$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: cMzzdWMd89Al4GHPgh3JeNLx8vcWgnRDMjzkmSyE+YY= Subject key identifier: C2:38:C5:5C:4D:1B:F4:1D:C5:AC:32:2B:D2:ED:18:27:F8:5F:BB:1C Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0251 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 0691 Signing time: Mon 11 Aug 2025 00:21:16 +0000 Manifest this update: Mon 11 Aug 2025 00:21:15 +0000 Manifest next update: Mon 18 Aug 2025 00:21:15 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: TqW6izxy/RQOUyXLr7o06OrhO2nfCr3IacU99aZ5xSE=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: g9az2eJZ2fUas4ad3d/QH9wXCAIefnJD9ePsqv2jusw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 593 (0x251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Aug 11 00:21:15 2025 GMT Not After : Aug 18 00:21:15 2025 GMT Subject: CN=6899377c-7832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:81:65:e0:a5:07:da:75:51:bf:ea:a9:73:3a: b2:40:b2:a2:37:8a:ef:0a:08:b0:f5:b2:6d:41:cd: 8a:65:56:2a:1e:38:23:42:32:f3:8d:88:ec:9b:b8: 23:5c:1d:78:1e:2d:ee:4a:6d:9f:c5:47:b9:7a:0f: 89:e1:86:a4:d2:00:5c:01:d7:b1:68:c7:16:6e:60: e1:09:22:0b:0d:60:a4:f6:66:11:16:40:65:b4:e1: 90:a5:82:79:cd:7b:9d:b0:94:ae:ed:9c:bc:3e:ea: bc:af:cb:ee:c6:0d:89:77:69:cf:63:0b:57:3b:bb: 3d:28:02:d1:4e:bc:57:ae:fd:b3:7b:da:e4:c1:93: fe:82:bc:02:f7:1e:72:df:00:d7:c2:75:14:1d:d5: 36:41:b9:a6:cc:97:d0:a7:15:69:d0:a4:7a:88:ce: 39:b9:34:53:7f:cb:6b:81:4f:6f:72:61:54:4e:06: 53:9d:6c:c8:6d:bd:fd:01:6a:0e:a0:9e:40:2f:30: 17:3e:ab:c8:60:77:9c:83:9a:76:a1:19:fa:aa:e1: 92:c2:51:8d:6a:40:a8:1d:a1:0b:9b:9e:fc:26:f8: 00:d3:69:e9:e8:cf:be:5d:c7:7b:c3:8e:3e:ea:90: c4:53:25:c6:02:d0:bc:e6:ba:78:6c:4b:fd:47:85: 61:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:38:C5:5C:4D:1B:F4:1D:C5:AC:32:2B:D2:ED:18:27:F8:5F:BB:1C X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:6c:5d:3f:24:88:d9:b9:a2:ff:5e:96:2c:20:7c:fa:bb:79: 83:15:bd:a9:a3:59:5b:91:c8:aa:a5:fa:4c:0a:39:38:39:d2: e6:55:9f:3b:d8:35:da:21:71:a5:0e:04:fe:74:93:69:4b:f9: f7:15:8a:72:16:63:eb:f2:fd:7a:00:2d:2e:4e:57:ad:b0:bf: 04:af:80:30:90:6f:11:2d:eb:39:84:6f:15:a7:3d:ea:b0:2d: bc:1c:1f:e4:45:78:c0:85:58:ed:6a:be:41:7c:33:2d:ae:4b: 68:0b:b2:ce:69:db:9b:07:03:0d:8c:3e:a6:a2:fa:20:1c:88: 94:e3:54:fb:4a:e2:d3:4c:29:14:49:da:32:37:55:69:b6:e2: b0:a6:15:cd:98:46:b2:cc:87:c2:2e:69:bd:ab:e3:79:67:69: 15:ee:a3:b6:0a:9b:b8:3e:27:af:75:e6:c8:10:29:36:37:ea: 0a:4d:d6:d5:ff:7c:17:aa:84:7c:e6:21:76:b9:14:f4:59:46: 2c:53:50:e3:16:0e:22:81:9a:bd:f9:9d:e5:58:7d:29:08:1b: 0e:93:a8:aa:13:bd:75:69:f3:01:d7:60:be:a6:94:0a:21:10: 35:e2:c4:82:c6:52:1f:da:0a:02:e9:dc:1d:b5:01:6f:62:58: 71:dd:c5:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUwODExMDAyMTE1WhcNMjUwODE4MDAyMTE1WjAYMRYwFAYD VQQDEw02ODk5Mzc3Yy03ODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4YFl4KUH2nVRv+qpczqyQLKiN4rvCgiw9bJtQc2KZVYqHjgjQjLzjYjsm7gj XB14Hi3uSm2fxUe5eg+J4Yak0gBcAdexaMcWbmDhCSILDWCk9mYRFkBltOGQpYJ5 zXudsJSu7Zy8Puq8r8vuxg2Jd2nPYwtXO7s9KALRTrxXrv2ze9rkwZP+grwC9x5y 3wDXwnUUHdU2QbmmzJfQpxVp0KR6iM45uTRTf8trgU9vcmFUTgZTnWzIbb39AWoO oJ5ALzAXPqvIYHecg5p2oRn6quGSwlGNakCoHaELm578JvgA02np6M++Xcd7w44+ 6pDEUyXGAtC85rp4bEv9R4VhKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMI4xVxN G/QdxawyK9LtGCf4X7scMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvbF0/JIjZuaL/XpYsIHz6u3mDFb2po1lbkciqpfpMCjk4OdLmVZ87 2DXaIXGlDgT+dJNpS/n3FYpyFmPr8v16AC0uTletsL8Er4AwkG8RLes5hG8Vpz3q sC28HB/kRXjAhVjtar5BfDMtrktoC7LOadubBwMNjD6movogHIiU41T7SuLTTCkU SdoyN1VptuKwphXNmEayzIfCLmm9q+N5Z2kV7qO2Cpu4PievdebIECk2N+oKTdbV /3wXqoR85iF2uRT0WUYsU1DjFg4igZq9+Z3lWH0pCBsOk6iqE711afMB12C+ppQK IRA14sSCxlIf2goC6dwdtQFvYlhx3cXr -----END CERTIFICATE-----Generated at Mon Aug 11 07:51:34 2025 by rpki-client