$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: HOdGJDirW/5H9ZIyyV/uvZjVBFLFIT/e6j9WYxSmw1Q= Subject key identifier: C7:0D:77:A2:B0:B1:A9:05:96:66:FC:95:64:39:5F:CE:93:FA:14:FB Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 04FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 04F5 Signing time: Wed 13 Aug 2025 00:09:08 +0000 Manifest this update: Wed 13 Aug 2025 00:09:07 +0000 Manifest next update: Wed 20 Aug 2025 00:09:07 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: jgXhPmY5fOhWzkD7udg13L6OieoS2W7aponE/gGnTV4=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: 40Tp9vYlwNjlXHzULzghK25QKYAH3IMjVH7JAvH5N/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 00:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1274 (0x4fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8, serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: Aug 13 00:09:07 2025 GMT Not After : Aug 20 00:09:07 2025 GMT Subject: CN=689bd7a3-434d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ee:d1:a8:2d:77:50:02:63:30:5f:28:08:71: 5a:90:9f:e7:07:e7:06:45:0f:c2:ab:53:03:57:c1: 42:23:cd:17:9c:cf:e9:95:c2:5f:30:d8:93:d2:c0: ce:04:7b:da:fc:30:e8:bc:e4:3d:b1:f0:f7:e4:36: 04:4f:69:a7:ea:5e:8b:a2:b7:f6:48:09:d3:d4:38: 2b:cd:91:06:1c:23:4a:90:71:8c:3a:f3:75:4d:8b: 27:f8:75:75:42:92:b6:86:53:9d:a3:24:70:ab:cc: 6d:16:73:f8:29:f2:b6:c8:5e:d5:31:49:db:8c:7d: 5d:af:4d:14:c9:40:30:9d:af:e7:87:14:ef:bf:a2: 9c:71:c4:31:16:c3:26:6b:10:ed:d5:05:80:3b:90: c5:94:a3:0f:62:31:bf:d1:ae:36:38:3c:09:31:27: dc:c4:71:8d:0e:96:e8:fc:64:ef:f8:71:d4:98:49: fc:0c:f7:3c:14:61:35:8a:2c:d8:7d:a4:e7:fd:d9: 30:4e:a3:c1:53:93:5d:e9:31:ea:9d:31:df:0b:61: f1:2a:2f:08:af:fb:e1:b2:34:3b:37:9e:63:f5:71: 80:16:66:ff:02:29:bc:a8:e4:59:f2:8f:66:62:31: 4a:0d:9a:1b:d2:8a:14:05:4a:57:03:c5:05:b6:6b: 65:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0D:77:A2:B0:B1:A9:05:96:66:FC:95:64:39:5F:CE:93:FA:14:FB X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:1d:a8:86:bd:81:6f:c2:08:cf:82:05:b4:8c:2c:ef:ac:70: 3c:db:00:22:08:de:60:5c:e1:99:05:33:6b:a8:f1:da:dd:35: 80:1b:03:04:3c:62:20:5d:df:99:f4:42:e4:a1:63:86:5d:05: bc:b8:bd:f1:ac:b7:73:9f:7a:9f:ad:8d:93:0c:c5:3a:06:58: c2:97:77:90:3a:3e:0c:76:cf:d5:25:75:f2:83:93:c4:36:42: ef:43:45:35:c4:f2:91:64:e2:c3:8c:04:c0:b7:ae:b2:94:9c: d7:a7:cd:88:47:54:e2:2b:71:29:3c:99:77:79:ff:62:c3:59: fa:46:13:b9:1e:ca:91:24:8d:7a:f3:32:49:08:ee:98:99:38: 9f:cc:69:5c:71:18:1b:88:9e:5a:52:21:06:09:80:a4:3a:1c: b6:c4:05:cb:00:55:31:4d:7b:6f:0e:82:45:49:e0:b0:8c:8b: 29:9f:5a:ce:73:f7:28:42:42:33:97:76:ec:87:2c:1c:c4:da: 12:98:62:79:06:b0:e1:5d:83:f6:8f:d3:7c:4d:52:ca:e7:59: 6f:99:d1:69:a8:b7:a0:86:b3:01:6b:f8:f0:78:6f:ff:ff:1a: 8e:45:7e:4b:41:6e:82:79:9e:cd:d3:31:9d:03:48:11:c9:9b: 93:92:c3:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjUwODEzMDAwOTA3WhcNMjUwODIwMDAwOTA3WjAYMRYwFAYD VQQDEw02ODliZDdhMy00MzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8e7RqC13UAJjMF8oCHFakJ/nB+cGRQ/Cq1MDV8FCI80XnM/plcJfMNiT0sDO BHva/DDovOQ9sfD35DYET2mn6l6Lorf2SAnT1DgrzZEGHCNKkHGMOvN1TYsn+HV1 QpK2hlOdoyRwq8xtFnP4KfK2yF7VMUnbjH1dr00UyUAwna/nhxTvv6KcccQxFsMm axDt1QWAO5DFlKMPYjG/0a42ODwJMSfcxHGNDpbo/GTv+HHUmEn8DPc8FGE1iizY faTn/dkwTqPBU5Nd6THqnTHfC2HxKi8Ir/vhsjQ7N55j9XGAFmb/Aim8qORZ8o9m YjFKDZob0ooUBUpXA8UFtmtltwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcNd6Kw sakFlmb8lWQ5X86T+hT7MB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGHaiGvYFvwgjPggW0jCzvrHA82wAiCN5gXOGZBTNrqPHa3TWAGwME PGIgXd+Z9ELkoWOGXQW8uL3xrLdzn3qfrY2TDMU6BljCl3eQOj4Mds/VJXXyg5PE NkLvQ0U1xPKRZOLDjATAt66ylJzXp82IR1TiK3EpPJl3ef9iw1n6RhO5HsqRJI16 8zJJCO6YmTifzGlccRgbiJ5aUiEGCYCkOhy2xAXLAFUxTXtvDoJFSeCwjIspn1rO c/coQkIzl3bshywcxNoSmGJ5BrDhXYP2j9N8TVLK51lvmdFpqLeghrMBa/jweG// /xqORX5LQW6CeZ7N0zGdA0gRyZuTksNn -----END CERTIFICATE-----Generated at Wed Aug 13 02:51:50 2025 by rpki-client