$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: bZOnRGRoJxLn1EFShOFx+fdoq4DqwuUOPjrxQSwOvVE= Subject key identifier: 6B:33:D9:6D:07:CB:B2:01:92:59:BE:AC:FF:83:73:14:42:62:C1:76 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 05ED Signing time: Fri 08 Aug 2025 23:23:33 +0000 Manifest this update: Fri 08 Aug 2025 23:23:32 +0000 Manifest next update: Fri 15 Aug 2025 23:23:32 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: 3AgF/RjYkFm8c+MIKTyUlnN6j3xlCdF+dC2Vl02CzJY=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Aug 8 23:23:32 2025 GMT Not After : Aug 15 23:23:32 2025 GMT Subject: CN=689686f4-f6e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d4:6a:7b:9f:b5:42:2b:30:d2:b4:ba:ac:f2: cb:fd:cb:3f:41:75:98:21:39:76:8f:5d:1b:58:c4: 48:d1:4c:66:5c:b1:53:bc:2c:1f:57:6a:68:35:4b: 85:04:b1:c4:22:74:43:57:0f:fc:5e:32:22:ad:32: 63:59:6f:8e:fd:15:51:5d:f0:8c:1e:17:cf:92:6a: 38:d3:91:ff:f6:ce:77:65:2f:8f:ca:3a:be:8d:46: df:f1:40:00:ef:80:e4:2a:ca:04:5e:a5:6c:ae:bb: e8:f2:c1:d4:fe:09:5e:42:81:af:f7:27:c7:c3:87: 35:b5:62:96:0c:68:7b:e7:a1:08:06:2e:5b:d3:c6: 6e:19:9e:38:31:94:15:32:5f:f6:ab:da:87:d9:d6: 56:c8:28:ce:0c:97:65:41:a3:3e:e2:1e:89:66:81: b4:aa:9a:af:47:1c:a2:65:11:1d:f3:18:a1:75:4e: d2:d9:29:91:95:ce:13:d0:8b:40:22:2f:52:a3:25: 86:46:6f:bc:c7:01:1d:de:a1:41:0e:0e:2d:e4:7c: e8:ee:87:d7:76:ba:0e:8d:01:fe:97:53:b0:17:36: 00:f8:b7:44:ed:a6:bb:90:81:27:70:90:ab:ca:f4: db:32:20:df:81:0c:94:2c:f6:c7:3d:1a:48:aa:2b: 80:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:33:D9:6D:07:CB:B2:01:92:59:BE:AC:FF:83:73:14:42:62:C1:76 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:6a:80:74:04:17:e0:51:a4:d9:83:3e:1f:cd:68:08:f9:22: f0:70:1a:ef:fe:f0:cd:b2:75:dd:c2:79:43:9f:aa:1c:43:76: 7a:d7:7a:be:50:f9:0b:0c:b3:ad:ef:6f:48:08:04:80:0d:67: 4d:52:75:59:32:59:e5:69:1b:8c:7f:11:df:46:e1:33:4f:ee: b4:53:f5:80:04:67:f3:48:f2:b7:2c:df:c9:75:fe:9f:2a:a1: 1f:db:9f:5a:00:f8:c2:19:4d:9e:31:27:97:61:a6:68:e7:85: 05:ff:8b:ba:ca:5f:bb:c8:75:98:0f:62:56:ce:a6:50:46:09: 7f:e5:b8:7f:f8:ab:05:f8:29:66:f2:7b:03:a5:13:b9:3f:f2: dc:ab:0c:e6:67:27:4a:4a:5a:95:c1:50:46:20:72:e2:00:12: ba:6e:ad:8d:12:70:a6:e7:8c:fc:a1:be:37:47:1c:c1:60:67: cf:a3:30:2e:37:18:a5:62:c5:93:f9:f4:0b:72:0d:ab:48:19: dd:3b:65:ff:7a:75:36:0a:5a:d5:d4:94:6e:11:1f:c9:64:ff: 1a:2f:35:ea:e4:2d:9b:3b:db:33:6e:da:5d:a9:13:b9:ee:92: 81:71:2e:85:ae:4f:62:20:57:21:a8:c6:af:60:81:cd:cb:b6: 3f:f6:0b:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwODA4MjMyMzMyWhcNMjUwODE1MjMyMzMyWjAYMRYwFAYD VQQDEw02ODk2ODZmNC1mNmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dRqe5+1Qisw0rS6rPLL/cs/QXWYITl2j10bWMRI0UxmXLFTvCwfV2poNUuF BLHEInRDVw/8XjIirTJjWW+O/RVRXfCMHhfPkmo405H/9s53ZS+Pyjq+jUbf8UAA 74DkKsoEXqVsrrvo8sHU/gleQoGv9yfHw4c1tWKWDGh756EIBi5b08ZuGZ44MZQV Ml/2q9qH2dZWyCjODJdlQaM+4h6JZoG0qpqvRxyiZREd8xihdU7S2SmRlc4T0ItA Ii9SoyWGRm+8xwEd3qFBDg4t5Hzo7ofXdroOjQH+l1OwFzYA+LdE7aa7kIEncJCr yvTbMiDfgQyULPbHPRpIqiuA7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsz2W0H y7IBklm+rP+DcxRCYsF2MB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnaoB0BBfgUaTZgz4fzWgI+SLwcBrv/vDNsnXdwnlDn6ocQ3Z613q+ UPkLDLOt729ICASADWdNUnVZMlnlaRuMfxHfRuEzT+60U/WABGfzSPK3LN/Jdf6f KqEf259aAPjCGU2eMSeXYaZo54UF/4u6yl+7yHWYD2JWzqZQRgl/5bh/+KsF+Clm 8nsDpRO5P/LcqwzmZydKSlqVwVBGIHLiABK6bq2NEnCm54z8ob43RxzBYGfPozAu NxilYsWT+fQLcg2rSBndO2X/enU2ClrV1JRuER/JZP8aLzXq5C2bO9szbtpdqRO5 7pKBcS6Frk9iIFchqMavYIHNy7Y/9gsH -----END CERTIFICATE-----Generated at Sun Aug 10 05:36:18 2025 by rpki-client