$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: Aw9awJfNyti545DLXObsaONCC9kIfq+pKu2pyZVtg6Y= Subject key identifier: 42:CB:2F:91:54:9D:AD:48:72:BC:29:EF:CD:B7:80:3C:CC:27:B7:BB Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: AD Signing time: Fri 05 Sep 2025 06:34:22 +0000 Manifest this update: Fri 05 Sep 2025 06:34:22 +0000 Manifest next update: Fri 12 Sep 2025 06:34:22 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: zPo301zMS9kuJL80HcIKOcaIgbYxZJ1YSbOuvcf7V70=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:34:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Sep 5 06:34:22 2025 GMT Not After : Sep 12 06:34:22 2025 GMT Subject: CN=68ba846e-ad0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:99:e6:84:06:77:7a:ad:5d:0c:22:51:79:6d: 82:ec:ab:16:23:3e:13:a7:56:ed:16:62:4d:72:2f: 09:19:64:37:e9:13:06:13:43:4a:d2:e5:73:f1:09: 22:69:65:da:68:1f:cd:d6:e7:36:2a:58:3d:8d:fe: bf:86:ad:f3:9b:d1:dd:21:1a:65:a3:41:b5:d6:00: 3a:ef:89:71:26:8b:b9:69:cd:0c:b2:f8:e4:03:22: 82:bc:7e:ad:92:52:9f:86:a9:28:c3:15:b7:78:7f: 30:84:4a:bb:97:00:b2:d5:a6:13:2b:7e:d2:5a:5e: f5:67:c5:6c:39:76:03:a4:9a:ec:44:83:93:f4:84: 27:60:88:79:32:10:f5:ad:87:49:51:4e:b9:d0:27: f0:24:0c:07:86:bd:a2:08:7a:7a:eb:e5:16:0a:82: 5d:a7:e8:bb:f0:85:87:b4:2f:e0:59:f0:30:8e:f9: f8:51:7b:2e:87:92:15:c7:27:dc:b2:8d:90:3e:04: fc:10:e6:93:bd:2a:22:fc:48:0d:e8:ff:cf:ee:84: 20:80:89:e9:92:d8:a2:13:3b:1a:5d:73:90:2a:70: b0:97:01:77:ee:d6:86:e6:e9:04:7c:be:60:a9:33: 22:71:94:67:8a:11:f3:3a:51:e7:d3:c1:2a:7f:0d: 38:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CB:2F:91:54:9D:AD:48:72:BC:29:EF:CD:B7:80:3C:CC:27:B7:BB X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:6d:44:e2:5a:74:c0:5b:27:2a:95:d7:f3:48:bc:44:e4:9f: 47:6d:d9:61:48:df:99:8e:8b:2b:75:cb:22:51:f7:bf:04:2c: 70:51:dd:42:55:bf:f2:15:b3:49:21:aa:2c:5c:e5:33:9a:0e: 30:34:e3:8c:df:98:d4:37:3c:c8:50:d7:72:10:82:d0:6c:4b: bf:08:28:8e:e1:83:39:5f:85:a1:01:83:40:a0:77:ce:60:04: 45:98:30:8c:09:1c:49:2b:66:f2:4a:11:f4:46:43:19:09:c4: 66:b4:7e:9a:56:35:70:8b:0c:53:67:96:06:8c:ff:0f:2d:5e: 12:4b:13:3d:2a:46:32:ab:34:3b:c6:c1:74:e3:30:ab:03:48: 28:96:c8:b6:2b:e2:0b:fa:c0:d9:0b:5e:8c:1b:b2:cd:9b:3a: f0:d8:93:e0:80:ff:f0:76:e5:70:f2:fb:e9:0e:83:1b:ae:df: a3:48:9f:13:27:70:6e:65:0f:a5:80:eb:a3:4a:b6:e4:5d:e9: 9b:80:87:9d:5e:dd:02:ef:91:b2:f5:65:52:c2:e2:50:03:a6: 0f:4e:2c:2a:99:7f:9d:99:27:bf:34:ac:c3:db:5f:1b:7d:ec: be:16:81:8b:94:5e:1a:00:21:42:c5:bf:ea:2f:13:80:b8:90: 2b:fe:19:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0N0YxMTAvBgNVBAUTKDQ2NDE5MDdGRTVGNDczRjE4OTA2RDQ2QUEyMDMwN0VE RURBMTlDOUQwHhcNMjUwOTA1MDYzNDIyWhcNMjUwOTEyMDYzNDIyWjAYMRYwFAYD VQQDEw02OGJhODQ2ZS1hZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pnmhAZ3eq1dDCJReW2C7KsWIz4Tp1btFmJNci8JGWQ36RMGE0NK0uVz8Qki aWXaaB/N1uc2Klg9jf6/hq3zm9HdIRplo0G11gA674lxJou5ac0MsvjkAyKCvH6t klKfhqkowxW3eH8whEq7lwCy1aYTK37SWl71Z8VsOXYDpJrsRIOT9IQnYIh5MhD1 rYdJUU650CfwJAwHhr2iCHp66+UWCoJdp+i78IWHtC/gWfAwjvn4UXsuh5IVxyfc so2QPgT8EOaTvSoi/EgN6P/P7oQggInpktiiEzsaXXOQKnCwlwF37taG5ukEfL5g qTMicZRnihHzOlHn08Eqfw04VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELLL5FU na1Icrwp7823gDzMJ7e7MB8GA1UdIwQYMBaAFEZBkH/l9HPxiQbUaqIDB+3toZyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQ3Ri9COTFBQUE3NDg2 REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNfR0pCdFJxb2dNSDdlMmhu SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNf R0pCdFJxb2dNSDdlMmhuSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfbUTiWnTAWycqldfzSLxE5J9HbdlhSN+ZjosrdcsiUfe/BCxwUd1C Vb/yFbNJIaosXOUzmg4wNOOM35jUNzzIUNdyEILQbEu/CCiO4YM5X4WhAYNAoHfO YARFmDCMCRxJK2byShH0RkMZCcRmtH6aVjVwiwxTZ5YGjP8PLV4SSxM9KkYyqzQ7 xsF04zCrA0golsi2K+IL+sDZC16MG7LNmzrw2JPggP/wduVw8vvpDoMbrt+jSJ8T J3BuZQ+lgOujSrbkXembgIedXt0C75Gy9WVSwuJQA6YPTiwqmX+dmSe/NKzD218b fey+FoGLlF4aACFCxb/qLxOAuJAr/hnf -----END CERTIFICATE-----Generated at Sat Sep 6 21:28:26 2025 by rpki-client