$ rpki-client -vvf rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft File: G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft (raw, json) Hash identifier: ozzbeQAlEWHtCufNr4vXzsDa3Dy5PMMiLbmWUUmWc+Q= Subject key identifier: 18:13:D8:56:8E:3B:5D:44:E7:85:8C:70:E1:94:5F:A9:4A:A2:98:81 Authority key identifier: 1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E Certificate issuer: /CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Certificate serial: 0260 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft Manifest number: 0258 Signing time: Sat 09 Aug 2025 02:21:26 +0000 Manifest this update: Sat 09 Aug 2025 02:21:26 +0000 Manifest next update: Sat 16 Aug 2025 02:21:26 +0000 Files and hashes: 1: G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl (hash: brVWS/BFjSWRizJOHWJfDl4nYfzU1o7TMnW2mNcnjs4=) 2: BE608B1833DC11EF82BB2E27C4F9AE02.roa (hash: EWoN0iNcfOe+G9uyesPgbS2htYj/a8iGQkySadopce0=) 3: F2257AC0289011ED8AEEB43CC4F9AE02.roa (hash: Eg0ppNj4Rfn9XDDO2a6sOjdWSFXYTHKi+qKN2PGRgYA=) 4: BDDB04B633DC11EF82BB2E27C4F9AE02.roa (hash: 5c/qR2mpD5OqrfddW7wi4YgOjtRseskty4kGshoVWVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91340D8, serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Validity Not Before: Aug 9 02:21:26 2025 GMT Not After : Aug 16 02:21:26 2025 GMT Subject: CN=6896b0a6-73fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:de:c7:85:e4:42:e6:81:1a:42:8e:a5:2a:5d: a3:1f:0d:76:ec:5c:b1:3d:8f:d6:a9:65:fe:0c:45: d6:bb:1e:ff:a9:db:41:e0:e3:c5:db:7f:bc:77:7d: f7:9c:35:57:51:14:a1:ea:bb:b2:8b:9c:ba:d8:fb: 38:f5:4c:72:87:6e:80:8b:1f:fb:8c:c8:3b:0c:ae: 1b:69:e0:a1:07:b3:14:ef:e2:d6:0d:96:f9:53:bf: e1:08:59:14:75:32:2a:41:52:cc:62:c3:e9:f6:da: 93:4a:04:bc:b5:82:7b:4d:62:a6:cc:f5:11:f9:a1: b0:28:dd:d4:b4:12:cc:f1:d6:8a:f0:34:d3:a0:07: 4d:6b:d5:ba:a9:de:ac:04:d8:67:3d:2f:11:d6:ca: 2f:9c:9c:e9:4c:6d:ea:18:6a:83:03:1a:e9:9e:c9: 7c:96:c0:35:71:6c:f0:97:34:8f:b8:0b:0f:2a:52: 17:ff:0e:8f:81:5c:37:f9:73:b2:15:0b:cc:aa:f9: 08:f0:38:48:6a:d3:6c:dd:a9:e2:7f:d1:ea:3d:4d: b5:85:ac:89:1a:88:a6:f2:cf:a0:1b:b2:4a:48:cb: 27:cd:60:c1:a7:36:24:db:a6:da:bd:29:1f:c6:bf: c3:ab:ef:5d:53:3d:14:a9:dc:85:cf:2a:6f:fb:b6: d4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:13:D8:56:8E:3B:5D:44:E7:85:8C:70:E1:94:5F:A9:4A:A2:98:81 X509v3 Authority Key Identifier: keyid:1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:4a:bc:74:4d:87:c6:cb:b6:a6:4b:3d:e5:f8:be:4a:c3:e2: bb:05:3e:f9:33:d6:a1:e7:bd:20:24:c6:ee:e2:71:35:39:4c: dd:03:9c:0b:c8:b6:09:62:da:30:a5:31:40:3e:bb:4b:96:59: 5b:32:a4:b4:f7:4c:39:1d:c4:7f:be:39:54:43:37:f5:f5:4d: e0:e3:2a:5d:4e:e3:2b:40:b9:37:18:0b:40:e3:23:32:b4:6c: 69:27:26:96:8e:f2:38:bb:ee:c9:f1:3b:3e:52:7a:94:0e:63: 8f:f7:96:07:91:cb:5d:93:92:cd:71:64:27:55:ab:73:b4:13: f2:00:01:e4:3a:69:27:73:3c:2d:e4:a1:aa:8b:75:c3:e6:6c: 6f:6d:cb:e6:87:3c:d9:79:d9:ae:f5:c9:09:d9:49:c7:81:30: a7:45:03:eb:04:cb:25:28:5b:e9:43:96:43:75:1c:15:ff:dd: 9a:4c:95:6e:00:95:d3:04:36:ba:85:22:9d:af:26:13:fc:68: 2d:67:1e:80:cd:64:b0:54:37:a6:dc:f0:c6:14:56:50:e3:a9: 86:da:73:ce:61:44:e4:5e:25:02:43:30:b4:db:cf:a1:30:c1: 6b:77:05:25:98:d7:d1:b6:27:2a:ca:41:2f:d1:b6:eb:9f:82: b3:98:bb:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQwRDgxMTAvBgNVBAUTKDFCOEFFN0M3NDMwMTcyOUQ4NUMzMTU5NTI0OUMzQjQ4 RjFCOTE1MUUwHhcNMjUwODA5MDIyMTI2WhcNMjUwODE2MDIyMTI2WjAYMRYwFAYD VQQDEw02ODk2YjBhNi03M2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu97HheRC5oEaQo6lKl2jHw127FyxPY/WqWX+DEXWux7/qdtB4OPF23+8d333 nDVXURSh6ruyi5y62Ps49Uxyh26Aix/7jMg7DK4baeChB7MU7+LWDZb5U7/hCFkU dTIqQVLMYsPp9tqTSgS8tYJ7TWKmzPUR+aGwKN3UtBLM8daK8DTToAdNa9W6qd6s BNhnPS8R1sovnJzpTG3qGGqDAxrpnsl8lsA1cWzwlzSPuAsPKlIX/w6PgVw3+XOy FQvMqvkI8DhIatNs3anif9HqPU21hayJGoim8s+gG7JKSMsnzWDBpzYk26bavSkf xr/Dq+9dUz0UqdyFzypv+7bUtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgT2FaO O11E54WMcOGUX6lKopiBMB8GA1UdIwQYMBaAFBuK58dDAXKdhcMVlSScO0jxuRUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDBEOC9CM0RFNUNFNDI4 OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNwMkZ3eFdWSkp3N1NQRzVG UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0cm54ME1CY3AyRnd4V1ZKSnc3U1BHNUZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDBEOC9CM0RFNUNFNDI4OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNw MkZ3eFdWSkp3N1NQRzVGUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuSrx0TYfGy7amSz3l+L5Kw+K7BT75M9ah570gJMbu4nE1OUzdA5wL yLYJYtowpTFAPrtLlllbMqS090w5HcR/vjlUQzf19U3g4ypdTuMrQLk3GAtA4yMy tGxpJyaWjvI4u+7J8Ts+UnqUDmOP95YHkctdk5LNcWQnVatztBPyAAHkOmknczwt 5KGqi3XD5mxvbcvmhzzZedmu9ckJ2UnHgTCnRQPrBMslKFvpQ5ZDdRwV/92aTJVu AJXTBDa6hSKdryYT/GgtZx6AzWSwVDem3PDGFFZQ46mG2nPOYUTkXiUCQzC028+h MMFrdwUlmNfRticqykEv0bbrn4KzmLup -----END CERTIFICATE-----Generated at Sun Aug 10 05:42:22 2025 by rpki-client