$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: KpDcZr9q85vk3ggqosyN/IRNKGJcisMs+cFpTrQNTkU= Subject key identifier: 33:CB:99:D1:6D:4E:65:56:A7:14:AA:95:D6:A9:7D:11:75:81:E0:23 Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 0207 Signing time: Sat 05 Jul 2025 02:35:08 +0000 Manifest this update: Sat 05 Jul 2025 02:35:08 +0000 Manifest next update: Sat 12 Jul 2025 02:35:08 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: T+QN66UGGPpD1TQzcBPu4ZxTleSXjO8bzPG8lYiGFgk=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: AFcbY0/3GFwr3EcAHIPw3DWr7uIr3rpZ3pX3o3qycLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Jul 5 02:35:08 2025 GMT Not After : Jul 12 02:35:08 2025 GMT Subject: CN=68688f5c-2435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2b:d2:4c:88:a4:43:16:34:85:89:b4:30:cc: 09:64:b7:36:08:d1:ef:e7:68:01:04:2f:05:4e:d3: 8b:40:aa:f4:4a:92:8d:4b:7c:80:d5:ea:cf:4f:34: 51:aa:09:38:4c:61:23:3f:19:2e:6b:b5:af:f6:66: b1:97:b0:b9:38:31:0d:be:50:82:43:05:d7:a1:fb: 38:42:a9:ee:a1:eb:f2:94:7f:8d:6d:0f:7b:18:77: 61:1c:75:1f:f3:3f:5b:a3:63:79:a3:55:4e:fc:7b: 18:97:a1:7b:f9:c3:7f:db:08:c9:15:8b:cf:ef:4f: 7c:ce:e9:20:07:fd:58:22:28:9a:a0:9e:20:b3:79: cd:28:ce:fe:89:a3:26:0a:af:1a:84:1a:75:28:2d: 13:70:90:03:8d:1c:7d:a0:6f:bf:6a:d1:d9:4b:3c: 09:b7:4e:06:14:49:39:3f:b7:e8:88:b0:8d:a9:92: c4:91:10:f4:8f:db:d6:ba:91:14:f2:b0:1e:8c:74: f3:ea:a1:12:f6:87:45:e6:b3:07:9c:6b:63:cc:b9: f9:80:b2:9c:da:36:d3:57:44:b7:d8:62:c0:e0:b3: 7c:78:65:58:e7:d9:47:cb:98:f0:f5:f9:27:a3:92: 28:86:f8:69:d4:65:c0:31:db:1f:30:a2:57:e4:3e: 9e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CB:99:D1:6D:4E:65:56:A7:14:AA:95:D6:A9:7D:11:75:81:E0:23 X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:27:55:1c:d5:23:5a:fc:5f:b1:ee:c9:98:a5:fd:36:cb:4d: 05:35:e7:a3:46:2d:60:c2:36:44:e5:9c:25:3c:5a:89:eb:22: 91:74:7a:e4:a6:c5:eb:a9:ce:d8:b9:43:17:59:61:6a:b3:4f: de:42:d6:a7:62:15:4a:d9:31:c3:25:0f:92:cf:f8:50:91:b8: 4c:52:52:90:8e:73:ce:a7:32:e3:d1:f3:8a:d7:20:3d:dc:88: 37:20:6e:be:d7:e6:4e:b5:d5:c1:55:11:6d:08:d2:74:c3:7d: d0:51:3b:46:1d:09:32:37:c4:4f:28:50:45:b2:de:ee:c7:85: ee:65:71:a1:7b:18:82:ac:9e:a9:cb:f1:a2:fc:f4:ac:35:24: d8:ed:d0:0e:3f:f7:06:c2:aa:d6:46:a3:11:5d:d9:41:cf:37: 25:cd:59:33:df:f6:0d:5b:5c:64:7e:b4:99:f2:99:c2:36:24: 39:2b:6c:b4:40:bf:a7:e2:8f:dc:d3:19:a3:e5:f9:86:90:19: bd:4b:21:10:13:98:d0:68:58:af:5c:52:74:2b:dd:12:77:58: fd:b1:49:b7:a5:e2:e2:d7:90:ab:58:d5:ba:ba:f8:f9:08:58: ce:b1:a5:75:47:94:d8:cf:7b:af:87:cb:a8:c5:fb:ea:85:58: a0:d1:bd:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjUwNzA1MDIzNTA4WhcNMjUwNzEyMDIzNTA4WjAYMRYwFAYD VQQDEw02ODY4OGY1Yy0yNDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SvSTIikQxY0hYm0MMwJZLc2CNHv52gBBC8FTtOLQKr0SpKNS3yA1erPTzRR qgk4TGEjPxkua7Wv9maxl7C5ODENvlCCQwXXofs4QqnuoevylH+NbQ97GHdhHHUf 8z9bo2N5o1VO/HsYl6F7+cN/2wjJFYvP7098zukgB/1YIiiaoJ4gs3nNKM7+iaMm Cq8ahBp1KC0TcJADjRx9oG+/atHZSzwJt04GFEk5P7foiLCNqZLEkRD0j9vWupEU 8rAejHTz6qES9odF5rMHnGtjzLn5gLKc2jbTV0S32GLA4LN8eGVY59lHy5jw9fkn o5Iohvhp1GXAMdsfMKJX5D6ezQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPLmdFt TmVWpxSqldapfRF1geAjMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKJ1Uc1SNa/F+x7smYpf02y00FNeejRi1gwjZE5ZwlPFqJ6yKRdHrk psXrqc7YuUMXWWFqs0/eQtanYhVK2THDJQ+Sz/hQkbhMUlKQjnPOpzLj0fOK1yA9 3Ig3IG6+1+ZOtdXBVRFtCNJ0w33QUTtGHQkyN8RPKFBFst7ux4XuZXGhexiCrJ6p y/Gi/PSsNSTY7dAOP/cGwqrWRqMRXdlBzzclzVkz3/YNW1xkfrSZ8pnCNiQ5K2y0 QL+n4o/c0xmj5fmGkBm9SyEQE5jQaFivXFJ0K90Sd1j9sUm3peLi15CrWNW6uvj5 CFjOsaV1R5TYz3uvh8uoxfvqhVig0b2D -----END CERTIFICATE-----Generated at Sat Jul 5 05:08:09 2025 by rpki-client