$ rpki-client -vvf rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft File: rGOF7VY-H9amaz5LUQ3MaTDNSww.mft (raw, json) Hash identifier: Rx7SiXLYE6FdLeJBp47ru+PUrqVmVJHdmGVFypP00+I= Subject key identifier: 7E:57:43:E9:1F:7F:2C:67:11:08:5C:38:02:1C:67:9A:CF:57:BE:AF Authority key identifier: AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C Certificate issuer: /CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft Manifest number: 01CE Signing time: Sat 23 Aug 2025 03:07:00 +0000 Manifest this update: Sat 23 Aug 2025 03:07:00 +0000 Manifest next update: Sat 30 Aug 2025 03:07:00 +0000 Files and hashes: 1: rGOF7VY-H9amaz5LUQ3MaTDNSww.crl (hash: Llr7FBNdaWFzy0BieMwPpKxPUi50lwBEyZqbNQxcva0=) 2: 096A1DB6D2BA11ED8E06CC13C4F9AE02.roa (hash: BWLI/lFMOk0gs1uM9uMc8V3aTl6ezInYU2HutDGOR1Y=) 3: D1EAA18CD2BC11ED9E7A9A1BC4F9AE02.roa (hash: WszDeDtt2pA1qPuCttmdMd6CqUvx9wc+SucMvuhAFvE=) 4: 42EC5F02D2B711EDAF6DC017C4F9AE02.roa (hash: KfEf5+IVw2cc5iVIvA+8UOcszxul9bOLbJUOX0WGbIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160D0A, serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Validity Not Before: Aug 23 03:07:00 2025 GMT Not After : Aug 30 03:07:00 2025 GMT Subject: CN=68a93054-a710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2b:f8:e7:5a:1f:3f:57:0c:b6:1d:4d:23:db: cd:48:cd:05:75:d2:bf:21:3c:8b:6c:11:8d:2c:89: e1:e5:09:d3:15:d5:04:f3:e5:51:96:bf:f6:e7:8b: fe:93:0e:e9:cb:fc:47:f5:aa:86:e6:0d:6a:21:b3: 09:8d:e8:c6:e1:72:b3:c1:95:b9:35:cd:d4:54:75: cb:9a:db:8c:58:d8:54:06:94:0d:57:f1:2d:c6:ac: 4a:75:f0:1d:eb:b0:7f:50:36:b6:e4:57:cb:c9:ee: 92:a9:f1:9e:19:72:e7:97:2a:0a:fe:c6:ff:9a:a6: 80:98:b0:8f:79:21:3b:aa:d4:6b:3a:cf:4f:8d:99: 0c:69:20:ec:31:be:07:05:a6:df:fa:09:67:99:3b: ee:a2:37:ce:db:dc:0c:e6:84:49:06:28:15:9e:7c: 1a:0c:20:a9:5f:e7:dd:e8:a9:15:9c:c7:91:d8:3a: b0:18:a4:77:46:04:80:d1:1e:ce:8f:42:3e:ec:c3: bb:4a:2c:77:20:07:cc:f4:9b:ec:97:45:1c:ac:2b: 51:0b:f5:4a:28:72:c2:ab:d5:42:d7:01:f7:56:2b: 59:9c:70:0e:53:e5:48:9a:38:e6:5b:34:f9:46:5c: ef:78:b0:c9:0f:e1:23:98:2e:56:e9:97:a0:ce:35: 6d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:57:43:E9:1F:7F:2C:67:11:08:5C:38:02:1C:67:9A:CF:57:BE:AF X509v3 Authority Key Identifier: keyid:AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:3b:6a:32:5f:8e:7c:da:ab:14:b8:be:1c:63:94:21:7a:35: fb:37:6f:d7:bb:e1:b9:8f:e6:ae:f2:d0:e5:15:68:06:b4:33: bc:ca:00:b9:74:5e:04:00:f4:f6:f7:0a:b8:25:0e:d9:23:b9: 60:20:94:02:08:ef:80:2b:01:37:ef:fd:fe:a1:09:0b:c3:37: 26:ff:5d:f0:7e:b8:bf:da:ed:45:05:9e:08:8b:55:35:cd:b2: 23:88:64:38:33:99:55:a0:7e:24:c8:5d:e0:73:d7:87:9f:79: 80:73:e1:c4:c3:b0:bd:e7:65:04:ba:52:b1:0e:7a:cc:63:0e: 1e:01:8a:d0:c1:f8:ad:9c:7e:68:c7:b5:34:82:58:c2:cd:3d: 8d:ee:5b:96:34:06:09:61:d8:ea:ce:6b:ee:e6:f0:91:96:25: c5:16:f7:f1:a1:f5:33:82:d2:04:fa:7b:2f:0d:45:57:83:8d: 96:8d:c4:67:a3:56:43:5a:8d:21:46:7e:20:8a:d1:d9:a0:b7: 06:87:dc:dd:f4:37:16:55:30:fa:ef:0f:f3:52:79:83:1b:07: dc:a4:79:88:17:97:9f:f5:35:4e:55:b5:c7:17:99:58:42:b7: 21:41:36:df:08:92:2c:32:ae:4b:4d:5f:77:4c:6e:05:9b:1f: 1c:1e:c1:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBEMEExMTAvBgNVBAUTKEFDNjM4NUVENTYzRTFGRDZBNjZCM0U0QjUxMERDQzY5 MzBDRDRCMEMwHhcNMjUwODIzMDMwNzAwWhcNMjUwODMwMDMwNzAwWjAYMRYwFAYD VQQDEw02OGE5MzA1NC1hNzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnyv451ofP1cMth1NI9vNSM0FddK/ITyLbBGNLInh5QnTFdUE8+VRlr/254v+ kw7py/xH9aqG5g1qIbMJjejG4XKzwZW5Nc3UVHXLmtuMWNhUBpQNV/EtxqxKdfAd 67B/UDa25FfLye6SqfGeGXLnlyoK/sb/mqaAmLCPeSE7qtRrOs9PjZkMaSDsMb4H Babf+glnmTvuojfO29wM5oRJBigVnnwaDCCpX+fd6KkVnMeR2DqwGKR3RgSA0R7O j0I+7MO7Six3IAfM9Jvsl0UcrCtRC/VKKHLCq9VC1wH3VitZnHAOU+VImjjmWzT5 RlzveLDJD+EjmC5W6ZegzjVtSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5XQ+kf fyxnEQhcOAIcZ5rPV76vMB8GA1UdIwQYMBaAFKxjhe1WPh/Wpms+S1ENzGkwzUsM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEQwQS81NjRBMTM1RUQy MjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5YW1hejVMVVEzTWFURE5T d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHT0Y3VlktSDlhbWF6NUxVUTNNYVRETlN3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEQwQS81NjRBMTM1RUQyMjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5 YW1hejVMVVEzTWFURE5Td3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHO2oyX4582qsUuL4cY5QhejX7N2/Xu+G5j+au8tDlFWgGtDO8ygC5 dF4EAPT29wq4JQ7ZI7lgIJQCCO+AKwE37/3+oQkLwzcm/13wfri/2u1FBZ4Ii1U1 zbIjiGQ4M5lVoH4kyF3gc9eHn3mAc+HEw7C952UEulKxDnrMYw4eAYrQwfitnH5o x7U0gljCzT2N7luWNAYJYdjqzmvu5vCRliXFFvfxofUzgtIE+nsvDUVXg42WjcRn o1ZDWo0hRn4gitHZoLcGh9zd9DcWVTD67w/zUnmDGwfcpHmIF5ef9TVOVbXHF5lY QrchQTbfCJIsMq5LTV93TG4Fmx8cHsH3 -----END CERTIFICATE-----Generated at Sat Aug 23 20:38:16 2025 by rpki-client