$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft File: rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft (raw, json) Hash identifier: 43YYQ8vlm04b+RVYMWW75nVe19AZ5Sv/28xAO8sz38w= Subject key identifier: 52:F4:90:96:F0:3F:00:65:E6:AD:3B:43:E7:AE:22:F6:74:CF:0D:80 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 04F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft Manifest number: 04DC Signing time: Thu 07 Aug 2025 00:16:59 +0000 Manifest this update: Thu 07 Aug 2025 00:16:58 +0000 Manifest next update: Thu 14 Aug 2025 00:16:58 +0000 Files and hashes: 1: rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl (hash: 6MhbOsRb26yNohr/GXVc4p03YyEP59zmf5laDqre0Lc=) 2: B016290E2CE211EC8664D47EC4F9AE02.roa (hash: N+v5XDTe3qGrc3Im5miqpHu358OzdQqGsyKCPQ1e/9E=) 3: 14172F4C264311EEB0342B45C4F9AE02.roa (hash: Ugkrxpmo+RhmzNNOs4CXnhFZe2ur3HMxWdH+GOY5OTg=) 4: 8C2F1C96367F11EEB689C243C4F9AE02.roa (hash: NMuBSgtK/HkuND8tStUDe+Ag9eP8OhZhvhWqets1kM8=) 5: AF91ADB42CE211EC8664D47EC4F9AE02.roa (hash: vVCpAMW7qiQGHNF6JhfNX4AfCfOmlSNmnkvMLMOZ1EI=) 6: AEFA3DD02CE211EC8664D47EC4F9AE02.roa (hash: sOUIWYOFE2CSPs3Drpz/bEhxmM04l8k3SIDOG1UW16M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Aug 7 00:16:58 2025 GMT Not After : Aug 14 00:16:58 2025 GMT Subject: CN=6893f07b-c9da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a1:c6:da:75:5f:ca:a9:fe:bc:20:3c:f2:df: cf:0b:7a:88:8b:2c:ec:66:3e:4f:c2:41:c0:b1:b4: 5c:35:ca:90:9e:c0:de:3f:c9:cd:86:92:46:e2:84: 97:42:48:6b:18:c3:26:8e:ad:26:cb:68:7c:ea:ba: 3b:93:b4:82:b6:00:f8:d7:04:33:4e:5b:0c:48:d8: cf:4c:99:d9:a4:7b:cb:09:e3:1e:bb:6c:b8:de:ca: e0:b0:45:cc:04:96:77:e7:75:ad:36:76:e3:96:a5: 6b:b9:19:5e:dd:be:80:4f:17:ca:1f:d7:a8:4f:2c: 08:7c:7a:9e:15:90:ad:cb:5f:6a:42:e4:20:4f:9a: 0d:7d:3f:b7:c0:5d:97:16:65:56:e4:65:4d:ff:e2: 25:a2:e6:8d:d7:b0:cc:a5:c0:d4:bc:2f:31:b2:d8: 97:03:ac:da:b5:67:5d:72:d4:79:d6:82:6b:e7:4e: a3:76:0d:62:53:9c:12:db:f1:36:d8:49:c4:3c:2b: 67:7a:8c:fb:47:fa:83:53:51:36:b9:a6:17:66:c7: 8d:34:6b:9b:b1:46:ee:06:c9:43:46:1d:79:32:2b: cc:9a:2f:3b:c0:50:04:81:39:b3:3e:88:28:d6:a5: 9b:d8:0c:db:f3:6a:79:39:bf:bc:e2:ad:e2:c1:11: ae:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F4:90:96:F0:3F:00:65:E6:AD:3B:43:E7:AE:22:F6:74:CF:0D:80 X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:6a:54:30:03:9b:1b:c3:55:98:5a:18:a9:67:1f:12:25:15: d1:98:76:d8:6c:87:0f:e8:7c:ea:52:ca:78:11:40:39:36:80: e0:72:1f:e1:75:a8:ee:e7:87:55:42:fd:e6:37:4a:c6:ab:df: f2:74:8a:4a:27:b7:1a:55:b4:f2:01:5b:d1:15:ec:38:1f:21: b2:43:f9:1b:c0:ae:8b:51:d6:26:fc:5d:cf:82:81:28:2f:47: 16:49:55:43:d0:d4:1d:d6:de:5c:bf:cb:e3:1f:b0:3a:8d:db: a4:b1:ec:f4:89:ff:96:1e:1f:09:c0:a1:57:a0:88:27:3e:58: 0e:97:5e:ed:03:41:82:fc:13:54:9f:7c:8d:94:55:f1:e7:99: 76:ec:3b:08:10:91:a3:92:9a:d8:92:64:52:cb:7c:46:10:c1: cf:3f:14:2b:27:3b:d7:36:c3:7f:e0:a1:f2:da:ed:99:3d:44: 58:74:ba:cb:36:af:a0:bf:87:24:a6:ce:07:95:b5:dc:97:f0: e7:58:62:ba:11:a2:80:0f:c7:c3:d1:7f:1c:b7:c7:ab:72:8c: 7d:04:ea:8b:5d:e0:1c:88:f5:a1:cd:16:63:07:23:6d:f0:8a: f0:b8:ac:3d:e5:1a:cc:5e:0c:dc:52:12:c7:a2:a3:ca:fb:80: d0:29:93:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjUwODA3MDAxNjU4WhcNMjUwODE0MDAxNjU4WjAYMRYwFAYD VQQDEw02ODkzZjA3Yi1jOWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqHG2nVfyqn+vCA88t/PC3qIiyzsZj5PwkHAsbRcNcqQnsDeP8nNhpJG4oSX QkhrGMMmjq0my2h86ro7k7SCtgD41wQzTlsMSNjPTJnZpHvLCeMeu2y43srgsEXM BJZ353WtNnbjlqVruRle3b6ATxfKH9eoTywIfHqeFZCty19qQuQgT5oNfT+3wF2X FmVW5GVN/+IlouaN17DMpcDUvC8xstiXA6zatWddctR51oJr506jdg1iU5wS2/E2 2EnEPCtneoz7R/qDU1E2uaYXZseNNGubsUbuBslDRh15MivMmi87wFAEgTmzPogo 1qWb2Azb82p5Ob+84q3iwRGuiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFL0kJbw PwBl5q07Q+euIvZ0zw2AMB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODVBOC9BNTMwODE0NjJDREUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBn RmVYOFZNdU00SUhVSk50TkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATalQwA5sbw1WYWhipZx8SJRXRmHbYbIcP6HzqUsp4EUA5NoDgch/h daju54dVQv3mN0rGq9/ydIpKJ7caVbTyAVvRFew4HyGyQ/kbwK6LUdYm/F3PgoEo L0cWSVVD0NQd1t5cv8vjH7A6jduksez0if+WHh8JwKFXoIgnPlgOl17tA0GC/BNU n3yNlFXx55l27DsIEJGjkprYkmRSy3xGEMHPPxQrJzvXNsN/4KHy2u2ZPURYdLrL Nq+gv4ckps4HlbXcl/DnWGK6EaKAD8fD0X8ct8ercox9BOqLXeAciPWhzRZjByNt 8IrwuKw95RrMXgzcUhLHoqPK+4DQKZMl -----END CERTIFICATE-----Generated at Thu Aug 7 02:09:35 2025 by rpki-client