$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: vQi4/n5/auJW/EHpXpn+xvI85Po2D17sq6KIkOgROmo= Subject key identifier: 9E:74:07:78:E2:B2:6E:E0:9C:01:05:A3:85:8D:98:15:63:29:9B:71 Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 02E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 02DB Signing time: Sat 09 Aug 2025 01:54:26 +0000 Manifest this update: Sat 09 Aug 2025 01:54:25 +0000 Manifest next update: Sat 16 Aug 2025 01:54:25 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: 7HOdkx/HVvzfVnPsJa+rwzjEEYHEdfrjzqu/vv3P2h0=) 2: 3785A958EF4711EF906AD167C4F9AE02.roa (hash: Xop4pF7LmPiWj4qFmNK9jXxRuc+SVOdI5Rsywj/dhPQ=) 3: 464B4494F7D911EF8EA69265C4F9AE02.roa (hash: kw7ZHY1axLvj55a+YPxHpHPEy1diN3j6tF6SRdvVlY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 740 (0x2e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F, serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: Aug 9 01:54:25 2025 GMT Not After : Aug 16 01:54:25 2025 GMT Subject: CN=6896aa52-0ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:62:39:76:de:90:26:6d:ee:d1:cb:9b:81: c3:8c:d1:54:50:ca:46:54:a7:33:17:b7:97:20:02: 4e:6e:de:38:f4:94:50:90:9e:fc:07:00:d8:43:e7: 57:fc:33:8f:67:5d:a5:a1:c1:f2:40:e8:9f:ad:a5: 54:44:a1:c0:54:89:df:91:51:14:ea:ed:3a:c6:e4: cc:28:e2:a8:3f:3c:31:e6:7a:8d:9b:bd:fa:b2:01: 1f:d5:91:e0:d8:53:72:28:ef:1e:8b:80:a9:fb:d5: 3c:45:c6:1c:1d:d6:f6:52:82:c5:9c:8f:ed:1c:e6: 2b:5f:b8:08:dd:fd:88:99:09:18:a5:f4:00:cf:84: 30:f1:b9:1c:1a:66:4d:5b:bf:53:03:68:00:38:74: 8a:9d:4c:7d:24:97:c4:1a:6b:74:61:6e:32:84:1f: 10:1d:46:21:90:05:dc:14:e8:bb:d9:31:bf:4a:40: 8d:07:eb:36:52:88:b1:60:e4:79:2a:1b:69:22:aa: 2b:cd:1a:e0:67:cb:8d:d0:c4:bc:70:49:c2:1e:87: 83:30:e3:cf:85:b0:2e:53:18:4f:08:23:5e:01:cb: 10:e3:a3:a2:6b:95:b9:2e:4a:bc:fc:b7:5a:18:7f: a6:bf:5b:81:c4:40:51:f1:7a:57:19:5d:eb:f8:05: 7a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:74:07:78:E2:B2:6E:E0:9C:01:05:A3:85:8D:98:15:63:29:9B:71 X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:5c:ef:e8:ac:1f:aa:0c:78:68:0d:ac:2d:d8:6d:e5:70:16: 04:7f:84:c7:cf:c7:7d:0a:b2:71:7f:e5:a6:1f:8d:da:d8:43: e3:d3:e1:62:30:3a:67:10:d7:0a:9d:4e:1b:56:75:0d:b1:1b: a4:b1:26:25:93:e6:c7:99:b3:d1:55:0e:83:18:a4:b2:31:b0: 79:49:87:b3:6b:ce:f2:b5:89:b0:91:38:85:39:36:45:bf:43: 54:a5:0b:b3:46:51:e5:0d:f9:27:c1:10:8f:66:5a:b8:c7:55: 01:0a:c0:df:bd:12:90:4a:7f:b2:93:f0:88:68:c9:d5:7e:90: 38:d9:b4:f1:00:cf:f8:81:4d:1e:5f:c3:1b:96:a2:2b:ed:33: 6b:e1:8f:e5:bb:fd:3e:54:3a:29:73:c7:e1:db:6e:e4:4f:27: 2b:fe:cb:3b:1f:19:0e:91:19:12:1e:cd:b1:a7:c0:bb:98:a3: e4:52:70:01:51:80:ba:fc:cd:47:d5:d7:7d:ef:c1:23:ff:6c: f0:43:97:f8:db:37:e2:9c:da:9f:7f:13:8a:a5:10:59:47:71: 6f:40:d8:8d:48:68:d9:a4:04:39:18:62:1a:67:0e:e8:18:75: 7d:35:a2:43:9a:6f:39:62:c3:30:34:f9:bc:21:b8:74:83:be: 15:52:2d:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUwODA5MDE1NDI1WhcNMjUwODE2MDE1NDI1WjAYMRYwFAYD VQQDEw02ODk2YWE1Mi0wY2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2upiOXbekCZt7tHLm4HDjNFUUMpGVKczF7eXIAJObt449JRQkJ78BwDYQ+dX /DOPZ12locHyQOifraVURKHAVInfkVEU6u06xuTMKOKoPzwx5nqNm736sgEf1ZHg 2FNyKO8ei4Cp+9U8RcYcHdb2UoLFnI/tHOYrX7gI3f2ImQkYpfQAz4Qw8bkcGmZN W79TA2gAOHSKnUx9JJfEGmt0YW4yhB8QHUYhkAXcFOi72TG/SkCNB+s2UoixYOR5 KhtpIqorzRrgZ8uN0MS8cEnCHoeDMOPPhbAuUxhPCCNeAcsQ46Oia5W5Lkq8/Lda GH+mv1uBxEBR8XpXGV3r+AV6PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ50B3ji sm7gnAEFo4WNmBVjKZtxMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgXO/orB+qDHhoDawt2G3lcBYEf4THz8d9CrJxf+WmH43a2EPj0+Fi MDpnENcKnU4bVnUNsRuksSYlk+bHmbPRVQ6DGKSyMbB5SYeza87ytYmwkTiFOTZF v0NUpQuzRlHlDfknwRCPZlq4x1UBCsDfvRKQSn+yk/CIaMnVfpA42bTxAM/4gU0e X8MblqIr7TNr4Y/lu/0+VDopc8fh227kTycr/ss7HxkOkRkSHs2xp8C7mKPkUnAB UYC6/M1H1dd978Ej/2zwQ5f42zfinNqffxOKpRBZR3FvQNiNSGjZpAQ5GGIaZw7o GHV9NaJDmm85YsMwNPm8Ibh0g74VUi1A -----END CERTIFICATE-----Generated at Sun Aug 10 13:47:44 2025 by rpki-client