$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: i6tNc0YdRQ5Ar2pHfgCfjRqz+Z/7LWRJvQa/obxWzQA= Subject key identifier: 7A:6D:51:C7:7E:53:BF:B0:A5:5E:9F:86:3F:7C:96:A6:4B:AC:47:14 Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 03EA Signing time: Thu 03 Jul 2025 01:43:19 +0000 Manifest this update: Thu 03 Jul 2025 01:43:18 +0000 Manifest next update: Thu 10 Jul 2025 01:43:18 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: vi5xkluQz3VlHPEkZ2kxrz52JtaYVFnIwfdkGIEaWfI=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: tIDiP3hNqVNzA0IqRbP/SuZVvzepUKW2qtpK5KHsOYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:43:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Jul 3 01:43:18 2025 GMT Not After : Jul 10 01:43:18 2025 GMT Subject: CN=6865e036-f26c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:42:a9:5e:27:c7:56:24:58:23:31:49:ae:04: d9:9d:76:08:fe:86:32:4b:85:cc:e1:1b:d4:73:88: 85:80:85:60:0e:bf:5d:49:7b:a9:61:8d:d3:96:c4: 71:db:a4:f8:fc:93:2c:f4:9e:9b:e1:bb:a5:24:ba: 43:ea:01:2f:25:d4:6d:79:97:a3:f1:02:09:2b:03: dd:be:45:a4:b7:cf:15:fd:2b:d9:2e:0d:7d:65:35: 4c:63:34:87:88:c3:83:a3:3f:19:b3:53:e5:f2:cd: d0:1b:bb:f9:f1:4b:4a:91:93:ba:97:bd:48:bb:3c: 22:ba:ce:4e:f2:e6:85:12:e8:a9:ee:ec:8e:fe:33: b3:a8:f2:47:f8:c1:eb:56:75:a3:b0:5e:38:02:4f: ba:52:a5:81:cc:2e:82:19:3d:c2:06:86:ba:0c:61: 40:99:2b:d0:21:8e:07:07:3f:58:e6:80:d4:da:8c: c1:f5:8f:f2:af:f4:7e:62:bb:47:12:a8:13:f6:0d: 04:fa:96:a2:55:a4:2e:92:5f:93:5b:a9:9c:0a:4d: af:75:e7:25:83:3f:b4:e6:c1:42:ca:ed:aa:f1:40: a4:5d:6e:6a:e0:f4:4a:e6:98:9d:ae:b8:9b:50:d1: 77:be:cc:2a:0b:5d:32:26:71:0c:f3:28:28:bf:ca: 5d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:6D:51:C7:7E:53:BF:B0:A5:5E:9F:86:3F:7C:96:A6:4B:AC:47:14 X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:13:97:dd:6e:a9:58:af:2e:0b:52:29:0a:4e:18:fa:cf:c9: d5:c6:53:d3:e7:43:77:fe:0c:f5:da:b2:8a:5d:cb:3f:d5:e3: 3c:90:6d:2d:d0:a5:69:d4:1f:b1:c4:b2:3d:b2:c6:49:ca:04: ca:04:b2:17:98:bd:5f:d5:8c:81:66:62:5d:c0:a9:97:44:7d: ea:45:27:1c:8e:6c:43:20:a8:cd:ff:dd:c6:d1:d3:54:89:3b: 57:05:39:98:68:dc:27:65:ba:93:3d:ff:35:b5:d6:fb:7b:41: e4:d7:13:90:5a:dd:40:de:68:3b:00:5b:2a:60:b6:f3:2f:c8: 64:39:ed:4b:d4:10:85:06:09:e1:51:6d:03:d2:39:fd:b3:cb: 6d:17:14:2c:ba:5b:57:41:20:96:65:22:e5:f7:b5:3c:1a:2b: bb:f9:2b:2d:cb:97:28:15:50:1b:d9:2f:29:4f:20:47:5a:0e: ab:b1:8e:4b:ad:bc:8f:27:7c:71:59:8f:ee:c6:c3:c5:72:9f: 73:dd:33:c4:b3:7a:a1:97:f0:c0:64:22:bf:72:ce:23:d1:16: 67:19:70:31:0f:1b:72:12:1e:40:9f:ab:cb:7b:4a:d3:6e:21: 40:b3:ee:1b:6f:fb:01:58:19:28:ee:f9:c7:02:ac:67:2d:8e: 37:41:4f:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjUwNzAzMDE0MzE4WhcNMjUwNzEwMDE0MzE4WjAYMRYwFAYD VQQDEw02ODY1ZTAzNi1mMjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUKpXifHViRYIzFJrgTZnXYI/oYyS4XM4RvUc4iFgIVgDr9dSXupYY3TlsRx 26T4/JMs9J6b4bulJLpD6gEvJdRteZej8QIJKwPdvkWkt88V/SvZLg19ZTVMYzSH iMODoz8Zs1Pl8s3QG7v58UtKkZO6l71Iuzwius5O8uaFEuip7uyO/jOzqPJH+MHr VnWjsF44Ak+6UqWBzC6CGT3CBoa6DGFAmSvQIY4HBz9Y5oDU2ozB9Y/yr/R+YrtH EqgT9g0E+paiVaQukl+TW6mcCk2vdeclgz+05sFCyu2q8UCkXW5q4PRK5pidrrib UNF3vswqC10yJnEM8ygov8pdVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHptUcd+ U7+wpV6fhj98lqZLrEcUMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjE5fdbqlYry4LUikKThj6z8nVxlPT50N3/gz12rKKXcs/1eM8kG0t 0KVp1B+xxLI9ssZJygTKBLIXmL1f1YyBZmJdwKmXRH3qRSccjmxDIKjN/93G0dNU iTtXBTmYaNwnZbqTPf81tdb7e0Hk1xOQWt1A3mg7AFsqYLbzL8hkOe1L1BCFBgnh UW0D0jn9s8ttFxQsultXQSCWZSLl97U8Giu7+Ssty5coFVAb2S8pTyBHWg6rsY5L rbyPJ3xxWY/uxsPFcp9z3TPEs3qhl/DAZCK/cs4j0RZnGXAxDxtyEh5An6vLe0rT biFAs+4bb/sBWBko7vnHAqxnLY43QU9e -----END CERTIFICATE-----Generated at Fri Jul 4 07:38:20 2025 by rpki-client