$ rpki-client -vvf rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft File: GHJyN_a30WUlK_m9s4a24ergVXQ.mft (raw, json) Hash identifier: 9hOdTSemVk4oVE5D2Jlv0hk+aRAPO+knDp8rG2dJkWU= Subject key identifier: E4:BA:54:7C:86:6F:3C:E1:EE:E1:96:3A:6B:C6:0C:2D:53:A4:5F:92 Authority key identifier: 18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 Certificate issuer: /CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Certificate serial: 0308 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft Manifest number: 0304 Signing time: Sat 09 Aug 2025 01:45:57 +0000 Manifest this update: Sat 09 Aug 2025 01:45:57 +0000 Manifest next update: Sat 16 Aug 2025 01:45:57 +0000 Files and hashes: 1: GHJyN_a30WUlK_m9s4a24ergVXQ.crl (hash: sqIWf5xZG3FZtdRJ4U+XAOKOOQfUatQlXFnNUHvhcQU=) 2: FCA92EAAE4AD11EC839CED77C4F9AE02.roa (hash: wW4HCqhcoyo/dCvusJDIhbj+A+f9Rh4hUlMCJe2c3dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 776 (0x308) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917418A, serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Validity Not Before: Aug 9 01:45:57 2025 GMT Not After : Aug 16 01:45:57 2025 GMT Subject: CN=6896a855-d5b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:54:5c:ba:0b:61:6c:8b:c6:98:3f:85:c2:b4: e3:f0:31:f0:3f:2a:91:4c:2f:a5:9f:99:2d:11:15: 05:c2:4a:17:75:aa:17:3e:0e:64:3b:a0:a6:b9:39: 30:7c:b8:4e:79:fc:5a:15:46:4b:9e:13:8c:02:11: f6:54:03:40:54:f3:ef:f8:51:b9:08:c9:f3:49:88: 4d:96:b7:84:d2:28:06:24:4b:71:04:83:78:52:30: ef:97:59:56:67:42:7e:9d:76:7b:e9:cc:3e:7b:74: 90:7e:63:df:6a:6b:7e:85:49:d8:67:17:b8:3d:5c: 2c:e4:61:80:9c:c8:ea:f2:c2:10:5b:87:ae:5f:b7: 0c:11:f1:7d:b0:a8:34:cd:ee:7d:c4:54:99:8c:34: 2f:4a:d2:ee:fa:57:b3:c8:b7:69:2c:f8:03:d4:4f: 24:c1:b3:ae:6c:9e:a0:1a:bb:5f:d6:9e:5a:26:23: 99:a4:9b:04:21:a6:92:26:39:f7:c6:03:e7:06:88: 7f:17:18:ea:56:32:a5:eb:18:82:72:58:8f:2e:b9: ad:0b:0c:ee:93:dc:14:55:e5:c4:a0:20:1a:c4:12: 53:e8:23:4d:96:f9:97:4f:29:13:e7:9f:04:85:d5: d9:fd:04:bc:63:86:48:df:66:63:85:ae:dc:e7:77: 45:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:BA:54:7C:86:6F:3C:E1:EE:E1:96:3A:6B:C6:0C:2D:53:A4:5F:92 X509v3 Authority Key Identifier: keyid:18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:d2:6a:8b:1e:ed:d2:b3:1c:45:7f:b7:ad:dc:ec:61:b0:ed: dd:01:79:fd:48:9e:ab:48:78:da:95:9b:8d:4a:e9:36:53:0d: 19:d2:04:56:94:6f:d7:8f:59:54:f8:f2:ef:9b:9f:a1:e5:7e: 42:dc:16:cf:6a:54:05:f5:ef:e5:3e:1e:ce:b8:75:c5:6a:58: 70:ed:1d:d5:61:d3:bd:c3:2a:a8:a2:68:07:3f:9b:d3:d5:b2: 34:31:71:7c:06:26:1c:22:66:67:ab:3f:e7:de:f4:55:44:a0: 26:88:83:2f:e2:b9:ec:eb:fe:68:fc:b5:41:45:a1:2d:93:ce: e4:c6:56:61:27:77:85:c8:21:ae:02:bf:0b:51:eb:22:1a:9a: 9f:e4:ce:e3:52:d6:1e:d8:4e:92:b1:f9:e9:9a:14:e7:76:7f: 6a:e2:0e:9e:44:ad:f3:1b:b4:dc:a2:b3:03:10:f2:bf:90:b7: f2:95:c9:ea:3a:2e:e7:98:b5:6d:2c:f2:fc:b4:8c:1f:04:d1: c0:b4:01:4e:bf:11:a8:03:e9:80:e2:4b:1f:93:44:90:04:51: 25:4c:32:31:71:4f:a4:a5:12:aa:ad:63:59:8d:1b:f3:44:ad: 63:25:57:67:cc:5b:9e:dc:31:77:63:64:3f:63:6c:da:d5:cb: e9:06:4c:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOEExMTAvBgNVBAUTKDE4NzI3MjM3RjZCN0QxNjUyNTJCRjlCREIzODZCNkUx RUFFMDU1NzQwHhcNMjUwODA5MDE0NTU3WhcNMjUwODE2MDE0NTU3WjAYMRYwFAYD VQQDEw02ODk2YTg1NS1kNWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2lRcugthbIvGmD+FwrTj8DHwPyqRTC+ln5ktERUFwkoXdaoXPg5kO6CmuTkw fLhOefxaFUZLnhOMAhH2VANAVPPv+FG5CMnzSYhNlreE0igGJEtxBIN4UjDvl1lW Z0J+nXZ76cw+e3SQfmPfamt+hUnYZxe4PVws5GGAnMjq8sIQW4euX7cMEfF9sKg0 ze59xFSZjDQvStLu+lezyLdpLPgD1E8kwbOubJ6gGrtf1p5aJiOZpJsEIaaSJjn3 xgPnBoh/FxjqVjKl6xiCcliPLrmtCwzuk9wUVeXEoCAaxBJT6CNNlvmXTykT558E hdXZ/QS8Y4ZI32Zjha7c53dFkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOS6VHyG bzzh7uGWOmvGDC1TpF+SMB8GA1UdIwQYMBaAFBhycjf2t9FlJSv5vbOGtuHq4FV0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE4QS8wRTA5MDk2OEU0 QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBXVWxLX205czRhMjRlcmdW WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dISnlOX2EzMFdVbEtfbTlzNGEyNGVyZ1ZYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE4QS8wRTA5MDk2OEU0QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBX VWxLX205czRhMjRlcmdWWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDG0mqLHu3SsxxFf7et3OxhsO3dAXn9SJ6rSHjalZuNSuk2Uw0Z0gRW lG/Xj1lU+PLvm5+h5X5C3BbPalQF9e/lPh7OuHXFalhw7R3VYdO9wyqoomgHP5vT 1bI0MXF8BiYcImZnqz/n3vRVRKAmiIMv4rns6/5o/LVBRaEtk87kxlZhJ3eFyCGu Ar8LUesiGpqf5M7jUtYe2E6SsfnpmhTndn9q4g6eRK3zG7TcorMDEPK/kLfylcnq Oi7nmLVtLPL8tIwfBNHAtAFOvxGoA+mA4ksfk0SQBFElTDIxcU+kpRKqrWNZjRvz RK1jJVdnzFue3DF3Y2Q/Y2za1cvpBkwF -----END CERTIFICATE-----Generated at Sat Aug 9 10:43:40 2025 by rpki-client