$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: WipfR4/V+4bPReqcjD6NS08zGecXXHCqUeEuaAsTcpU= Subject key identifier: E3:E4:1D:EB:FB:AE:B5:4D:40:63:63:FD:1A:E7:C7:B0:8E:AE:C0:35 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0A4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0A30 Signing time: Fri 18 Jul 2025 19:59:50 +0000 Manifest this update: Fri 18 Jul 2025 19:59:49 +0000 Manifest next update: Fri 25 Jul 2025 19:59:49 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: IwAxwdml90AgVDmIqMIrd8aC6sFXsujM/inXl+LLcdg=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: G01L1XLnOeHPHEOBsipJ57Qla0AD5wDZb1QdjAc+xSg=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: t6ZMY4L5BwCt1IMJhlimNMIeL0Ws6WTTcjT9QCJWlnU=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: ytlftfyFWjiXKIbSy8izVb+CXXbL9qxoIXy1hZ6RR08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2638 (0xa4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Jul 18 19:59:49 2025 GMT Not After : Jul 25 19:59:49 2025 GMT Subject: CN=687aa7b6-f9e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:00:01:db:4a:da:d8:9a:ac:11:7b:5e:4b:37: e7:4a:8d:19:f2:0a:2e:c5:6a:75:a5:a7:c5:d9:4c: b4:33:a5:c3:d5:d3:f2:04:05:9a:7f:44:2a:08:97: 19:83:f5:0e:89:bf:0f:c0:29:48:85:86:4e:fc:8b: 78:70:c1:5b:17:ae:bc:a8:5c:86:7d:cb:f6:a6:5e: e1:ee:e2:0c:5d:e8:06:ee:73:5d:47:11:db:5d:00: 41:c4:6e:5a:51:10:13:45:ba:2b:60:40:48:8f:55: 93:2e:e6:de:6d:66:63:fa:3d:2a:73:78:be:ef:c1: 94:3c:a2:c7:09:de:a1:f7:fb:03:0f:71:00:8a:ba: 35:f5:1d:cf:7e:f1:ff:ed:78:78:9f:93:cb:49:2d: 35:70:0a:5b:d8:bc:c2:8a:56:e9:8c:91:c0:b9:e5: 39:35:af:c0:31:a3:a1:cc:e2:1a:e5:5e:9e:15:be: 20:93:bb:8f:dd:40:aa:f2:6f:f4:72:2c:a3:4a:f0: 0c:b4:2c:5c:eb:a0:ab:6e:8c:1e:c8:27:4b:2b:2f: 94:f1:6a:8e:45:76:eb:9e:12:51:dd:ae:1f:25:cc: c6:bc:32:ed:d7:b2:32:c4:16:85:d8:1c:ef:19:14: 46:f6:3d:29:b1:a0:f3:db:0f:0e:ea:16:24:b3:53: c3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E4:1D:EB:FB:AE:B5:4D:40:63:63:FD:1A:E7:C7:B0:8E:AE:C0:35 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:35:ce:a8:ce:e0:be:f9:e4:86:b1:ad:b7:03:3c:ce:3b:c3: a0:81:9d:91:03:a5:6d:64:f3:f6:8a:9f:49:39:1a:2b:63:4e: 65:e3:3b:dc:cf:81:b5:1e:67:21:71:5b:6a:a7:f7:8a:85:66: d9:9f:be:a3:fd:2f:b7:22:5a:b7:36:58:bb:bf:22:ed:a1:28: ad:47:5b:c4:e6:c0:54:30:14:70:11:6b:54:3d:91:25:fe:6a: 5d:b7:f1:11:e0:8a:1b:4a:89:41:96:9c:e7:65:c4:3b:22:8e: cf:bd:1c:78:f8:6a:1d:c7:25:11:da:07:f1:6f:48:fc:11:64: 73:63:11:d6:81:4a:88:d7:b3:22:33:ab:a4:4c:47:53:f0:89: 69:f2:56:c5:04:19:05:93:2d:7d:b9:3a:83:66:23:cb:af:3c: 93:d0:3c:21:91:39:0b:84:9d:ea:87:e0:b8:ae:8f:5c:2f:d2: fd:76:55:bf:de:b3:a3:36:3c:51:7e:4b:87:90:0e:60:0c:94: 7e:ae:bc:f2:34:87:b1:2f:b1:03:aa:7b:9c:ce:3d:ab:80:b5: 16:57:de:35:48:32:38:b0:e7:88:6a:38:c6:1e:e2:b7:b5:9b: fe:2d:86:18:6f:84:cc:5e:65:80:9f:c3:88:3e:c1:d4:e8:49: b9:1e:d0:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUwNzE4MTk1OTQ5WhcNMjUwNzI1MTk1OTQ5WjAYMRYwFAYD VQQDEw02ODdhYTdiNi1mOWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwAB20ra2JqsEXteSzfnSo0Z8gouxWp1pafF2Uy0M6XD1dPyBAWaf0QqCJcZ g/UOib8PwClIhYZO/It4cMFbF668qFyGfcv2pl7h7uIMXegG7nNdRxHbXQBBxG5a URATRborYEBIj1WTLubebWZj+j0qc3i+78GUPKLHCd6h9/sDD3EAiro19R3PfvH/ 7Xh4n5PLSS01cApb2LzCilbpjJHAueU5Na/AMaOhzOIa5V6eFb4gk7uP3UCq8m/0 ciyjSvAMtCxc66CrboweyCdLKy+U8WqORXbrnhJR3a4fJczGvDLt17IyxBaF2Bzv GRRG9j0psaDz2w8O6hYks1PDQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPkHev7 rrVNQGNj/Rrnx7COrsA1MB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFNc6ozuC++eSGsa23AzzOO8OggZ2RA6VtZPP2ip9JORorY05l4zvc z4G1HmchcVtqp/eKhWbZn76j/S+3Ilq3Nli7vyLtoSitR1vE5sBUMBRwEWtUPZEl /mpdt/ER4IobSolBlpznZcQ7Io7PvRx4+GodxyUR2gfxb0j8EWRzYxHWgUqI17Mi M6ukTEdT8Ilp8lbFBBkFky19uTqDZiPLrzyT0DwhkTkLhJ3qh+C4ro9cL9L9dlW/ 3rOjNjxRfkuHkA5gDJR+rrzyNIexL7EDqnuczj2rgLUWV941SDI4sOeIajjGHuK3 tZv+LYYYb4TMXmWAn8OIPsHU6Em5HtCT -----END CERTIFICATE-----Generated at Sun Jul 20 10:04:18 2025 by rpki-client