$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: U0YmA4pUG2VIPd8L0q4eSj039+J8R8WEWj4U+1VBAEc= Subject key identifier: FC:E8:24:77:2F:DC:20:A4:F7:FD:D1:D5:C8:39:B4:99:51:9A:33:D8 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 02A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 027B Signing time: Sat 09 Aug 2025 02:24:00 +0000 Manifest this update: Sat 09 Aug 2025 02:23:59 +0000 Manifest next update: Sat 16 Aug 2025 02:23:59 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: awnno1Ua4kC9WlxGS+czkkTDAtDAmMSX5Up98R2d2DU=) 2: 0F1BFF983C6411F08247312EC4F9AE02.roa (hash: 8qUuDVndIDg2NrEC8AKM8tdD0/103K09L9Yt7oBaFMM=) 3: E309B1883C9711EF88C2B284C4F9AE02.roa (hash: w51TUZ9aKXo3NJmk6dhABfqfugO3+EeHqPsN7Ek6pSc=) 4: D6D1A360323911F0BDA2E834C4F9AE02.roa (hash: QqcsybSo4IYcyiaXsqo+jWTeq4K18MPbnynQPtbdI+c=) 5: 6E41DE08310A11F0AC8DF544C4F9AE02.roa (hash: 1rvs0GBAuHrNAHdvsK+LkWPhncBagdhoXnnxzRRg5HA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Aug 9 02:23:59 2025 GMT Not After : Aug 16 02:23:59 2025 GMT Subject: CN=6896b13f-ac6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:d1:08:d0:a1:f1:34:b2:02:73:80:d2:7a: 42:9c:8e:11:ca:dd:8d:9c:51:87:79:f2:88:bb:d6: 38:94:e0:2b:2f:26:62:8d:cc:56:f6:36:3a:56:02: 54:12:51:fb:8a:47:84:6f:a1:0b:f7:f8:2b:4b:a3: b3:63:9d:77:ff:fb:6f:bc:f1:43:04:e4:36:cf:0d: 6a:bb:51:b8:2c:32:8d:7e:89:03:a1:f0:18:a4:92: 55:79:72:03:ae:9f:a4:f8:58:e8:5f:1b:b8:35:ba: b2:46:93:c6:60:48:a8:40:e5:cd:05:6c:28:ed:fb: b7:37:84:77:7b:eb:10:78:7c:26:1e:17:5a:3c:fc: d8:d0:21:8b:d5:78:e2:75:c8:9f:37:68:99:84:70: ec:58:68:8d:e6:0b:c1:aa:56:65:40:a2:f7:2c:11: 1e:66:b1:46:ae:96:2a:12:99:d9:46:58:5b:36:aa: 18:39:58:e4:9a:1b:7f:08:6e:37:0a:77:75:83:1f: 01:04:49:ca:41:81:81:29:c9:bc:38:0e:b9:74:8a: d3:cd:56:37:17:d6:c5:8f:91:8e:49:3a:f3:5a:5d: 44:be:6c:c9:e8:80:35:7a:c8:4e:d8:83:db:99:c4: 7f:9b:a1:39:1a:11:1a:c5:1e:54:8c:79:ee:d8:70: e9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E8:24:77:2F:DC:20:A4:F7:FD:D1:D5:C8:39:B4:99:51:9A:33:D8 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:2f:e9:03:65:e4:9b:68:61:26:82:07:f5:13:3a:c1:00:fa: d1:cc:8c:d4:f2:3b:a5:fb:5f:02:60:ba:6f:93:b4:c0:9d:49: 92:e1:47:2e:2d:10:c1:97:69:36:2b:f8:b9:67:b2:31:79:d0: 15:9f:18:bc:f0:fd:84:26:5a:96:5d:c6:0d:52:5d:60:0a:40: f4:fe:04:53:5a:d5:c8:39:2d:e2:dd:23:9a:8a:7d:e8:c1:28: 2a:e5:26:b4:34:68:71:48:96:56:79:76:f3:a1:b5:75:b0:87: b4:4c:66:b7:f8:7a:80:97:7a:77:85:56:af:bc:b5:ab:97:42: d0:45:e5:f7:78:f7:12:ef:ef:f5:72:1e:03:93:7a:88:e0:8c: 53:e4:7d:a5:9e:42:dc:6d:95:26:b5:27:7c:17:c8:c7:4b:8a: 6d:71:39:d6:db:f8:34:b7:00:af:85:50:87:6d:22:0d:6d:fa: cd:6e:3c:55:c8:9c:76:47:f1:34:a8:78:27:99:03:b8:79:1f: 00:a3:fd:a6:16:b3:1a:51:70:3e:b3:0c:5a:ee:17:a6:fd:be: 68:30:c2:f2:f8:d8:cf:3d:76:25:7e:b6:44:7b:cb:7f:8e:c4: ce:0d:09:79:f4:0e:96:7e:55:41:9e:13:f9:db:e2:de:f6:9e: 15:3f:0e:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwODA5MDIyMzU5WhcNMjUwODE2MDIyMzU5WjAYMRYwFAYD VQQDEw02ODk2YjEzZi1hYzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuijRCNCh8TSyAnOA0npCnI4Ryt2NnFGHefKIu9Y4lOArLyZijcxW9jY6VgJU ElH7ikeEb6EL9/grS6OzY513//tvvPFDBOQ2zw1qu1G4LDKNfokDofAYpJJVeXID rp+k+FjoXxu4NbqyRpPGYEioQOXNBWwo7fu3N4R3e+sQeHwmHhdaPPzY0CGL1Xji dcifN2iZhHDsWGiN5gvBqlZlQKL3LBEeZrFGrpYqEpnZRlhbNqoYOVjkmht/CG43 Cnd1gx8BBEnKQYGBKcm8OA65dIrTzVY3F9bFj5GOSTrzWl1EvmzJ6IA1eshO2IPb mcR/m6E5GhEaxR5UjHnu2HDp5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzoJHcv 3CCk9/3R1cg5tJlRmjPYMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnL+kDZeSbaGEmggf1EzrBAPrRzIzU8jul+18CYLpvk7TAnUmS4Ucu LRDBl2k2K/i5Z7IxedAVnxi88P2EJlqWXcYNUl1gCkD0/gRTWtXIOS3i3SOain3o wSgq5Sa0NGhxSJZWeXbzobV1sIe0TGa3+HqAl3p3hVavvLWrl0LQReX3ePcS7+/1 ch4Dk3qI4IxT5H2lnkLcbZUmtSd8F8jHS4ptcTnW2/g0twCvhVCHbSINbfrNbjxV yJx2R/E0qHgnmQO4eR8Ao/2mFrMaUXA+swxa7hem/b5oMMLy+NjPPXYlfrZEe8t/ jsTODQl59A6WflVBnhP52+Le9p4VPw6u -----END CERTIFICATE-----Generated at Sat Aug 9 23:18:47 2025 by rpki-client