$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: DWmi8ZQljnHTLp7p693X0o9YRx/jtJUCneJ4fSOwN9g= Subject key identifier: AB:1C:2A:20:79:F8:C9:77:B0:81:8D:D6:B5:D8:D8:0A:10:13:5A:8C Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 4A Signing time: Sat 09 Aug 2025 07:54:09 +0000 Manifest this update: Sat 09 Aug 2025 07:54:09 +0000 Manifest next update: Sat 16 Aug 2025 07:54:09 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: /oZj4XYD50Jrd18yTWMaj3Fkl9AcqMNnhDaNFZ6ksnc=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: nPtDY3U86F0NTmleyc7SWqLKxebatm/VdygMH1CJZ5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Aug 9 07:54:09 2025 GMT Not After : Aug 16 07:54:09 2025 GMT Subject: CN=6896fea1-8b07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f2:92:0d:97:4f:f7:38:f3:32:6c:66:45:40: da:de:a7:e7:8d:21:14:bc:e3:8e:0e:8f:08:11:76: 3f:52:bf:68:17:5b:25:24:c9:2b:fa:e4:84:d1:f2: 52:2d:8c:b1:49:b2:7e:f9:ca:ca:7b:5e:02:3f:06: 3b:c4:77:1a:cb:a3:c4:2f:d7:83:ba:46:69:c8:1d: 92:c8:2c:a7:4c:cc:0d:8e:8b:1b:60:54:84:5c:5b: 83:f7:60:81:4c:fe:91:6c:5a:c0:28:ac:27:27:4c: 3e:dd:eb:dd:54:bb:eb:84:d4:e0:a6:3b:3a:d7:c8: 96:33:80:96:62:a0:1f:a9:72:9a:41:20:5f:2b:04: 0b:72:9a:1c:f9:64:67:6d:b3:a1:7b:18:bf:16:95: 25:8f:87:7a:96:62:c9:c1:8e:3f:42:e2:7e:bf:df: ba:fd:a1:ca:53:e4:ee:08:21:fb:33:41:6e:ff:be: 6f:23:b3:81:80:03:79:b2:50:fd:fe:4c:e6:9b:dd: 8a:ca:60:a6:72:db:41:7c:d9:6b:37:6b:fa:96:0f: 44:70:03:e4:7c:7e:7e:3a:5b:a0:d7:fb:3f:df:e6: 3c:9d:18:6b:d5:9e:e2:1e:00:1c:d0:d9:52:fc:a5: 3d:12:27:8c:36:1e:5d:d2:a4:ae:12:08:65:c0:01: 77:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:1C:2A:20:79:F8:C9:77:B0:81:8D:D6:B5:D8:D8:0A:10:13:5A:8C X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:df:26:6d:e1:0d:47:02:96:9a:42:29:44:ea:ac:08:00:d0: ad:57:7d:d2:1c:7d:2d:15:72:a5:19:21:ab:9d:1d:2f:d7:13: 69:21:12:12:a7:d2:05:16:6a:2e:7c:c4:d7:b2:89:41:e2:97: 7e:b9:db:70:20:a2:16:cc:4c:20:18:4b:e0:7d:ad:bd:9c:35: b9:e1:82:ff:75:84:22:c8:91:26:8c:4a:9a:3b:26:cc:79:54: f0:12:a4:3b:de:d1:80:45:4b:a1:ed:f9:9f:28:48:60:aa:c3: 9f:31:66:16:c7:42:48:f4:b5:09:bd:c4:ac:da:a8:1b:8e:2c: 52:1a:a7:02:df:6b:1d:13:e5:4f:da:a4:f8:e2:2f:69:61:f8: b1:68:8d:7f:e0:18:db:4f:f9:57:ce:c3:bb:a3:24:a6:b3:cf: 55:c3:1a:0e:e7:6e:e6:06:11:dd:1b:af:a8:fc:33:01:01:0b: 65:11:ed:6a:c3:3b:2a:ac:05:6c:92:c7:f3:29:8e:54:07:03: cf:70:cb:a9:8f:bc:fe:6f:d9:ca:e1:cd:c7:62:7e:82:93:f1: 41:fa:96:86:29:c0:fa:fa:24:13:a1:84:97:c7:d6:1b:a6:3f: 37:9b:39:76:25:4c:62:70:2f:ef:2c:82:4c:57:3b:fe:a0:72: 26:f7:0e:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTA4MDkwNzU0MDlaFw0yNTA4MTYwNzU0MDlaMBgxFjAUBgNV BAMTDTY4OTZmZWExLThiMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN8pINl0/3OPMybGZFQNrep+eNIRS8444OjwgRdj9Sv2gXWyUkySv65ITR8lIt jLFJsn75ysp7XgI/BjvEdxrLo8Qv14O6RmnIHZLILKdMzA2OixtgVIRcW4P3YIFM /pFsWsAorCcnTD7d691Uu+uE1OCmOzrXyJYzgJZioB+pcppBIF8rBAtymhz5ZGdt s6F7GL8WlSWPh3qWYsnBjj9C4n6/37r9ocpT5O4IIfszQW7/vm8js4GAA3myUP3+ TOab3YrKYKZy20F82Ws3a/qWD0RwA+R8fn46W6DX+z/f5jydGGvVnuIeABzQ2VL8 pT0SJ4w2Hl3SpK4SCGXAAXeTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqxwqIHn4 yXewgY3WtdjYChATWowwHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 OUNBL0E5RjI3MjJFMDhBMDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZ V2U2T24xeVU4ZGhZeG9vMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD/fJm3hDUcClppCKUTqrAgA0K1XfdIcfS0VcqUZIaudHS/XE2khEhKn 0gUWai58xNeyiUHil36523AgohbMTCAYS+B9rb2cNbnhgv91hCLIkSaMSpo7Jsx5 VPASpDve0YBFS6Ht+Z8oSGCqw58xZhbHQkj0tQm9xKzaqBuOLFIapwLfax0T5U/a pPjiL2lh+LFojX/gGNtP+VfOw7ujJKazz1XDGg7nbuYGEd0br6j8MwEBC2UR7WrD OyqsBWySx/MpjlQHA89wy6mPvP5v2crhzcdifoKT8UH6loYpwPr6JBOhhJfH1hum PzebOXYlTGJwL+8sgkxXO/6gcib3Dg8= -----END CERTIFICATE-----Generated at Sun Aug 10 19:56:26 2025 by rpki-client