$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: cykHhJRaPvfpyZ+bCB0cboTnTrtO81rrDf6jp459l7Q= Subject key identifier: F8:0A:C2:05:94:5D:70:A5:72:08:1B:75:78:1E:A0:51:B9:41:FC:7A Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: F8 Signing time: Thu 03 Jul 2025 05:23:14 +0000 Manifest this update: Thu 03 Jul 2025 05:23:14 +0000 Manifest next update: Thu 10 Jul 2025 05:23:14 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: ZUQoonLhiDEOblkl3QD6a5hZrTOyHnlsVlOWPh8q7c0=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Jul 3 05:23:14 2025 GMT Not After : Jul 10 05:23:14 2025 GMT Subject: CN=686613c2-d314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3f:24:33:b1:b1:2a:a6:77:9a:d5:ee:5c:58: 37:14:ae:a7:41:d0:33:6e:69:eb:84:e6:0d:b6:1a: 8d:d4:db:fe:a0:2a:69:4b:4f:b0:9f:9e:9f:6f:26: 43:4e:de:44:e0:86:48:57:79:85:d3:81:ab:50:d3: 09:1f:99:fd:db:ed:7e:3a:68:cd:cf:01:8c:a2:33: ff:ee:dc:92:02:fc:9c:33:af:29:f0:c7:e9:43:4e: 7f:67:33:5e:e3:fc:c2:76:04:9b:fd:00:46:31:da: 7f:5f:76:13:dd:ed:56:f1:28:f2:d6:77:ad:9c:dd: 60:bb:4b:b4:08:ad:1a:ee:fb:1a:32:ce:cb:d0:0c: bc:d3:12:ef:c3:71:b1:e6:06:a3:22:c0:18:9e:b1: 23:14:36:20:bd:06:dc:b1:d7:74:6b:4c:30:85:53: ac:21:10:bf:22:56:7e:69:bf:be:c9:64:77:2d:db: 17:c4:64:68:ea:d8:f0:d6:f8:a3:5c:1c:23:1b:2f: 35:9e:3c:5b:b9:b4:94:fc:ae:7e:0a:57:c1:75:16: 71:a8:38:75:f9:c6:f6:af:42:c7:ca:55:6d:48:f9: 35:7a:87:90:c1:09:2a:64:33:b0:54:c1:0b:89:a5: bb:63:4b:5f:8e:c7:b2:9b:04:52:a7:48:32:45:9c: 1e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:0A:C2:05:94:5D:70:A5:72:08:1B:75:78:1E:A0:51:B9:41:FC:7A X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:01:4d:03:c3:dd:be:d8:e8:29:a1:22:c2:82:ec:93:78:56: fe:1b:27:2c:c1:e1:e3:bf:13:50:8e:78:a1:85:09:ce:be:a4: c6:78:c1:1e:8e:51:99:37:37:51:1c:7a:db:07:98:a2:72:48: 38:a1:23:6f:eb:4a:19:8b:d6:be:94:9e:8b:e2:ff:82:a0:de: ef:17:8d:c7:66:a2:b7:0e:ac:f7:ab:1c:b2:b5:63:62:f5:51: c9:c6:c1:9d:e2:03:08:5d:21:60:6b:87:9a:b8:7d:ac:40:a4: 8f:d4:4c:40:36:ac:ca:8d:76:ec:a7:51:2f:ee:5b:d7:34:bf: 0e:3f:15:0c:2e:0e:8e:e4:91:f1:d6:7e:49:8f:4f:c4:bf:cd: 4d:16:06:56:a7:57:6a:44:32:b0:e7:7e:56:24:03:bb:17:1d: df:72:2c:a8:32:93:70:9c:9b:76:77:dc:fb:75:de:1d:af:38: 4d:fc:53:d5:c5:b4:fc:76:ec:b7:73:62:39:22:73:b9:4f:48: 9b:ab:f9:00:f8:0f:d1:e4:90:98:91:f6:fb:73:fe:99:5a:a7: ae:7c:24:a2:3b:3e:85:79:77:57:74:4a:2c:80:40:c0:cd:ac: b3:ba:eb:b4:59:bb:86:69:15:34:de:24:af:64:90:fc:e6:5d: 4f:cd:43:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjUwNzAzMDUyMzE0WhcNMjUwNzEwMDUyMzE0WjAYMRYwFAYD VQQDEw02ODY2MTNjMi1kMzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwj8kM7GxKqZ3mtXuXFg3FK6nQdAzbmnrhOYNthqN1Nv+oCppS0+wn56fbyZD Tt5E4IZIV3mF04GrUNMJH5n92+1+OmjNzwGMojP/7tySAvycM68p8MfpQ05/ZzNe 4/zCdgSb/QBGMdp/X3YT3e1W8Sjy1netnN1gu0u0CK0a7vsaMs7L0Ay80xLvw3Gx 5gajIsAYnrEjFDYgvQbcsdd0a0wwhVOsIRC/IlZ+ab++yWR3LdsXxGRo6tjw1vij XBwjGy81njxbubSU/K5+ClfBdRZxqDh1+cb2r0LHylVtSPk1eoeQwQkqZDOwVMEL iaW7Y0tfjseymwRSp0gyRZweTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgKwgWU XXClcggbdXgeoFG5Qfx6MB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5AU0Dw92+2OgpoSLCguyTeFb+GycsweHjvxNQjnihhQnOvqTGeMEe jlGZNzdRHHrbB5iickg4oSNv60oZi9a+lJ6L4v+CoN7vF43HZqK3Dqz3qxyytWNi 9VHJxsGd4gMIXSFga4eauH2sQKSP1ExANqzKjXbsp1Ev7lvXNL8OPxUMLg6O5JHx 1n5Jj0/Ev81NFgZWp1dqRDKw535WJAO7Fx3fciyoMpNwnJt2d9z7dd4drzhN/FPV xbT8duy3c2I5InO5T0ibq/kA+A/R5JCYkfb7c/6ZWqeufCSiOz6FeXdXdEosgEDA zayzuuu0WbuGaRU03iSvZJD85l1PzUPe -----END CERTIFICATE-----Generated at Fri Jul 4 15:26:38 2025 by rpki-client