$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft File: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft (raw, json) Hash identifier: bFTkFoM7PvzccTpbpkRyUJXig7ws9ivw+uNFNm185Oc= Subject key identifier: B7:03:F6:97:CD:11:8A:D7:76:E6:38:8C:26:B9:D0:16:CE:59:6D:18 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft Manifest number: 01F5 Signing time: Tue 09 Sep 2025 02:34:58 +0000 Manifest this update: Tue 09 Sep 2025 02:34:58 +0000 Manifest next update: Tue 16 Sep 2025 02:34:58 +0000 Files and hashes: 1: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl (hash: 7D/E6RA1yyffnfh+/5UekIqpv2Pr+36ZSryPl+w11Ys=) 2: 6549AD3EAC1011ED8592693FC4F9AE02.roa (hash: V+A9+3TWv6PDJfONkiYGSLwYtuk75uf9VZIwDYRykJo=) 3: 64B2DE72AC1011ED8592693FC4F9AE02.roa (hash: 8XCBqH3UeeuDPYwwqRpO+AoZOfKPyRMZ7ican69IhKU=) 4: 665497A2AC1011ED8592693FC4F9AE02.roa (hash: GzbxM9C1MjlQY8/LbZ9rlFb8KN037sgMyJVoACbdjQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B, serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Sep 9 02:34:58 2025 GMT Not After : Sep 16 02:34:58 2025 GMT Subject: CN=68bf9252-e8d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8e:ea:ee:46:5c:64:cb:a8:e5:63:51:b0:7a: 92:91:f1:8c:06:17:4f:0e:ec:6c:a8:da:fd:1e:2c: 2f:50:e0:87:ee:d1:86:a2:8e:7a:03:90:8d:9b:d1: 59:ea:ee:31:33:11:84:1a:1a:10:81:40:07:e7:c8: 33:29:11:85:9f:f6:ed:cf:73:1a:bf:2e:67:b5:46: 5f:39:4d:ef:58:0f:8c:e0:80:e8:d4:27:bf:c3:09: 3c:5a:7c:eb:d1:64:12:27:00:94:e8:41:09:fd:1d: 2e:d5:79:5b:3e:24:49:44:a3:72:b4:26:ee:5a:64: 60:8f:91:05:cb:86:7d:5e:41:b3:30:b8:19:2e:80: fc:86:7c:7d:18:0f:5b:10:2a:25:91:2d:34:25:3c: 64:f4:84:43:f8:10:17:fd:ce:35:d0:28:e5:62:e5: 50:fd:26:16:6e:5b:2f:29:9f:3f:a8:2a:a3:27:dd: ee:a2:27:b9:6f:00:92:3f:72:77:97:54:6e:b4:84: f1:69:c8:67:86:6d:43:5b:73:6a:54:1e:51:87:70: 2c:2e:3a:18:37:41:41:c1:87:81:91:1f:05:79:d0: 36:71:a8:f4:e4:b5:51:86:f6:e4:d2:c9:b9:cb:7d: 53:b3:a0:9c:4b:3c:67:f1:98:f1:03:52:72:30:fc: a9:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:03:F6:97:CD:11:8A:D7:76:E6:38:8C:26:B9:D0:16:CE:59:6D:18 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:9f:82:93:70:87:d6:81:96:6a:cf:d8:20:f8:b1:55:d7:ec: a3:e9:cb:4b:08:c4:d2:a7:75:5d:45:ad:f8:63:76:42:a2:dd: e8:ba:73:53:eb:db:a0:ed:e6:8e:14:3c:28:26:e6:18:b3:94: da:57:e3:47:75:56:73:83:5b:5e:14:49:99:40:e9:51:67:7f: d7:0b:02:5d:d2:96:51:92:34:77:84:64:50:03:3d:7f:6e:33: 50:b9:8b:b5:72:a4:74:53:cc:90:36:45:20:d5:31:19:b8:77: 12:5e:72:19:01:d4:fc:46:28:37:19:c5:d1:2a:2b:67:37:a8: e4:b6:5a:2b:47:ae:c3:ba:ca:e7:56:29:25:d3:1b:37:cd:1f: 48:5f:6a:bc:5d:3a:76:3b:cc:a9:d0:0c:cc:2d:19:71:1e:04: 6f:78:1a:37:60:34:bb:e3:93:55:35:e6:cd:9f:56:a4:b0:e2: de:37:76:7a:32:79:0a:fe:66:6d:c5:30:3c:3a:e0:ba:5f:a2: a0:69:03:c3:20:7b:bd:cf:2b:49:02:53:53:25:d4:da:46:bb: a0:86:8f:2b:df:78:46:2a:29:c6:47:4e:64:6b:6d:d7:92:7c: c2:97:a5:64:2d:71:37:16:1a:fd:ab:c5:d6:26:43:01:04:00: 58:40:87:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjUwOTA5MDIzNDU4WhcNMjUwOTE2MDIzNDU4WjAYMRYwFAYD VQQDEw02OGJmOTI1Mi1lOGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAso7q7kZcZMuo5WNRsHqSkfGMBhdPDuxsqNr9HiwvUOCH7tGGoo56A5CNm9FZ 6u4xMxGEGhoQgUAH58gzKRGFn/btz3Mavy5ntUZfOU3vWA+M4IDo1Ce/wwk8Wnzr 0WQSJwCU6EEJ/R0u1XlbPiRJRKNytCbuWmRgj5EFy4Z9XkGzMLgZLoD8hnx9GA9b EColkS00JTxk9IRD+BAX/c410CjlYuVQ/SYWblsvKZ8/qCqjJ93uoie5bwCSP3J3 l1RutITxachnhm1DW3NqVB5Rh3AsLjoYN0FBwYeBkR8FedA2caj05LVRhvbk0sm5 y31Ts6CcSzxn8ZjxA1JyMPyplQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcD9pfN EYrXduY4jCa50BbOWW0YMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEU5Qi82OUVCNDJDMDk2MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdD cDZIazJrc3NCdnJTcXU1TGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4n4KTcIfWgZZqz9gg+LFV1+yj6ctLCMTSp3VdRa34Y3ZCot3ounNT 69ug7eaOFDwoJuYYs5TaV+NHdVZzg1teFEmZQOlRZ3/XCwJd0pZRkjR3hGRQAz1/ bjNQuYu1cqR0U8yQNkUg1TEZuHcSXnIZAdT8Rig3GcXRKitnN6jktlorR67Dusrn Vikl0xs3zR9IX2q8XTp2O8yp0AzMLRlxHgRveBo3YDS745NVNebNn1aksOLeN3Z6 MnkK/mZtxTA8OuC6X6KgaQPDIHu9zytJAlNTJdTaRrugho8r33hGKinGR05ka23X knzCl6VkLXE3Fhr9q8XWJkMBBABYQIdv -----END CERTIFICATE-----Generated at Tue Sep 9 07:50:22 2025 by rpki-client