$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: qc4Sta+hmUH4GlvOIGCpU8Ju8E58pcxgTl5C5PObQSM= Subject key identifier: B8:28:95:25:2C:39:AC:44:94:FF:86:51:5D:90:B0:64:FC:65:75:34 Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: 85 Signing time: Thu 19 Jun 2025 05:57:54 +0000 Manifest this update: Thu 19 Jun 2025 05:57:53 +0000 Manifest next update: Thu 26 Jun 2025 05:57:53 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: tuQAAQrCL81ryM/ra868IST0J5Nzx+YEr2NzUnI9O2w=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Jun 19 05:57:53 2025 GMT Not After : Jun 26 05:57:53 2025 GMT Subject: CN=6853a6e2-4404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bb:c5:02:9c:1f:0c:33:fb:9c:fe:78:d8:29: 50:c4:54:d2:b4:e5:4a:4e:fc:8f:55:ad:09:cc:2b: 92:7d:4c:76:c8:68:1b:90:25:a0:a5:94:ea:7a:fe: 07:44:fe:59:48:08:6d:1d:37:84:85:52:a4:d4:8f: 43:86:22:32:ea:99:34:7a:dd:42:33:81:fb:b6:a7: 2e:3d:46:04:a2:af:9e:e0:c3:3a:c6:dd:93:0e:50: 76:a3:75:f2:32:2f:a9:22:e4:c8:43:94:dd:07:0d: a5:e6:49:f9:33:ff:4d:2c:52:46:b0:f3:b6:6e:64: ce:10:fb:88:77:2f:08:97:b0:c5:ed:c7:31:33:05: e8:65:1e:4d:ab:1c:fb:1e:06:96:d7:91:ac:90:0f: 6f:9d:29:47:53:e3:24:36:d5:80:90:c8:61:10:46: b4:ce:e0:f5:27:30:74:ea:50:3c:fa:f2:10:8a:50: 37:2c:ea:23:ce:6f:3e:b9:1e:2e:62:f4:70:c5:6b: 9a:ca:f7:05:c0:5d:7c:6c:27:b2:b6:98:51:f0:0d: a1:f6:1e:dc:c5:ab:e3:3c:a0:c7:29:1a:1f:a2:d7: 22:f8:19:30:5c:c8:f2:fe:89:01:fb:c6:4f:b0:ce: 0e:66:c1:1d:ec:e9:0c:1c:29:01:b6:d8:f4:c7:f5: e7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:28:95:25:2C:39:AC:44:94:FF:86:51:5D:90:B0:64:FC:65:75:34 X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:e4:15:81:d4:c8:26:b3:5b:53:b6:b8:8c:92:e0:24:45:f4: 46:ef:6c:76:3b:da:09:7f:46:1f:34:20:c8:14:7f:47:94:3d: a0:42:e5:cc:a9:da:cf:e5:f7:8b:88:6d:8d:49:ed:b3:4c:8a: 64:83:5f:4b:24:01:7a:2f:2d:de:14:31:08:9b:ce:79:44:26: 24:63:6e:90:de:5d:46:02:5d:c6:25:be:a2:24:0d:41:81:c1: d4:37:63:50:50:d0:8d:0b:da:07:74:cd:e2:3a:b2:9b:da:bf: ae:56:57:23:46:db:c4:80:06:d4:6e:17:80:46:ec:a4:c0:4d: d9:6b:4a:90:16:0d:b5:7a:e8:52:4a:22:43:f6:05:2b:b8:83: 73:8c:e7:61:6d:51:f7:c6:19:7e:33:bb:f4:fd:36:7c:62:80: 17:6f:b7:2a:5a:92:d1:d7:69:18:05:e5:98:70:b4:d0:ec:5a: 59:12:be:cb:af:a0:f4:75:3e:9b:5f:b0:e4:95:bd:85:de:20: 0a:1c:58:82:90:1b:1f:ac:0d:64:80:87:08:ef:df:c4:8f:7d: 83:cf:23:88:a7:4a:3e:33:a4:28:49:7c:59:1d:18:99:25:85: d9:29:1e:29:73:64:46:47:90:1f:59:7f:2d:3f:fe:dc:c4:09: 74:51:f6:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0N0YxMTAvBgNVBAUTKDQ2NDE5MDdGRTVGNDczRjE4OTA2RDQ2QUEyMDMwN0VE RURBMTlDOUQwHhcNMjUwNjE5MDU1NzUzWhcNMjUwNjI2MDU1NzUzWjAYMRYwFAYD VQQDEw02ODUzYTZlMi00NDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7vFApwfDDP7nP542ClQxFTStOVKTvyPVa0JzCuSfUx2yGgbkCWgpZTqev4H RP5ZSAhtHTeEhVKk1I9DhiIy6pk0et1CM4H7tqcuPUYEoq+e4MM6xt2TDlB2o3Xy Mi+pIuTIQ5TdBw2l5kn5M/9NLFJGsPO2bmTOEPuIdy8Il7DF7ccxMwXoZR5Nqxz7 HgaW15GskA9vnSlHU+MkNtWAkMhhEEa0zuD1JzB06lA8+vIQilA3LOojzm8+uR4u YvRwxWuayvcFwF18bCeytphR8A2h9h7cxavjPKDHKRofotci+BkwXMjy/okB+8ZP sM4OZsEd7OkMHCkBttj0x/XnJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgolSUs OaxElP+GUV2QsGT8ZXU0MB8GA1UdIwQYMBaAFEZBkH/l9HPxiQbUaqIDB+3toZyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQ3Ri9COTFBQUE3NDg2 REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNfR0pCdFJxb2dNSDdlMmhu SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi9Sa0dRZi1YMGNf R0pCdFJxb2dNSDdlMmhuSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ5BWB1Mgms1tTtriMkuAkRfRG72x2O9oJf0YfNCDIFH9HlD2gQuXM qdrP5feLiG2NSe2zTIpkg19LJAF6Ly3eFDEIm855RCYkY26Q3l1GAl3GJb6iJA1B gcHUN2NQUNCNC9oHdM3iOrKb2r+uVlcjRtvEgAbUbheARuykwE3Za0qQFg21euhS SiJD9gUruINzjOdhbVH3xhl+M7v0/TZ8YoAXb7cqWpLR12kYBeWYcLTQ7FpZEr7L r6D0dT6bX7Dklb2F3iAKHFiCkBsfrA1kgIcI79/Ej32DzyOIp0o+M6QoSXxZHRiZ JYXZKR4pc2RGR5AfWX8tP/7cxAl0UfbS -----END CERTIFICATE-----Generated at Thu Jun 19 14:23:12 2025 by rpki-client