$ rpki-client -vvf rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft File: GaNgWeMX739niFziUq7bkZWPXmg.mft (raw, json) Hash identifier: 4QnuBzRTI+k7z0KGozXND33FTS5Ovn5Cj6E7+4aP/f0= Subject key identifier: BC:DC:7B:FE:E6:43:6D:06:F8:9B:C1:F1:A1:E8:C9:6B:C4:59:E3:F1 Authority key identifier: 19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 Certificate issuer: /CN=A917D857/serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft Manifest number: 0166 Signing time: Sat 09 Aug 2025 04:16:08 +0000 Manifest this update: Sat 09 Aug 2025 04:16:08 +0000 Manifest next update: Sat 16 Aug 2025 04:16:08 +0000 Files and hashes: 1: GaNgWeMX739niFziUq7bkZWPXmg.crl (hash: wwTuMrfkvVIEiXCXkMecCwHnTdJflFh1AOZsiuEOD5g=) 2: BD9131004E2811EEBC65304DC4F9AE02.roa (hash: LEXF9HRhajbu2nLL2GIh97gP542YxXzyNibweT+ZgSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D857, serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Validity Not Before: Aug 9 04:16:08 2025 GMT Not After : Aug 16 04:16:08 2025 GMT Subject: CN=6896cb88-c5f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1d:44:76:c1:44:16:09:94:aa:e0:28:be:59: 20:c8:70:de:85:e4:62:3e:22:07:43:bd:52:5e:22: ba:a4:0c:f4:41:88:ea:ca:d6:0d:33:93:e3:7c:69: b9:00:8e:ff:a7:81:0d:74:4e:d4:b8:8c:2a:f4:d1: 17:b6:cd:e6:dd:f8:11:b1:f8:c6:ef:95:91:d3:63: 6b:8c:f0:da:8c:25:c3:b8:59:bb:48:d1:bf:ff:f5: 3d:13:c9:4c:3c:1e:67:7e:f8:d5:6e:99:fe:63:e0: d5:79:e0:8e:da:5b:6f:db:81:32:01:8b:c8:e8:b5: 51:d8:87:8a:c4:a2:e7:ab:af:12:fd:8d:c0:cc:a5: 08:cb:3f:b0:a0:16:bf:56:a0:3f:b9:cb:90:63:33: da:74:98:fc:33:fd:c6:39:f5:35:af:73:61:fc:e2: 1a:53:23:8f:f8:72:8c:ee:d5:19:88:cd:18:00:b9: 49:72:6d:d9:50:92:60:4d:d7:18:43:ed:e3:b9:ba: 31:25:18:a5:53:78:04:27:17:f5:3a:fd:01:ee:b8: 6d:79:62:a4:a9:91:e1:ec:2f:56:a4:c7:c5:d2:91: 8c:11:bc:a1:80:50:60:54:d1:9c:23:7a:aa:99:78: e8:e5:4c:1e:d9:72:0d:a0:19:1a:e6:76:8d:06:c3: 4a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:DC:7B:FE:E6:43:6D:06:F8:9B:C1:F1:A1:E8:C9:6B:C4:59:E3:F1 X509v3 Authority Key Identifier: keyid:19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:a4:11:22:42:32:1c:df:ba:79:9d:c3:a5:3f:5d:a1:26:30: 12:28:06:e0:8f:a6:d5:ee:c3:e0:c6:9a:75:3c:6a:f3:3d:19: f1:83:88:e7:eb:65:77:92:af:84:97:f3:fe:b9:4a:62:32:d0: 8e:16:1e:c0:c6:85:10:67:ac:15:84:25:68:f7:75:87:c6:ab: a4:71:9c:c1:1c:cf:9c:bf:db:a9:c1:8e:16:c4:3b:84:cb:23: eb:71:18:50:4d:a9:8f:6c:83:50:df:00:ab:f9:9d:1c:b4:2b: 0c:8b:0f:ae:28:d2:5c:5d:8d:40:e6:48:2a:dd:f2:90:c1:dd: 6d:59:76:28:73:ea:ec:cc:b8:11:af:34:2b:50:8b:05:92:f8: 82:37:f3:da:16:9d:00:43:20:3a:67:bf:be:99:66:90:ca:ba: 7e:08:23:0d:e0:bd:58:64:0d:71:47:80:b8:44:05:c1:b1:b8: 8c:9a:07:38:99:cf:dd:3a:63:83:72:84:21:c9:0a:6c:e2:d1: 34:66:70:97:c5:20:7c:fd:f5:4b:e0:f4:0a:08:5b:b9:ba:c9: 4c:4e:2a:f5:35:8b:dc:b2:5b:e7:bd:e7:7d:3a:e9:12:19:12: 2c:d6:2f:3f:8a:d9:e3:7c:e1:2f:53:0f:ea:2f:f1:53:b5:2b: 18:ee:a7:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q4NTcxMTAvBgNVBAUTKDE5QTM2MDU5RTMxN0VGN0Y2Nzg4NUNFMjUyQUVEQjkx OTU4RjVFNjgwHhcNMjUwODA5MDQxNjA4WhcNMjUwODE2MDQxNjA4WjAYMRYwFAYD VQQDEw02ODk2Y2I4OC1jNWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxh1EdsFEFgmUquAovlkgyHDeheRiPiIHQ71SXiK6pAz0QYjqytYNM5PjfGm5 AI7/p4ENdE7UuIwq9NEXts3m3fgRsfjG75WR02NrjPDajCXDuFm7SNG///U9E8lM PB5nfvjVbpn+Y+DVeeCO2ltv24EyAYvI6LVR2IeKxKLnq68S/Y3AzKUIyz+woBa/ VqA/ucuQYzPadJj8M/3GOfU1r3Nh/OIaUyOP+HKM7tUZiM0YALlJcm3ZUJJgTdcY Q+3juboxJRilU3gEJxf1Ov0B7rhteWKkqZHh7C9WpMfF0pGMEbyhgFBgVNGcI3qq mXjo5Uwe2XINoBka5naNBsNKCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzce/7m Q20G+JvB8aHoyWvEWePxMB8GA1UdIwQYMBaAFBmjYFnjF+9/Z4hc4lKu25GVj15o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDg1Ny82MUM1Q0RCODRF MjgxMUVFOTRGREIzNENDNEY5QUUwMi9HYU5nV2VNWDczOW5pRnppVXE3YmtaV1BY bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dhTmdXZU1YNzM5bmlGemlVcTdia1pXUFhtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDg1Ny82MUM1Q0RCODRFMjgxMUVFOTRGREIzNENDNEY5QUUwMi9HYU5nV2VNWDcz OW5pRnppVXE3YmtaV1BYbWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnpBEiQjIc37p5ncOlP12hJjASKAbgj6bV7sPgxpp1PGrzPRnxg4jn 62V3kq+El/P+uUpiMtCOFh7AxoUQZ6wVhCVo93WHxqukcZzBHM+cv9upwY4WxDuE yyPrcRhQTamPbINQ3wCr+Z0ctCsMiw+uKNJcXY1A5kgq3fKQwd1tWXYoc+rszLgR rzQrUIsFkviCN/PaFp0AQyA6Z7++mWaQyrp+CCMN4L1YZA1xR4C4RAXBsbiMmgc4 mc/dOmODcoQhyQps4tE0ZnCXxSB8/fVL4PQKCFu5uslMTir1NYvcslvnved9OukS GRIs1i8/itnjfOEvUw/qL/FTtSsY7qeo -----END CERTIFICATE-----Generated at Sun Aug 10 21:01:56 2025 by rpki-client