$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft File: Soo5XlVsx_Garmqwav8GeUSVa0Y.mft (raw, json) Hash identifier: yJAagzws5omvVPvwHA8FwP51TZ48I6gKSbs70/+eaSk= Subject key identifier: 25:BB:63:DC:8C:B7:EA:AC:B6:CB:CD:1B:3B:12:05:15:E7:CD:85:3F Authority key identifier: 4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 Certificate issuer: /CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft Manifest number: 0127 Signing time: Sat 09 Aug 2025 05:07:17 +0000 Manifest this update: Sat 09 Aug 2025 05:07:16 +0000 Manifest next update: Sat 16 Aug 2025 05:07:16 +0000 Files and hashes: 1: Soo5XlVsx_Garmqwav8GeUSVa0Y.crl (hash: eSKw8mMK+c8wHy/LWwRN8RTDzJz8x6SD3ramLBcVNlw=) 2: D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa (hash: VWW3LG8bH56OHxKp9a6acMJUcTvLWrd2aS1b8cisvbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A, serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Validity Not Before: Aug 9 05:07:16 2025 GMT Not After : Aug 16 05:07:16 2025 GMT Subject: CN=6896d785-845c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8d:fe:2e:ac:f5:10:06:dd:ac:6b:72:28:ff: 9f:7b:22:5e:1f:0a:28:6f:3c:8e:c1:95:bd:40:7c: 94:8b:a6:35:2f:97:f7:60:f8:b6:e4:1a:d2:a5:9c: 65:ed:61:04:42:7f:fc:3f:8d:33:41:b2:d7:18:44: d2:d4:87:b2:66:51:cc:20:cc:9d:1f:df:ab:86:3b: 92:ac:7a:de:bd:99:44:ee:cb:aa:6c:eb:5d:d8:a5: bc:fe:3f:81:2d:8d:a9:7c:a1:7e:72:7a:12:e8:e0: 24:e0:18:a9:14:1b:ef:45:1d:f5:f4:95:e3:79:2c: e2:34:a2:97:cc:1a:77:17:16:79:62:f9:f9:d9:04: 35:5e:b9:32:a2:ec:7f:91:6c:7e:80:c1:4c:19:ae: 11:d7:64:1a:e8:cb:71:43:e3:2b:5f:0a:ec:7a:54: e4:be:52:68:34:90:14:41:06:0e:ff:0b:41:49:72: 98:25:0b:25:6b:c0:ba:73:af:7d:b5:ac:e2:5b:22: bc:14:9e:3e:93:ef:d0:11:ef:34:28:13:88:03:71: 2b:b5:ed:55:e3:ed:63:09:d7:99:36:a3:54:92:c5: 1f:1f:57:22:5c:45:44:1a:d0:74:d8:e4:b3:98:c8: 5e:c1:10:b7:56:b3:19:67:ab:b0:36:ab:8d:12:e0: dd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BB:63:DC:8C:B7:EA:AC:B6:CB:CD:1B:3B:12:05:15:E7:CD:85:3F X509v3 Authority Key Identifier: keyid:4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:18:a5:6d:52:06:a0:93:d3:54:4b:72:b5:21:a9:df:1b:55: e5:ab:c3:90:6c:1e:5e:7a:ad:51:92:2b:3b:07:92:d1:75:01: be:56:fc:b2:a5:ec:68:27:63:51:cb:f3:80:10:9f:4a:b5:24: a2:64:ae:d3:e0:07:47:b9:bc:64:f3:27:a5:96:ee:df:07:c5: c3:b6:0b:fe:30:1e:2e:60:ad:27:97:40:ce:57:9f:a8:dc:41: a0:d2:4f:f8:1c:b7:ef:2c:83:64:b6:ea:e7:67:4b:70:0c:28: a6:65:dc:14:e6:89:c9:1e:4f:38:f6:6b:b1:64:21:ee:62:a9: 71:d3:03:6e:c6:6a:48:24:e6:8f:20:09:3f:f8:6b:29:db:17: 96:81:5a:1f:88:e3:48:88:58:7f:f2:ba:60:38:fc:e6:37:17: 71:ba:e0:a6:df:75:47:aa:d7:44:ed:f4:9e:93:c1:5f:a0:72: a0:8c:47:93:fd:89:19:6c:a7:23:ce:be:50:e1:dd:d9:41:44: 81:08:87:ba:58:81:17:89:fe:40:4f:db:20:25:17:54:db:fa: 32:2a:0c:e4:9d:8f:83:5c:1e:3f:e2:b2:27:4a:30:e1:ac:92: c6:dc:8d:19:35:2d:9d:64:ea:63:ff:a4:fc:bf:0d:54:ee:6f: 1e:e5:82:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDRBOEEzOTVFNTU2Q0M3RjE5QUFFNkFCMDZBRkYwNjc5 NDQ5NTZCNDYwHhcNMjUwODA5MDUwNzE2WhcNMjUwODE2MDUwNzE2WjAYMRYwFAYD VQQDEw02ODk2ZDc4NS04NDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs43+Lqz1EAbdrGtyKP+feyJeHwoobzyOwZW9QHyUi6Y1L5f3YPi25BrSpZxl 7WEEQn/8P40zQbLXGETS1IeyZlHMIMydH9+rhjuSrHrevZlE7suqbOtd2KW8/j+B LY2pfKF+cnoS6OAk4BipFBvvRR319JXjeSziNKKXzBp3FxZ5Yvn52QQ1Xrkyoux/ kWx+gMFMGa4R12Qa6MtxQ+MrXwrselTkvlJoNJAUQQYO/wtBSXKYJQsla8C6c699 taziWyK8FJ4+k+/QEe80KBOIA3Erte1V4+1jCdeZNqNUksUfH1ciXEVEGtB02OSz mMhewRC3VrMZZ6uwNquNEuDdXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCW7Y9yM t+qstsvNGzsSBRXnzYU/MB8GA1UdIwQYMBaAFEqKOV5VbMfxmq5qsGr/BnlElWtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS8yMzc1QjMwNkI5 NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hfR2FybXF3YXY4R2VVU1Zh MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvbzVYbFZzeF9HYXJtcXdhdjhHZVVTVmEwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS8yMzc1QjMwNkI5NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hf R2FybXF3YXY4R2VVU1ZhMFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQGKVtUgagk9NUS3K1IanfG1Xlq8OQbB5eeq1Rkis7B5LRdQG+Vvyy pexoJ2NRy/OAEJ9KtSSiZK7T4AdHubxk8yellu7fB8XDtgv+MB4uYK0nl0DOV5+o 3EGg0k/4HLfvLINkturnZ0twDCimZdwU5onJHk849muxZCHuYqlx0wNuxmpIJOaP IAk/+Gsp2xeWgVofiONIiFh/8rpgOPzmNxdxuuCm33VHqtdE7fSek8FfoHKgjEeT /YkZbKcjzr5Q4d3ZQUSBCIe6WIEXif5AT9sgJRdU2/oyKgzknY+DXB4/4rInSjDh rJLG3I0ZNS2dZOpj/6T8vw1U7m8e5YI1 -----END CERTIFICATE-----Generated at Sat Aug 9 15:14:59 2025 by rpki-client