$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft File: gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft (raw, json) Hash identifier: wva6n0S3ylMerNNJNuUwA0zwvYE+dTBL0mndEPeNZgg= Subject key identifier: 14:EE:08:15:99:2C:B8:EA:7A:04:65:AB:B2:E8:87:83:69:A4:74:8A Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0B4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft Manifest number: 0B3B Signing time: Fri 08 Aug 2025 19:30:02 +0000 Manifest this update: Fri 08 Aug 2025 19:30:01 +0000 Manifest next update: Fri 15 Aug 2025 19:30:01 +0000 Files and hashes: 1: gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl (hash: Ps8d2cCDbddfDKLTZt69cWlb2SdJez/wgtYa4kxtrSM=) 2: 89340B10B5E011EE91DD4D53C4F9AE02.roa (hash: 4RpDGoas6qlBW19Q5SIFrbnYOe5op4thcR7lPfP6BCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2892 (0xb4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299, serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Aug 8 19:30:01 2025 GMT Not After : Aug 15 19:30:01 2025 GMT Subject: CN=68965039-5366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f6:b3:63:79:9e:ec:5d:cd:3f:f0:ed:1b:18: de:04:c6:71:52:ea:6e:c8:bd:b3:72:d4:f7:fb:d7: 64:e4:c2:e7:e2:95:e5:9c:cd:b3:36:35:59:ef:e5: aa:06:de:28:74:70:e2:39:a1:70:2d:e9:d3:86:03: 43:49:1d:00:d8:5c:41:77:a8:56:7b:e7:94:fb:0a: 3a:33:e1:fd:f2:76:05:db:c7:e0:3f:70:47:c2:01: 42:d1:4d:98:ef:03:26:46:4b:9e:a8:33:e4:89:84: f0:2a:a5:e6:70:bd:d7:88:6c:7d:58:8a:49:e6:6b: e4:aa:94:87:3f:70:5e:d1:6a:bf:9c:98:fe:5c:65: 96:cb:e0:15:bb:b7:51:0d:ef:ff:1e:2a:08:6a:d7: 3e:1e:03:57:34:5c:46:a1:83:e3:68:dc:44:c9:f8: eb:1b:4b:b1:54:56:8a:d2:f6:9e:5c:c2:e2:43:83: 10:77:93:76:75:85:6c:d5:3e:86:41:40:cb:d1:35: 9f:ab:e7:d8:ba:bf:ae:28:a2:81:00:5c:79:22:0a: 76:ef:aa:39:38:1c:97:e3:40:b5:93:60:b4:21:71: ed:97:de:dc:b2:1d:9e:ed:52:8b:e8:77:2e:0f:e8: 05:2e:e4:c6:f1:08:95:b0:70:f6:a1:3b:ae:2b:a4: b7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:EE:08:15:99:2C:B8:EA:7A:04:65:AB:B2:E8:87:83:69:A4:74:8A X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:88:87:de:6f:a2:b3:30:3e:d3:a0:1f:ed:90:f9:c1:84:3c: 91:17:2b:61:c3:85:69:59:4e:93:53:cd:be:93:cb:de:54:c7: 65:3f:0c:e3:18:57:9d:9c:55:57:1d:ce:d3:de:bc:3f:92:55: f7:c1:06:61:f4:2d:90:0d:83:b7:b8:c3:10:62:2a:88:06:fe: ad:e1:95:cc:c5:12:04:dd:17:d1:6f:5e:b9:73:98:1f:49:5a: 88:41:23:33:33:76:ac:e8:90:cc:b0:9d:f5:a6:b9:1e:f3:9c: 9a:81:01:d5:be:81:65:c3:43:98:c6:3c:7d:42:32:d6:84:ea: f2:39:21:c2:49:44:9a:fe:d7:82:c5:9f:84:2e:43:b2:33:70: b1:20:5c:d3:ea:46:b0:3b:87:7a:2b:17:e5:89:ff:af:fc:7b: b1:c3:c8:a8:10:ad:2a:48:e1:33:92:05:c3:8f:01:91:d7:78: ca:2c:08:4f:03:89:9c:42:e9:3d:ed:bd:28:b0:da:99:48:f0: f6:71:a4:b3:37:ef:25:d4:24:d8:fb:7b:a3:e3:7e:10:78:fc: fc:0c:7d:b9:54:33:41:ef:6c:b6:8c:b6:d1:eb:3c:f1:b3:40: ce:79:37:3a:37:07:5c:3a:f7:27:87:06:d9:97:f5:7d:ac:28: da:27:56:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjUwODA4MTkzMDAxWhcNMjUwODE1MTkzMDAxWjAYMRYwFAYD VQQDEw02ODk2NTAzOS01MzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfazY3me7F3NP/DtGxjeBMZxUupuyL2zctT3+9dk5MLn4pXlnM2zNjVZ7+Wq Bt4odHDiOaFwLenThgNDSR0A2FxBd6hWe+eU+wo6M+H98nYF28fgP3BHwgFC0U2Y 7wMmRkueqDPkiYTwKqXmcL3XiGx9WIpJ5mvkqpSHP3Be0Wq/nJj+XGWWy+AVu7dR De//HioIatc+HgNXNFxGoYPjaNxEyfjrG0uxVFaK0vaeXMLiQ4MQd5N2dYVs1T6G QUDL0TWfq+fYur+uKKKBAFx5Igp276o5OByX40C1k2C0IXHtl97csh2e7VKL6Hcu D+gFLuTG8QiVsHD2oTuuK6S3BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTuCBWZ LLjqegRlq7Loh4NppHSKMB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTI5OS8yNjg5MEVEQTQyQzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2 aG9JN2FmUTNZazZjQUMza0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIiIfeb6KzMD7ToB/tkPnBhDyRFythw4VpWU6TU82+k8veVMdlPwzj GFednFVXHc7T3rw/klX3wQZh9C2QDYO3uMMQYiqIBv6t4ZXMxRIE3RfRb165c5gf SVqIQSMzM3as6JDMsJ31prke85yagQHVvoFlw0OYxjx9QjLWhOryOSHCSUSa/teC xZ+ELkOyM3CxIFzT6kawO4d6Kxflif+v/Huxw8ioEK0qSOEzkgXDjwGR13jKLAhP A4mcQuk97b0osNqZSPD2caSzN+8l1CTY+3uj434QePz8DH25VDNB72y2jLbR6zzx s0DOeTc6NwdcOvcnhwbZl/V9rCjaJ1ab -----END CERTIFICATE-----Generated at Sun Aug 10 03:45:40 2025 by rpki-client