$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: Fdzbm/hrhiB+eV1TQixtkLnVpxhysBSMwp6ZRwzr7eU= Subject key identifier: CB:D9:38:27:D3:FB:3A:C1:B1:23:C7:C2:A4:23:B7:0A:CE:7C:B5:A9 Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: 94 Signing time: Sat 19 Jul 2025 06:39:37 +0000 Manifest this update: Sat 19 Jul 2025 06:39:37 +0000 Manifest next update: Sat 26 Jul 2025 06:39:37 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: CH4md8VNFRC+gUOBEMbc1thV+rq0mNIgsbSAHmuyhd0=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Jul 19 06:39:37 2025 GMT Not After : Jul 26 06:39:37 2025 GMT Subject: CN=687b3da9-5f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:8c:e2:32:bb:83:d2:dd:0b:ca:c5:a9:46:c4: 46:0e:67:e5:da:37:32:7d:4d:96:cf:18:84:7a:ed: 22:68:e9:85:a4:dc:3d:91:0c:ef:89:a0:be:af:98: 52:35:39:55:61:66:72:04:5c:36:48:dd:b1:60:3f: 8d:11:9e:e8:d3:80:7a:63:df:11:61:81:2a:62:8c: 18:97:d3:18:83:ea:72:14:55:da:02:72:95:39:c5: 26:6a:3d:33:97:c4:9c:74:13:4f:29:d9:fa:2a:1f: af:ce:0d:81:52:9b:bf:51:13:80:a6:03:eb:59:16: 62:bf:13:99:67:bc:c0:49:a3:ef:17:9f:0b:15:12: 98:be:8e:31:14:a3:97:0c:10:f9:6b:6c:c2:8b:2b: 07:a0:b3:2a:4b:73:94:2b:f1:9c:6e:68:f1:4e:0e: df:b6:85:3a:2f:f0:28:ef:22:cb:7d:e7:f9:6a:04: 61:40:8e:73:25:83:38:24:1a:b1:d2:ab:f3:02:e2: 9b:04:21:71:88:e7:f4:17:eb:50:b7:b6:59:90:70: d5:42:39:97:33:6b:c1:da:73:93:cc:b1:93:d2:97: b5:88:f0:ab:49:d8:b4:c3:f8:22:d7:f7:60:c6:cb: 18:85:75:0a:2a:2e:d6:d5:ec:b1:80:ab:f3:f6:da: 24:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D9:38:27:D3:FB:3A:C1:B1:23:C7:C2:A4:23:B7:0A:CE:7C:B5:A9 X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:08:fe:38:3b:82:26:15:6c:47:1b:06:f2:29:ac:47:34:59: 6c:64:17:1f:ac:a8:39:1e:e2:dc:ac:b1:81:f9:e3:ee:92:d9: 4b:f9:06:1e:5d:58:97:e9:29:a2:de:d7:ae:fd:1d:f0:00:cb: 07:1b:d2:43:83:61:cf:9b:3c:dd:77:d1:91:bd:82:60:5c:c5: 8c:e1:42:c1:76:a5:66:e2:26:5f:0e:f7:c2:09:9f:63:8e:00: 61:57:87:e4:e0:4e:21:29:69:17:da:62:ce:7c:d4:3d:5b:18: 80:01:f5:04:d9:25:71:a4:be:e0:4c:5f:a5:11:51:6b:54:3f: b7:09:fc:ad:0d:88:df:ad:bd:d1:e9:9d:21:4a:df:06:32:ac: 65:27:59:a5:ee:51:88:58:98:ab:49:ac:d2:e2:7c:bf:46:c0: 3c:e6:f9:fa:98:23:1f:b3:89:67:f6:a2:6d:e6:64:11:53:23: c3:a9:6a:93:22:48:5a:6e:5c:ab:c4:e9:33:6d:f2:9e:9d:dc: 5e:0d:21:77:a3:79:d1:08:64:a1:64:b4:82:49:18:a7:ba:3a: 2e:91:3f:2f:22:90:fa:12:da:df:22:24:1f:92:2e:fb:e3:70: fc:35:b7:8b:32:c8:ad:0e:c2:2c:5a:22:d4:ce:28:12:ea:e0: be:92:50:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0N0YxMTAvBgNVBAUTKDQ2NDE5MDdGRTVGNDczRjE4OTA2RDQ2QUEyMDMwN0VE RURBMTlDOUQwHhcNMjUwNzE5MDYzOTM3WhcNMjUwNzI2MDYzOTM3WjAYMRYwFAYD VQQDEw02ODdiM2RhOS01ZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7YziMruD0t0LysWpRsRGDmfl2jcyfU2WzxiEeu0iaOmFpNw9kQzviaC+r5hS NTlVYWZyBFw2SN2xYD+NEZ7o04B6Y98RYYEqYowYl9MYg+pyFFXaAnKVOcUmaj0z l8ScdBNPKdn6Kh+vzg2BUpu/UROApgPrWRZivxOZZ7zASaPvF58LFRKYvo4xFKOX DBD5a2zCiysHoLMqS3OUK/GcbmjxTg7ftoU6L/Ao7yLLfef5agRhQI5zJYM4JBqx 0qvzAuKbBCFxiOf0F+tQt7ZZkHDVQjmXM2vB2nOTzLGT0pe1iPCrSdi0w/gi1/dg xssYhXUKKi7W1eyxgKvz9toknwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvZOCfT +zrBsSPHwqQjtwrOfLWpMB8GA1UdIwQYMBaAFEZBkH/l9HPxiQbUaqIDB+3toZyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQ3Ri9COTFBQUE3NDg2 REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNfR0pCdFJxb2dNSDdlMmhu SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNf R0pCdFJxb2dNSDdlMmhuSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChCP44O4ImFWxHGwbyKaxHNFlsZBcfrKg5HuLcrLGB+ePuktlL+QYe XViX6Smi3teu/R3wAMsHG9JDg2HPmzzdd9GRvYJgXMWM4ULBdqVm4iZfDvfCCZ9j jgBhV4fk4E4hKWkX2mLOfNQ9WxiAAfUE2SVxpL7gTF+lEVFrVD+3CfytDYjfrb3R 6Z0hSt8GMqxlJ1ml7lGIWJirSazS4ny/RsA85vn6mCMfs4ln9qJt5mQRUyPDqWqT IkhablyrxOkzbfKendxeDSF3o3nRCGShZLSCSRinujoukT8vIpD6EtrfIiQfki77 43D8NbeLMsitDsIsWiLUzigS6uC+klBU -----END CERTIFICATE-----Generated at Sun Jul 20 06:43:21 2025 by rpki-client