$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft File: gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json) Hash identifier: hds/KQWZs/pW8eDddShyc3Xa1mXbdKofZJZE/F1gy30= Subject key identifier: 13:34:53:48:5D:4A:0F:E3:B5:C9:DA:F7:F4:60:49:5B:D4:49:A9:4C Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F Certificate issuer: /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft Manifest number: 01C4 Signing time: Sat 09 Aug 2025 03:18:47 +0000 Manifest this update: Sat 09 Aug 2025 03:18:46 +0000 Manifest next update: Sat 16 Aug 2025 03:18:46 +0000 Files and hashes: 1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: ngvDDDm91poYbnnOrNJBF7sOY1egYvv4de2BN6DGAXA=) 2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: dWU1gPzZFM9Cw+SS2wudvR0l02XzByvndbpoX+ljoqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146DAA, serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Validity Not Before: Aug 9 03:18:46 2025 GMT Not After : Aug 16 03:18:46 2025 GMT Subject: CN=6896be17-cfa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4c:8d:c4:44:18:a0:7d:77:11:1f:72:97:29: 1e:3b:5c:24:ab:92:d1:10:e1:58:4a:80:a9:19:5a: 3a:fe:ff:b8:c3:72:d7:ff:3f:6c:ad:03:ff:4c:33: aa:84:06:b1:c7:ec:69:c9:6f:49:62:c5:5c:c8:2c: 52:68:b1:3c:3c:cf:52:40:49:69:47:d9:6e:63:d2: b4:55:2e:a8:4c:f5:8f:fa:7e:35:85:3c:5b:55:c5: c5:ec:31:87:50:9f:7a:fe:79:e8:1c:dc:58:80:dd: a7:ef:f7:ad:e5:27:57:5f:e1:77:e2:e2:df:46:ee: 94:49:7d:61:04:84:47:20:a2:33:f0:ce:03:11:57: 11:de:54:f5:75:95:5b:09:2a:76:9b:a0:61:b9:ba: e8:e9:aa:2c:1e:e6:19:ba:25:31:db:aa:fb:0e:ad: ba:40:fd:f1:46:5e:1b:e8:a2:80:70:c0:a2:a8:02: 73:84:64:eb:c2:18:3c:0d:d8:73:88:49:98:3b:e9: b9:40:3d:22:2e:76:63:73:fe:04:23:b5:43:f7:9d: 8d:1d:aa:2b:1f:7d:68:3b:f2:80:d3:d8:9b:e4:ba: 5a:28:9b:29:98:78:0a:56:82:ec:05:36:20:db:04: 47:8c:eb:34:dd:88:73:e7:88:39:b1:c0:4b:70:62: 3c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:34:53:48:5D:4A:0F:E3:B5:C9:DA:F7:F4:60:49:5B:D4:49:A9:4C X509v3 Authority Key Identifier: keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:4f:4e:51:e8:96:20:8d:88:be:6b:24:f2:81:63:fc:32:ea: 9e:df:f6:c8:7e:59:55:27:5b:98:fb:10:3f:af:82:f7:4a:d4: ac:bb:84:47:84:4a:5f:2a:19:5b:23:09:39:af:78:39:f4:34: a7:3e:74:7c:83:1e:46:46:93:22:f3:ad:f1:1d:23:c5:9d:cc: 7f:8f:4c:39:96:7b:6b:8e:38:c5:a4:b1:ee:21:a0:3a:1c:c9: 71:b9:0c:cd:2c:24:b1:95:e7:0d:07:80:5e:48:8a:02:e4:bb: c7:89:e0:f5:25:e5:83:45:8f:2b:70:2f:39:6a:be:f5:95:82: f1:5f:8d:ed:2f:ba:a8:16:b0:fe:19:41:83:e2:eb:e9:26:27: df:50:db:1b:ac:bf:db:7c:ac:4c:eb:1c:c0:36:4e:ab:e0:53: 9c:61:35:9b:55:c0:41:21:dc:41:ae:e8:f6:90:cd:64:83:f5: 0d:9c:66:43:d8:b1:6a:79:d2:a6:2a:aa:8c:15:f0:2a:3a:1b: d5:82:fe:2f:90:de:48:e6:28:37:80:c7:f7:f5:79:ec:c6:7e: a1:38:bb:17:b1:95:9d:e0:39:b9:2f:1c:7a:49:92:f4:9d:4c: c9:1d:eb:d3:92:ad:9e:4a:e4:01:3e:e6:01:16:2d:a8:e2:8c: d6:03:94:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEQUExMTAvBgNVBAUTKDgyMEY3MDMwQkVBQzZENDlGMTA5QkE4RUMyNUE2NUJG MjM2OUFEMkYwHhcNMjUwODA5MDMxODQ2WhcNMjUwODE2MDMxODQ2WjAYMRYwFAYD VQQDEw02ODk2YmUxNy1jZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0yNxEQYoH13ER9ylykeO1wkq5LREOFYSoCpGVo6/v+4w3LX/z9srQP/TDOq hAaxx+xpyW9JYsVcyCxSaLE8PM9SQElpR9luY9K0VS6oTPWP+n41hTxbVcXF7DGH UJ96/nnoHNxYgN2n7/et5SdXX+F34uLfRu6USX1hBIRHIKIz8M4DEVcR3lT1dZVb CSp2m6Bhubro6aosHuYZuiUx26r7Dq26QP3xRl4b6KKAcMCiqAJzhGTrwhg8Ddhz iEmYO+m5QD0iLnZjc/4EI7VD952NHaorH31oO/KA09ib5LpaKJspmHgKVoLsBTYg 2wRHjOs03Yhz54g5scBLcGI85QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBM0U0hd Sg/jtcna9/RgSVvUSalMMB8GA1UdIwQYMBaAFIIPcDC+rG1J8Qm6jsJaZb8jaa0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkRBQS83MUVCN0M1QUMx OTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JVbnhDYnFPd2xwbHZ5TnBy UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnOXdNTDZzYlVueENicU93bHBsdnlOcHJTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkRBQS83MUVCN0M1QUMxOTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JV bnhDYnFPd2xwbHZ5TnByUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIT05R6JYgjYi+ayTygWP8Muqe3/bIfllVJ1uY+xA/r4L3StSsu4RH hEpfKhlbIwk5r3g59DSnPnR8gx5GRpMi863xHSPFncx/j0w5lntrjjjFpLHuIaA6 HMlxuQzNLCSxlecNB4BeSIoC5LvHieD1JeWDRY8rcC85ar71lYLxX43tL7qoFrD+ GUGD4uvpJiffUNsbrL/bfKxM6xzANk6r4FOcYTWbVcBBIdxBruj2kM1kg/UNnGZD 2LFqedKmKqqMFfAqOhvVgv4vkN5I5ig3gMf39Xnsxn6hOLsXsZWd4Dm5Lxx6SZL0 nUzJHevTkq2eSuQBPuYBFi2o4ozWA5T6 -----END CERTIFICATE-----Generated at Sun Aug 10 04:23:40 2025 by rpki-client