$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: qAP3NlpyKOgr8CaJZr/O4LM0pLtq6PHlo1PQxDsYom8= Subject key identifier: 7D:C6:57:BE:A8:4D:31:F1:03:59:E2:C5:41:BE:BF:CE:76:FC:84:2B Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0A45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0A27 Signing time: Mon 30 Jun 2025 19:55:47 +0000 Manifest this update: Mon 30 Jun 2025 19:55:47 +0000 Manifest next update: Mon 07 Jul 2025 19:55:47 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: tmBlLPaMH18JkqjwjQI8ZH+/Qe64Chdo+Mv1GtMf+x4=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: G01L1XLnOeHPHEOBsipJ57Qla0AD5wDZb1QdjAc+xSg=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: t6ZMY4L5BwCt1IMJhlimNMIeL0Ws6WTTcjT9QCJWlnU=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: ytlftfyFWjiXKIbSy8izVb+CXXbL9qxoIXy1hZ6RR08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2629 (0xa45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Jun 30 19:55:47 2025 GMT Not After : Jul 7 19:55:47 2025 GMT Subject: CN=6862ebc3-0f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f1:a6:cf:d3:20:14:d6:55:ed:f5:8d:4c:7a: aa:44:f4:fc:28:5e:ce:00:9d:f3:71:b3:7f:2a:61: ea:c8:28:40:fe:83:53:86:95:ed:b4:07:78:6f:83: ec:af:33:39:5e:c3:7e:17:35:c5:22:61:bc:cc:d3: 1e:59:ba:cd:ec:ad:7d:1d:50:38:e4:2f:36:7f:c8: 71:49:f4:70:cc:8b:6a:c5:91:de:e5:c7:61:3f:7b: 1f:6c:57:9d:d0:5d:b8:b8:77:b8:37:29:4d:3b:43: 1e:78:86:57:0d:88:fb:d5:55:1e:dd:e5:4d:c2:45: 01:65:80:06:f3:ee:be:03:f9:13:a9:cd:52:35:04: 69:0c:13:1b:fc:42:32:32:c4:c3:c1:25:88:be:f2: 67:a0:03:d2:d6:c6:65:7c:72:ac:72:2d:76:dc:01: 9f:34:fe:72:a2:4c:c7:55:e8:68:4a:49:0c:be:e1: 4b:ab:83:4d:03:7b:c7:aa:b7:72:e0:8b:cb:8e:ca: dd:da:c8:39:41:d2:85:0c:79:1f:0c:a8:28:76:0b: e1:0a:d7:b7:82:cd:83:96:9c:ae:6e:a2:0a:2c:f4: f3:d1:e5:59:fe:98:3e:76:4f:03:85:95:35:b7:8c: cf:d6:7c:6f:35:5e:34:56:de:2a:30:1a:d5:52:1b: 54:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C6:57:BE:A8:4D:31:F1:03:59:E2:C5:41:BE:BF:CE:76:FC:84:2B X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:26:1f:6b:35:1c:7e:7f:d2:dc:06:52:99:d7:38:13:9f:97: 92:ce:c5:7b:c1:de:fd:0b:10:6e:d1:57:ac:26:99:15:79:64: 80:09:97:c7:78:16:55:c7:26:f7:87:a6:c7:02:66:bb:9e:5e: 01:3a:0a:c3:65:bd:0a:11:7d:63:35:01:28:66:64:19:a9:93: 4e:f5:48:98:c0:be:11:34:f6:be:ce:a2:f1:f2:8c:60:4d:d6: f9:d0:4a:bd:61:e7:ae:a7:06:f6:0d:f1:0d:14:cd:0f:3f:2a: be:c3:d1:6a:aa:71:df:58:1b:33:f0:dd:0d:41:64:79:63:10: 10:69:2b:b7:93:cd:09:57:7d:3e:a6:af:c5:1c:0f:64:db:da: dd:de:29:50:2a:2a:e7:28:1d:08:79:37:ca:8a:a1:f8:8e:5e: 00:ec:30:a9:14:98:b7:bf:2f:22:1e:e5:41:e4:12:8e:62:05: 24:36:4c:7b:98:a9:04:fe:c6:9d:bb:92:6f:bc:b9:54:2d:23: 5f:27:8c:ea:fe:08:0e:9c:2d:37:61:4f:2f:9f:3e:34:7c:01: 33:c0:2d:52:df:a0:2e:86:56:e1:77:90:d6:78:94:80:ef:70: 21:d6:74:32:33:ed:46:48:b5:ba:1e:ab:cc:86:87:5c:96:4b: ae:57:8f:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUwNjMwMTk1NTQ3WhcNMjUwNzA3MTk1NTQ3WjAYMRYwFAYD VQQDEw02ODYyZWJjMy0wZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvGmz9MgFNZV7fWNTHqqRPT8KF7OAJ3zcbN/KmHqyChA/oNThpXttAd4b4Ps rzM5XsN+FzXFImG8zNMeWbrN7K19HVA45C82f8hxSfRwzItqxZHe5cdhP3sfbFed 0F24uHe4NylNO0MeeIZXDYj71VUe3eVNwkUBZYAG8+6+A/kTqc1SNQRpDBMb/EIy MsTDwSWIvvJnoAPS1sZlfHKsci123AGfNP5yokzHVehoSkkMvuFLq4NNA3vHqrdy 4IvLjsrd2sg5QdKFDHkfDKgodgvhCte3gs2DlpyubqIKLPTz0eVZ/pg+dk8DhZU1 t4zP1nxvNV40Vt4qMBrVUhtUyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3GV76o TTHxA1nixUG+v852/IQrMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkJh9rNRx+f9LcBlKZ1zgTn5eSzsV7wd79CxBu0VesJpkVeWSACZfH eBZVxyb3h6bHAma7nl4BOgrDZb0KEX1jNQEoZmQZqZNO9UiYwL4RNPa+zqLx8oxg Tdb50Eq9Yeeupwb2DfENFM0PPyq+w9FqqnHfWBsz8N0NQWR5YxAQaSu3k80JV30+ pq/FHA9k29rd3ilQKirnKB0IeTfKiqH4jl4A7DCpFJi3vy8iHuVB5BKOYgUkNkx7 mKkE/sadu5JvvLlULSNfJ4zq/ggOnC03YU8vnz40fAEzwC1S36Auhlbhd5DWeJSA 73Ah1nQyM+1GSLW6HqvMhodclkuuV482 -----END CERTIFICATE-----Generated at Wed Jul 2 06:51:52 2025 by rpki-client