$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: Yb/MT4OV169WAL3PtpHBRmY+akiNTwtBJ6PBNrPVOLQ= Subject key identifier: 35:33:21:0D:8F:90:CA:42:0E:C8:4A:B8:70:49:29:51:B6:7B:87:BD Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 03C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 03B0 Signing time: Sat 09 Aug 2025 01:16:34 +0000 Manifest this update: Sat 09 Aug 2025 01:16:34 +0000 Manifest next update: Sat 16 Aug 2025 01:16:34 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: dv0W01pLc1df7iRpqgqC6G0mf4uTEhLVRydl3IhIx1M=) 2: 888790B6CD3A11EF87D85012C4F9AE02.roa (hash: AvFxWnXdXVRW4gSsV2SM184h5qE1FtXhjp3kh4Swn5U=) 3: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: WV0++0ZN/bagS69tHu4GzxXJWra/B4BQBtuEVcU79xQ=) 4: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: CVz2Xf9+JNVQc+OnMj39alF6Xn/77a8odRw6ivgbb84=) 5: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: PSuOk5hKLAcVmpB6whliDPWrfFKAhRcAnnfVLoCffRg=) 6: 8CA353C4EF5E11EF9E61950EC4F9AE02.roa (hash: 5Blz9K5XE6h6oYg/gQUJxXMDOjmAua+CLgWpZB5MaIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A, serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: Aug 9 01:16:34 2025 GMT Not After : Aug 16 01:16:34 2025 GMT Subject: CN=6896a172-efba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:80:c2:28:1b:08:31:10:59:90:13:e1:1c: fd:4b:4e:0f:ed:37:c2:80:a6:01:5f:e0:05:64:35: a6:12:da:8c:21:ea:4a:0a:b4:63:3d:2d:c3:28:00: 5b:d8:a1:43:a6:1d:15:83:db:8c:8c:9d:02:e8:c6: 71:72:bb:e3:2c:6f:5d:eb:1d:ec:25:43:c7:37:13: 2c:c1:50:c7:62:ee:0c:6c:43:d0:58:69:27:60:5f: e4:43:46:8f:d0:ae:88:42:f4:17:1f:02:92:a1:7a: 3f:d4:56:66:07:a5:c7:c6:b2:c2:d8:2e:1e:b1:25: 06:8a:11:66:1c:a7:3d:19:ad:da:41:31:95:0c:78: 1c:31:98:06:83:58:72:8d:64:eb:b5:32:b4:cf:6c: 73:b0:bb:0e:a5:54:3b:d6:2e:f6:31:47:22:ec:ed: 00:14:55:a2:33:1d:cd:ec:31:4c:dd:84:b7:84:09: f0:4f:91:43:3d:8b:11:1a:4c:b2:3f:e9:46:5d:33: fd:bb:e9:f7:c2:6a:e4:4e:91:18:e3:85:c0:d1:03: 52:a5:f8:c0:d8:13:70:73:56:73:ea:e9:f5:72:1b: 09:da:2d:dd:e7:6e:25:0d:cb:d5:96:c5:dc:74:6a: 11:0f:9c:0d:a1:fc:d0:98:3c:ef:bc:2e:2d:3e:08: ee:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:33:21:0D:8F:90:CA:42:0E:C8:4A:B8:70:49:29:51:B6:7B:87:BD X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:b1:61:bf:ee:fe:b0:4e:bf:31:1c:f2:49:cf:49:ab:84:7f: 84:a3:ff:23:22:aa:02:ec:85:5e:ca:bf:2a:77:be:21:a3:df: 3f:05:82:2a:f1:61:6a:62:ee:e3:85:d0:91:72:98:ba:39:44: 7d:13:49:12:4d:3d:42:27:95:82:ad:15:37:6d:72:05:2e:a6: 03:78:b1:51:79:f5:a6:39:81:8a:c2:ed:62:25:9a:a2:1b:3f: 28:7b:94:ae:1b:b9:86:4e:01:98:fc:5c:6d:f9:ad:8d:43:c9: 93:91:4b:c4:bc:74:af:2d:0f:dc:c2:12:9f:05:08:a3:6c:8e: d0:d1:bc:23:b7:a7:92:fc:65:4c:4f:90:f9:b4:6d:26:a0:b4: e4:8c:ca:51:99:b6:29:e5:2e:10:42:2c:cc:d8:0b:b0:99:16: 86:5d:ab:ed:9f:a0:db:c4:2f:3d:f9:72:da:89:b1:47:fa:cb: 8b:88:20:27:35:d1:7b:f2:b7:f6:6b:f8:d4:0b:f7:da:af:56: 95:a7:33:a8:c5:ca:44:65:17:f7:96:d6:96:56:b2:f1:b2:70: 47:87:e9:32:4d:93:3b:be:b2:4f:ff:7e:a8:30:81:22:f6:42: 6e:de:bb:87:8b:7b:f7:b5:e4:8b:f3:47:b4:e1:0c:b4:d6:a6: de:d9:23:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjUwODA5MDExNjM0WhcNMjUwODE2MDExNjM0WjAYMRYwFAYD VQQDEw02ODk2YTE3Mi1lZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur+AwigbCDEQWZAT4Rz9S04P7TfCgKYBX+AFZDWmEtqMIepKCrRjPS3DKABb 2KFDph0Vg9uMjJ0C6MZxcrvjLG9d6x3sJUPHNxMswVDHYu4MbEPQWGknYF/kQ0aP 0K6IQvQXHwKSoXo/1FZmB6XHxrLC2C4esSUGihFmHKc9Ga3aQTGVDHgcMZgGg1hy jWTrtTK0z2xzsLsOpVQ71i72MUci7O0AFFWiMx3N7DFM3YS3hAnwT5FDPYsRGkyy P+lGXTP9u+n3wmrkTpEY44XA0QNSpfjA2BNwc1Zz6un1chsJ2i3d524lDcvVlsXc dGoRD5wNofzQmDzvvC4tPgju2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUzIQ2P kMpCDshKuHBJKVG2e4e9MB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAesWG/7v6wTr8xHPJJz0mrhH+Eo/8jIqoC7IVeyr8qd74ho98/BYIq 8WFqYu7jhdCRcpi6OUR9E0kSTT1CJ5WCrRU3bXIFLqYDeLFRefWmOYGKwu1iJZqi Gz8oe5SuG7mGTgGY/Fxt+a2NQ8mTkUvEvHSvLQ/cwhKfBQijbI7Q0bwjt6eS/GVM T5D5tG0moLTkjMpRmbYp5S4QQizM2AuwmRaGXavtn6DbxC89+XLaibFH+suLiCAn NdF78rf2a/jUC/far1aVpzOoxcpEZRf3ltaWVrLxsnBHh+kyTZM7vrJP/36oMIEi 9kJu3ruHi3v3teSL80e04Qy01qbe2SPF -----END CERTIFICATE-----Generated at Sun Aug 10 03:49:41 2025 by rpki-client