$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: 2O0ZMA9MtgW5LSmSjsjLBQtccPQv6eDi2dOTUguky7g= Subject key identifier: 5E:C7:04:49:94:4C:6F:83:A3:44:C8:3E:06:0A:AA:00:06:CA:DF:E5 Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 03FA Signing time: Sat 19 Jul 2025 01:43:49 +0000 Manifest this update: Sat 19 Jul 2025 01:43:49 +0000 Manifest next update: Sat 26 Jul 2025 01:43:49 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: lP2OP9Y/v26QlzirRZ9dC51IpZeDkeNAvtaFvkAKIk0=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: tIDiP3hNqVNzA0IqRbP/SuZVvzepUKW2qtpK5KHsOYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Jul 19 01:43:49 2025 GMT Not After : Jul 26 01:43:49 2025 GMT Subject: CN=687af855-a179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ea:6b:86:a7:c7:a1:fe:a5:13:2f:20:97:3c: 11:37:48:35:67:38:78:6b:cc:c2:55:5a:5e:bd:0b: b8:c8:d0:84:03:23:e2:96:8a:f6:b5:06:f3:e6:d9: ab:3b:34:60:6f:9b:f1:0a:d0:0a:37:16:53:2c:86: e0:0b:33:05:f4:de:82:7d:cf:83:fb:71:28:0c:9e: f0:22:1b:5e:51:1c:50:eb:a0:ee:71:90:53:43:2d: 64:22:c3:d5:97:85:3c:6f:3d:61:91:c2:33:1b:e7: bd:11:f1:ef:12:c4:ff:ee:a6:0c:86:b0:53:0c:16: e2:af:16:5b:0c:25:2f:ef:bc:e4:56:b9:b5:08:79: 3e:7d:7e:c0:52:84:f1:68:89:71:88:63:ea:11:49: a4:24:97:e2:2e:40:53:06:c3:fb:8e:0a:30:b4:5c: 8e:fe:bd:f9:67:45:4d:64:85:03:8a:be:c0:c0:ff: 97:00:49:4a:8b:b6:d4:19:ae:22:37:75:73:8f:59: 1b:f7:e1:b8:53:b7:28:40:bf:5d:39:d3:33:4a:c9: 8f:1f:44:43:56:1d:02:4d:5b:e6:ff:36:43:2d:d4: 27:ae:a1:f2:bb:cf:c0:60:2a:02:6f:8c:1b:f6:20: c5:cd:bd:79:a2:c9:18:09:0b:09:4d:ca:88:d5:2e: e5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C7:04:49:94:4C:6F:83:A3:44:C8:3E:06:0A:AA:00:06:CA:DF:E5 X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:14:c2:c0:e5:f0:17:0b:ec:a1:44:ae:01:a2:85:e6:91:66: ab:89:ae:89:4b:7e:be:00:de:3a:12:b1:e5:a2:7b:41:b5:b9: 29:0a:20:88:f0:cd:5b:b4:dc:dc:5c:98:bc:fe:cb:12:d1:84: 9d:f1:a1:4a:14:1a:9f:31:58:5f:93:b5:e8:73:35:9d:e1:49: df:fa:69:1f:1c:93:41:d9:45:5c:96:a6:07:71:1a:cd:09:d6: 78:59:ad:39:0b:4e:ec:18:7a:98:29:a9:ec:c5:de:38:68:b0: 3d:e0:58:a2:ec:c9:71:81:eb:d0:71:99:21:46:65:fb:5b:6c: 81:c8:a2:e9:12:97:2d:ce:b9:11:cf:34:2c:6e:3a:cd:34:90: 57:10:ec:cf:a1:79:43:94:de:90:94:e2:c2:d4:c9:58:c6:e4: 78:ef:6d:6b:dc:a6:29:a6:54:f6:cc:95:47:9c:24:20:3c:4b: d4:80:07:81:c9:d2:ba:13:04:33:d5:eb:9a:3d:a3:98:c2:71: 88:ea:a5:ff:78:d9:de:72:96:97:c3:d0:ec:d5:f1:85:b2:8c: 40:4c:68:be:3e:31:59:e6:fe:6b:5c:c0:26:8b:0a:4d:c0:e8: f3:81:d8:97:0b:e0:34:25:26:80:59:15:38:82:05:7f:c3:4a: 2d:df:f2:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjUwNzE5MDE0MzQ5WhcNMjUwNzI2MDE0MzQ5WjAYMRYwFAYD VQQDEw02ODdhZjg1NS1hMTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuprhqfHof6lEy8glzwRN0g1Zzh4a8zCVVpevQu4yNCEAyPilor2tQbz5tmr OzRgb5vxCtAKNxZTLIbgCzMF9N6Cfc+D+3EoDJ7wIhteURxQ66DucZBTQy1kIsPV l4U8bz1hkcIzG+e9EfHvEsT/7qYMhrBTDBbirxZbDCUv77zkVrm1CHk+fX7AUoTx aIlxiGPqEUmkJJfiLkBTBsP7jgowtFyO/r35Z0VNZIUDir7AwP+XAElKi7bUGa4i N3Vzj1kb9+G4U7coQL9dOdMzSsmPH0RDVh0CTVvm/zZDLdQnrqHyu8/AYCoCb4wb 9iDFzb15oskYCQsJTcqI1S7l6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7HBEmU TG+Do0TIPgYKqgAGyt/lMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5FMLA5fAXC+yhRK4BooXmkWaria6JS36+AN46ErHlontBtbkpCiCI 8M1btNzcXJi8/ssS0YSd8aFKFBqfMVhfk7XoczWd4Unf+mkfHJNB2UVclqYHcRrN CdZ4Wa05C07sGHqYKansxd44aLA94Fii7MlxgevQcZkhRmX7W2yByKLpEpctzrkR zzQsbjrNNJBXEOzPoXlDlN6QlOLC1MlYxuR4721r3KYpplT2zJVHnCQgPEvUgAeB ydK6EwQz1euaPaOYwnGI6qX/eNnecpaXw9Ds1fGFsoxATGi+PjFZ5v5rXMAmiwpN wOjzgdiXC+A0JSaAWRU4ggV/w0ot3/Kb -----END CERTIFICATE-----Generated at Sun Jul 20 07:48:27 2025 by rpki-client