$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: SXuK/OWuM7WeqbhKu90s8VxtoPEtQaTAyQh/kMRw9+w= Subject key identifier: B1:6F:6B:9F:2F:CA:E0:14:02:92:8F:A3:2B:4F:1E:D0:BE:18:7F:01 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0A5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0A3D Signing time: Fri 08 Aug 2025 20:03:22 +0000 Manifest this update: Fri 08 Aug 2025 20:03:22 +0000 Manifest next update: Fri 15 Aug 2025 20:03:22 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: 4yrcJDoDY04oDQx/1Ywtz0XIYY58f0TGjrhRdy69yZ0=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: yu7Gzab+ZfqH+4m4+3KIWb8qWAN7g8OtQCUYR4Hw6Qw=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: R50vxZrWUTgOZOulbAeHkJh7/C1wukAfa8pX0j0danc=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: uBoNIMKOZ7mdZtPmDt522sQeNo1Hui8N7OHysFbsQzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2654 (0xa5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Aug 8 20:03:22 2025 GMT Not After : Aug 15 20:03:22 2025 GMT Subject: CN=6896580a-0a89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:55:a0:4d:28:91:68:b0:ef:9a:f7:0e:c4:0a: 2e:06:02:c6:ab:20:6d:d4:b0:00:70:4a:65:af:8a: 77:42:06:01:6a:1f:a5:e8:82:03:a3:7d:af:4a:d0: 4e:01:6a:58:09:74:2b:43:a7:7f:cb:fa:99:6b:5b: 3f:a6:b7:36:cb:02:56:fd:c6:3d:29:05:e3:1b:e5: 88:b0:42:c8:85:99:a4:d5:54:22:e5:7b:f2:6a:e1: f3:1f:5d:92:7d:4c:90:1d:8b:47:8a:67:1e:d7:88: e8:cf:ab:2c:fd:69:89:1c:e5:ed:05:29:3e:6a:2c: 4e:77:ec:b0:50:c7:cf:23:1e:90:ed:62:2a:39:2f: 4b:0a:49:36:cd:3f:b3:43:ad:0c:c8:6c:bb:5d:29: f1:8e:b0:c1:ef:fa:27:ab:c3:1f:da:f1:00:13:3d: e5:8b:19:7f:2a:cd:7a:a9:1a:36:64:c6:5b:a5:7c: 2b:93:db:74:98:c7:9f:83:6c:a7:15:f3:3f:9e:75: 4e:80:89:7f:05:d4:c4:83:3e:1c:f4:b4:65:ab:88: 5c:58:9b:8b:31:6a:25:5d:db:27:d7:bd:15:76:ee: d6:32:34:4f:cf:ed:7c:7d:20:81:c8:3a:84:66:51: c0:4a:94:42:d7:68:5a:10:39:47:f0:a8:99:a6:b8: b1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6F:6B:9F:2F:CA:E0:14:02:92:8F:A3:2B:4F:1E:D0:BE:18:7F:01 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0c:a7:dd:85:d4:6a:a5:f2:e2:56:eb:ae:26:eb:51:6c:2b: 7d:80:9c:fc:b6:21:a7:44:1e:9b:b4:50:8b:a3:ea:c1:aa:ae: 57:20:6b:6a:01:a3:72:74:a7:09:12:b6:e1:74:ee:ab:89:ab: f0:ce:71:32:ef:58:35:86:6d:07:73:32:e2:9e:88:bc:38:fa: 8c:d7:53:81:ae:e0:70:50:15:8f:39:8f:a3:fc:cb:e6:ba:96: d5:d6:48:0e:96:ea:87:81:06:f7:1c:69:22:bf:cc:ff:4a:c0: e6:38:4f:e5:aa:f7:fb:e8:70:42:b2:97:5e:ee:f6:3e:02:68: 89:b9:f0:af:5e:7d:13:75:45:a3:b9:79:1b:77:8f:5b:9c:6d: 60:85:16:78:b1:53:74:2c:51:5f:9e:09:c1:5b:bc:3f:8e:62: 7b:5b:ae:f3:1f:27:bb:57:ed:1e:76:82:08:b6:a6:33:27:7a: 78:b3:33:b3:e0:bc:0e:02:9a:b6:d7:12:06:15:a8:8f:5b:47: 2d:dc:7f:c1:9d:b2:a4:27:ce:c3:af:5f:9e:0c:11:20:1c:4a: d7:90:b2:93:78:96:83:35:e1:23:20:8b:69:22:22:2f:b9:b9: af:e4:64:76:cc:00:d1:3c:a8:d0:a5:73:a4:18:f3:67:64:f4: 3f:44:42:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUwODA4MjAwMzIyWhcNMjUwODE1MjAwMzIyWjAYMRYwFAYD VQQDEw02ODk2NTgwYS0wYTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+FWgTSiRaLDvmvcOxAouBgLGqyBt1LAAcEplr4p3QgYBah+l6IIDo32vStBO AWpYCXQrQ6d/y/qZa1s/prc2ywJW/cY9KQXjG+WIsELIhZmk1VQi5XvyauHzH12S fUyQHYtHimce14joz6ss/WmJHOXtBSk+aixOd+ywUMfPIx6Q7WIqOS9LCkk2zT+z Q60MyGy7XSnxjrDB7/onq8Mf2vEAEz3lixl/Ks16qRo2ZMZbpXwrk9t0mMefg2yn FfM/nnVOgIl/BdTEgz4c9LRlq4hcWJuLMWolXdsn170Vdu7WMjRPz+18fSCByDqE ZlHASpRC12haEDlH8KiZprixBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFva58v yuAUApKPoytPHtC+GH8BMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeDKfdhdRqpfLiVuuuJutRbCt9gJz8tiGnRB6btFCLo+rBqq5XIGtq AaNydKcJErbhdO6riavwznEy71g1hm0HczLinoi8OPqM11OBruBwUBWPOY+j/Mvm upbV1kgOluqHgQb3HGkiv8z/SsDmOE/lqvf76HBCspde7vY+AmiJufCvXn0TdUWj uXkbd49bnG1ghRZ4sVN0LFFfngnBW7w/jmJ7W67zHye7V+0edoIItqYzJ3p4szOz 4LwOApq21xIGFaiPW0ct3H/BnbKkJ87Dr1+eDBEgHErXkLKTeJaDNeEjIItpIiIv ubmv5GR2zADRPKjQpXOkGPNnZPQ/REK1 -----END CERTIFICATE-----Generated at Sat Aug 9 01:19:58 2025 by rpki-client