$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: FtcPljY9gvfoNklzsGD8R5eeTNLszon2WWJ8dY2Vh3w= Subject key identifier: 1C:20:6D:B9:EE:D3:F9:9B:5B:BC:5F:A7:50:2C:13:69:B9:1C:0A:EC Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: 7C Signing time: Sun 01 Jun 2025 06:26:50 +0000 Manifest this update: Sun 01 Jun 2025 06:26:50 +0000 Manifest next update: Sun 08 Jun 2025 06:26:50 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: LHup3wE4c35jqL5Ej93hVlEBtiOdv8B2LDRfFx/9DIY=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Jun 1 06:26:50 2025 GMT Not After : Jun 8 06:26:50 2025 GMT Subject: CN=683bf2aa-9ab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:ef:5f:ae:e4:9b:b1:9f:17:df:70:45:fa: 0e:e4:9e:82:a2:21:8d:50:05:25:f1:9e:97:40:d9: ba:47:47:e1:eb:38:d1:85:27:74:5d:e0:8e:b3:a3: 5a:8e:f6:ca:4d:8f:12:79:05:bf:ed:2e:d5:fc:50: 72:69:6c:80:1e:5f:26:0c:81:2b:5b:ad:f2:54:93: 98:17:9c:46:64:90:24:39:15:d5:a2:44:8b:02:36: 58:e4:fc:87:72:72:d8:f9:28:1b:25:2a:8c:d7:55: 94:37:5b:a8:ee:35:75:a3:f7:bd:99:83:31:86:82: 79:1e:dd:21:6d:46:8a:0a:c5:b0:08:cf:20:f7:c2: d0:12:40:32:c9:e4:4c:91:7b:d6:f4:5a:9e:ad:35: af:53:29:75:a4:4b:45:9c:a7:13:f5:f2:3c:49:03: fa:67:ae:f2:58:cf:cd:32:66:eb:83:46:96:cc:03: 69:e3:a1:2c:c3:11:ba:5c:48:c2:7f:a5:c5:33:b0: 2e:29:4e:9e:be:0e:f7:66:1e:72:0e:c6:fa:3c:36: 6c:20:02:11:a9:62:61:d1:e9:4b:62:dc:a3:25:9a: df:95:99:49:e4:c7:4b:51:4d:c2:11:ce:7a:8c:85: 49:5d:6c:05:0d:3e:d3:ce:1a:d9:bf:8b:83:44:8d: 2a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:20:6D:B9:EE:D3:F9:9B:5B:BC:5F:A7:50:2C:13:69:B9:1C:0A:EC X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:42:27:59:e3:79:06:32:c8:a2:cf:16:16:77:db:e9:54:89: de:07:73:eb:92:98:95:a3:e0:41:0e:52:24:3d:44:b8:1b:7a: e6:08:4f:28:d5:34:f0:76:58:b4:17:0d:57:29:1c:d6:10:da: f3:30:7b:ff:7b:c6:b9:96:65:01:b4:96:4b:58:da:25:30:ad: 8c:14:42:97:3a:00:22:fa:0e:9e:01:f8:6d:78:64:56:82:90: 78:35:91:58:d2:47:2e:3a:be:62:09:1a:34:28:fe:67:4c:b8: e7:42:11:a7:b2:69:cd:36:47:29:96:d3:3c:e1:3f:94:8f:eb: ba:ff:57:75:17:70:27:f0:7e:09:6e:6f:55:fb:17:93:e7:06: c2:38:4c:6c:3b:14:18:2b:b4:93:6f:63:7c:45:47:f1:7a:87: c8:b4:1b:92:33:e0:c0:99:14:42:3b:dc:68:17:72:7e:42:6d: d1:83:6e:bb:9b:a0:f5:5d:64:e4:88:e5:17:1a:3d:5f:58:7a: d6:c3:1a:2e:21:48:83:c4:1f:6b:b9:5e:c4:b8:e1:ed:2c:26: 07:50:a3:07:0f:03:cc:1d:60:e8:95:6a:31:75:41:6c:3e:7e: bf:03:01:5e:cc:8a:1c:18:04:2f:0c:68:67:92:9c:3a:10:f8: 83:12:33:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjQ3RjExMC8GA1UEBRMoNDY0MTkwN0ZFNUY0NzNGMTg5MDZENDZBQTIwMzA3RURF REExOUM5RDAeFw0yNTA2MDEwNjI2NTBaFw0yNTA2MDgwNjI2NTBaMBgxFjAUBgNV BAMTDTY4M2JmMmFhLTlhYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL7+9fruSbsZ8X33BF+g7knoKiIY1QBSXxnpdA2bpHR+HrONGFJ3Rd4I6zo1qO 9spNjxJ5Bb/tLtX8UHJpbIAeXyYMgStbrfJUk5gXnEZkkCQ5FdWiRIsCNljk/Idy ctj5KBslKozXVZQ3W6juNXWj972ZgzGGgnke3SFtRooKxbAIzyD3wtASQDLJ5EyR e9b0Wp6tNa9TKXWkS0WcpxP18jxJA/pnrvJYz80yZuuDRpbMA2njoSzDEbpcSMJ/ pcUzsC4pTp6+DvdmHnIOxvo8NmwgAhGpYmHR6Uti3KMlmt+VmUnkx0tRTcIRznqM hUldbAUNPtPOGtm/i4NEjSpVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHCBtue7T +ZtbvF+nUCwTabkcCuwwHwYDVR0jBBgwFoAURkGQf+X0c/GJBtRqogMH7e2hnJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2NDdGL0I5MUFBQTc0ODZE QjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5K MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUmtHUWYtWDBjX0dKQnRScW9nTUg3ZTJobkowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 NDdGL0I5MUFBQTc0ODZEQjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19H SkJ0UnFvZ01IN2UyaG5KMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAFCJ1njeQYyyKLPFhZ32+lUid4Hc+uSmJWj4EEOUiQ9RLgbeuYITyjV NPB2WLQXDVcpHNYQ2vMwe/97xrmWZQG0lktY2iUwrYwUQpc6ACL6Dp4B+G14ZFaC kHg1kVjSRy46vmIJGjQo/mdMuOdCEaeyac02RymW0zzhP5SP67r/V3UXcCfwfglu b1X7F5PnBsI4TGw7FBgrtJNvY3xFR/F6h8i0G5Iz4MCZFEI73GgXcn5CbdGDbrub oPVdZOSI5RcaPV9YetbDGi4hSIPEH2u5XsS44e0sJgdQowcPA8wdYOiVajF1QWw+ fr8DAV7MihwYBC8MaGeSnDoQ+IMSM0c= -----END CERTIFICATE-----Generated at Mon Jun 2 19:49:37 2025 by rpki-client