$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft File: saGMIGd1j-jJIZgeixH6MI5iaTs.mft (raw, json) Hash identifier: K4fbk4Xea+OsR3YNfriG8Tp1K0ptGf8m+TqkLw0RPtg= Subject key identifier: EC:CE:10:59:EB:5A:78:6C:B2:74:BF:64:8D:54:98:A7:9A:42:D2:64 Authority key identifier: B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B Certificate issuer: /CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Certificate serial: 07D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft Manifest number: 07D2 Signing time: Mon 30 Jun 2025 21:16:53 +0000 Manifest this update: Mon 30 Jun 2025 21:16:52 +0000 Manifest next update: Mon 07 Jul 2025 21:16:52 +0000 Files and hashes: 1: saGMIGd1j-jJIZgeixH6MI5iaTs.crl (hash: yrA6nFdA8+8Hdo8TTxSaphCW4zUKYqH1MVlVrHGhu2Q=) 2: 73D3A6E0F72011EA8776EC28C4F9AE02.roa (hash: ovhGH8lbo83g5o7m/4TlTtd4Z3eC4nvxtcRanzpccvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAAF2, serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Validity Not Before: Jun 30 21:16:52 2025 GMT Not After : Jul 7 21:16:52 2025 GMT Subject: CN=6862fec4-7baa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2c:e2:e5:44:58:3b:84:ed:39:94:84:56:07: 45:5c:e8:2f:46:37:60:27:23:66:0b:45:32:a9:d6: b3:e1:c0:7c:42:78:19:86:ee:c3:4c:24:91:e1:46: a2:7e:b0:20:45:ee:84:d0:68:ee:79:d1:0c:c2:18: 60:3b:51:8f:e0:30:c9:ae:ca:bf:8e:4b:99:7b:e8: 65:b8:db:06:2b:e3:af:97:db:a1:a2:20:c0:9c:32: dc:bc:35:e2:be:58:89:09:e2:24:3a:0a:48:4f:27: 46:27:03:d6:b2:97:d9:18:b9:37:95:f0:c1:f4:25: 39:73:a5:2f:c5:9e:6f:25:83:90:e5:9f:a8:1d:bb: 57:27:8c:29:96:0c:01:dd:38:d7:fc:2f:eb:39:32: 10:42:38:02:27:03:0f:0c:0d:f0:61:b3:18:0e:11: cc:41:ee:84:8f:10:eb:3b:38:51:3b:cc:bb:b8:d9: c9:fc:7e:6e:4f:24:77:dc:ab:ce:57:ad:6f:f8:2a: 70:93:6d:67:3d:31:60:eb:d0:cf:0f:27:8a:ab:b2: 13:eb:f6:9b:40:71:a7:73:ee:85:dd:12:f7:97:45: 62:d5:66:e3:8e:f6:00:fc:5b:f5:b9:07:ba:f2:a4: ea:38:fd:bb:fb:7d:68:57:7d:dc:ef:bd:da:56:72: 4b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:CE:10:59:EB:5A:78:6C:B2:74:BF:64:8D:54:98:A7:9A:42:D2:64 X509v3 Authority Key Identifier: keyid:B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:35:d5:7e:ce:1b:58:ae:19:4c:dd:f1:ad:ff:3e:76:11:b6: ae:4f:df:ed:4b:a7:a8:8d:a1:4a:65:52:43:5d:ed:4e:d2:50: 51:83:0f:1a:29:1a:44:51:a1:53:2e:0d:66:b6:12:9d:0d:1a: a8:9a:be:14:7c:a5:e1:9c:36:a4:8c:47:d3:41:b3:2b:e2:67: c0:5c:bd:9a:5e:00:7d:bf:8a:50:cc:4c:39:7d:a5:22:f0:e9: c8:3a:fb:cb:ba:f4:4a:a0:81:75:92:5d:15:9f:9b:41:4f:18: ed:a0:4e:c7:50:de:40:67:92:ef:69:32:ec:ae:ed:f6:9c:3c: 6e:51:be:e7:80:19:a2:36:32:e1:58:3f:f2:b8:5c:d5:f7:4f: aa:4c:e1:54:3e:ad:83:59:04:61:93:d3:37:90:33:ed:23:93: 92:8c:82:c4:5e:57:62:59:7a:aa:00:81:38:e4:b2:3b:d0:77: 13:94:52:fc:14:64:b5:f9:8f:d6:de:c7:eb:b6:d4:5f:50:95: 21:a8:b8:29:b1:25:fc:b7:8b:8d:1d:36:cd:68:8f:0c:d8:46: cc:16:20:f3:0f:3e:11:e2:12:24:33:7c:6c:ac:af:93:5a:3f: a9:a2:9f:3d:81:45:af:cb:b9:3f:67:44:2a:42:61:ee:93:f6: 4e:cb:0f:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFBRjIxMTAvBgNVBAUTKEIxQTE4QzIwNjc3NThGRThDOTIxOTgxRThCMTFGQTMw OEU2MjY5M0IwHhcNMjUwNjMwMjExNjUyWhcNMjUwNzA3MjExNjUyWjAYMRYwFAYD VQQDEw02ODYyZmVjNC03YmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyizi5URYO4TtOZSEVgdFXOgvRjdgJyNmC0Uyqdaz4cB8QngZhu7DTCSR4Uai frAgRe6E0GjuedEMwhhgO1GP4DDJrsq/jkuZe+hluNsGK+Ovl9uhoiDAnDLcvDXi vliJCeIkOgpITydGJwPWspfZGLk3lfDB9CU5c6UvxZ5vJYOQ5Z+oHbtXJ4wplgwB 3TjX/C/rOTIQQjgCJwMPDA3wYbMYDhHMQe6EjxDrOzhRO8y7uNnJ/H5uTyR33KvO V61v+Cpwk21nPTFg69DPDyeKq7IT6/abQHGnc+6F3RL3l0Vi1WbjjvYA/Fv1uQe6 8qTqOP27+31oV33c773aVnJLPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzOEFnr WnhssnS/ZI1UmKeaQtJkMB8GA1UdIwQYMBaAFLGhjCBndY/oySGYHosR+jCOYmk7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUFGMi84MjI2QUI3MkY3 MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWotakpJWmdlaXhINk1JNWlh VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhR01JR2Qxai1qSklaZ2VpeEg2TUk1aWFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUFGMi84MjI2QUI3MkY3MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWot akpJWmdlaXhINk1JNWlhVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATNdV+zhtYrhlM3fGt/z52EbauT9/tS6eojaFKZVJDXe1O0lBRgw8a KRpEUaFTLg1mthKdDRqomr4UfKXhnDakjEfTQbMr4mfAXL2aXgB9v4pQzEw5faUi 8OnIOvvLuvRKoIF1kl0Vn5tBTxjtoE7HUN5AZ5LvaTLsru32nDxuUb7ngBmiNjLh WD/yuFzV90+qTOFUPq2DWQRhk9M3kDPtI5OSjILEXldiWXqqAIE45LI70HcTlFL8 FGS1+Y/W3sfrttRfUJUhqLgpsSX8t4uNHTbNaI8M2EbMFiDzDz4R4hIkM3xsrK+T Wj+pop89gUWvy7k/Z0QqQmHuk/ZOyw8H -----END CERTIFICATE-----Generated at Wed Jul 2 15:55:40 2025 by rpki-client