$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: p3rt+FciONyh+gyfFEbQ5qtvls5ZzHa3PXZZKMChMtg= Subject key identifier: 2A:C6:2B:C8:57:D7:46:75:56:1F:B1:A9:4E:3F:A3:FF:31:89:93:8B Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 0412 Signing time: Mon 11 Aug 2025 01:29:30 +0000 Manifest this update: Mon 11 Aug 2025 01:29:30 +0000 Manifest next update: Mon 18 Aug 2025 01:29:30 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: cpHE4lIa0oQP3PuBjvMHGS/EI/KpxGuMWbZ3e3ATCJM=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: tIDiP3hNqVNzA0IqRbP/SuZVvzepUKW2qtpK5KHsOYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 01:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Aug 11 01:29:30 2025 GMT Not After : Aug 18 01:29:30 2025 GMT Subject: CN=6899477a-999c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4b:2e:55:3b:10:e1:fb:8e:63:ea:c3:2c:ad: 23:c6:0f:38:df:ae:58:73:5e:c0:51:cf:48:a0:f5: 98:93:0a:33:b0:87:ec:a6:e5:bf:ef:d1:a4:d4:50: 06:39:37:c6:af:4a:b4:ce:c1:61:60:75:9d:26:5b: 7e:41:07:d4:6d:63:e7:47:ea:83:97:38:d9:17:ed: 95:01:84:02:3c:97:96:5c:33:31:3d:c1:48:46:4f: 07:ff:76:3a:fd:05:e4:f1:58:ed:2e:e2:75:c6:4f: 5e:4e:fe:26:1e:84:4f:ee:0e:15:aa:68:12:a8:f7: 10:81:83:46:5e:a1:30:22:7f:76:34:cb:2c:06:7a: 8f:2b:e1:3e:0b:ef:56:a1:4e:95:78:fe:60:90:67: 75:bc:64:81:70:4c:5d:cd:81:81:bd:7e:2a:a1:b5: 36:e7:39:35:06:32:23:1f:db:3c:c9:2b:b6:77:85: 5a:96:c8:3b:d5:3b:ff:01:ec:38:2b:1a:38:74:59: 66:4d:55:a8:13:87:c5:aa:20:62:4e:d2:64:8b:fe: 7a:8c:7c:e3:69:fe:04:8c:33:8a:7a:78:6b:66:28: a2:85:b1:bd:e0:3a:61:f0:67:95:46:f2:2c:34:ac: f9:c5:7b:3c:fa:d0:eb:c8:fc:ca:a8:59:8e:79:00: 22:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C6:2B:C8:57:D7:46:75:56:1F:B1:A9:4E:3F:A3:FF:31:89:93:8B X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:29:d0:25:d1:00:30:d9:ec:6a:5f:d2:6a:e2:33:03:7d:b2: 69:38:88:37:b7:b0:c2:62:de:91:cd:34:f6:e0:6f:d0:b2:69: 61:3d:19:db:25:bb:ec:cd:bc:ff:81:43:c5:06:47:6e:9a:47: 76:a0:6d:a1:e6:4c:76:28:ac:3d:0e:f3:6f:14:8c:8d:f3:53: 5d:b3:22:f4:9a:74:67:4e:fe:e1:ae:8b:ab:54:f2:8a:05:e1: 66:56:2c:f8:b6:0b:92:82:9b:1b:dd:9b:e9:74:27:0b:b2:80: ce:86:44:71:6d:92:e4:4d:f0:ec:05:c8:11:79:bc:18:cb:c4: 98:0a:83:92:b3:e2:5b:e8:19:6f:f0:82:2e:c9:14:9d:8f:2e: cb:73:59:ef:f8:cf:81:f6:db:72:63:9a:e1:47:2a:57:c8:c2: 17:a2:4b:ca:77:35:47:cc:9c:df:55:11:73:6b:c9:ee:0f:d5: b1:2d:1d:56:f4:84:f7:d5:b3:67:d7:30:e2:cc:a7:ba:aa:a8: 92:fd:82:28:f5:f7:dc:df:00:c8:e6:e3:bc:0f:4c:11:d7:a1: 19:19:88:49:5e:79:7c:24:f2:e3:6b:fd:ce:5f:71:02:f1:e6: 22:45:6a:c8:93:6d:1f:4b:db:75:7d:9c:13:73:c3:9b:7c:79: 04:a8:30:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjUwODExMDEyOTMwWhcNMjUwODE4MDEyOTMwWjAYMRYwFAYD VQQDEw02ODk5NDc3YS05OTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ksuVTsQ4fuOY+rDLK0jxg84365Yc17AUc9IoPWYkwozsIfspuW/79Gk1FAG OTfGr0q0zsFhYHWdJlt+QQfUbWPnR+qDlzjZF+2VAYQCPJeWXDMxPcFIRk8H/3Y6 /QXk8VjtLuJ1xk9eTv4mHoRP7g4VqmgSqPcQgYNGXqEwIn92NMssBnqPK+E+C+9W oU6VeP5gkGd1vGSBcExdzYGBvX4qobU25zk1BjIjH9s8ySu2d4Valsg71Tv/Aew4 Kxo4dFlmTVWoE4fFqiBiTtJki/56jHzjaf4EjDOKenhrZiiihbG94Dph8GeVRvIs NKz5xXs8+tDryPzKqFmOeQAihwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrGK8hX 10Z1Vh+xqU4/o/8xiZOLMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2KdAl0QAw2exqX9Jq4jMDfbJpOIg3t7DCYt6RzTT24G/QsmlhPRnb Jbvszbz/gUPFBkdumkd2oG2h5kx2KKw9DvNvFIyN81NdsyL0mnRnTv7hrourVPKK BeFmViz4tguSgpsb3ZvpdCcLsoDOhkRxbZLkTfDsBcgRebwYy8SYCoOSs+Jb6Blv 8IIuyRSdjy7Lc1nv+M+B9ttyY5rhRypXyMIXokvKdzVHzJzfVRFza8nuD9WxLR1W 9IT31bNn1zDizKe6qqiS/YIo9ffc3wDI5uO8D0wR16EZGYhJXnl8JPLja/3OX3EC 8eYiRWrIk20fS9t1fZwTc8ObfHkEqDCw -----END CERTIFICATE-----Generated at Tue Aug 12 19:08:14 2025 by rpki-client