$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: 0p8pcJkt0V+uNnHAlB6RJlJut+qbBFKSAGIjl8syrZY= Subject key identifier: 73:46:B5:38:DA:6B:4F:D2:55:12:CB:03:78:B3:53:20:63:6A:9E:C7 Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: A6 Signing time: Sat 23 Aug 2025 06:26:52 +0000 Manifest this update: Sat 23 Aug 2025 06:26:52 +0000 Manifest next update: Sat 30 Aug 2025 06:26:52 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: tACS6WCe9tYV7XAi2MFugjd9ib02RsvHYh+Mb9vYxAM=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Aug 23 06:26:52 2025 GMT Not After : Aug 30 06:26:52 2025 GMT Subject: CN=68a95f2c-b048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c8:fa:a4:21:12:d7:ba:f2:8f:10:e1:b3:c6: c1:2b:f7:d9:2d:4c:56:81:e3:2c:af:f5:90:87:ae: 9d:fb:9f:75:99:1d:2f:1e:e7:be:9b:9c:61:9f:ec: b8:f2:a9:93:ec:f5:cb:ac:94:0b:c1:47:f6:20:59: 7f:2d:b0:f2:81:6a:fa:24:eb:de:37:e7:ce:74:2c: 7c:9a:2b:5f:73:7d:37:62:49:88:be:0b:e4:f2:4a: d9:69:a2:0e:df:89:7a:a8:a5:28:5b:39:71:e0:a7: 73:86:a9:b6:dc:6e:69:0e:b8:0f:0f:72:60:a3:91: 71:03:d3:b4:1c:90:59:39:1a:f1:d7:0c:90:6d:86: f9:ff:17:dc:5b:14:a1:f1:ae:b7:85:98:c0:5e:9e: 48:81:a0:02:a5:8b:4d:ff:df:e4:da:30:0a:60:b5: 41:27:53:5a:2c:ec:d0:ba:c3:fe:c6:e0:c1:5f:cf: fc:2d:c4:58:50:33:f7:90:1d:a8:e1:a2:e6:cc:a4: 41:de:6b:7e:7a:f8:e2:9d:78:5b:47:51:29:be:83: 9c:76:fb:6e:b4:30:8a:66:94:e0:5f:86:54:39:5c: f9:82:ae:12:a3:fd:00:f8:59:57:32:04:fc:b1:00: 00:7c:4a:54:23:5c:f4:f0:3b:b9:12:29:9f:13:9d: 30:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:46:B5:38:DA:6B:4F:D2:55:12:CB:03:78:B3:53:20:63:6A:9E:C7 X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:77:7c:be:0c:f8:18:ea:f1:24:fd:44:9e:5c:76:52:09:17: 66:3d:fa:7c:4c:a1:dc:f0:a5:4f:17:f8:91:98:00:84:b9:ff: f5:1d:c8:3f:3b:12:6a:4c:29:19:84:12:cb:71:64:89:b5:fa: f5:db:3d:bd:c1:0e:4e:82:19:ee:51:c3:e4:6e:9f:3e:96:d5: b7:6b:11:00:97:ca:20:7d:9c:55:00:44:fb:65:ec:8a:8d:ef: da:0e:85:eb:5d:dc:5e:67:0f:39:4d:fc:24:2f:51:06:87:a2: a2:7a:16:58:f1:5f:a9:30:c1:7d:bb:5d:7e:a6:e0:f0:69:94: 56:b3:51:10:d9:55:50:39:e5:07:84:1a:f7:b1:64:28:58:07: e9:0e:6b:d8:45:65:2f:9c:96:40:2a:5e:c4:ee:ce:bd:e1:82: c5:f1:9d:ef:fd:a7:e6:22:68:9a:f9:bd:d8:98:0d:a9:b9:1d: 77:76:ed:f2:e2:03:f9:78:ec:e2:e2:6e:17:25:67:a1:f7:ba: 35:ab:27:b4:c3:06:15:f6:ab:25:ca:9c:37:1b:35:00:6d:4e: 81:8c:0c:20:94:61:ee:01:28:eb:88:f9:2e:f9:a0:2e:0b:f8: 3f:08:14:7f:00:91:f4:a3:c4:8a:49:14:c0:f0:67:ce:82:b7: d9:84:5e:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0N0YxMTAvBgNVBAUTKDQ2NDE5MDdGRTVGNDczRjE4OTA2RDQ2QUEyMDMwN0VE RURBMTlDOUQwHhcNMjUwODIzMDYyNjUyWhcNMjUwODMwMDYyNjUyWjAYMRYwFAYD VQQDEw02OGE5NWYyYy1iMDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8j6pCES17ryjxDhs8bBK/fZLUxWgeMsr/WQh66d+591mR0vHue+m5xhn+y4 8qmT7PXLrJQLwUf2IFl/LbDygWr6JOveN+fOdCx8mitfc303YkmIvgvk8krZaaIO 34l6qKUoWzlx4Kdzhqm23G5pDrgPD3Jgo5FxA9O0HJBZORrx1wyQbYb5/xfcWxSh 8a63hZjAXp5IgaACpYtN/9/k2jAKYLVBJ1NaLOzQusP+xuDBX8/8LcRYUDP3kB2o 4aLmzKRB3mt+evjinXhbR1EpvoOcdvtutDCKZpTgX4ZUOVz5gq4So/0A+FlXMgT8 sQAAfEpUI1z08Du5EimfE50w+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNGtTja a0/SVRLLA3izUyBjap7HMB8GA1UdIwQYMBaAFEZBkH/l9HPxiQbUaqIDB+3toZyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQ3Ri9COTFBQUE3NDg2 REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNfR0pCdFJxb2dNSDdlMmhu SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNf R0pCdFJxb2dNSDdlMmhuSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1d3y+DPgY6vEk/USeXHZSCRdmPfp8TKHc8KVPF/iRmACEuf/1Hcg/ OxJqTCkZhBLLcWSJtfr12z29wQ5OghnuUcPkbp8+ltW3axEAl8ogfZxVAET7ZeyK je/aDoXrXdxeZw85TfwkL1EGh6KiehZY8V+pMMF9u11+puDwaZRWs1EQ2VVQOeUH hBr3sWQoWAfpDmvYRWUvnJZAKl7E7s694YLF8Z3v/afmImia+b3YmA2puR13du3y 4gP5eOzi4m4XJWeh97o1qye0wwYV9qslypw3GzUAbU6BjAwglGHuASjriPku+aAu C/g/CBR/AJH0o8SKSRTA8GfOgrfZhF6+ -----END CERTIFICATE-----Generated at Sat Aug 23 10:32:50 2025 by rpki-client