$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft File: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft (raw, json) Hash identifier: KSwMbsClZnCR8uQlme+ImuuD4+MWd4AOCsxgD7epZlk= Subject key identifier: DD:36:23:E5:BC:79:5E:B1:8E:03:04:D7:D7:3B:98:47:6E:D8:DE:DC Authority key identifier: 82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD Certificate issuer: /CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Certificate serial: 34AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft Manifest number: 40DB Signing time: Mon 04 Aug 2025 15:04:44 +0000 Manifest this update: Mon 04 Aug 2025 15:04:44 +0000 Manifest next update: Mon 11 Aug 2025 15:04:44 +0000 Files and hashes: 1: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl (hash: T8rhQ6dNfmvWIsfLmmXY4UfKecVTKGgqi7dxo72Ah/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 15:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13484 (0x34ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49, serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Validity Not Before: Aug 4 15:04:44 2025 GMT Not After : Aug 11 15:04:44 2025 GMT Subject: CN=6890cc0c-acaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:64:96:c1:f6:65:0d:34:8b:87:35:e9:ea:c6: aa:aa:0b:a2:80:41:a2:bf:0e:9c:0d:76:ff:0d:c7: 96:6b:d6:42:bf:31:e9:63:7e:67:f6:be:df:87:c0: 37:60:7f:ee:4d:77:c1:7f:0b:5c:67:5d:e5:53:f0: c4:b9:08:e6:05:7e:18:80:c3:db:d4:13:7d:b4:ee: 43:34:04:ed:ca:9e:a7:9d:bb:61:fa:40:76:04:45: 61:6a:14:1e:3c:26:72:61:5d:03:d3:27:eb:ef:5b: 4f:48:f2:f9:e3:04:a9:f7:0e:65:ab:b2:39:96:37: f3:6e:5b:f9:88:02:12:5a:70:40:dd:1e:a6:4f:c6: a1:fc:bb:4d:9d:6f:e6:2a:c4:7a:7b:7a:c3:78:8f: 1b:0a:bb:ca:e6:4c:7c:d2:25:6d:dc:37:c5:bb:f3: c4:94:bd:86:1f:ea:a5:1b:e7:62:4c:ac:b0:8f:de: a4:8e:6b:08:96:af:c5:3c:29:09:19:17:9d:10:b3: 0f:d1:25:36:80:70:2e:91:44:6b:b3:22:f0:0e:e7: 85:d8:3e:be:b7:70:bc:f3:7c:e9:89:c2:1c:69:49: 34:8e:8b:6e:7c:d2:00:7f:93:ea:3b:ac:05:a7:e2: 2d:46:c1:41:73:ca:f4:94:58:d9:95:c6:91:42:1b: a8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:36:23:E5:BC:79:5E:B1:8E:03:04:D7:D7:3B:98:47:6E:D8:DE:DC X509v3 Authority Key Identifier: keyid:82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:9c:22:f6:e4:0e:92:e4:59:d2:c1:c8:db:ef:e1:52:21:18: 65:90:4c:88:30:37:ea:21:4b:17:d0:48:49:f3:ba:93:9e:0e: c1:7c:7f:fd:40:73:6f:31:db:79:18:20:1c:38:4c:5e:34:f7: ce:3d:a4:04:f6:39:0e:4c:28:7d:cd:50:6e:44:32:c0:d6:ab: 9a:6b:11:0d:ee:7a:fe:10:49:c5:03:23:30:23:46:b4:b2:4f: f8:0c:32:b1:c0:1f:dc:4d:76:24:0c:2b:ee:81:55:f8:19:74: 66:9f:1a:60:25:49:e2:3a:db:9c:44:6c:7b:13:32:b8:37:0a: 18:31:c8:f7:97:3e:da:5a:a1:60:c9:38:29:1d:40:f3:51:68: c3:22:6f:23:ab:76:44:35:20:4c:c7:dd:d0:bc:30:b4:3e:5c: dc:a4:33:76:5c:45:be:56:85:09:24:b8:bd:8d:ef:3e:7c:ca: 28:33:71:95:a3:5d:f2:d3:6d:89:39:a8:de:72:ad:90:dd:e2: da:bb:e9:c0:c8:d7:cd:86:89:64:44:37:69:21:b4:c9:98:ac: 00:f5:cc:05:a0:c1:3e:ed:97:42:63:b7:64:22:51:cb:32:8b: 94:a3:8f:50:20:7b:ef:67:3b:01:a6:d2:31:70:8a:c4:fe:3b: b5:28:b3:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDgyMUY0REIyMkVFNTlBRkQ1OTNBN0U2ODlFREE5RkM5 NEJFNTg1REQwHhcNMjUwODA0MTUwNDQ0WhcNMjUwODExMTUwNDQ0WjAYMRYwFAYD VQQDEw02ODkwY2MwYy1hY2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2SWwfZlDTSLhzXp6saqqguigEGivw6cDXb/DceWa9ZCvzHpY35n9r7fh8A3 YH/uTXfBfwtcZ13lU/DEuQjmBX4YgMPb1BN9tO5DNATtyp6nnbth+kB2BEVhahQe PCZyYV0D0yfr71tPSPL54wSp9w5lq7I5ljfzblv5iAISWnBA3R6mT8ah/LtNnW/m KsR6e3rDeI8bCrvK5kx80iVt3DfFu/PElL2GH+qlG+diTKywj96kjmsIlq/FPCkJ GRedELMP0SU2gHAukURrsyLwDueF2D6+t3C883zpicIcaUk0jotufNIAf5PqO6wF p+ItRsFBc8r0lFjZlcaRQhuoAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN02I+W8 eV6xjgME19c7mEdu2N7cMB8GA1UdIwQYMBaAFIIfTbIu5Zr9WTp+aJ7an8lL5YXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12MVpPbjVvbnRxZnlVdmxo ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doOU5zaTdsbXYxWk9uNW9udHFmeVV2bGhkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12 MVpPbjVvbnRxZnlVdmxoZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXnCL25A6S5FnSwcjb7+FSIRhlkEyIMDfqIUsX0EhJ87qTng7BfH/9 QHNvMdt5GCAcOExeNPfOPaQE9jkOTCh9zVBuRDLA1quaaxEN7nr+EEnFAyMwI0a0 sk/4DDKxwB/cTXYkDCvugVX4GXRmnxpgJUniOtucRGx7EzK4NwoYMcj3lz7aWqFg yTgpHUDzUWjDIm8jq3ZENSBMx93QvDC0PlzcpDN2XEW+VoUJJLi9je8+fMooM3GV o13y022JOajecq2Q3eLau+nAyNfNholkRDdpIbTJmKwA9cwFoME+7ZdCY7dkIlHL MouUo49QIHvvZzsBptIxcIrE/ju1KLMo -----END CERTIFICATE-----Generated at Wed Aug 6 00:57:36 2025 by rpki-client