$ rpki-client -vvf rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft File: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft (raw, json) Hash identifier: mvYuzQF1jdS6ubKBgQsRx4ZrpjKzn6TvbjvtrZVpUes= Subject key identifier: EB:D8:91:E4:F8:B0:76:15:1D:A0:05:F0:01:3F:87:AB:E5:82:D5:41 Authority key identifier: 80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A Certificate issuer: /CN=A91936BE/serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Certificate serial: 082F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft Manifest number: 0823 Signing time: Fri 08 Aug 2025 21:12:39 +0000 Manifest this update: Fri 08 Aug 2025 21:12:39 +0000 Manifest next update: Fri 15 Aug 2025 21:12:38 +0000 Files and hashes: 1: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl (hash: GZLff49CVUiKr4qBXTuMnuMAMqk7iYkRS7bs4srIdvY=) 2: 538866F6E44B11EAA31DD984C4F9AE02.roa (hash: muRqFTnS2+oQQUYzYuXwP+mAhzn5jlwAwgRQL1uNMII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2095 (0x82f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91936BE, serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Validity Not Before: Aug 8 21:12:39 2025 GMT Not After : Aug 15 21:12:38 2025 GMT Subject: CN=68966847-4b82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1d:9a:33:cb:50:2b:65:1a:38:e9:6a:3c:8d: 79:93:cc:e9:e1:82:10:24:da:a9:c1:7d:35:f4:9a: e0:9d:a9:b6:88:1c:73:4f:f8:2e:4d:4f:23:7e:c9: 1a:15:ed:3e:ea:6f:e2:27:ca:25:00:d6:39:42:49: 27:1f:0d:18:c8:70:9a:b1:4b:9b:38:30:c0:8e:4a: 98:61:ae:4c:d8:72:ad:d6:58:45:e3:14:4d:de:d2: 86:9f:dd:3d:b4:a6:4f:d8:43:36:8b:2c:95:bd:9d: 7a:99:ca:b4:8e:bd:c8:28:1b:90:8b:cc:b4:b2:a2: 0d:76:9d:70:57:16:a1:d3:9d:bc:f9:c9:f1:b2:6a: fd:a3:69:ca:02:be:f8:89:f1:7b:0b:74:b4:52:6a: 27:8a:0d:1a:4e:0b:b4:62:ce:61:9d:1f:9d:a1:bf: 42:23:71:6a:2c:54:d4:32:fd:b9:9b:2a:9e:1e:30: 9d:54:6d:ef:51:fc:42:74:03:89:37:31:af:76:54: f7:ff:a2:4e:12:3c:eb:67:83:17:4e:17:95:d8:b5: 8b:39:61:e5:c3:25:ef:b7:6b:ff:52:5a:41:92:33: b9:5f:5e:10:74:ac:f5:94:74:77:b7:25:4f:2b:cd: 1e:c0:5d:25:23:5c:dc:b6:52:c0:b1:94:dc:21:d1: de:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D8:91:E4:F8:B0:76:15:1D:A0:05:F0:01:3F:87:AB:E5:82:D5:41 X509v3 Authority Key Identifier: keyid:80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:55:ea:6d:7b:a5:97:46:d6:bf:ae:16:d6:79:1c:cf:ee:c6: aa:54:7b:20:80:b6:9f:c1:59:70:a5:9e:9c:ff:e3:37:2c:2b: 57:86:7d:91:f3:93:67:85:82:bc:26:95:d7:e7:c7:36:90:6a: 56:3d:1a:71:9f:66:da:a9:d7:1f:81:d4:a6:14:87:82:05:4a: 34:fc:28:31:db:0f:f6:77:16:33:14:32:0d:c2:2a:97:b8:04: ec:67:a6:6e:88:f0:6d:b9:e8:f6:9f:6d:91:72:47:16:2e:c3: 80:df:7e:c4:d2:0b:db:fb:99:dd:d0:54:ae:c4:c9:2b:35:d0: fb:41:a0:5b:e5:b1:f4:13:ad:d4:8f:ab:f5:d9:89:46:0f:0a: f3:48:75:69:0a:59:4e:64:8b:4b:3b:5e:aa:b8:18:00:6e:7a: 2a:8c:3f:44:a9:c9:bf:dd:86:67:b8:e0:8c:34:7a:0e:78:2e: b9:44:04:e4:9d:97:40:7c:ea:e9:44:aa:dd:c7:7d:09:02:9c: fa:67:72:61:03:1b:00:11:c5:fc:c2:62:cf:5a:bc:9f:bc:d3: 5e:e6:ba:9c:1f:f2:b7:68:c0:f1:47:33:53:8c:72:90:68:0a: 85:83:32:ef:e6:9f:ba:cf:0b:e5:16:5d:de:31:0a:eb:17:79: f1:92:31:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM2QkUxMTAvBgNVBAUTKDgwMjFCMTZCOTI0MjFGNzdCNzI2MEU5N0U2QUQ4QzFE MjRCRDI5OUEwHhcNMjUwODA4MjExMjM5WhcNMjUwODE1MjExMjM4WjAYMRYwFAYD VQQDEw02ODk2Njg0Ny00YjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB2aM8tQK2UaOOlqPI15k8zp4YIQJNqpwX019Jrgnam2iBxzT/guTU8jfska Fe0+6m/iJ8olANY5QkknHw0YyHCasUubODDAjkqYYa5M2HKt1lhF4xRN3tKGn909 tKZP2EM2iyyVvZ16mcq0jr3IKBuQi8y0sqINdp1wVxah0528+cnxsmr9o2nKAr74 ifF7C3S0Umonig0aTgu0Ys5hnR+dob9CI3FqLFTUMv25myqeHjCdVG3vUfxCdAOJ NzGvdlT3/6JOEjzrZ4MXTheV2LWLOWHlwyXvt2v/UlpBkjO5X14QdKz1lHR3tyVP K80ewF0lI1zctlLAsZTcIdHeyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvYkeT4 sHYVHaAF8AE/h6vlgtVBMB8GA1UdIwQYMBaAFIAhsWuSQh93tyYOl+atjB0kvSma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzZCRS9DQTA2NjY4Q0U0 NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gzZTNKZzZYNXEyTUhTUzlL Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDR3hhNUpDSDNlM0pnNlg1cTJNSFNTOUtaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzZCRS9DQTA2NjY4Q0U0NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gz ZTNKZzZYNXEyTUhTUzlLWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/Vepte6WXRta/rhbWeRzP7saqVHsggLafwVlwpZ6c/+M3LCtXhn2R 85NnhYK8JpXX58c2kGpWPRpxn2baqdcfgdSmFIeCBUo0/Cgx2w/2dxYzFDINwiqX uATsZ6ZuiPBtuej2n22RckcWLsOA337E0gvb+5nd0FSuxMkrNdD7QaBb5bH0E63U j6v12YlGDwrzSHVpCllOZItLO16quBgAbnoqjD9Eqcm/3YZnuOCMNHoOeC65RATk nZdAfOrpRKrdx30JApz6Z3JhAxsAEcX8wmLPWryfvNNe5rqcH/K3aMDxRzNTjHKQ aAqFgzLv5p+6zwvlFl3eMQrrF3nxkjFp -----END CERTIFICATE-----Generated at Sun Aug 10 05:41:36 2025 by rpki-client