$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft File: GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft (raw, json) Hash identifier: 5xfjtQnIESGqvNTfU4QQbtcxuJ4XhGb75LDjMjikQO8= Subject key identifier: 2A:04:C8:48:44:77:CC:8C:AF:9D:47:B2:F4:E3:12:D3:90:0A:23:DA Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft Manifest number: 0195 Signing time: Mon 11 Aug 2025 02:41:37 +0000 Manifest this update: Mon 11 Aug 2025 02:41:36 +0000 Manifest next update: Mon 18 Aug 2025 02:41:36 +0000 Files and hashes: 1: GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl (hash: DVZedmOI0CzoASseEHKX86L2OHn339IPLGiyLjwpIf0=) 2: 1F388278205F11F0A895DE1EC4F9AE02.roa (hash: QotOqnglA46ODcG/lG9E8XyvCGo9HnekdR3etzUrE4c=) 3: 926A40AC205E11F0A7552513C4F9AE02.roa (hash: 4KMF0OCYbNDwaW3aLIgUQJgQPdi1cw9YHAWu6imOU70=) 4: 9781D91CB36B11EEA3394737C4F9AE02.roa (hash: ezxJgBFw2tKKcU962PajWcu+NU//ODot2RyjD71Fn24=) 5: 12D4E3D41AA411F0A196BA66C4F9AE02.roa (hash: vvnk4u9DNse+nnNTrLADNzPvSMLhalyiJs4z4ddnMBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Validity Not Before: Aug 11 02:41:36 2025 GMT Not After : Aug 18 02:41:36 2025 GMT Subject: CN=68995860-2e91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:7c:db:ef:14:61:dc:0a:f2:37:59:36:65: 5a:87:7c:16:49:a4:a3:ec:5a:7d:5e:75:db:f6:56: 5d:09:bc:f6:7d:c9:b3:36:30:d6:8e:50:24:44:dc: 46:c9:1a:0d:84:67:45:3b:98:be:d1:c0:73:fa:8e: fd:c0:63:2f:3a:f1:ce:1d:a0:70:34:f8:d8:6c:63: b0:79:60:d5:02:10:8f:e6:0b:29:0b:0f:34:b8:97: 5f:48:f9:00:e5:c5:85:15:4b:86:61:8f:c9:0b:f8: 3c:21:de:0f:be:cf:d7:36:24:7b:de:aa:ab:9f:bd: 75:cd:f1:76:56:b0:e7:f3:fd:05:38:e3:8e:b9:b9: bb:d0:1d:49:e6:27:cf:00:49:d0:88:fd:59:d9:25: 09:58:cb:e0:06:0d:67:b0:43:3f:75:89:bc:7b:88: d4:30:e1:21:fd:53:05:55:6f:7e:a6:12:ce:58:4a: 95:ec:0a:b9:14:9b:42:c2:69:a1:f1:6b:b5:57:cf: 5a:69:5a:44:7c:9f:cb:8e:f8:85:1e:fe:e0:db:b7: 3a:ac:59:e7:2d:78:90:3a:82:d6:88:0c:2d:25:c7: 63:3d:aa:7e:3a:e6:e6:27:3a:a3:bf:ad:e9:a6:85: 5e:50:bc:6c:3b:cb:9a:7d:ac:f9:2e:75:46:28:91: 3b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:04:C8:48:44:77:CC:8C:AF:9D:47:B2:F4:E3:12:D3:90:0A:23:DA X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:8c:01:8e:45:a9:14:2e:da:2d:47:fb:b2:b3:97:2f:80:14: 4d:ba:7a:49:8d:0b:df:78:3f:e9:03:ad:4e:98:99:90:71:4e: cf:20:f8:c9:da:da:a4:a1:e2:da:d6:c2:0d:0a:d5:94:57:7e: 1d:2a:e3:a0:27:78:4d:43:3b:00:a3:1e:2f:28:c8:57:a4:6a: 01:4b:8b:80:a1:3e:d6:6c:01:13:2c:31:2d:c5:ac:36:b8:05: a5:94:ef:87:c5:a0:54:36:62:52:22:ee:85:06:fe:5f:e2:1f: 20:40:d3:69:58:fe:89:de:fc:15:96:9e:47:0d:15:97:87:d2: e9:7e:46:5e:1a:19:52:2e:6d:81:36:4a:1a:54:84:90:77:cd: 30:3b:1c:19:13:76:13:a0:d2:61:7d:95:23:51:5e:63:7f:30: 59:35:f8:4c:34:30:de:53:9a:66:a0:0f:e5:8c:22:67:7b:50: 1a:c6:a7:a2:46:f4:96:2e:8d:99:ea:62:35:3e:c6:6e:ba:fd: 6c:2c:f1:d4:f8:17:d2:1c:88:90:0b:11:02:b2:6c:c0:53:04: d3:76:03:44:55:12:84:5b:b1:65:90:5b:35:c4:0c:62:12:52: 63:69:27:c3:c1:9a:d8:d4:63:4e:11:54:d1:b3:a2:c4:e7:35: 06:f0:f2:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjUwODExMDI0MTM2WhcNMjUwODE4MDI0MTM2WjAYMRYwFAYD VQQDEw02ODk5NTg2MC0yZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUd82+8UYdwK8jdZNmVah3wWSaSj7Fp9XnXb9lZdCbz2fcmzNjDWjlAkRNxG yRoNhGdFO5i+0cBz+o79wGMvOvHOHaBwNPjYbGOweWDVAhCP5gspCw80uJdfSPkA 5cWFFUuGYY/JC/g8Id4Pvs/XNiR73qqrn711zfF2VrDn8/0FOOOOubm70B1J5ifP AEnQiP1Z2SUJWMvgBg1nsEM/dYm8e4jUMOEh/VMFVW9+phLOWEqV7Aq5FJtCwmmh 8Wu1V89aaVpEfJ/LjviFHv7g27c6rFnnLXiQOoLWiAwtJcdjPap+OubmJzqjv63p poVeULxsO8uafaz5LnVGKJE72QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoEyEhE d8yMr51HsvTjEtOQCiPaMB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy82MjlFOEIyMDNCMjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1Ba V3BiUmNSWWo0dlpnNncteGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDajAGORakULtotR/uys5cvgBRNunpJjQvfeD/pA61OmJmQcU7PIPjJ 2tqkoeLa1sINCtWUV34dKuOgJ3hNQzsAox4vKMhXpGoBS4uAoT7WbAETLDEtxaw2 uAWllO+HxaBUNmJSIu6FBv5f4h8gQNNpWP6J3vwVlp5HDRWXh9LpfkZeGhlSLm2B NkoaVISQd80wOxwZE3YToNJhfZUjUV5jfzBZNfhMNDDeU5pmoA/ljCJne1Aaxqei RvSWLo2Z6mI1PsZuuv1sLPHU+BfSHIiQCxECsmzAUwTTdgNEVRKEW7FlkFs1xAxi ElJjaSfDwZrY1GNOEVTRs6LE5zUG8PKW -----END CERTIFICATE-----Generated at Mon Aug 11 10:35:15 2025 by rpki-client