$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: r2FLkBTjbIDVuHgEzF9O6qkirbaJFEtfkrzD3QDpCJ8= Subject key identifier: A4:3B:4B:21:68:51:BC:E7:9E:24:FE:CA:D2:7F:9B:42:61:08:0F:0D Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 028E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 0267 Signing time: Tue 01 Jul 2025 02:36:49 +0000 Manifest this update: Tue 01 Jul 2025 02:36:48 +0000 Manifest next update: Tue 08 Jul 2025 02:36:48 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: fczHR/O2lznLnjvPJRuYBZUK2WF6tctTfUJ9uNt1QYY=) 2: 0F1BFF983C6411F08247312EC4F9AE02.roa (hash: 8qUuDVndIDg2NrEC8AKM8tdD0/103K09L9Yt7oBaFMM=) 3: E309B1883C9711EF88C2B284C4F9AE02.roa (hash: w51TUZ9aKXo3NJmk6dhABfqfugO3+EeHqPsN7Ek6pSc=) 4: D6D1A360323911F0BDA2E834C4F9AE02.roa (hash: QqcsybSo4IYcyiaXsqo+jWTeq4K18MPbnynQPtbdI+c=) 5: 6E41DE08310A11F0AC8DF544C4F9AE02.roa (hash: 1rvs0GBAuHrNAHdvsK+LkWPhncBagdhoXnnxzRRg5HA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Jul 1 02:36:48 2025 GMT Not After : Jul 8 02:36:48 2025 GMT Subject: CN=686349c0-bfbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:71:4b:c3:a0:29:63:0a:6e:42:98:f8:fe:b6: a2:0b:65:7f:43:ed:73:e4:a6:8b:28:da:2f:ea:40: 1f:89:b2:a5:51:dc:0e:56:f6:3a:c6:1e:e0:b6:8d: 5a:80:a2:06:16:d6:9e:66:8d:46:e7:5f:96:62:6b: 95:fb:87:28:88:4f:aa:0f:bc:1f:d2:1e:29:1a:b4: c0:2d:87:49:d8:88:d3:46:d5:cf:a1:96:9a:32:2c: d0:ff:68:85:62:f9:35:f0:af:9e:55:b7:e2:fe:e9: 57:4e:49:a2:df:cf:d0:a3:14:02:5d:a8:7e:1a:86: 46:7e:7a:81:d8:34:0a:fb:ea:69:24:2d:e7:e0:12: 7a:ac:a8:e0:15:51:07:c6:dd:f5:c1:1d:00:7a:1b: fb:ea:3a:cc:c6:60:79:7f:49:96:ff:e2:94:1d:c1: f3:e2:67:95:03:60:57:f9:49:db:38:b6:b5:3e:bd: a3:f1:f5:c5:80:27:0b:d9:ac:ce:ca:da:a8:ed:78: d2:07:37:e2:5f:75:0f:b0:27:4c:4f:f2:e8:1b:e9: 87:75:9a:85:22:30:e4:81:64:e9:d1:17:1e:67:f3: 7e:2c:26:8e:fb:19:ce:73:c5:52:53:c1:84:e7:e6: b1:6d:07:95:b4:f6:ec:4c:1f:ee:36:d8:89:18:c2: b7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3B:4B:21:68:51:BC:E7:9E:24:FE:CA:D2:7F:9B:42:61:08:0F:0D X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:00:00:a1:bb:61:1d:f7:d2:5d:30:d1:9f:00:37:4a:68:be: 61:83:b5:a9:db:f6:3b:5e:b7:81:51:53:5c:0a:ab:34:1a:27: 29:51:0f:19:82:da:5f:e1:8b:bd:81:78:e5:ac:a7:c4:3b:53: 29:8b:06:11:0a:b1:f4:53:b9:bc:2c:b4:b3:df:57:5a:30:56: 28:ab:af:e1:33:ea:a0:c2:e0:bf:6d:65:cd:ee:34:70:a8:7d: 0d:b1:f3:7b:ce:37:04:e8:85:1b:7d:fa:bd:61:9f:88:a0:b8: 52:14:bf:14:b7:f5:f5:1c:26:af:82:93:23:af:72:ec:f7:8e: eb:bf:0b:ab:3e:f4:00:6d:a6:8d:ac:61:b2:55:c2:a7:a2:61: 03:d1:80:5c:69:f9:de:60:80:d2:82:10:04:63:3b:88:c3:d2: a5:65:e4:03:d0:42:ec:ce:f5:2f:93:f6:09:d4:13:b3:e4:ef: 5d:c3:ea:fe:c4:59:00:79:1d:e7:af:41:72:e8:07:0d:dc:36: 78:a0:72:fd:87:f3:b5:d7:12:3a:b3:d2:57:6c:30:26:6c:ea: e2:00:51:53:44:15:6c:ba:37:85:a9:78:34:b8:07:ac:9f:a0: f6:5d:e8:de:81:07:93:3c:84:d1:b8:10:76:f5:28:4f:a0:7a: fc:9d:c2:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwNzAxMDIzNjQ4WhcNMjUwNzA4MDIzNjQ4WjAYMRYwFAYD VQQDEw02ODYzNDljMC1iZmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnFLw6ApYwpuQpj4/raiC2V/Q+1z5KaLKNov6kAfibKlUdwOVvY6xh7gto1a gKIGFtaeZo1G51+WYmuV+4coiE+qD7wf0h4pGrTALYdJ2IjTRtXPoZaaMizQ/2iF Yvk18K+eVbfi/ulXTkmi38/QoxQCXah+GoZGfnqB2DQK++ppJC3n4BJ6rKjgFVEH xt31wR0Aehv76jrMxmB5f0mW/+KUHcHz4meVA2BX+UnbOLa1Pr2j8fXFgCcL2azO ytqo7XjSBzfiX3UPsCdMT/LoG+mHdZqFIjDkgWTp0RceZ/N+LCaO+xnOc8VSU8GE 5+axbQeVtPbsTB/uNtiJGMK3YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQ7SyFo UbznniT+ytJ/m0JhCA8NMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArAAChu2Ed99JdMNGfADdKaL5hg7Wp2/Y7XreBUVNcCqs0GicpUQ8Z gtpf4Yu9gXjlrKfEO1MpiwYRCrH0U7m8LLSz31daMFYoq6/hM+qgwuC/bWXN7jRw qH0NsfN7zjcE6IUbffq9YZ+IoLhSFL8Ut/X1HCavgpMjr3Ls947rvwurPvQAbaaN rGGyVcKnomED0YBcafneYIDSghAEYzuIw9KlZeQD0ELszvUvk/YJ1BOz5O9dw+r+ xFkAeR3nr0Fy6AcN3DZ4oHL9h/O11xI6s9JXbDAmbOriAFFTRBVsujeFqXg0uAes n6D2XejegQeTPITRuBB29ShPoHr8ncIe -----END CERTIFICATE-----Generated at Wed Jul 2 22:59:00 2025 by rpki-client