$ rpki-client -vvf rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft File: gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft (raw, json) Hash identifier: g9wT8nnh5QM1yF2YMhdCMXSgT3ZBHwfhWKmf1OE4rDA= Subject key identifier: 14:50:98:0B:64:2D:05:3F:BE:18:06:BA:D6:FA:77:8E:CA:E3:3E:A7 Authority key identifier: 80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 Certificate issuer: /CN=A9114FD8/serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft Manifest number: 4F Signing time: Sat 09 Aug 2025 07:48:09 +0000 Manifest this update: Sat 09 Aug 2025 07:48:08 +0000 Manifest next update: Sat 16 Aug 2025 07:48:08 +0000 Files and hashes: 1: gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl (hash: lffvpto69pOAf6JFsA1A7XrXgUKNlm0Z5qOgUreiTZg=) 2: 691B3B36FCC611EF8337B652C4F9AE02.roa (hash: 9OScaduExEngNPz5wsuWcHvwLQIw8gltPcbBA5tFHWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114FD8, serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Validity Not Before: Aug 9 07:48:08 2025 GMT Not After : Aug 16 07:48:08 2025 GMT Subject: CN=6896fd39-6f26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5e:98:75:9a:07:61:6b:97:ac:1e:f1:b2:b4: f6:a8:4e:57:14:13:a2:e4:a3:60:53:e9:71:a6:c6: ea:92:90:bf:5a:fc:a1:3e:3e:9f:54:98:04:8e:8c: 75:28:b9:20:35:62:b5:bc:f9:61:46:6b:c4:36:d9: 5a:7f:ad:ae:23:20:2e:f5:65:23:52:56:3d:34:fa: ac:95:00:1a:82:e6:ae:8d:27:3b:be:65:7a:91:43: c3:e0:fb:95:f0:af:70:d1:2a:90:4e:c0:5b:93:9d: 03:89:dd:a6:f7:8b:19:4f:4f:b3:77:87:ee:fc:3c: 64:45:b9:e7:ab:22:c7:0d:53:88:6d:90:26:2f:fc: 9f:d5:f5:5a:d8:63:48:d6:63:e1:cd:41:96:14:57: 5f:12:2b:03:d0:e5:5a:de:cb:44:5d:0c:86:43:d4: bd:60:51:7d:af:06:41:5c:58:b1:15:47:d7:60:43: 41:94:6c:67:75:f3:4e:ee:07:bb:c4:e5:86:0a:51: ea:0c:ae:89:11:9b:a9:ff:a8:cf:13:3b:e1:04:16: 34:45:94:cb:27:18:00:0a:9c:da:ba:4c:fe:29:49: 92:dd:9b:c6:12:82:5e:49:cb:e4:1f:55:0c:e0:81: 4c:ce:27:9c:6a:bb:6e:3d:26:fd:91:ab:64:17:c9: 44:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:50:98:0B:64:2D:05:3F:BE:18:06:BA:D6:FA:77:8E:CA:E3:3E:A7 X509v3 Authority Key Identifier: keyid:80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:57:ed:04:dc:38:38:31:97:ba:bc:69:89:41:93:d8:7b:d9: c4:f4:23:6b:17:8c:ec:2a:3e:b8:fa:ca:4a:87:64:69:b5:72: c4:87:1a:10:76:bd:0c:d5:c1:53:96:67:a9:f4:0e:24:23:80: cf:a4:6e:8d:f2:68:09:43:97:48:0f:72:92:0e:41:fc:14:f2: d3:ba:96:35:3f:25:af:e8:16:d8:ce:a1:bc:82:4c:f9:56:b4: d5:6d:f6:3a:6a:ab:30:01:e5:bd:b2:d1:e0:fa:20:8e:76:0e: 51:ae:4f:d0:ab:c5:b8:d0:f4:fc:9b:a0:4c:bc:e7:8f:ce:33: 5c:4a:8f:d6:48:20:ed:ca:e1:1b:27:84:bd:fd:14:a3:74:4f: a0:aa:d5:d5:fd:5b:25:ca:9f:66:04:b1:76:bb:66:bf:80:09: 44:0a:33:c9:cf:77:0b:1b:88:06:56:3c:13:57:8a:a3:1e:29: cf:04:6c:d5:07:9f:4e:33:e4:87:f9:9c:4a:80:2c:05:40:f7: 87:d2:eb:c8:e8:4d:88:11:0d:0b:45:b1:55:20:93:cb:96:99: d3:f8:60:05:a3:48:60:f8:5a:6b:41:c4:f8:3f:06:c5:3a:fe: ae:3c:8e:8a:69:e6:a4:d9:c5:dd:e9:72:68:7b:3f:bb:f3:79: ca:c9:40:d9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NEZEODExMC8GA1UEBRMoODA0NjMwNzREODNGNUU4MDM1NEQxOTcwNTg2RjU0QTg5 NjVFMThEMjAeFw0yNTA4MDkwNzQ4MDhaFw0yNTA4MTYwNzQ4MDhaMBgxFjAUBgNV BAMTDTY4OTZmZDM5LTZmMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxXph1mgdha5esHvGytPaoTlcUE6Lko2BT6XGmxuqSkL9a/KE+Pp9UmASOjHUo uSA1YrW8+WFGa8Q22Vp/ra4jIC71ZSNSVj00+qyVABqC5q6NJzu+ZXqRQ8Pg+5Xw r3DRKpBOwFuTnQOJ3ab3ixlPT7N3h+78PGRFueerIscNU4htkCYv/J/V9VrYY0jW Y+HNQZYUV18SKwPQ5Vrey0RdDIZD1L1gUX2vBkFcWLEVR9dgQ0GUbGd1807uB7vE 5YYKUeoMrokRm6n/qM8TO+EEFjRFlMsnGAAKnNq6TP4pSZLdm8YSgl5Jy+QfVQzg gUzOJ5xqu249Jv2Rq2QXyURNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFFCYC2Qt BT++GAa61vp3jsrjPqcwHwYDVR0jBBgwFoAUgEYwdNg/XoA1TRlwWG9UqJZeGNIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0RkQ4L0YzNTEyQTBBRkND NTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9BMVRSbHdXRzlVcUpaZUdO SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0VZd2ROZ19Yb0ExVFJsd1dHOVVxSlplR05JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 RkQ4L0YzNTEyQTBBRkNDNTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9B MVRSbHdXRzlVcUpaZUdOSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGpX7QTcODgxl7q8aYlBk9h72cT0I2sXjOwqPrj6ykqHZGm1csSHGhB2 vQzVwVOWZ6n0DiQjgM+kbo3yaAlDl0gPcpIOQfwU8tO6ljU/Ja/oFtjOobyCTPlW tNVt9jpqqzAB5b2y0eD6II52DlGuT9CrxbjQ9PyboEy854/OM1xKj9ZIIO3K4Rsn hL39FKN0T6Cq1dX9WyXKn2YEsXa7Zr+ACUQKM8nPdwsbiAZWPBNXiqMeKc8EbNUH n04z5If5nEqALAVA94fS68joTYgRDQtFsVUgk8uWmdP4YAWjSGD4WmtBxPg/BsU6 /q48jopp5qTZxd3pcmh7P7vzecrJQNk= -----END CERTIFICATE-----Generated at Sun Aug 10 13:54:10 2025 by rpki-client