$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft File: gCx1H6mENH35yTztuX7ZUalSgoY.mft (raw, json) Hash identifier: QY9nOD1dyCOx7bt6OY2rvNwQtvgPGxJOz3Os7Z4SeOw= Subject key identifier: 44:CF:2E:30:8C:5E:C5:6E:34:96:BD:E4:57:D1:9E:8C:7E:37:D9:C5 Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0D46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft Manifest number: 0D2E Signing time: Sun 10 Aug 2025 18:02:53 +0000 Manifest this update: Sun 10 Aug 2025 18:02:52 +0000 Manifest next update: Sun 17 Aug 2025 18:02:52 +0000 Files and hashes: 1: gCx1H6mENH35yTztuX7ZUalSgoY.crl (hash: ApEiYQdgMr/Rlp4bsL3ULERonG9rzwDpsenV1a+JZ04=) 2: AF2CB5CE101E11ED9FA78415C4F9AE02.roa (hash: VZ24W4uKwM60qRJ5vfKCX9lh+SGHmx0HfVlijTJVzIY=) 3: 677F3316E02711E9AB669750C4F9AE02.roa (hash: 4yWetI8VRw7mXlPSVbHYiXd6wjj+BvrR9fES4qn/WNo=) 4: 9A735F54EBE611EC82C08A11C4F9AE02.roa (hash: DgvkkBXnQUs6910aIZGV/GX1Y7PZj78ZOyie/aItMGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3398 (0xd46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B, serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: Aug 10 18:02:52 2025 GMT Not After : Aug 17 18:02:52 2025 GMT Subject: CN=6898decd-c215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ba:a3:89:e9:cc:e4:ad:b8:44:5f:5f:a9:6b: f4:32:a5:be:02:4b:1f:f8:5e:c6:08:b1:e7:05:c1: cf:d5:80:fb:4e:34:f0:68:8c:35:3e:61:ff:c3:11: d0:1d:da:85:ba:8c:99:de:7d:eb:90:ee:cc:0a:81: 30:41:2e:08:28:35:c4:4a:bf:8c:d6:a9:47:56:12: 42:0c:62:b0:8a:8a:1a:d3:77:65:02:c4:e2:86:d3: 5e:fd:f2:c4:93:b6:fa:a2:cc:a5:ad:c9:75:cc:f5: 06:39:4a:d5:66:2f:94:20:57:6b:52:0f:17:4a:fa: e3:19:82:97:fa:3b:09:e4:25:94:23:6a:f7:b1:cd: 78:ec:96:98:61:c6:75:b4:2d:11:48:e3:01:3d:38: 04:42:d1:d2:9f:52:f8:98:38:ff:c7:6a:a4:1f:a5: a0:af:eb:92:18:cf:26:76:c4:f1:90:a9:4e:39:4b: 7b:79:db:9f:bf:cf:94:53:3f:f2:b3:08:75:f9:75: 62:1f:e5:38:39:fb:42:b7:57:03:fb:6a:93:ea:0f: 85:88:d1:ed:8f:46:cf:b1:ad:ca:7a:4a:a4:17:55: 77:a1:1c:87:f0:88:1a:a6:16:07:f0:f6:fa:93:8b: ff:5a:e2:df:30:aa:19:f4:d3:70:03:b7:a9:e9:8f: 9d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:CF:2E:30:8C:5E:C5:6E:34:96:BD:E4:57:D1:9E:8C:7E:37:D9:C5 X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:4e:98:31:b6:97:f6:83:f6:30:8b:5b:1f:e9:57:ec:f5:14: ec:54:34:09:84:a2:00:c1:de:91:da:ce:cd:81:0b:3f:36:f1: 78:7d:ad:6b:4b:06:9e:c5:f1:84:23:cf:14:fe:5b:d4:7f:02: c6:a3:a2:fd:b9:05:d7:06:03:80:a2:d4:96:bf:26:5e:83:b0: b3:d3:3e:cd:26:15:f9:5a:3c:39:79:6a:8d:f9:39:b0:9d:c0: 20:5b:13:92:0c:cc:c2:4b:ac:b6:a6:d5:59:07:7b:3c:bc:d8: 4b:a6:a7:5b:3a:21:ff:f1:26:dc:9f:fe:23:61:16:46:33:be: 97:98:6e:d6:01:fb:54:46:60:9a:cc:71:2e:76:b0:a5:73:d0: 36:de:30:42:42:e0:a5:4e:ae:07:d6:88:57:41:24:e7:34:2a: df:bc:9d:f9:ba:bb:88:72:2e:26:53:2e:dc:71:33:b0:9f:bf: ca:7a:b9:c4:da:29:37:6a:8f:4d:15:7f:8f:f4:7b:1a:a6:54: 0e:76:95:a6:b1:62:5d:07:22:e0:36:28:c4:9a:6f:cb:aa:6c: b9:f7:2e:85:dc:1b:50:b3:e8:4f:a1:65:91:e2:59:58:ad:e4: 4d:80:ee:b7:57:87:ae:19:98:65:6e:e3:21:b3:94:0d:fe:20: 3d:33:65:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjUwODEwMTgwMjUyWhcNMjUwODE3MTgwMjUyWjAYMRYwFAYD VQQDEw02ODk4ZGVjZC1jMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7qjienM5K24RF9fqWv0MqW+Aksf+F7GCLHnBcHP1YD7TjTwaIw1PmH/wxHQ HdqFuoyZ3n3rkO7MCoEwQS4IKDXESr+M1qlHVhJCDGKwiooa03dlAsTihtNe/fLE k7b6osylrcl1zPUGOUrVZi+UIFdrUg8XSvrjGYKX+jsJ5CWUI2r3sc147JaYYcZ1 tC0RSOMBPTgEQtHSn1L4mDj/x2qkH6Wgr+uSGM8mdsTxkKlOOUt7edufv8+UUz/y swh1+XViH+U4OftCt1cD+2qT6g+FiNHtj0bPsa3KekqkF1V3oRyH8IgaphYH8Pb6 k4v/WuLfMKoZ9NNwA7ep6Y+dSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETPLjCM XsVuNJa95FfRnox+N9nFMB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU4Qi9FQzI1N0NDNkUwMjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5I MzV5VHp0dVg3WlVhbFNnb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcTpgxtpf2g/Ywi1sf6Vfs9RTsVDQJhKIAwd6R2s7NgQs/NvF4fa1r SwaexfGEI88U/lvUfwLGo6L9uQXXBgOAotSWvyZeg7Cz0z7NJhX5Wjw5eWqN+Tmw ncAgWxOSDMzCS6y2ptVZB3s8vNhLpqdbOiH/8Sbcn/4jYRZGM76XmG7WAftURmCa zHEudrClc9A23jBCQuClTq4H1ohXQSTnNCrfvJ35uruIci4mUy7ccTOwn7/KernE 2ik3ao9NFX+P9HsaplQOdpWmsWJdByLgNijEmm/Lqmy59y6F3BtQs+hPoWWR4llY reRNgO63V4euGZhlbuMhs5QN/iA9M2WP -----END CERTIFICATE-----Generated at Mon Aug 11 07:30:13 2025 by rpki-client