$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: HzFZe+newMkoTiQa1uKW+MVFEr7UMq+gkqaUsoW4iPs= Subject key identifier: 13:9E:D1:C2:14:C3:39:50:FA:E2:F4:23:55:DC:2C:61:E8:07:1C:8D Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 041E Signing time: Sat 23 Aug 2025 01:30:18 +0000 Manifest this update: Sat 23 Aug 2025 01:30:18 +0000 Manifest next update: Sat 30 Aug 2025 01:30:18 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: NYDAosNtAIWqZjstAA0cf+7t+jtkVGoridCpOIf6Gmw=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: tIDiP3hNqVNzA0IqRbP/SuZVvzepUKW2qtpK5KHsOYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Aug 23 01:30:18 2025 GMT Not After : Aug 30 01:30:18 2025 GMT Subject: CN=68a919aa-b7c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:4a:34:70:8a:e2:68:f7:70:54:75:58:fc:59: cb:5d:ca:03:3f:04:f6:15:ea:af:e0:41:00:a0:3f: cd:bc:62:a4:98:7b:18:3d:fc:f1:e9:76:81:31:3d: 48:d3:cf:41:8b:f4:57:d4:f1:1c:49:d4:ad:36:08: 9e:a2:6a:5b:94:bf:ba:d2:a1:d2:d9:1c:65:73:a9: 19:a5:47:3a:4a:a4:b7:bb:ef:1c:09:d3:10:e5:fb: d8:cc:68:41:6e:ee:b2:5f:b7:92:ae:06:30:45:0c: 13:de:86:d9:8d:0a:10:48:ff:e7:92:ba:9c:90:cb: 43:6e:54:d8:77:f4:d8:de:fc:88:39:be:74:43:20: 57:17:ad:fb:94:42:ac:a8:c5:e1:30:0e:80:94:8b: 4c:85:e7:83:fd:9f:31:c6:69:36:f2:da:fd:e3:82: 1a:aa:c3:b9:69:5a:35:bb:79:aa:0b:fd:ee:f0:7a: 3d:4e:8e:3a:28:d5:c3:26:b7:ed:bf:8a:cf:24:85: 20:db:65:7d:3a:0c:2a:52:78:b8:6e:0d:02:d4:eb: b9:b7:9a:f4:7b:95:7a:1b:f9:92:5f:b2:07:85:df: ad:ab:b1:c4:33:37:91:2a:e1:fd:6f:4d:f6:f2:e5: f5:3d:5a:00:91:2f:db:ba:d0:65:6b:43:44:34:61: 88:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9E:D1:C2:14:C3:39:50:FA:E2:F4:23:55:DC:2C:61:E8:07:1C:8D X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:f4:59:a2:79:aa:86:23:89:d8:5e:7c:7a:f9:55:ae:42:6c: af:79:a2:3c:2e:ef:c8:30:a7:c7:40:89:e2:ec:c2:c4:00:bc: da:d0:c4:98:71:0b:12:6a:4b:63:16:73:77:55:71:35:35:d4: 98:91:d7:4c:cc:18:b8:e6:bf:35:88:67:c4:b8:6d:7e:af:e4: 16:09:34:1b:a8:ee:5c:85:09:d9:b3:56:de:82:a5:6a:ea:f5: 3b:85:89:b5:11:66:a9:c8:e6:2b:67:75:1f:06:1c:09:11:29: d3:91:db:45:8d:d5:bc:74:82:d7:97:11:a9:dc:21:45:68:20: bb:09:e1:82:02:d9:7e:19:6c:63:c2:8a:1c:ca:1d:d9:8c:58: 60:fd:64:55:20:b7:ee:83:87:b9:9e:22:00:59:d6:51:52:8a: 0a:60:0f:af:42:72:9d:74:39:56:ad:d4:0b:b6:45:86:3d:b9: 24:60:5f:9e:93:28:36:36:f6:5c:fe:df:00:0a:2a:4f:80:eb: be:87:72:82:53:f4:cc:65:8c:2a:49:1d:5d:d9:6c:09:5f:35: c7:0c:93:19:a2:8b:09:e6:2a:d9:1d:b5:72:63:67:e6:ca:7d: 57:80:ed:02:7c:b4:ce:ea:5c:3b:22:13:c7:1f:60:95:e5:2e: ab:79:34:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjUwODIzMDEzMDE4WhcNMjUwODMwMDEzMDE4WjAYMRYwFAYD VQQDEw02OGE5MTlhYS1iN2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkko0cIriaPdwVHVY/FnLXcoDPwT2Feqv4EEAoD/NvGKkmHsYPfzx6XaBMT1I 089Bi/RX1PEcSdStNgieompblL+60qHS2Rxlc6kZpUc6SqS3u+8cCdMQ5fvYzGhB bu6yX7eSrgYwRQwT3obZjQoQSP/nkrqckMtDblTYd/TY3vyIOb50QyBXF637lEKs qMXhMA6AlItMheeD/Z8xxmk28tr944IaqsO5aVo1u3mqC/3u8Ho9To46KNXDJrft v4rPJIUg22V9OgwqUni4bg0C1Ou5t5r0e5V6G/mSX7IHhd+tq7HEMzeRKuH9b032 8uX1PVoAkS/butBla0NENGGI4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOe0cIU wzlQ+uL0I1XcLGHoBxyNMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ9FmieaqGI4nYXnx6+VWuQmyveaI8Lu/IMKfHQIni7MLEALza0MSY cQsSaktjFnN3VXE1NdSYkddMzBi45r81iGfEuG1+r+QWCTQbqO5chQnZs1begqVq 6vU7hYm1EWapyOYrZ3UfBhwJESnTkdtFjdW8dILXlxGp3CFFaCC7CeGCAtl+GWxj woocyh3ZjFhg/WRVILfug4e5niIAWdZRUooKYA+vQnKddDlWrdQLtkWGPbkkYF+e kyg2NvZc/t8ACipPgOu+h3KCU/TMZYwqSR1d2WwJXzXHDJMZoosJ5irZHbVyY2fm yn1XgO0CfLTO6lw7IhPHH2CV5S6reTTs -----END CERTIFICATE-----Generated at Sun Aug 24 05:02:11 2025 by rpki-client