$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft File: GJHVTO9qkMIy_KiR45n5eDhnEe4.mft (raw, json) Hash identifier: zxRhuB+kvtRWpOjMKeRWsLAYbYlXoB91sCq5q16Z0Jc= Subject key identifier: 35:30:C0:A9:9B:F0:D5:99:BB:7E:CB:7E:D6:94:0D:93:4E:D0:0F:CD Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft Manifest number: 68 Signing time: Mon 11 Aug 2025 07:14:14 +0000 Manifest this update: Mon 11 Aug 2025 07:14:14 +0000 Manifest next update: Mon 18 Aug 2025 07:14:14 +0000 Files and hashes: 1: GJHVTO9qkMIy_KiR45n5eDhnEe4.crl (hash: 3nF5LDIbaqTjhUDePq/nm0cpp3d+SCXzi5gmFop3Ar4=) 2: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (hash: Fo5VkT431J+zLy9igbQ3SFfIsb+FgMetIU9BycrAICA=) 3: C9B06ECCD7A411EF9AB81933C4F9AE02.roa (hash: ftkSUsDxtIg6s2jX13CXTFZ0keaCV5YjPDUyQbqNBxE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: Aug 11 07:14:14 2025 GMT Not After : Aug 18 07:14:14 2025 GMT Subject: CN=68999846-7604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:39:12:ac:b8:0e:b6:23:2c:a6:75:01:af:06: d5:24:e6:87:8e:e3:79:ac:43:b3:60:6a:32:73:a8: ee:ab:0d:27:a3:3c:a4:9a:76:7e:9d:d2:cf:84:52: 74:83:cb:7a:d7:1c:d6:4c:75:34:89:8c:91:78:20: 3e:20:c7:41:8b:98:f6:f8:79:8e:d1:d4:63:d9:cb: 68:39:52:03:c9:c2:09:c1:89:0e:ac:6a:53:28:a8: 55:2a:d4:3d:8e:ea:3b:3c:c8:04:f9:b3:1d:9c:b4: 40:6f:8f:2a:d2:e3:cb:50:af:84:6b:2a:67:09:1d: be:97:e2:23:81:4a:90:8b:d4:23:d9:db:a5:0a:2f: 46:bb:26:89:3e:06:d3:7a:d9:23:42:3b:8b:b9:d5: c1:ae:1d:9d:6a:57:4c:b6:86:92:fb:01:d0:78:68: c2:fd:37:a5:0b:07:53:c2:af:9c:ad:19:91:9f:a9: 14:f5:1a:16:c1:84:34:64:0f:d2:21:73:f7:98:5e: e9:f3:99:9e:ad:34:e5:cd:dd:af:75:1b:73:8e:f3: 43:0d:84:c0:5c:7a:ad:08:b6:c5:f0:ea:5f:49:b9: 34:55:0f:a4:96:80:05:40:9a:6e:84:f8:5c:8c:ea: 2c:4a:85:4f:38:3a:39:fa:43:0e:44:ed:2d:7e:2b: ae:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:30:C0:A9:9B:F0:D5:99:BB:7E:CB:7E:D6:94:0D:93:4E:D0:0F:CD X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:ea:5d:80:a8:22:27:74:ab:4f:1f:c3:18:21:a9:09:b9:07: a9:6f:a5:e9:99:d7:d5:e4:80:ff:0e:dd:d3:e3:da:dc:e2:6e: a7:f1:b7:f8:13:aa:fa:29:24:aa:df:a1:45:06:bd:37:e3:a5: 11:a8:fb:58:38:5d:fa:ad:e5:9f:93:55:a3:0f:f7:2f:f8:71: 0d:99:14:00:d7:6d:62:3a:a8:ac:2c:4a:10:7e:1a:cc:46:cb: 3f:04:56:7d:92:cd:69:38:d7:01:f7:8a:ea:65:8b:26:8e:99: 6b:b1:f4:2c:39:0e:27:85:9b:e5:b8:e6:f7:0b:c9:71:de:20: e7:69:9e:3c:6d:0d:6e:26:ec:bf:0d:cf:f3:a8:ab:ac:83:f9: 90:b9:2b:ec:21:0b:77:f1:20:14:58:4b:d7:37:66:27:a4:bf: e5:0d:5a:02:10:69:e6:45:5b:92:a2:56:81:2d:7b:a7:de:a4: 02:b9:d4:23:e9:89:de:16:d6:57:6c:33:23:bf:78:b5:1e:af: 42:ab:7b:bd:62:fd:84:c0:2a:ca:1b:be:88:74:65:a7:58:74: f8:2e:24:bd:2a:fe:d6:a0:cf:ca:04:bd:e4:b0:38:52:e6:9f: 53:f0:27:f0:be:08:9c:33:44:3f:a7:b8:d9:f5:a2:7a:fc:c3: 1d:c4:d1:43 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy ODU3NjExMC8GA1UEBRMoMTg5MUQ1NENFRjZBOTBDMjMyRkNBODkxRTM5OUY5Nzgz ODY3MTFFRTAeFw0yNTA4MTEwNzE0MTRaFw0yNTA4MTgwNzE0MTRaMBgxFjAUBgNV BAMTDTY4OTk5ODQ2LTc2MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3ORKsuA62IyymdQGvBtUk5oeO43msQ7NgajJzqO6rDSejPKSadn6d0s+EUnSD y3rXHNZMdTSJjJF4ID4gx0GLmPb4eY7R1GPZy2g5UgPJwgnBiQ6salMoqFUq1D2O 6js8yAT5sx2ctEBvjyrS48tQr4RrKmcJHb6X4iOBSpCL1CPZ26UKL0a7Jok+BtN6 2SNCO4u51cGuHZ1qV0y2hpL7AdB4aML9N6ULB1PCr5ytGZGfqRT1GhbBhDRkD9Ih c/eYXunzmZ6tNOXN3a91G3OO80MNhMBceq0ItsXw6l9JuTRVD6SWgAVAmm6E+FyM 6ixKhU84Ojn6Qw5E7S1+K67nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNTDAqZvw 1Zm7fst+1pQNk07QD80wHwYDVR0jBBgwFoAUGJHVTO9qkMIy/KiR45n5eDhnEe4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4NTc2LzJERTk0QTlBRDdB NDExRUY5NjRENkQ3Q0M0RjlBRTAyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVl NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0pIVlRPOXFrTUl5X0tpUjQ1bjVlRGhuRWU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4 NTc2LzJERTk0QTlBRDdBNDExRUY5NjRENkQ3Q0M0RjlBRTAyL0dKSFZUTzlxa01J eV9LaVI0NW41ZURobkVlNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKfqXYCoIid0q08fwxghqQm5B6lvpemZ19XkgP8O3dPj2tzibqfxt/gT qvopJKrfoUUGvTfjpRGo+1g4Xfqt5Z+TVaMP9y/4cQ2ZFADXbWI6qKwsShB+GsxG yz8EVn2SzWk41wH3iupliyaOmWux9Cw5DieFm+W45vcLyXHeIOdpnjxtDW4m7L8N z/Ooq6yD+ZC5K+whC3fxIBRYS9c3Ziekv+UNWgIQaeZFW5KiVoEte6fepAK51CPp id4W1ldsMyO/eLUer0Kre71i/YTAKsobvoh0ZadYdPguJL0q/tagz8oEveSwOFLm n1PwJ/C+CJwzRD+nuNn1onr8wx3E0UM= -----END CERTIFICATE-----Generated at Mon Aug 11 13:20:04 2025 by rpki-client