$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: eKkmLfsJAe+GEVOL+PflCHDd/vTTHLsyZfyUZCsjxnU= Subject key identifier: FB:C4:3D:16:56:BB:1A:EA:83:97:3C:25:E1:AB:DA:C6:B4:E9:2D:9F Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: CE Signing time: Thu 03 Jul 2025 05:51:00 +0000 Manifest this update: Thu 03 Jul 2025 05:51:00 +0000 Manifest next update: Thu 10 Jul 2025 05:51:00 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: F96osNYkCg9TU2knwlqsCfcL0f0laj9bhY7T/AnZYHg=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Jul 3 05:51:00 2025 GMT Not After : Jul 10 05:51:00 2025 GMT Subject: CN=68661a44-127b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7a:5c:fc:99:76:e6:0d:c2:35:6a:87:db:38: f8:07:dc:7a:15:b4:5d:c4:9f:5e:e7:4f:44:9b:17: a0:67:92:29:48:52:bc:fc:0d:5a:56:2b:24:84:b0: 83:fa:c8:bd:cb:60:d2:2f:77:c2:08:38:34:23:d5: f7:17:d8:63:06:ac:92:fb:3a:0f:4f:bd:a7:07:30: 2b:e1:82:10:67:f6:5c:00:fc:a2:f6:7e:77:73:21: 50:e3:2e:92:65:dd:37:f2:b3:e9:53:47:8c:5d:fd: 9c:c5:78:3d:23:be:cb:29:ab:86:d7:29:4f:ca:de: f4:5d:ee:23:53:7a:8b:77:a6:27:34:a9:05:61:33: b8:57:32:f8:de:7c:5b:47:16:32:7c:87:cc:78:52: ef:d3:ce:94:fa:df:2c:ed:ad:fc:f9:71:d6:08:f4: 8b:f6:21:04:4c:f7:5e:0f:8b:79:80:06:82:e4:bc: f0:24:67:e9:5c:17:7d:09:90:68:31:cd:82:a2:c3: c6:42:16:d5:9e:6b:62:ab:7b:ef:79:ba:d4:3c:6d: 6c:9f:ef:58:87:ec:57:69:32:14:77:86:0e:e0:b3: fd:70:b5:72:59:d7:d5:74:50:4c:6b:c2:88:4d:85: 01:a5:72:a1:cb:d0:a8:75:8a:97:d5:98:7e:73:06: 25:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C4:3D:16:56:BB:1A:EA:83:97:3C:25:E1:AB:DA:C6:B4:E9:2D:9F X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:5d:df:9a:d2:85:da:2f:9e:fe:9d:54:2f:88:5d:93:7f:e0: ae:5d:38:00:12:92:04:d4:af:42:a2:1c:bd:63:75:04:0a:a9: a5:2f:b0:bd:f7:28:a9:ca:08:03:c3:0e:23:69:be:7b:1b:00: 75:e1:31:c8:fe:51:de:c2:a5:aa:c1:65:0c:e8:31:66:17:77: 08:02:71:46:e1:c7:94:e5:52:f1:20:e5:23:3e:41:fc:3d:ee: ae:e3:6c:18:07:aa:29:ef:78:52:79:0e:8f:dd:90:4b:88:36: c9:5a:9e:a4:a9:d4:60:4f:2b:25:e9:da:19:e7:ea:da:0e:19: bb:1e:cf:6e:20:44:11:83:ea:53:ad:e3:f2:01:db:a9:03:58: 19:68:16:c4:33:4d:9e:1a:07:ff:1a:53:11:2f:31:b1:a4:33: 22:47:75:70:cf:4a:f1:42:fa:d7:50:96:b4:61:e7:10:a1:ca: c2:bf:76:7f:ea:6c:0a:a0:a2:c5:59:08:ae:64:de:46:82:aa: f3:44:f7:f1:4a:c7:09:c3:e8:5b:71:42:49:ee:86:bb:63:90: 59:ca:68:45:33:27:b4:0b:d9:60:e0:0a:6e:d2:bb:fd:4f:73: 73:82:c2:a9:4c:5c:6d:52:27:72:17:2a:33:10:e7:68:22:da: 28:71:17:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUwNzAzMDU1MTAwWhcNMjUwNzEwMDU1MTAwWjAYMRYwFAYD VQQDEw02ODY2MWE0NC0xMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3pc/Jl25g3CNWqH2zj4B9x6FbRdxJ9e509EmxegZ5IpSFK8/A1aViskhLCD +si9y2DSL3fCCDg0I9X3F9hjBqyS+zoPT72nBzAr4YIQZ/ZcAPyi9n53cyFQ4y6S Zd038rPpU0eMXf2cxXg9I77LKauG1ylPyt70Xe4jU3qLd6YnNKkFYTO4VzL43nxb RxYyfIfMeFLv086U+t8s7a38+XHWCPSL9iEETPdeD4t5gAaC5LzwJGfpXBd9CZBo Mc2CosPGQhbVnmtiq3vvebrUPG1sn+9Yh+xXaTIUd4YO4LP9cLVyWdfVdFBMa8KI TYUBpXKhy9CodYqX1Zh+cwYlVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvEPRZW uxrqg5c8JeGr2sa06S2fMB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFXd+a0oXaL57+nVQviF2Tf+CuXTgAEpIE1K9Cohy9Y3UECqmlL7C9 9yipyggDww4jab57GwB14THI/lHewqWqwWUM6DFmF3cIAnFG4ceU5VLxIOUjPkH8 Pe6u42wYB6op73hSeQ6P3ZBLiDbJWp6kqdRgTysl6doZ5+raDhm7Hs9uIEQRg+pT rePyAdupA1gZaBbEM02eGgf/GlMRLzGxpDMiR3Vwz0rxQvrXUJa0YecQocrCv3Z/ 6mwKoKLFWQiuZN5GgqrzRPfxSscJw+hbcUJJ7oa7Y5BZymhFMye0C9lg4Apu0rv9 T3NzgsKpTFxtUidyFyozEOdoItoocRey -----END CERTIFICATE-----Generated at Thu Jul 3 23:01:43 2025 by rpki-client