$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft File: rg5L7FaP5v7kkvcuTTrLko2cHk8.mft (raw, json) Hash identifier: DyjcHfoDK1s/RACr1SqLwKsZJ+sYQknssLbeWzDERoE= Subject key identifier: 4D:F1:3B:11:6C:16:35:CA:E9:B8:62:0E:24:5C:07:44:1C:49:F4:F8 Authority key identifier: AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F Certificate issuer: /CN=A91DBF0C/serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft Manifest number: 89 Signing time: Thu 03 Jul 2025 06:47:46 +0000 Manifest this update: Thu 03 Jul 2025 06:47:46 +0000 Manifest next update: Thu 10 Jul 2025 06:47:46 +0000 Files and hashes: 1: rg5L7FaP5v7kkvcuTTrLko2cHk8.crl (hash: 7WNCCzWnt5n+1YgYhX5r6EPSQn5kH6lG1bIAniq72eM=) 2: 9E4987668C7F11EFB4290976C4F9AE02.roa (hash: cHJy1BLtElHS3p1bo+4QsrHmfc/col4vczERE1sjyMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0C, serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Validity Not Before: Jul 3 06:47:46 2025 GMT Not After : Jul 10 06:47:46 2025 GMT Subject: CN=68662792-dad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:05:fe:0a:e7:e9:96:72:79:dc:ef:71:23:6f: 9e:59:9b:9e:37:35:f4:19:9e:cc:6b:98:e6:02:b0: a6:3f:e8:e2:b7:08:6b:6d:2a:22:d3:7e:1f:6e:21: e3:42:2a:84:df:39:b8:4f:c2:0c:e3:66:72:0a:bf: 4c:18:f4:5d:92:ec:91:83:6b:73:ab:9d:a1:c4:97: 46:05:2d:0d:46:f0:63:72:48:75:ba:cf:10:82:6e: 87:f1:31:06:1d:b9:ce:fc:ff:c1:a8:4a:cf:45:f1: 7c:b0:84:19:e2:7c:a6:4f:b5:27:15:b8:ab:bb:e5: e9:17:72:03:57:2a:28:73:f3:5e:4b:26:e9:b4:ef: 38:b6:e0:b2:83:c3:3b:38:27:dd:f2:f7:f3:80:d2: 36:29:4b:08:c2:b8:f0:68:9b:57:39:3d:e9:35:33: ff:e9:36:1d:86:b7:14:ab:78:b3:97:2c:52:88:93: a6:d7:53:90:56:df:7b:9a:79:6a:7d:9c:a8:29:0d: 4c:f6:bd:4d:d3:b9:0d:a8:03:d9:e8:37:6f:ca:56: 86:49:cb:0b:40:97:27:1a:7d:25:6b:ec:22:43:2b: 37:f1:9c:b2:1f:51:7a:7d:dd:96:01:8f:2e:05:db: 4b:9e:90:c0:cd:6a:50:26:be:f7:f3:ba:f5:80:6c: 4b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F1:3B:11:6C:16:35:CA:E9:B8:62:0E:24:5C:07:44:1C:49:F4:F8 X509v3 Authority Key Identifier: keyid:AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:ef:fb:13:86:d3:86:04:15:b8:e8:3f:50:67:47:03:20:5a: 58:a5:5e:26:64:07:c8:48:b6:ab:d7:c9:b5:ae:45:a3:2f:c1: 3f:f0:2f:60:84:70:69:0b:37:b9:cd:4a:be:8d:db:a7:d0:c7: 5a:a7:ef:e1:fc:d0:e6:0e:a2:86:c1:a8:93:64:51:5e:94:19: 53:c9:c5:16:61:a7:7d:97:f6:ec:44:f5:74:d6:4d:3c:ec:12: 76:d8:0e:1e:3f:de:14:67:d2:d5:3f:cc:90:05:a0:ca:0c:87: 13:66:3f:34:86:bf:87:af:c7:82:40:46:78:58:0c:39:5d:f9: 85:53:f7:b0:5e:a0:0a:fa:e0:33:90:dc:95:1a:e2:6a:08:a7: 29:90:fc:04:13:35:d0:1a:cb:61:41:70:ea:74:60:18:a3:b3: 68:82:b8:67:16:40:d4:0f:b4:6c:3d:f4:4e:f9:ed:20:5a:dd: 84:5f:34:6e:d1:99:3d:db:13:6c:07:5f:f3:a7:ff:4e:fe:92: c5:e4:43:d3:bb:c5:0a:50:da:2c:53:a8:51:fd:84:2e:ea:2c: 48:c6:34:41:15:02:0b:ab:af:f8:81:c9:09:81:f8:5d:40:71: 90:59:5d:a2:61:94:98:e1:46:c8:df:58:78:64:bd:e7:e8:2e: ea:22:69:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEMxMTAvBgNVBAUTKEFFMEU0QkVDNTY4RkU2RkVFNDkyRjcyRTREM0FDQjky OEQ5QzFFNEYwHhcNMjUwNzAzMDY0NzQ2WhcNMjUwNzEwMDY0NzQ2WjAYMRYwFAYD VQQDEw02ODY2Mjc5Mi1kYWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwX+CufplnJ53O9xI2+eWZueNzX0GZ7Ma5jmArCmP+jitwhrbSoi034fbiHj QiqE3zm4T8IM42ZyCr9MGPRdkuyRg2tzq52hxJdGBS0NRvBjckh1us8Qgm6H8TEG HbnO/P/BqErPRfF8sIQZ4nymT7UnFbiru+XpF3IDVyooc/NeSybptO84tuCyg8M7 OCfd8vfzgNI2KUsIwrjwaJtXOT3pNTP/6TYdhrcUq3izlyxSiJOm11OQVt97mnlq fZyoKQ1M9r1N07kNqAPZ6DdvylaGScsLQJcnGn0la+wiQys38ZyyH1F6fd2WAY8u BdtLnpDAzWpQJr7387r1gGxL9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3xOxFs FjXK6bhiDiRcB0QcSfT4MB8GA1UdIwQYMBaAFK4OS+xWj+b+5JL3Lk06y5KNnB5P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwQy80MTQ4NTA3MDhD NUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi9yZzVMN0ZhUDV2N2trdmN1VFRyTGtvMmNI azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JnNUw3RmFQNXY3a2t2Y3VUVHJMa28yY0hrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwQy80MTQ4NTA3MDhDNUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi9yZzVMN0ZhUDV2 N2trdmN1VFRyTGtvMmNIazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi7/sThtOGBBW46D9QZ0cDIFpYpV4mZAfISLar18m1rkWjL8E/8C9g hHBpCze5zUq+jdun0Mdap+/h/NDmDqKGwaiTZFFelBlTycUWYad9l/bsRPV01k08 7BJ22A4eP94UZ9LVP8yQBaDKDIcTZj80hr+Hr8eCQEZ4WAw5XfmFU/ewXqAK+uAz kNyVGuJqCKcpkPwEEzXQGsthQXDqdGAYo7NogrhnFkDUD7RsPfRO+e0gWt2EXzRu 0Zk92xNsB1/zp/9O/pLF5EPTu8UKUNosU6hR/YQu6ixIxjRBFQILq6/4gckJgfhd QHGQWV2iYZSY4UbI31h4ZL3n6C7qImlP -----END CERTIFICATE-----Generated at Thu Jul 3 19:57:29 2025 by rpki-client