:ea:c2:48:ca:9c:07: 5c:09:02:5d:ed:56:62:02:9c:4f:47:95:ab:1a:84: 1d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9F:5C:E3:04:95:33:F6:9F:63:0E:F1:CC:AA:2B:A3:86:A5:57:28 X509v3 Authority Key Identifier: keyid:7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:fc:13:2c:ca:a9:15:49:d5:09:f6:01:52:45:73:2d:ee:c5: 20:38:de:50:9a:bf:72:9f:e0:06:59:52:0a:c5:8f:c6:a6:d2: 92:b6:fe:30:70:93:db:49:c5:11:2a:d1:4a:b2:00:8b:e0:d1: 21:6b:94:0a:40:7c:50:9f:d5:8b:01:58:27:dc:c9:58:35:e0: a7:0f:f7:a3:e0:03:fb:49:68:ff:22:07:0c:d8:4c:8f:97:f6: 48:bc:50:5c:e7:9f:13:b0:78:eb:e7:37:bf:67:92:f4:38:1d: 4c:3a:32:61:de:16:5e:99:f8:8e:2b:06:93:36:89:18:02:2c: b8:d9:d7:77:05:f1:6a:95:b8:da:e0:97:31:82:22:6c:92:9d: 75:f6:e0:a0:90:74:46:84:7d:b8:68:ae:41:dc:19:9b:10:05: a4:14:7e:a4:1b:a9:68:55:4d:d1:ff:2f:a4:34:b9:18:31:1b: e8:c7:08:5f:b7:ce:ab:9c:6c:91:4c:ff:95:3e:e3:f0:80:f8: be:aa:5b:6e:24:7b:ab:7f:5a:5b:a5:77:1e:63:94:50:db:f8: 75:7d:a2:c5:1e:9c:13:c2:89:7e:73:e1:cc:4e:c4:85:60:2e: 5f:97:6d:fd:f5:25:97:c2:e0:5a:ad:aa:6c:25:8b:c5:9c:49: ea:25:c9:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDNjcxMTAvBgNVBAUTKDdGRkM1QTI5RTc1RjlFQkUwNzlEMDUyNDdGMERGRjBD Rjk4N0YxQzIwHhcNMjUwODA2MTUwODAxWhcNMjUwODEzMTUwODAxWjAYMRYwFAYD VQQDEw02ODkzNmZkMS1iZjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ72XJxfaeQSUSxF5r4sfed5tD2+TNwdrlRD/Hcto14ibgg/lFRp2CU2mx7r io7rh4T0lC8sXokF/fCowIUwIRXgOsP1yfcA/lWaSP2S9tqc/qVTe15dkelVNBQw WwJU84gcxcI8iVPH76xrfUMRQElCDqPdlavgPWV/qXrecKo7EI+4k/tQuXCE80aO hp8dpz/HWJVFVxUabFFm7Gt76jSaDei/sKarQZTH9sb+j5UfUlZNhS4N5kCUDxa1 k8hUjhL0/Wrl/Yn5qBzCLNG9DnZIZTFtf9SKLFYy45LknY/igBb1jsn9z5vqwkjK nAdcCQJd7VZiApxPR5WrGoQdzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWfXOME lTP2n2MO8cyqK6OGpVcoMB8GA1UdIwQYMBaAFH/8WinnX56+B50FJH8N/wz5h/HC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEM2Ny9CRjNGQzJGQTFE QTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5yNEhuUVVrZnczX0RQbUg4 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeGFLZWRmbnI0SG5RVWtmdzNfRFBtSDhjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEM2Ny9CRjNGQzJGQTFEQTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5y NEhuUVVrZnczX0RQbUg4Y0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj/BMsyqkVSdUJ9gFSRXMt7sUgON5Qmr9yn+AGWVIKxY/GptKStv4w cJPbScURKtFKsgCL4NEha5QKQHxQn9WLAVgn3MlYNeCnD/ej4AP7SWj/IgcM2EyP l/ZIvFBc558TsHjr5ze/Z5L0OB1MOjJh3hZemfiOKwaTNokYAiy42dd3BfFqlbja 4JcxgiJskp119uCgkHRGhH24aK5B3BmbEAWkFH6kG6loVU3R/y+kNLkYMRvoxwhf t86rnGyRTP+VPuPwgPi+qltuJHurf1pbpXceY5RQ2/h1faLFHpwTwol+c+HMTsSF YC5fl2399SWXwuBarapsJYvFnEnqJclT -----END CERTIFICATE-----Generated at Thu Aug 7 07:29:32 2025 by rpki-client