$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft File: gjEAt15d1BoefDKBw1cT9EvobJg.mft (raw, json) Hash identifier: zbvKWbe6vQmiJnMB6vg8xcgnUIJK6cpXvMnyiE5Rqtg= Subject key identifier: 42:F7:06:FD:48:0B:EF:BC:D3:A4:6B:D3:FD:16:C1:F0:AF:E2:35:91 Authority key identifier: 82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 Certificate issuer: /CN=A91A2E6A/serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft Manifest number: D5 Signing time: Thu 07 Aug 2025 06:08:13 +0000 Manifest this update: Thu 07 Aug 2025 06:08:12 +0000 Manifest next update: Thu 14 Aug 2025 06:08:12 +0000 Files and hashes: 1: gjEAt15d1BoefDKBw1cT9EvobJg.crl (hash: JS8EQOpTzKshyG/oFz/dgjw7jVGk5uVAj+L6fllB2po=) 2: BF466AE8325611EFA462C323C4F9AE02.roa (hash: KhqMoTs+Qi/II5aRP9wPpcsu1xRmCyMAj25hDB2Fy0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2E6A, serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Validity Not Before: Aug 7 06:08:12 2025 GMT Not After : Aug 14 06:08:12 2025 GMT Subject: CN=689442cd-6499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:4c:a9:e6:5d:a6:53:7d:48:04:bc:ea:e2: e6:1f:92:e5:24:7c:35:81:ae:cb:9d:56:0f:bc:42: 10:cf:a1:c5:e3:17:86:d5:95:7e:de:b3:b5:6a:d1: db:46:57:d0:0e:72:ad:8a:4c:e2:a2:c1:d9:13:e8: 7a:bd:af:72:0b:1a:c9:4c:50:2a:38:bb:69:52:0a: e0:17:b8:8b:5f:56:e1:20:cc:6c:e5:67:ab:7f:01: 41:a3:23:50:a2:20:d4:ef:cb:20:6e:47:a1:40:6a: 6d:ff:c2:c8:b8:b6:b0:d4:28:cd:a1:65:89:7d:7d: f8:3f:22:f2:bc:91:68:2a:e3:9a:f7:4c:7d:5d:e4: d5:b4:4e:bb:1b:9d:14:34:71:47:9d:8a:1a:e3:a9: 2d:b2:0f:09:d2:dc:af:f7:15:32:02:63:fb:37:82: 65:74:3f:e5:5a:0d:16:5c:3e:11:43:8b:fb:7c:ec: 65:d9:c9:11:04:96:3d:f4:de:8a:2a:fb:7f:73:df: 69:ca:45:e2:30:2d:09:92:77:2e:0f:9f:f5:05:08: 07:d0:de:28:6e:35:a9:f1:6a:4b:aa:8f:89:88:59: a8:46:b2:d3:3a:eb:fa:50:4a:fb:2a:a8:7d:f5:ed: 35:e3:f8:fc:fc:a2:96:0c:ae:80:a6:14:06:2d:65: 16:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:F7:06:FD:48:0B:EF:BC:D3:A4:6B:D3:FD:16:C1:F0:AF:E2:35:91 X509v3 Authority Key Identifier: keyid:82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c1:03:cb:70:52:83:55:e7:9b:75:9d:1f:e6:13:e7:87:f1: 7d:a5:0d:b5:7c:bc:da:42:ef:1e:27:82:e7:a4:2a:1d:a5:1e: 1e:74:2f:e5:39:53:c9:87:be:8e:31:32:cf:de:03:54:62:05: e8:5b:29:52:af:0e:49:65:6b:70:55:85:29:72:50:ed:02:23: f2:26:fa:d2:79:fa:c2:2a:14:42:57:b8:41:50:b7:56:82:de: 78:81:06:b3:a1:18:b3:4a:89:24:b0:c9:90:2e:57:5a:2c:db: 62:ba:1e:fe:6b:3d:ce:d2:e1:24:97:ac:ef:3c:3d:aa:2c:f8: 75:fd:0d:0a:68:b0:c4:21:1d:85:d7:42:57:63:d1:96:cb:33: 4e:d7:01:ee:8b:47:06:cb:c0:48:3a:ff:41:ea:d9:f9:4f:cc: 3e:28:c1:01:22:b0:f0:48:b0:bf:07:2e:82:3e:40:d4:63:e7: ae:63:32:dc:66:33:77:ad:56:03:87:49:7d:b8:19:f7:b9:09: 32:7d:e6:ca:f0:d7:bb:ea:cf:32:38:3f:b3:95:f8:4e:25:09: aa:bd:ad:6c:9c:1b:11:26:10:ce:3f:0d:40:8d:a0:e4:90:b6: 9a:da:f1:ac:0c:ba:58:8d:8e:99:67:3b:a5:bb:5f:a9:cf:da: b9:4a:70:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJFNkExMTAvBgNVBAUTKDgyMzEwMEI3NUU1REQ0MUExRTdDMzI4MUMzNTcxM0Y0 NEJFODZDOTgwHhcNMjUwODA3MDYwODEyWhcNMjUwODE0MDYwODEyWjAYMRYwFAYD VQQDEw02ODk0NDJjZC02NDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxpMqeZdplN9SAS86uLmH5LlJHw1ga7LnVYPvEIQz6HF4xeG1ZV+3rO1atHb RlfQDnKtikziosHZE+h6va9yCxrJTFAqOLtpUgrgF7iLX1bhIMxs5WerfwFBoyNQ oiDU78sgbkehQGpt/8LIuLaw1CjNoWWJfX34PyLyvJFoKuOa90x9XeTVtE67G50U NHFHnYoa46ktsg8J0tyv9xUyAmP7N4JldD/lWg0WXD4RQ4v7fOxl2ckRBJY99N6K Kvt/c99pykXiMC0JkncuD5/1BQgH0N4objWp8WpLqo+JiFmoRrLTOuv6UEr7Kqh9 9e014/j8/KKWDK6AphQGLWUWcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEL3Bv1I C++806Rr0/0WwfCv4jWRMB8GA1UdIwQYMBaAFIIxALdeXdQaHnwygcNXE/RL6GyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkU2QS9BRTM3M0Q4NDMy MzAxMUVGOUU1MzIxNTZDNEY5QUUwMi9nakVBdDE1ZDFCb2VmREtCdzFjVDlFdm9i SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqRUF0MTVkMUJvZWZES0J3MWNUOUV2b2JKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkU2QS9BRTM3M0Q4NDMyMzAxMUVGOUU1MzIxNTZDNEY5QUUwMi9nakVBdDE1ZDFC b2VmREtCdzFjVDlFdm9iSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6wQPLcFKDVeebdZ0f5hPnh/F9pQ21fLzaQu8eJ4LnpCodpR4edC/l OVPJh76OMTLP3gNUYgXoWylSrw5JZWtwVYUpclDtAiPyJvrSefrCKhRCV7hBULdW gt54gQazoRizSokksMmQLldaLNtiuh7+az3O0uEkl6zvPD2qLPh1/Q0KaLDEIR2F 10JXY9GWyzNO1wHui0cGy8BIOv9B6tn5T8w+KMEBIrDwSLC/By6CPkDUY+euYzLc ZjN3rVYDh0l9uBn3uQkyfebK8Ne76s8yOD+zlfhOJQmqva1snBsRJhDOPw1AjaDk kLaa2vGsDLpYjY6ZZzulu1+pz9q5SnBX -----END CERTIFICATE-----Generated at Sat Aug 9 01:12:39 2025 by rpki-client