$ rpki-client -vvf rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft File: bgopAGEwM5uDbSj3ABgC9xpaTkI.mft (raw, json) Hash identifier: QAwZtH9H0+3QRJ07oEKGIoTVbJA2O/pbXDXOOzGF3iI= Subject key identifier: FD:83:DD:A6:13:3B:82:68:ED:FA:8F:F1:0F:70:C0:F0:BC:28:45:E4 Authority key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 Certificate issuer: /CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Certificate serial: 02F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft Manifest number: 02F4 Signing time: Sat 19 Jul 2025 01:41:20 +0000 Manifest this update: Sat 19 Jul 2025 01:41:20 +0000 Manifest next update: Sat 26 Jul 2025 01:41:20 +0000 Files and hashes: 1: bgopAGEwM5uDbSj3ABgC9xpaTkI.crl (hash: gEuwueGQz62MrdAe5m3maoWzhnGCc5nZsUavUCbY4Jk=) 2: 3C3A98A4E71C11EC9128DF0BC4F9AE02.roa (hash: rY7SQuVKgC/AxWbpxkoT7pJkBb/Nudv0kRr7++VnHvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 760 (0x2f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166D1, serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Validity Not Before: Jul 19 01:41:20 2025 GMT Not After : Jul 26 01:41:20 2025 GMT Subject: CN=687af7c0-1268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:28:73:c4:8c:3e:53:d7:a1:83:fd:16:68:dd: 19:37:ff:67:27:29:6d:6a:6c:6e:8b:d4:02:a3:73: 9f:66:35:21:c8:e4:5e:98:67:ea:7e:89:ce:45:ff: de:11:77:5c:3a:61:06:ec:a8:b2:14:0f:19:1f:ce: 59:2a:50:71:09:c6:ae:e1:e9:45:ed:87:03:0c:10: 74:c8:60:94:23:d8:bb:78:4b:a9:d4:da:76:89:82: 73:53:50:44:e7:10:52:c2:80:03:65:1e:d6:e4:23: fa:3e:ba:e1:c6:91:61:1c:40:7c:be:96:65:5a:bf: 61:2f:44:c0:d8:68:3d:0d:5d:33:7f:a6:15:f5:fa: 09:8e:50:59:da:60:65:53:bb:1c:3f:07:35:7d:8e: 10:a0:dc:33:38:30:ce:22:d3:ba:df:f4:02:9a:63: 4d:a3:9f:d0:eb:ed:5b:a3:e1:33:1a:55:58:9d:6f: e1:48:a4:17:d8:56:36:4b:ac:02:3d:d3:27:8d:c3: 61:b7:71:4b:f5:83:b8:c6:ef:43:0a:12:2b:a7:15: 61:a9:3d:3c:40:ba:9d:41:d5:bd:23:60:1c:41:2d: 4d:69:09:7b:67:b6:47:2c:f7:40:19:df:d9:92:d7: 44:c5:b8:d0:32:96:2e:0d:d4:98:92:e9:36:fc:4a: 29:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:83:DD:A6:13:3B:82:68:ED:FA:8F:F1:0F:70:C0:F0:BC:28:45:E4 X509v3 Authority Key Identifier: keyid:6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:1b:63:c9:4e:31:e8:51:3e:cb:66:d0:49:b9:fd:2f:7e:f8: 16:ac:70:2e:f1:c3:d6:e9:55:a8:d2:eb:d6:fc:9a:ff:44:48: 80:86:f4:0d:7a:59:6f:80:25:54:82:1a:c7:d9:46:e5:cb:56: 12:03:be:9d:55:5d:da:b5:b8:3b:6a:97:c5:d5:03:ef:a6:58: 04:0d:7b:1e:70:23:58:dc:3e:59:a9:21:f8:8d:9d:22:74:e9: 7a:29:2f:e3:b4:b3:8b:ec:5c:74:83:00:5b:19:4a:00:10:21: f1:b2:ce:b1:1a:d9:da:2a:11:ce:21:9f:ce:c7:e8:a2:85:46: 2c:19:f1:da:3f:a5:3d:55:3e:46:89:9f:30:78:be:d2:89:99: a7:00:68:4b:b4:7c:2b:a7:d2:9f:9a:9e:6f:af:59:f3:31:36: 50:ab:c1:3e:17:c5:20:56:9c:7c:ee:25:b2:01:25:f8:19:bf: 09:06:6a:3f:55:c4:c7:a7:a8:45:c7:f1:40:77:21:91:d2:47: ee:43:1f:09:0b:a0:39:9f:d6:42:f6:33:f4:4a:d3:9b:15:b5: 91:14:27:96:2a:61:be:1c:da:08:0d:d2:3f:ec:91:82:6f:71: 9b:aa:1e:fa:ab:ba:64:e3:83:f4:a8:74:87:22:29:8e:fe:fc: 0e:67:21:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RDExMTAvBgNVBAUTKDZFMEEyOTAwNjEzMDMzOUI4MzZEMjhGNzAwMTgwMkY3 MUE1QTRFNDIwHhcNMjUwNzE5MDE0MTIwWhcNMjUwNzI2MDE0MTIwWjAYMRYwFAYD VQQDEw02ODdhZjdjMC0xMjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzihzxIw+U9ehg/0WaN0ZN/9nJyltamxui9QCo3OfZjUhyORemGfqfonORf/e EXdcOmEG7KiyFA8ZH85ZKlBxCcau4elF7YcDDBB0yGCUI9i7eEup1Np2iYJzU1BE 5xBSwoADZR7W5CP6PrrhxpFhHEB8vpZlWr9hL0TA2Gg9DV0zf6YV9foJjlBZ2mBl U7scPwc1fY4QoNwzODDOItO63/QCmmNNo5/Q6+1bo+EzGlVYnW/hSKQX2FY2S6wC PdMnjcNht3FL9YO4xu9DChIrpxVhqT08QLqdQdW9I2AcQS1NaQl7Z7ZHLPdAGd/Z ktdExbjQMpYuDdSYkuk2/EopkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2D3aYT O4Jo7fqP8Q9wwPC8KEXkMB8GA1UdIwQYMBaAFG4KKQBhMDObg20o9wAYAvcaWk5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZEMS9BQkRBNTE0MkU3 MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001dURiU2ozQUJnQzl4cGFU a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jnb3BBR0V3TTV1RGJTajNBQmdDOXhwYVRrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZEMS9BQkRBNTE0MkU3MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001 dURiU2ozQUJnQzl4cGFUa0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2G2PJTjHoUT7LZtBJuf0vfvgWrHAu8cPW6VWo0uvW/Jr/REiAhvQN ellvgCVUghrH2Ubly1YSA76dVV3atbg7apfF1QPvplgEDXsecCNY3D5ZqSH4jZ0i dOl6KS/jtLOL7Fx0gwBbGUoAECHxss6xGtnaKhHOIZ/Ox+iihUYsGfHaP6U9VT5G iZ8weL7SiZmnAGhLtHwrp9Kfmp5vr1nzMTZQq8E+F8UgVpx87iWyASX4Gb8JBmo/ VcTHp6hFx/FAdyGR0kfuQx8JC6A5n9ZC9jP0StObFbWRFCeWKmG+HNoIDdI/7JGC b3Gbqh76q7pk44P0qHSHIimO/vwOZyHh -----END CERTIFICATE-----Generated at Sun Jul 20 06:17:25 2025 by rpki-client