$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: DxAfqewfI1iaxRZJinejHrREe46gJuOmi7f0WxGbgqY= Subject key identifier: 63:44:6F:E1:68:CE:C1:E8:1D:C9:E6:BA:5F:01:19:F9:01:7C:9F:1A Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 0817 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 0808 Signing time: Fri 22 Aug 2025 21:04:11 +0000 Manifest this update: Fri 22 Aug 2025 21:04:11 +0000 Manifest next update: Fri 29 Aug 2025 21:04:11 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: gf0/tN9zgBveH5IP+GMnm60kPII51wkbGIzpclvPe6Y=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2071 (0x817) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Aug 22 21:04:11 2025 GMT Not After : Aug 29 21:04:11 2025 GMT Subject: CN=68a8db4b-e790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1a:10:b5:55:2f:ad:ad:d9:dc:04:c5:ac:85: 51:47:10:0f:3a:89:3c:76:e9:17:81:77:f4:ed:e6: 13:0a:c6:40:e2:b9:78:f7:3e:7e:9e:c9:7b:0a:b5: d9:ab:89:a3:3a:80:c7:8a:2f:63:52:26:92:54:45: 0c:fd:ea:79:d5:27:7e:fa:3b:0e:13:43:e4:93:f9: 11:85:65:65:5e:ca:24:69:88:31:ea:82:e9:ef:45: 66:03:4c:d7:f3:aa:ca:d0:0f:91:a8:c2:2d:52:d0: 06:b1:eb:93:36:4d:33:b6:df:40:8b:99:d1:41:b9: b8:3a:e5:74:95:e8:90:ec:74:5b:1a:4d:d5:f7:3a: f0:9e:ac:01:9e:02:be:5d:e0:03:54:df:12:24:d6: 5e:46:be:23:86:be:9c:40:fe:db:6a:86:82:2b:ab: 89:4e:2b:01:11:23:01:4d:4e:e1:5f:23:e5:57:94: 4b:14:6d:fb:0f:ad:e8:e1:cf:65:d9:56:0c:f6:01: 0b:74:17:23:97:a5:99:4e:c7:80:13:c9:06:7d:21: ec:1e:74:70:37:3b:85:eb:bc:46:4d:e5:6f:33:b5: 5d:4d:03:a9:2d:ae:38:83:56:76:91:e1:a1:57:cf: b3:4d:7f:ea:64:0b:1b:36:03:87:60:56:e6:1a:11: d6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:44:6F:E1:68:CE:C1:E8:1D:C9:E6:BA:5F:01:19:F9:01:7C:9F:1A X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:49:cb:71:12:30:42:a7:c7:4d:38:bb:b7:a4:50:b8:53:c4: a1:50:38:fc:0f:2e:e8:1e:ae:5f:04:2c:d6:41:fc:27:7c:c9: 18:1b:4f:71:8c:c8:cd:c2:36:2a:00:0d:76:36:d0:0d:bb:bb: 28:12:98:25:52:ad:02:d6:bd:f6:48:5a:5b:e9:36:29:ae:71: da:54:c8:7b:e1:8f:c4:0d:57:60:2a:ce:7a:6e:65:f8:6e:62: 9d:0e:d0:68:df:12:b0:38:21:33:f7:95:f8:01:4c:9d:9b:64: ed:24:51:c0:03:c6:42:2d:e7:b7:ff:8c:94:6c:9f:f8:25:5d: 97:12:37:65:87:b3:48:87:48:65:be:6b:a8:3e:73:11:e4:23: 98:06:24:bd:77:e4:b0:a1:8c:fc:01:88:23:cf:5c:2d:b9:18: 60:e1:6e:35:b5:76:84:3f:08:7a:64:bf:ab:5a:a1:e8:f3:c4: 66:03:18:7b:9e:52:3b:0a:65:86:25:e4:8b:45:7c:78:78:2c: ab:8f:6b:ee:75:99:8a:5d:12:82:d9:8d:ac:5f:53:04:06:11: 9e:13:4f:43:3d:79:a5:de:4c:e1:f3:bd:67:8b:8f:ea:41:4d: 2b:89:e1:31:c9:94:57:fb:e3:e5:ef:6b:e7:55:4b:cf:1a:71: 7b:3f:c4:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwODIyMjEwNDExWhcNMjUwODI5MjEwNDExWjAYMRYwFAYD VQQDEw02OGE4ZGI0Yi1lNzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBoQtVUvra3Z3ATFrIVRRxAPOok8dukXgXf07eYTCsZA4rl49z5+nsl7CrXZ q4mjOoDHii9jUiaSVEUM/ep51Sd++jsOE0Pkk/kRhWVlXsokaYgx6oLp70VmA0zX 86rK0A+RqMItUtAGseuTNk0ztt9Ai5nRQbm4OuV0leiQ7HRbGk3V9zrwnqwBngK+ XeADVN8SJNZeRr4jhr6cQP7baoaCK6uJTisBESMBTU7hXyPlV5RLFG37D63o4c9l 2VYM9gELdBcjl6WZTseAE8kGfSHsHnRwNzuF67xGTeVvM7VdTQOpLa44g1Z2keGh V8+zTX/qZAsbNgOHYFbmGhHWUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNEb+Fo zsHoHcnmul8BGfkBfJ8aMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+SctxEjBCp8dNOLu3pFC4U8ShUDj8Dy7oHq5fBCzWQfwnfMkYG09x jMjNwjYqAA12NtANu7soEpglUq0C1r32SFpb6TYprnHaVMh74Y/EDVdgKs56bmX4 bmKdDtBo3xKwOCEz95X4AUydm2TtJFHAA8ZCLee3/4yUbJ/4JV2XEjdlh7NIh0hl vmuoPnMR5COYBiS9d+SwoYz8AYgjz1wtuRhg4W41tXaEPwh6ZL+rWqHo88RmAxh7 nlI7CmWGJeSLRXx4eCyrj2vudZmKXRKC2Y2sX1MEBhGeE09DPXml3kzh871ni4/q QU0rieExyZRX++Pl72vnVUvPGnF7P8Ts -----END CERTIFICATE-----Generated at Sat Aug 23 10:29:46 2025 by rpki-client