$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: /akTjMLy5RVhlXOXGs3Unw0yp5NsAC5VUh9FlJAEloA= Subject key identifier: 3B:BF:85:87:FD:02:55:91:71:86:3F:77:F4:CD:C8:33:61:34:FE:D5 Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: 08 Signing time: Thu 03 Jul 2025 08:26:32 +0000 Manifest this update: Thu 03 Jul 2025 08:26:32 +0000 Manifest next update: Thu 10 Jul 2025 08:26:32 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: 1wVmVXJJTghboVTQcaa3UpIeUVSETPAExAQAIA9sWKw=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: 2H3e7+PBc7N5RCXfIcsa8NeIvhDAcL+EHvFknu1mSJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Jul 3 08:26:32 2025 GMT Not After : Jul 10 08:26:32 2025 GMT Subject: CN=68663eb8-fdfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4d:15:e0:67:70:65:5b:24:a8:57:41:ac:77: 4b:c5:2e:06:6b:0f:a9:1d:7c:a5:33:23:a3:29:f8: d0:95:c4:81:27:9e:16:5b:53:26:b7:56:84:28:dd: 02:1b:ae:29:b3:27:59:a8:8d:6c:7f:11:d9:16:05: 14:fe:d0:8b:14:99:fa:47:a1:74:16:2f:1e:87:df: 74:d7:63:1b:48:59:4c:ca:d7:7d:f6:03:6a:12:7f: 83:b9:9c:c3:3d:38:b7:03:73:20:f2:57:c3:e5:56: 56:bd:02:30:ca:1b:5a:e8:ac:06:e8:21:ee:46:41: 2b:41:a2:11:1c:ac:15:09:3c:21:3a:d9:e1:10:d1: 26:7b:9d:d8:43:5b:76:ab:3a:fb:38:51:12:c7:45: a0:86:06:60:f9:f1:5c:a0:c5:46:85:c8:78:51:55: af:cb:ec:71:78:fb:01:8a:ec:31:82:eb:bd:bf:98: be:aa:a3:5b:13:8b:55:fe:49:4e:5f:bc:6f:de:b9: 4b:8c:63:62:8e:5e:1f:35:56:93:85:e0:71:ea:b9: 80:8a:06:ad:56:24:0b:1f:04:5c:c5:45:af:53:32: 3a:38:bc:ab:75:5c:1e:40:e6:bd:22:7e:4d:70:ab: c4:69:72:1f:08:3a:54:78:d7:42:e8:71:14:4a:67: 5d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BF:85:87:FD:02:55:91:71:86:3F:77:F4:CD:C8:33:61:34:FE:D5 X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:5f:23:4b:4b:7e:10:ae:7c:8c:c4:e5:af:9b:25:96:42:92: c6:7e:2a:94:d3:4f:a6:62:5c:af:36:68:0c:c3:a3:72:fc:89: 6c:4d:5a:74:23:ff:1c:99:e5:d0:6f:2a:c3:d5:08:2d:6a:c6: fa:ab:14:52:f1:f5:60:9b:ca:7b:24:a2:b9:12:0e:d6:d5:db: ba:e3:63:56:b0:cc:b5:4c:6c:82:60:ef:7a:02:ec:b1:fe:3b: b1:78:3f:88:e7:15:b9:4b:bf:51:5b:2f:24:37:04:da:5a:cc: a1:73:2a:a3:8a:ea:64:e7:6d:bc:d2:1c:dd:b2:6f:be:b9:61: a0:78:23:05:01:ef:65:32:c6:ea:30:a6:fe:39:63:6b:86:1d: 68:b0:14:1c:28:48:28:d0:44:5e:0d:b6:ef:76:67:84:70:15: a0:f4:51:e9:bd:92:3d:b9:c2:d9:7c:c6:49:f5:9b:ba:34:b3: 98:a1:56:85:3f:53:a6:af:c4:12:40:be:53:5b:63:d5:97:b3: ab:97:a4:e0:65:de:37:93:2a:a0:9b:44:b6:e2:21:a2:47:5c: 70:0a:63:85:9b:2c:96:e2:77:ee:e9:53:b2:24:06:0e:5b:6c: b3:74:67:be:df:93:50:cc:5a:c7:1d:de:ab:d1:73:51:b6:c3: 3a:3c:53:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoNzIwQUE2NkYzNkMxNDYwQUQ0QkMzQUM2OTJGOTY1Qjcx NzRBNThFMDAeFw0yNTA3MDMwODI2MzJaFw0yNTA3MTAwODI2MzJaMBgxFjAUBgNV BAMTDTY4NjYzZWI4LWZkZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2TRXgZ3BlWySoV0Gsd0vFLgZrD6kdfKUzI6Mp+NCVxIEnnhZbUya3VoQo3QIb rimzJ1mojWx/EdkWBRT+0IsUmfpHoXQWLx6H33TXYxtIWUzK1332A2oSf4O5nMM9 OLcDcyDyV8PlVla9AjDKG1rorAboIe5GQStBohEcrBUJPCE62eEQ0SZ7ndhDW3ar Ovs4URLHRaCGBmD58VygxUaFyHhRVa/L7HF4+wGK7DGC672/mL6qo1sTi1X+SU5f vG/euUuMY2KOXh81VpOF4HHquYCKBq1WJAsfBFzFRa9TMjo4vKt1XB5A5r0ifk1w q8Rpch8IOlR410LocRRKZ11/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO7+Fh/0C VZFxhj939M3IM2E0/tUwHwYDVR0jBBgwFoAUcgqmbzbBRgrUvDrGkvlltxdKWOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzM2NDBDQjk0NTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY2dxbWJ6YkJSZ3JVdkRyR2t2bGx0eGRLV09BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzM2NDBDQjk0NTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdy VXZEckdrdmxsdHhkS1dPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALRfI0tLfhCufIzE5a+bJZZCksZ+KpTTT6ZiXK82aAzDo3L8iWxNWnQj /xyZ5dBvKsPVCC1qxvqrFFLx9WCbynskorkSDtbV27rjY1awzLVMbIJg73oC7LH+ O7F4P4jnFblLv1FbLyQ3BNpazKFzKqOK6mTnbbzSHN2yb765YaB4IwUB72Uyxuow pv45Y2uGHWiwFBwoSCjQRF4Ntu92Z4RwFaD0Uem9kj25wtl8xkn1m7o0s5ihVoU/ U6avxBJAvlNbY9WXs6uXpOBl3jeTKqCbRLbiIaJHXHAKY4WbLJbid+7pU7IkBg5b bLN0Z77fk1DMWscd3qvRc1G2wzo8UzA= -----END CERTIFICATE-----Generated at Thu Jul 3 21:17:32 2025 by rpki-client