$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft File: G7spe8goFmqkl9N8cmW_tgGuA2A.mft (raw, json) Hash identifier: R9HvrYJ6aoanNpkZMG1FfYNFu6kkzxwzF0mPepj16vk= Subject key identifier: 1C:56:17:5A:C5:9D:20:ED:AD:D0:DF:67:9B:AE:78:AF:3B:ED:05:22 Authority key identifier: 1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 Certificate issuer: /CN=A91B49F2/serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Certificate serial: 0E55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft Manifest number: 0E4B Signing time: Sun 10 Aug 2025 17:47:09 +0000 Manifest this update: Sun 10 Aug 2025 17:47:09 +0000 Manifest next update: Sun 17 Aug 2025 17:47:09 +0000 Files and hashes: 1: G7spe8goFmqkl9N8cmW_tgGuA2A.crl (hash: dbOM8DNmfzX6UvoC3X+6vVTSmlIDyCwUoFH+RJEtwDo=) 2: BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa (hash: XB0QLbbknxQIRTO38MXkPwNFVVbVpdhvXqbqZxANpFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3669 (0xe55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2, serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Validity Not Before: Aug 10 17:47:09 2025 GMT Not After : Aug 17 17:47:09 2025 GMT Subject: CN=6898db1d-ff78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:36:8c:78:a3:69:f8:99:0d:6d:fb:5f:fe:61: 56:b2:53:66:84:b5:8a:2b:7a:9c:ce:c9:c1:a1:a5: 85:ea:09:1a:58:62:03:a2:a4:22:d4:d8:3e:97:be: d7:de:80:e5:bd:9b:13:6f:1b:3c:1c:63:6f:d7:ad: 23:cc:5e:bb:c0:a4:63:3d:27:0c:5a:4c:ff:b9:c8: 8a:9b:c1:97:93:33:e8:06:71:bc:cc:64:94:ab:1a: f7:86:95:7c:2a:8c:77:6f:d5:28:c6:0c:4e:9e:cb: 23:b9:e7:cf:da:91:dc:8a:56:11:67:23:aa:e5:03: eb:41:29:3c:81:ce:16:65:66:0f:95:3b:9a:33:2d: 81:fa:83:0c:29:a7:fe:0f:b6:dd:71:fb:d5:7e:3b: e6:2f:86:78:5b:9b:55:f2:1a:64:8c:98:bc:b0:d6: 2e:0e:85:97:6f:d0:e5:b4:7f:27:12:a3:81:76:70: ea:2d:87:6e:5b:27:20:89:a5:5f:3a:17:65:9d:ed: 1d:e2:b5:38:dc:7b:64:e7:cb:0d:6b:37:5c:cc:dd: 58:91:9f:2c:0f:62:94:19:73:57:6b:b0:d9:4f:99: 02:1a:d8:2c:7a:07:58:8b:7e:d9:81:5c:56:00:55: ed:64:af:92:0c:9c:05:8b:f2:c5:56:52:7b:a4:4a: 04:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:56:17:5A:C5:9D:20:ED:AD:D0:DF:67:9B:AE:78:AF:3B:ED:05:22 X509v3 Authority Key Identifier: keyid:1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:b4:6b:62:df:ab:1a:7a:05:cd:28:fb:4c:93:0d:0c:e6:6e: 79:f5:aa:fa:35:6c:3e:96:02:62:59:67:db:b4:f0:dd:3e:95: 79:b6:fd:b9:29:61:ab:54:9d:fd:a5:87:d4:cf:ac:71:f0:72: ad:bb:75:54:3a:0a:5a:38:f7:9e:48:97:4c:37:52:a9:be:8f: c8:cf:5f:f8:e4:9c:61:d4:d9:71:ee:65:63:e4:26:48:9e:0b: 33:f3:59:ac:1a:77:08:e4:41:ef:3d:db:2e:bf:b7:84:ba:8e: cb:ef:08:7d:b0:f1:d0:2c:59:fb:2e:66:4f:fd:82:62:b2:2c: 02:29:2e:8a:15:4a:1e:c7:ac:d2:c7:ba:d0:9f:22:fb:73:af: 69:3e:cc:e7:58:96:bd:3b:6a:98:20:d9:55:35:93:4c:4b:e7: 7e:9b:3b:80:cc:33:42:aa:9f:e2:63:cd:5c:ca:fb:2d:72:0a: 97:8d:47:2f:53:f4:dd:a2:e0:0e:5d:fa:74:3e:c1:ea:ed:41: 3a:fd:4c:8c:58:32:1d:f4:10:31:9f:3f:df:78:93:2c:d7:79: f1:36:24:9c:55:b8:7a:cd:f2:c7:52:37:75:d8:bb:44:2e:b0: cb:9e:84:e9:58:a6:2f:87:cd:77:fc:e8:56:e3:cc:cd:73:cd: 8c:ca:89:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKDFCQkIyOTdCQzgyODE2NkFBNDk3RDM3QzcyNjVCRkI2 MDFBRTAzNjAwHhcNMjUwODEwMTc0NzA5WhcNMjUwODE3MTc0NzA5WjAYMRYwFAYD VQQDEw02ODk4ZGIxZC1mZjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDaMeKNp+JkNbftf/mFWslNmhLWKK3qczsnBoaWF6gkaWGIDoqQi1Ng+l77X 3oDlvZsTbxs8HGNv160jzF67wKRjPScMWkz/uciKm8GXkzPoBnG8zGSUqxr3hpV8 Kox3b9UoxgxOnssjuefP2pHcilYRZyOq5QPrQSk8gc4WZWYPlTuaMy2B+oMMKaf+ D7bdcfvVfjvmL4Z4W5tV8hpkjJi8sNYuDoWXb9DltH8nEqOBdnDqLYduWycgiaVf Ohdlne0d4rU43Htk58sNazdczN1YkZ8sD2KUGXNXa7DZT5kCGtgsegdYi37ZgVxW AFXtZK+SDJwFi/LFVlJ7pEoEjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxWF1rF nSDtrdDfZ5uueK877QUiMB8GA1UdIwQYMBaAFBu7KXvIKBZqpJfTfHJlv7YBrgNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi83QzA2RTc5Q0E2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0ZtcWtsOU44Y21XX3RnR3VB MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0c3c3BlOGdvRm1xa2w5TjhjbVdfdGdHdUEyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi83QzA2RTc5Q0E2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0Zt cWtsOU44Y21XX3RnR3VBMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFtGti36saegXNKPtMkw0M5m559ar6NWw+lgJiWWfbtPDdPpV5tv25 KWGrVJ39pYfUz6xx8HKtu3VUOgpaOPeeSJdMN1Kpvo/Iz1/45Jxh1Nlx7mVj5CZI ngsz81msGncI5EHvPdsuv7eEuo7L7wh9sPHQLFn7LmZP/YJisiwCKS6KFUoex6zS x7rQnyL7c69pPsznWJa9O2qYINlVNZNMS+d+mzuAzDNCqp/iY81cyvstcgqXjUcv U/TdouAOXfp0PsHq7UE6/UyMWDId9BAxnz/feJMs13nxNiScVbh6zfLHUjd12LtE LrDLnoTpWKYvh813/OhW48zNc82Myonp -----END CERTIFICATE-----Generated at Mon Aug 11 04:16:42 2025 by rpki-client