$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft File: rg5L7FaP5v7kkvcuTTrLko2cHk8.mft (raw, json) Hash identifier: M6sR/UbM60xn3OwzbBxwKBEyn7W2bLOaKmS4IJPWRXs= Subject key identifier: C1:27:0E:FC:6E:4E:80:52:64:E2:83:73:F5:B8:09:CD:49:BD:03:42 Authority key identifier: AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F Certificate issuer: /CN=A91DBF0C/serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft Manifest number: A3 Signing time: Sat 23 Aug 2025 06:30:33 +0000 Manifest this update: Sat 23 Aug 2025 06:30:33 +0000 Manifest next update: Sat 30 Aug 2025 06:30:33 +0000 Files and hashes: 1: rg5L7FaP5v7kkvcuTTrLko2cHk8.crl (hash: nPvwKEUjDmC0FJ8ZH5UhNPLl9BDQgCF+lOKMlk6uiW4=) 2: 9E4987668C7F11EFB4290976C4F9AE02.roa (hash: cHJy1BLtElHS3p1bo+4QsrHmfc/col4vczERE1sjyMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0C, serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Validity Not Before: Aug 23 06:30:33 2025 GMT Not After : Aug 30 06:30:33 2025 GMT Subject: CN=68a96009-550b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e9:ac:da:42:58:33:05:e3:5c:ab:1d:7a:4b: 13:76:b9:81:1f:e4:13:86:bf:0f:0d:e8:93:41:ec: a7:46:f6:db:24:ec:48:e4:8a:6d:fa:88:51:39:2a: eb:ba:3f:d8:f9:b4:9f:b3:43:2f:e2:0d:41:ba:06: 5e:70:61:90:d3:e7:c9:47:13:a4:f3:92:c5:14:ff: ba:4e:e6:07:ec:c0:eb:69:3f:28:6e:1d:c4:ac:55: dc:d2:54:6d:0c:58:b1:67:ef:e9:54:17:15:2d:05: 0e:33:85:35:5d:12:97:89:9d:85:07:85:99:b2:ed: c4:16:4e:de:24:3f:7c:9b:c3:15:aa:40:be:4d:73: fb:14:11:f3:58:88:82:74:ae:af:9c:95:91:29:d9: 92:a0:a0:da:57:4e:d4:81:64:da:ee:25:46:44:a5: 72:7e:c4:95:df:01:c2:17:9f:4e:b1:0e:01:a8:04: 47:36:78:95:79:1d:73:3b:00:55:e4:eb:c0:dc:0c: e6:55:58:d2:32:36:06:4c:49:5d:3a:be:65:fc:99: 20:b3:fa:c6:c3:20:c4:b9:cb:ff:99:4e:a4:1c:a9: ae:e4:f7:b9:c4:80:52:47:f3:6c:09:91:a6:75:7c: a0:e9:77:a7:9c:c6:aa:7d:08:3d:39:3a:84:a2:ad: 16:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:27:0E:FC:6E:4E:80:52:64:E2:83:73:F5:B8:09:CD:49:BD:03:42 X509v3 Authority Key Identifier: keyid:AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:3d:e1:ec:ce:d2:e5:48:87:bc:95:94:7f:3e:67:dc:7b:3e: e8:63:32:c1:f1:37:b9:e2:60:8e:e9:a6:3b:e5:c9:a7:8b:9e: 1b:9e:dd:76:e2:ed:b4:2e:9d:f7:0b:ad:46:5b:28:0a:65:84: ee:e0:49:36:15:f4:70:2a:53:6f:b6:8e:39:08:5e:9d:f1:dd: 16:43:18:dd:7c:c4:b9:7b:51:f1:c2:e9:be:8a:b1:ee:40:76: 7a:1a:2e:dc:52:3b:ca:22:bb:30:8b:3d:4b:13:78:b1:66:e6: 28:bc:0f:4f:08:46:c3:50:45:3e:f7:c5:0b:83:16:ad:d5:48: 00:d6:dd:fd:2e:59:7d:04:37:31:8a:09:2e:7e:4e:85:2c:3b: 6a:68:57:e8:94:f7:1a:60:36:fc:97:05:2e:a2:d4:79:83:72: ce:c1:7c:73:76:46:56:1b:e7:78:4d:fe:b2:7c:57:2d:1b:00: a2:33:68:2a:37:68:3b:b6:07:37:26:05:e5:a7:2f:06:e0:c8: b3:a0:34:35:ce:f4:83:9d:64:eb:8c:15:27:84:fb:ad:25:30: a5:de:28:1a:8b:c0:fb:22:6a:b2:7c:ed:92:f1:67:6a:f5:05: df:28:38:5b:cf:1f:ad:35:d0:c6:f4:78:1e:07:6c:54:66:56: f0:01:98:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEMxMTAvBgNVBAUTKEFFMEU0QkVDNTY4RkU2RkVFNDkyRjcyRTREM0FDQjky OEQ5QzFFNEYwHhcNMjUwODIzMDYzMDMzWhcNMjUwODMwMDYzMDMzWjAYMRYwFAYD VQQDEw02OGE5NjAwOS01NTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzums2kJYMwXjXKsdeksTdrmBH+QThr8PDeiTQeynRvbbJOxI5Ipt+ohROSrr uj/Y+bSfs0Mv4g1BugZecGGQ0+fJRxOk85LFFP+6TuYH7MDraT8obh3ErFXc0lRt DFixZ+/pVBcVLQUOM4U1XRKXiZ2FB4WZsu3EFk7eJD98m8MVqkC+TXP7FBHzWIiC dK6vnJWRKdmSoKDaV07UgWTa7iVGRKVyfsSV3wHCF59OsQ4BqARHNniVeR1zOwBV 5OvA3AzmVVjSMjYGTEldOr5l/Jkgs/rGwyDEucv/mU6kHKmu5Pe5xIBSR/NsCZGm dXyg6XennMaqfQg9OTqEoq0WswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMEnDvxu ToBSZOKDc/W4Cc1JvQNCMB8GA1UdIwQYMBaAFK4OS+xWj+b+5JL3Lk06y5KNnB5P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwQy80MTQ4NTA3MDhD NUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi9yZzVMN0ZhUDV2N2trdmN1VFRyTGtvMmNI azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JnNUw3RmFQNXY3a2t2Y3VUVHJMa28yY0hrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwQy80MTQ4NTA3MDhDNUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi9yZzVMN0ZhUDV2 N2trdmN1VFRyTGtvMmNIazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWPeHsztLlSIe8lZR/Pmfcez7oYzLB8Te54mCO6aY75cmni54bnt12 4u20Lp33C61GWygKZYTu4Ek2FfRwKlNvto45CF6d8d0WQxjdfMS5e1Hxwum+irHu QHZ6Gi7cUjvKIrswiz1LE3ixZuYovA9PCEbDUEU+98ULgxat1UgA1t39Lll9BDcx igkufk6FLDtqaFfolPcaYDb8lwUuotR5g3LOwXxzdkZWG+d4Tf6yfFctGwCiM2gq N2g7tgc3JgXlpy8G4MizoDQ1zvSDnWTrjBUnhPutJTCl3igai8D7ImqyfO2S8Wdq 9QXfKDhbzx+tNdDG9HgeB2xUZlbwAZhj -----END CERTIFICATE-----Generated at Sat Aug 23 17:13:30 2025 by rpki-client