$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: dyhJa0CYG3AyrbfXZDzVjIBJ4c//StmXJj676YB5QMw= Subject key identifier: 4C:FB:21:83:91:1E:B4:87:CF:D7:1C:FC:2D:66:C8:87:03:A8:AE:74 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0A65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0A44 Signing time: Fri 22 Aug 2025 19:51:50 +0000 Manifest this update: Fri 22 Aug 2025 19:51:49 +0000 Manifest next update: Fri 29 Aug 2025 19:51:49 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: xXmVGXvK8qi5JKA5gya7lE0Ete0i4sr+XpeuR9hM3dI=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: yu7Gzab+ZfqH+4m4+3KIWb8qWAN7g8OtQCUYR4Hw6Qw=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: R50vxZrWUTgOZOulbAeHkJh7/C1wukAfa8pX0j0danc=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: uBoNIMKOZ7mdZtPmDt522sQeNo1Hui8N7OHysFbsQzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2661 (0xa65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Aug 22 19:51:49 2025 GMT Not After : Aug 29 19:51:49 2025 GMT Subject: CN=68a8ca55-04e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0e:2d:7d:82:cb:94:17:20:a9:50:41:5f:fc: d9:f6:d8:7c:00:89:56:ad:46:b6:80:89:74:ab:d8: f8:9d:3d:46:61:63:0a:4c:35:59:32:e5:55:56:46: af:b6:f6:b2:1c:82:db:53:0a:c6:c4:37:fd:a3:b2: 6b:f3:4a:fe:27:f2:f0:0b:24:41:fa:87:0f:f7:2b: b7:cc:cb:e0:bc:72:e4:48:06:30:a4:4c:87:8a:2a: c6:df:df:20:fb:4b:97:18:2c:00:e2:f1:37:ee:e3: 5a:1e:2d:86:58:57:66:49:f7:17:fe:2c:c8:d5:b2: d1:45:fb:a8:5c:61:e7:a6:7a:67:d3:94:04:5f:0c: a2:1c:38:a4:c4:f3:e2:83:96:57:17:2f:50:c0:41: b2:36:5c:67:b8:4b:a5:f7:d0:57:77:b7:5c:91:92: 3b:68:7e:5e:56:ba:83:8f:6f:de:f8:a9:b4:80:4d: 4a:58:7e:31:48:77:bd:62:a4:58:01:a5:98:77:34: 60:de:d4:d6:7a:8b:d1:4f:bd:3c:fd:3d:43:cc:cd: e3:74:b0:44:86:b4:f8:4b:b2:5c:fa:61:28:2d:91: 88:91:fd:d5:b9:bf:db:88:f2:62:40:b7:f6:ea:2e: 37:aa:56:63:ed:5c:b3:b2:f5:6c:61:f4:e6:d8:5d: 33:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:FB:21:83:91:1E:B4:87:CF:D7:1C:FC:2D:66:C8:87:03:A8:AE:74 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:ec:14:55:4c:4e:1c:94:eb:05:31:c9:e4:09:8b:31:f0:d8: 97:5a:ca:bb:54:54:92:f9:ca:e2:dc:94:36:35:a8:06:81:0b: 7f:38:c3:2b:3a:f5:ac:51:6a:e0:10:30:64:02:92:c0:c2:bc: ac:df:d9:53:03:56:75:93:cc:c5:fb:42:83:54:d0:ec:87:ef: 95:4d:70:9f:2f:82:92:91:fb:e3:20:b2:1c:e7:d9:de:ee:13: a6:7c:50:8a:70:20:fc:6d:bd:21:07:10:11:36:20:ab:8e:b2: 6b:ce:5b:ed:cb:75:79:28:7f:9e:24:bb:5c:ba:ca:ad:3e:3c: 9a:b1:9b:f4:94:75:31:78:60:f6:2c:25:ee:5a:af:80:c9:0a: fb:d7:47:31:fa:82:4c:19:b7:83:c1:2b:e2:42:0f:48:50:7e: 84:a8:b7:c3:63:56:dd:b0:53:1f:be:41:40:f2:3a:e9:f6:66: d2:7c:27:ac:23:b2:3b:a7:62:8b:1e:e8:6a:6e:25:3b:1e:94: bc:5a:9d:21:ea:6b:6b:d2:04:b4:8b:6b:55:b0:53:bc:65:49: 9a:04:f9:24:f4:07:f9:4a:04:1e:95:c4:60:af:ae:7c:0a:46: 1c:9e:94:c7:fe:b1:e2:85:69:80:96:52:7b:9e:2e:26:5c:34: ac:79:86:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUwODIyMTk1MTQ5WhcNMjUwODI5MTk1MTQ5WjAYMRYwFAYD VQQDEw02OGE4Y2E1NS0wNGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1A4tfYLLlBcgqVBBX/zZ9th8AIlWrUa2gIl0q9j4nT1GYWMKTDVZMuVVVkav tvayHILbUwrGxDf9o7Jr80r+J/LwCyRB+ocP9yu3zMvgvHLkSAYwpEyHiirG398g +0uXGCwA4vE37uNaHi2GWFdmSfcX/izI1bLRRfuoXGHnpnpn05QEXwyiHDikxPPi g5ZXFy9QwEGyNlxnuEul99BXd7dckZI7aH5eVrqDj2/e+Km0gE1KWH4xSHe9YqRY AaWYdzRg3tTWeovRT708/T1DzM3jdLBEhrT4S7Jc+mEoLZGIkf3Vub/biPJiQLf2 6i43qlZj7VyzsvVsYfTm2F0zaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEz7IYOR HrSHz9cc/C1myIcDqK50MB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC47BRVTE4clOsFMcnkCYsx8NiXWsq7VFSS+cri3JQ2NagGgQt/OMMr OvWsUWrgEDBkApLAwrys39lTA1Z1k8zF+0KDVNDsh++VTXCfL4KSkfvjILIc59ne 7hOmfFCKcCD8bb0hBxARNiCrjrJrzlvty3V5KH+eJLtcusqtPjyasZv0lHUxeGD2 LCXuWq+AyQr710cx+oJMGbeDwSviQg9IUH6EqLfDY1bdsFMfvkFA8jrp9mbSfCes I7I7p2KLHuhqbiU7HpS8Wp0h6mtr0gS0i2tVsFO8ZUmaBPkk9Af5SgQelcRgr658 CkYcnpTH/rHihWmAllJ7ni4mXDSseYaO -----END CERTIFICATE-----Generated at Sat Aug 23 16:44:34 2025 by rpki-client