$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: YktBX4Q3yYQPCdFcSIqmlDO6ZP/vf7t2BOva/8TqFlQ= Subject key identifier: 88:81:63:89:EE:2F:AF:BE:A7:33:00:80:9D:E6:70:F5:25:76:90:63 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 0805 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 07F6 Signing time: Fri 18 Jul 2025 21:14:18 +0000 Manifest this update: Fri 18 Jul 2025 21:14:18 +0000 Manifest next update: Fri 25 Jul 2025 21:14:18 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: noS/8/v+zsMreT+wRv4v9awatjeajncbj9s/ymFtQ/Q=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:14:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Jul 18 21:14:18 2025 GMT Not After : Jul 25 21:14:18 2025 GMT Subject: CN=687ab92a-9117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f4:9b:01:23:04:75:3c:b5:24:2d:5e:6e:4a: 86:7d:e5:6e:a3:c4:ba:69:cb:59:6e:f8:79:08:78: 06:d9:75:8e:10:7d:50:55:49:49:f3:18:7c:7e:8f: 6c:32:e3:0c:46:25:10:06:71:e0:f2:b7:cc:ea:df: d7:d6:4f:b6:5a:b1:16:88:dc:8b:29:19:c4:37:02: 91:e6:41:2d:68:54:a0:93:da:37:fa:25:fb:0c:55: 33:f8:26:eb:9a:70:9a:ed:d7:ee:de:d7:cf:d7:7e: 39:da:5a:b4:9a:6a:fd:53:39:6f:de:3a:9c:99:d5: 54:02:60:6d:30:b8:dc:f8:9b:5f:1c:a9:21:c2:e7: 9b:d8:e8:c7:8f:bb:fb:7f:03:09:12:01:49:5f:9d: bd:39:3a:8b:6e:4a:d6:d9:82:93:b2:21:df:d5:75: 23:54:d4:43:a4:b9:0e:22:6a:23:be:06:83:b0:b0: 51:b1:48:80:6a:a9:5a:80:8b:ed:08:ef:bc:ea:ff: 47:39:1d:17:98:ec:4a:af:ed:bf:7e:db:c4:12:f5: 44:c0:3a:21:97:bc:e2:53:9e:11:48:4a:c2:3c:18: 6f:13:b9:d3:57:f6:2c:1f:07:38:5d:b9:51:c8:67: e9:d0:63:d2:8c:a3:e9:ad:4d:eb:90:8c:99:6e:0b: ed:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:81:63:89:EE:2F:AF:BE:A7:33:00:80:9D:E6:70:F5:25:76:90:63 X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b9:a6:ce:f0:6e:69:86:8a:a0:d3:f0:d8:9e:ba:f9:4c:0f: 8b:4d:b0:d8:d5:a0:29:02:18:49:42:cc:51:5f:e6:68:09:d5: 38:15:4e:fd:ef:a0:db:77:ef:24:4a:55:8c:f7:56:09:90:b6: fd:0d:52:db:b6:f1:a2:8c:41:0c:1c:05:b2:83:3f:15:c5:fd: 22:7a:fe:97:0b:60:f3:15:04:75:b7:d7:cb:3b:64:19:a9:ff: fb:19:99:36:7c:ce:68:d5:8a:66:43:25:13:b0:3b:27:6e:3e: ef:1b:3a:b0:53:5a:79:88:41:a3:7d:bf:8c:7b:00:bb:a0:93: d2:0a:c1:5d:fe:96:48:eb:ff:bc:f5:91:e6:0f:c3:9d:c4:7d: 04:5f:e0:63:c1:e7:29:d9:b4:ac:2a:59:08:de:8c:b5:cb:f3: 6f:a4:6c:bf:45:fa:a1:16:dd:d9:b4:5d:7e:e2:df:f7:a4:6b: f6:27:ff:6d:e0:ba:c1:22:b5:89:51:06:d1:02:c7:81:3d:99: 83:53:4d:6f:d8:29:ff:a7:f8:24:6b:2a:cb:78:3f:d3:3d:3b: c5:2c:86:f8:54:8f:7e:80:d3:91:fe:d7:d8:d1:85:d3:f2:68: 8e:d9:35:d8:3a:39:c1:8f:1a:72:54:b2:59:0b:e4:7f:58:0a: 70:38:00:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwNzE4MjExNDE4WhcNMjUwNzI1MjExNDE4WjAYMRYwFAYD VQQDEw02ODdhYjkyYS05MTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPSbASMEdTy1JC1ebkqGfeVuo8S6actZbvh5CHgG2XWOEH1QVUlJ8xh8fo9s MuMMRiUQBnHg8rfM6t/X1k+2WrEWiNyLKRnENwKR5kEtaFSgk9o3+iX7DFUz+Cbr mnCa7dfu3tfP13452lq0mmr9Uzlv3jqcmdVUAmBtMLjc+JtfHKkhwueb2OjHj7v7 fwMJEgFJX529OTqLbkrW2YKTsiHf1XUjVNRDpLkOImojvgaDsLBRsUiAaqlagIvt CO+86v9HOR0XmOxKr+2/ftvEEvVEwDohl7ziU54RSErCPBhvE7nTV/YsHwc4XblR yGfp0GPSjKPprU3rkIyZbgvt3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiBY4nu L6++pzMAgJ3mcPUldpBjMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6uabO8G5phoqg0/DYnrr5TA+LTbDY1aApAhhJQsxRX+ZoCdU4FU79 76Dbd+8kSlWM91YJkLb9DVLbtvGijEEMHAWygz8Vxf0iev6XC2DzFQR1t9fLO2QZ qf/7GZk2fM5o1YpmQyUTsDsnbj7vGzqwU1p5iEGjfb+MewC7oJPSCsFd/pZI6/+8 9ZHmD8OdxH0EX+Bjwecp2bSsKlkI3oy1y/NvpGy/RfqhFt3ZtF1+4t/3pGv2J/9t 4LrBIrWJUQbRAseBPZmDU01v2Cn/p/gkayrLeD/TPTvFLIb4VI9+gNOR/tfY0YXT 8miO2TXYOjnBjxpyVLJZC+R/WApwOAAB -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:04 2025 by rpki-client