$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: guyzcHE79PsVN86DP2rah++BBV8hKBu6d9o8GUK9Q9o= Subject key identifier: D1:9A:7E:F5:D4:E8:AC:89:F0:48:4B:8E:F8:31:D4:73:64:98:10:5F Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 0633 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 062E Signing time: Mon 04 Aug 2025 23:09:33 +0000 Manifest this update: Mon 04 Aug 2025 23:09:32 +0000 Manifest next update: Mon 11 Aug 2025 23:09:32 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: awYVJ0aV/SRyw3kkrBQHOCzIMl9tepkas/0zHVxlSAY=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: ljHjZ6k7MiI2pN3VX1Cgx4pPDWP1h2Cokp04xup/nNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1587 (0x633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Aug 4 23:09:32 2025 GMT Not After : Aug 11 23:09:32 2025 GMT Subject: CN=68913dac-53e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:0e:ac:07:90:07:70:b1:ad:fb:2f:50:1a: 3d:12:c9:a5:a0:89:0c:a3:51:31:51:d0:bc:32:a8: c0:a7:6f:ac:84:2f:ce:71:11:7f:aa:5d:93:0b:ed: 86:40:55:89:f1:3d:52:43:b7:3d:47:05:e2:1e:88: 71:74:ee:82:06:69:47:a0:1d:1b:56:20:32:e3:74: 17:68:f9:06:d1:ca:73:14:77:72:34:d0:90:0a:a1: 15:0c:b9:99:b2:a7:71:1a:09:27:ec:2e:e8:95:da: 0f:fa:fa:35:34:75:7e:70:57:fa:c1:99:20:4f:37: 29:2c:a0:6f:ae:60:8c:dc:11:1b:df:fe:ff:5e:e0: e5:d4:30:2f:ad:d6:3f:13:7d:1a:60:c6:4a:08:c7: 93:d3:4d:b1:df:78:ea:55:f1:69:be:88:38:e8:f0: a5:9e:94:7c:ec:b3:fd:e5:20:88:24:e4:2c:7e:ad: b6:22:48:be:7c:32:ed:d8:38:48:41:35:cb:b6:40: e6:78:a2:8c:e4:ef:e6:ff:ad:6e:9b:73:1f:b2:09: 3a:34:76:98:04:9f:3a:69:cf:84:49:23:13:af:17: ec:5a:7d:98:8b:af:6d:bf:78:47:44:9f:6c:3e:a0: ca:3d:bb:59:b7:34:a0:42:8f:b5:a9:2b:cf:c4:9a: 48:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9A:7E:F5:D4:E8:AC:89:F0:48:4B:8E:F8:31:D4:73:64:98:10:5F X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:82:1b:72:50:7c:15:80:cb:80:b2:1f:af:62:bb:38:d7:10: 2b:79:c4:c7:4f:59:44:91:38:34:9f:49:86:7e:92:ff:a5:a4: 65:54:72:f9:44:85:f8:36:a0:88:9b:c2:b2:f3:e7:42:1e:a7: fa:ad:2f:af:0b:60:50:e8:53:98:95:36:41:96:41:fc:b3:28: 3c:ef:c3:36:cb:0c:16:f8:b1:a2:cd:9e:00:77:94:ca:bd:af: 46:c1:ca:f6:c6:1c:fe:b6:57:c8:ac:51:dc:e7:5b:ff:53:74: b4:49:64:57:cd:3d:bf:0d:66:d6:8a:b6:18:94:40:59:80:fb: b0:7b:59:b6:f3:c3:1d:98:43:ed:05:da:63:d8:43:04:1c:21: df:c1:4d:b5:68:e4:39:9f:07:ef:f7:96:f2:fc:3e:a0:ba:80: e2:ff:4d:13:5d:6e:8e:d3:33:9c:61:0b:47:51:1a:21:f9:00: 2c:a3:03:19:4a:52:13:18:38:46:32:9d:a2:1c:39:b3:0a:18: ab:55:de:ca:ea:38:3c:31:63:16:26:aa:4a:45:4a:39:47:97: 7d:12:29:10:19:05:6a:89:52:d5:07:30:d5:43:e8:29:97:cf: 36:29:f7:f6:d1:e6:1d:40:a5:f8:91:62:31:87:8c:50:36:d2: 4a:b7:1e:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjUwODA0MjMwOTMyWhcNMjUwODExMjMwOTMyWjAYMRYwFAYD VQQDEw02ODkxM2RhYy01M2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3QOrAeQB3CxrfsvUBo9EsmloIkMo1ExUdC8MqjAp2+shC/OcRF/ql2TC+2G QFWJ8T1SQ7c9RwXiHohxdO6CBmlHoB0bViAy43QXaPkG0cpzFHdyNNCQCqEVDLmZ sqdxGgkn7C7oldoP+vo1NHV+cFf6wZkgTzcpLKBvrmCM3BEb3/7/XuDl1DAvrdY/ E30aYMZKCMeT002x33jqVfFpvog46PClnpR87LP95SCIJOQsfq22Iki+fDLt2DhI QTXLtkDmeKKM5O/m/61um3Mfsgk6NHaYBJ86ac+ESSMTrxfsWn2Yi69tv3hHRJ9s PqDKPbtZtzSgQo+1qSvPxJpIEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGafvXU 6KyJ8EhLjvgx1HNkmBBfMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQghtyUHwVgMuAsh+vYrs41xArecTHT1lEkTg0n0mGfpL/paRlVHL5 RIX4NqCIm8Ky8+dCHqf6rS+vC2BQ6FOYlTZBlkH8syg878M2ywwW+LGizZ4Ad5TK va9Gwcr2xhz+tlfIrFHc51v/U3S0SWRXzT2/DWbWirYYlEBZgPuwe1m288MdmEPt Bdpj2EMEHCHfwU21aOQ5nwfv95by/D6guoDi/00TXW6O0zOcYQtHURoh+QAsowMZ SlITGDhGMp2iHDmzChirVd7K6jg8MWMWJqpKRUo5R5d9EikQGQVqiVLVBzDVQ+gp l882Kff20eYdQKX4kWIxh4xQNtJKtx4Z -----END CERTIFICATE-----Generated at Wed Aug 6 16:17:07 2025 by rpki-client