$ rpki-client -vvf rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.mft File: SkTgEhvolIv3vEnLA6Y4F6W60YY.mft (raw, json) Hash identifier: uE0cjK/zeqlbGNMq/ZMQd7EtFHtTKRDZddatFjA28zw= Subject key identifier: 90:2D:75:42:3F:81:C3:32:FA:63:2D:64:B2:DD:F7:1D:FF:31:79:A3 Authority key identifier: 4A:44:E0:12:1B:E8:94:8B:F7:BC:49:CB:03:A6:38:17:A5:BA:D1:86 Certificate issuer: /CN=A918BFB8/serialNumber=4A44E0121BE8948BF7BC49CB03A63817A5BAD186 Certificate serial: 0F39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkTgEhvolIv3vEnLA6Y4F6W60YY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.mft Manifest number: 0F30 Signing time: Sat 02 Aug 2025 17:46:59 +0000 Manifest this update: Sat 02 Aug 2025 17:46:58 +0000 Manifest next update: Sat 09 Aug 2025 17:46:58 +0000 Files and hashes: 1: SkTgEhvolIv3vEnLA6Y4F6W60YY.crl (hash: PXO1m29LInqNIoP+oefAMrF1z4hbv9KjLenIIq5GBiY=) 2: DBB5A81E77D611E98792C466C4F9AE02.roa (hash: l1aL436ui+DSs7MhbbXkGIT5+J+EKVHo8IJU3TtL4kk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.crl rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkTgEhvolIv3vEnLA6Y4F6W60YY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3897 (0xf39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BFB8, serialNumber=4A44E0121BE8948BF7BC49CB03A63817A5BAD186 Validity Not Before: Aug 2 17:46:58 2025 GMT Not After : Aug 9 17:46:58 2025 GMT Subject: CN=688e4f13-3a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:17:4d:dc:90:9d:50:59:06:bf:0c:70:fe:a3: fd:c2:ea:31:6f:35:85:a5:f5:05:f5:e1:1a:2a:1d: 75:b1:3a:21:84:a0:f9:6b:16:10:2b:ff:d8:00:16: 90:6d:bc:43:3d:59:1e:6f:3b:fb:c0:30:89:0b:d8: 95:64:51:58:5d:d2:b5:45:59:81:ec:61:9a:17:76: 9a:00:77:ef:65:9e:20:08:f5:50:e4:5c:a2:ab:70: eb:1b:ce:9b:63:49:5f:45:82:df:45:7b:5b:e9:1a: 08:ee:e8:da:1a:6b:8d:1c:b5:c5:34:e2:71:0c:16: 1f:f7:2b:05:f8:4f:46:db:22:7c:82:96:a7:1f:2a: d1:26:18:d3:ff:89:6d:b8:3e:cd:61:19:aa:a0:87: 10:0f:d9:1d:08:b9:14:8e:73:ff:f4:51:54:2b:25: d0:3c:a5:57:43:11:b9:a6:4a:5a:50:8b:af:aa:ea: fc:62:21:88:51:17:20:8b:a6:ab:28:c2:04:0b:e9: 0a:63:8a:ac:f9:79:74:4f:d8:32:59:a1:a1:f9:ca: d8:92:2e:8e:f0:c8:e5:b9:ba:65:44:76:8b:47:b4: 01:9e:41:05:dc:18:39:83:ae:84:fb:aa:9e:e3:c8: cc:99:a1:6c:87:d6:6b:2c:ad:90:ff:05:b4:71:df: f2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:2D:75:42:3F:81:C3:32:FA:63:2D:64:B2:DD:F7:1D:FF:31:79:A3 X509v3 Authority Key Identifier: keyid:4A:44:E0:12:1B:E8:94:8B:F7:BC:49:CB:03:A6:38:17:A5:BA:D1:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkTgEhvolIv3vEnLA6Y4F6W60YY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:57:84:91:97:ee:cc:38:2f:5d:16:6a:7d:7b:59:74:e2:6b: ee:1d:0e:7f:99:1a:fc:5a:6d:e4:7c:3f:87:25:2d:67:81:e9: f4:a6:28:12:59:88:9f:2f:a3:f4:86:54:0e:cf:9a:60:6d:c6: e8:7f:fb:33:f2:30:db:96:3e:1e:9e:b9:6d:09:ce:52:89:78: 78:8a:06:f7:b2:b5:21:4b:d7:d8:d4:3b:ac:81:e2:64:ca:2b: 06:07:cb:b7:ab:6d:e0:5b:77:d2:2a:12:ec:02:0d:3c:f1:15: 5f:4c:60:57:67:1d:64:a5:4d:3f:10:cb:37:95:6f:65:ea:29: bb:c8:59:b0:98:24:6a:c2:89:5a:a8:9b:59:46:01:6d:0d:a8: 7d:ad:0c:2e:f0:31:a8:da:74:91:fa:bb:3f:d7:d1:f6:76:27: ff:fb:0e:94:1e:6a:f4:b4:a8:40:26:e0:fa:8e:cd:13:a5:cf: 94:d3:7f:b7:4c:3c:1e:d0:89:e0:49:3d:d1:e2:b4:71:0b:e5: c2:84:29:2a:3b:4a:79:ff:d1:b2:50:34:94:8c:2c:5e:1f:8c: 23:29:70:a3:70:63:c4:ff:07:96:cf:58:57:ab:ca:d0:3b:b8: cc:f5:66:a4:04:42:aa:0b:4c:4e:57:7c:4d:7c:e9:bd:de:7b: 61:f7:49:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJGQjgxMTAvBgNVBAUTKDRBNDRFMDEyMUJFODk0OEJGN0JDNDlDQjAzQTYzODE3 QTVCQUQxODYwHhcNMjUwODAyMTc0NjU4WhcNMjUwODA5MTc0NjU4WjAYMRYwFAYD VQQDEw02ODhlNGYxMy0zYTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRdN3JCdUFkGvwxw/qP9wuoxbzWFpfUF9eEaKh11sTohhKD5axYQK//YABaQ bbxDPVkebzv7wDCJC9iVZFFYXdK1RVmB7GGaF3aaAHfvZZ4gCPVQ5Fyiq3DrG86b Y0lfRYLfRXtb6RoI7ujaGmuNHLXFNOJxDBYf9ysF+E9G2yJ8gpanHyrRJhjT/4lt uD7NYRmqoIcQD9kdCLkUjnP/9FFUKyXQPKVXQxG5pkpaUIuvqur8YiGIURcgi6ar KMIEC+kKY4qs+Xl0T9gyWaGh+crYki6O8MjlubplRHaLR7QBnkEF3Bg5g66E+6qe 48jMmaFsh9ZrLK2Q/wW0cd/yrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAtdUI/ gcMy+mMtZLLd9x3/MXmjMB8GA1UdIwQYMBaAFEpE4BIb6JSL97xJywOmOBelutGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkZCOC9BQjk1QjVBODc3 RDUxMUU5QUJDNjNBNjVDNEY5QUUwMi9Ta1RnRWh2b2xJdjN2RW5MQTZZNEY2VzYw WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NrVGdFaHZvbEl2M3ZFbkxBNlk0RjZXNjBZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkZCOC9BQjk1QjVBODc3RDUxMUU5QUJDNjNBNjVDNEY5QUUwMi9Ta1RnRWh2b2xJ djN2RW5MQTZZNEY2VzYwWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNV4SRl+7MOC9dFmp9e1l04mvuHQ5/mRr8Wm3kfD+HJS1ngen0pigS WYifL6P0hlQOz5pgbcbof/sz8jDblj4enrltCc5SiXh4igb3srUhS9fY1DusgeJk yisGB8u3q23gW3fSKhLsAg088RVfTGBXZx1kpU0/EMs3lW9l6im7yFmwmCRqwola qJtZRgFtDah9rQwu8DGo2nSR+rs/19H2dif/+w6UHmr0tKhAJuD6js0Tpc+U03+3 TDwe0IngST3R4rRxC+XChCkqO0p5/9GyUDSUjCxeH4wjKXCjcGPE/weWz1hXq8rQ O7jM9WakBEKqC0xOV3xNfOm93nth90m5 -----END CERTIFICATE-----Generated at Mon Aug 4 11:24:47 2025 by rpki-client