$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: 8TzgzAarUp7mmJPpcy3uDmJVlEzZzdjD/+Eio1q6a0Q= Subject key identifier: 8E:5C:D5:9E:43:8E:E4:80:79:B6:9A:B7:75:97:04:4F:30:19:BD:DA Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B42 Signing time: Wed 06 Aug 2025 19:26:13 +0000 Manifest this update: Wed 06 Aug 2025 19:26:13 +0000 Manifest next update: Wed 13 Aug 2025 19:26:13 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: wiOG+Xa6NhTCMKjCSl/ZR5ysMXpp2CgMCVUCAsfPV7k=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Aug 6 19:26:13 2025 GMT Not After : Aug 13 19:26:13 2025 GMT Subject: CN=6893ac55-51ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a6:8f:a6:5e:e4:c3:cc:e3:3b:98:dd:e8:33: cd:69:9b:e0:26:a1:4f:1b:89:61:4d:16:c4:c3:72: 82:4c:3d:ec:cd:49:55:4b:ae:52:5a:b0:cc:43:b9: 81:51:7d:8c:74:13:ee:e7:13:08:ea:7d:dd:88:58: 6f:e5:53:ac:ed:6b:0b:cc:e5:a1:6f:48:00:3e:19: 38:3c:6b:3a:2d:e9:5c:c4:5d:2b:28:f6:6c:a6:ca: 71:9a:cb:af:83:65:e8:d4:f8:37:0e:ac:32:95:b5: 2e:87:e0:a0:3c:b1:41:31:d7:7b:8a:f2:58:3d:1b: 81:9f:7f:26:f5:b8:e2:b2:58:b6:48:f3:ce:33:d1: 84:7c:8d:ff:22:1b:d4:4a:6a:26:a3:7b:7a:8d:4d: 3a:0e:b5:81:f7:33:d3:04:e3:3f:71:72:3e:2c:13: 0b:81:11:f4:74:1e:f4:42:e1:44:ca:44:98:7c:2a: 2a:04:80:3b:79:17:8e:3d:f7:b5:48:a4:e3:dd:85: 45:70:94:bc:57:5c:3e:04:5c:1f:71:75:4b:29:84: c7:63:ca:52:83:52:11:54:35:0e:c2:2a:83:2c:da: 6c:d7:76:e3:14:ee:2e:c5:84:28:66:7d:f9:5b:a9: b5:ac:bf:e2:55:a1:a0:42:fb:70:c7:41:7e:d5:93: 1c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:5C:D5:9E:43:8E:E4:80:79:B6:9A:B7:75:97:04:4F:30:19:BD:DA X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:c5:7c:63:57:70:2e:99:3f:a0:03:c0:ed:08:41:a2:78:b0: 0c:72:d4:b8:8f:2c:2c:09:c3:3f:06:1c:ea:98:27:a7:86:ae: dd:d4:a4:77:d4:df:60:c9:6b:a8:55:1e:7b:6d:6e:93:3c:f0: 64:9b:36:f6:e3:30:4f:6e:4c:76:75:9f:fa:a4:72:4b:e3:fb: e6:37:2a:5a:ce:cf:e8:f3:2a:bf:2c:20:f5:35:33:3a:90:eb: e9:14:55:da:72:fb:8e:ed:07:6a:d8:dd:02:5a:0a:86:55:ed: 6c:3a:20:39:c1:9e:4a:ea:4e:63:76:a6:31:ef:c0:34:36:2f: 9f:c7:45:d3:f1:41:66:e6:b7:c0:c1:eb:33:de:da:f5:61:26: 9e:d0:e4:b1:c7:d7:ae:00:ae:4b:6c:80:67:d3:d2:fd:28:a9: cb:d5:c6:c2:44:25:68:89:62:7d:b7:b7:63:77:d5:9c:04:05: 2e:f6:0e:6b:58:1f:2b:70:74:0a:e2:5c:c1:b8:f5:5a:87:ac: ce:3b:67:ef:1e:05:5d:81:d2:fb:5f:0a:4e:a6:27:e3:a6:02: cd:2b:fe:f4:2a:fb:d4:66:78:dc:93:c0:ce:ef:04:6b:03:a2: 4b:bd:96:60:04:20:c6:8b:8d:dd:08:6a:1e:94:8f:da:6d:5e: 27:1b:2c:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUwODA2MTkyNjEzWhcNMjUwODEzMTkyNjEzWjAYMRYwFAYD VQQDEw02ODkzYWM1NS01MWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqaPpl7kw8zjO5jd6DPNaZvgJqFPG4lhTRbEw3KCTD3szUlVS65SWrDMQ7mB UX2MdBPu5xMI6n3diFhv5VOs7WsLzOWhb0gAPhk4PGs6LelcxF0rKPZspspxmsuv g2Xo1Pg3DqwylbUuh+CgPLFBMdd7ivJYPRuBn38m9bjisli2SPPOM9GEfI3/IhvU Smomo3t6jU06DrWB9zPTBOM/cXI+LBMLgRH0dB70QuFEykSYfCoqBIA7eReOPfe1 SKTj3YVFcJS8V1w+BFwfcXVLKYTHY8pSg1IRVDUOwiqDLNps13bjFO4uxYQoZn35 W6m1rL/iVaGgQvtwx0F+1ZMc1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5c1Z5D juSAebaat3WXBE8wGb3aMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/xXxjV3AumT+gA8DtCEGieLAMctS4jywsCcM/BhzqmCenhq7d1KR3 1N9gyWuoVR57bW6TPPBkmzb24zBPbkx2dZ/6pHJL4/vmNypazs/o8yq/LCD1NTM6 kOvpFFXacvuO7Qdq2N0CWgqGVe1sOiA5wZ5K6k5jdqYx78A0Ni+fx0XT8UFm5rfA wesz3tr1YSae0OSxx9euAK5LbIBn09L9KKnL1cbCRCVoiWJ9t7djd9WcBAUu9g5r WB8rcHQK4lzBuPVah6zOO2fvHgVdgdL7XwpOpifjpgLNK/70KvvUZnjck8DO7wRr A6JLvZZgBCDGi43dCGoelI/abV4nGyy7 -----END CERTIFICATE-----Generated at Thu Aug 7 04:44:54 2025 by rpki-client