$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: lpbY8uUC4dInomCntyiTZ/sgCp/V5MsiRvwI28oqtxA= Subject key identifier: 63:C4:40:C6:08:01:10:D7:C0:EC:74:2B:A1:55:4B:18:D2:01:8D:6E Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 0297 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 0293 Signing time: Mon 11 Aug 2025 01:51:12 +0000 Manifest this update: Mon 11 Aug 2025 01:51:11 +0000 Manifest next update: Mon 18 Aug 2025 01:51:11 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: ODil/5qnJK2nZSJ32deGfOK5lcf5bHnsRoP7QzZNeYM=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: dtuYeScxI0cvK8sz9E/Cl0+96zsD1MptOKpsIJKXrl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E, serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: Aug 11 01:51:11 2025 GMT Not After : Aug 18 01:51:11 2025 GMT Subject: CN=68994c90-d9b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a3:43:b8:03:38:f6:ba:4c:7d:d4:50:e4:f6: ce:02:72:c0:11:03:35:67:f9:11:b1:da:f8:34:ea: c3:bb:0f:ec:d7:f6:2d:bf:ef:0e:53:0d:83:b3:9a: 1e:8c:67:ad:84:a3:ad:b5:75:77:82:ab:9d:85:0c: 33:15:98:c4:17:26:99:55:f4:c7:bd:b0:b2:39:18: 5b:5d:e9:b2:12:5a:17:ad:0d:e7:51:5f:e3:d6:9e: 46:5e:cd:b4:60:f7:04:08:07:75:b4:5c:c4:8b:2d: d1:34:b3:2f:80:2d:9a:75:c3:03:4d:37:06:99:5e: b7:42:c9:eb:5f:a8:2f:3e:19:1c:49:bc:82:0e:0d: 30:63:d4:0b:6e:cc:b6:3e:37:6e:8d:43:2c:f9:19: e1:b4:55:53:85:60:e5:19:68:49:d9:5e:04:dd:bd: 62:01:c5:4d:85:93:3e:97:75:76:17:2d:0e:67:17: 89:19:77:87:13:fe:f0:e2:ca:ce:9c:81:4d:e1:3a: d7:4c:b4:48:38:2a:7b:d7:73:35:8e:76:d1:1a:72: 2b:f4:db:7f:38:94:2a:8a:b1:da:07:7e:89:00:c0: f3:00:32:62:bc:26:b2:5b:86:16:c8:ad:11:2e:47: 17:4b:d6:30:bc:62:b9:5a:5e:36:fc:ac:04:ca:39: d4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C4:40:C6:08:01:10:D7:C0:EC:74:2B:A1:55:4B:18:D2:01:8D:6E X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c5:38:2e:06:f3:b2:3a:d2:48:1e:36:21:1c:32:04:ea:1b: c2:e5:2f:58:bb:3c:4f:dc:92:10:73:48:81:01:6a:20:b2:16: 4b:2c:74:df:aa:b2:3f:bd:03:d5:b0:0b:23:1d:7e:23:65:9a: 5b:e0:4a:03:3f:99:e7:05:0d:f8:f9:aa:7b:6f:32:8f:c8:27: cd:f9:44:0d:87:32:1d:fa:dc:ab:69:b1:c4:7a:a0:ae:3e:60: b9:37:c8:9c:32:d2:aa:68:9e:06:21:ce:32:8b:4a:a2:ea:53: 04:55:04:f8:e0:bb:bc:9d:f3:a1:ec:76:d8:95:f6:d8:57:6c: 57:10:7e:d2:38:98:47:4b:bf:ce:c7:79:da:f6:90:14:1b:4a: f1:88:ab:24:35:09:49:b8:2d:fa:c3:74:19:1f:2c:b2:df:5b: 41:bc:78:18:38:7c:f3:73:24:1c:0b:97:3a:27:a2:97:14:a6: 38:0e:5d:9f:f9:e8:be:c3:76:60:04:e0:1b:fe:62:75:8d:ae: 86:6f:fe:9e:e5:3b:f1:85:3a:94:4a:b5:72:76:95:ea:e7:6c: b2:3a:42:a5:7e:e5:04:ed:d9:7c:4c:02:20:97:d6:5c:79:1f: 89:10:ec:c7:2b:49:61:6a:b7:8c:a9:6d:51:6e:87:3d:4b:f9: ea:11:7d:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjUwODExMDE1MTExWhcNMjUwODE4MDE1MTExWjAYMRYwFAYD VQQDEw02ODk5NGM5MC1kOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraNDuAM49rpMfdRQ5PbOAnLAEQM1Z/kRsdr4NOrDuw/s1/Ytv+8OUw2Ds5oe jGethKOttXV3gqudhQwzFZjEFyaZVfTHvbCyORhbXemyEloXrQ3nUV/j1p5GXs20 YPcECAd1tFzEiy3RNLMvgC2adcMDTTcGmV63QsnrX6gvPhkcSbyCDg0wY9QLbsy2 PjdujUMs+RnhtFVThWDlGWhJ2V4E3b1iAcVNhZM+l3V2Fy0OZxeJGXeHE/7w4srO nIFN4TrXTLRIOCp713M1jnbRGnIr9Nt/OJQqirHaB36JAMDzADJivCayW4YWyK0R LkcXS9YwvGK5Wl42/KwEyjnUHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPEQMYI ARDXwOx0K6FVSxjSAY1uMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaxTguBvOyOtJIHjYhHDIE6hvC5S9YuzxP3JIQc0iBAWogshZLLHTf qrI/vQPVsAsjHX4jZZpb4EoDP5nnBQ34+ap7bzKPyCfN+UQNhzId+tyrabHEeqCu PmC5N8icMtKqaJ4GIc4yi0qi6lMEVQT44Lu8nfOh7HbYlfbYV2xXEH7SOJhHS7/O x3na9pAUG0rxiKskNQlJuC36w3QZHyyy31tBvHgYOHzzcyQcC5c6J6KXFKY4Dl2f +ei+w3ZgBOAb/mJ1ja6Gb/6e5TvxhTqUSrVydpXq52yyOkKlfuUE7dl8TAIgl9Zc eR+JEOzHK0lhareMqW1Rboc9S/nqEX1L -----END CERTIFICATE-----Generated at Mon Aug 11 10:30:56 2025 by rpki-client