$ rpki-client -vvf rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft File: GwdUmyUM_APdrXtURD2oOIkYEco.mft (raw, json) Hash identifier: 3CSRPTy1ech9ohcSab0QwYC0FJ1KgXRHmblaWjI4e54= Subject key identifier: E4:98:86:77:2F:74:00:CC:E8:58:D6:46:6C:4E:B2:79:EB:C1:34:57 Authority key identifier: 1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA Certificate issuer: /CN=A91D18AC/serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft Manifest number: 96 Signing time: Mon 11 Aug 2025 06:31:43 +0000 Manifest this update: Mon 11 Aug 2025 06:31:43 +0000 Manifest next update: Mon 18 Aug 2025 06:31:43 +0000 Files and hashes: 1: GwdUmyUM_APdrXtURD2oOIkYEco.crl (hash: wFkkVmNk1PqVf0trD2s3bED/WRdJjUuqTfaZ0QGpX00=) 2: 34BA37F6976E11EFAEB6A258C4F9AE02.roa (hash: dMptlIu2hEGUJL7wHDTpb5B0NGrE6jX2dVguRw6q6C4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D18AC, serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Validity Not Before: Aug 11 06:31:43 2025 GMT Not After : Aug 18 06:31:43 2025 GMT Subject: CN=68998e4f-14b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:65:97:de:a2:49:93:c9:4d:ef:a3:a0:8a:5f: ae:c6:e0:d8:76:e0:c7:85:cf:7e:7a:75:49:86:7c: 15:2f:33:e2:87:90:8b:70:60:b7:b1:7a:82:76:f0: a3:5c:34:e8:1c:cf:4b:9f:68:36:cd:b7:67:60:13: fb:75:57:bd:06:33:ae:cd:16:df:4f:cd:ca:07:d8: 7e:8b:cc:11:37:8e:a5:1d:e1:75:8a:5f:27:c2:32: 73:10:76:17:74:6f:8d:5e:3c:6f:95:36:0b:ee:27: 4c:92:83:ab:ab:b4:56:98:c7:47:8b:0e:e8:df:69: 48:a9:b7:1d:ea:43:f3:00:c6:b9:47:6d:d2:15:e2: 9a:4a:2f:a7:7a:10:13:94:68:5b:bc:09:0b:f3:f0: 8a:8f:cc:56:58:08:c7:d7:4d:ce:97:7a:5e:3a:d0: c8:64:61:9b:c6:4b:00:9c:f0:2b:2c:c7:8d:b0:3f: 96:be:67:cd:82:48:7a:7f:4d:6a:e5:3b:09:da:67: d6:19:42:da:cc:72:1d:c6:f0:75:5f:7b:f3:3c:6d: 64:1b:23:a6:5b:5c:11:67:fe:e0:66:ce:bc:42:7a: 23:96:ee:5e:54:2c:90:74:b3:67:96:5e:ba:81:0f: 6f:0d:a9:56:5f:54:36:d1:18:d8:cd:a6:b7:7a:e8: 8b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:98:86:77:2F:74:00:CC:E8:58:D6:46:6C:4E:B2:79:EB:C1:34:57 X509v3 Authority Key Identifier: keyid:1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:93:ba:ac:33:3b:54:46:54:47:8d:0f:42:b0:53:8c:d4:bd: 07:ab:81:8c:77:b6:52:7a:98:c2:a8:5b:aa:38:d5:cb:d6:28: 3b:e8:d8:ba:a6:dc:d0:c2:ca:94:9b:8c:37:28:c8:22:2e:1d: c9:de:8a:6a:02:bf:e5:74:37:54:bb:59:ef:e4:b7:ee:5c:82: 30:b5:0d:5d:95:9e:d4:c7:b0:3d:55:61:9b:61:41:8f:5e:d4: 2f:81:f3:d2:02:2a:8d:9e:a1:90:75:83:df:89:7a:13:2e:bb: 8a:94:6a:80:3b:2e:3d:fe:9c:b5:1b:f3:bb:c4:78:22:bc:b2: 9f:ba:a9:9e:2a:0e:6c:d0:c2:40:c1:e8:7b:6e:d0:02:1a:8e: b9:d7:db:89:51:0c:b2:31:2b:1c:c7:fb:8a:76:92:6a:d6:1d: b4:e2:c3:e1:09:81:f8:48:12:40:93:09:84:3b:77:ed:90:71: d1:b5:e2:9b:b5:5e:e3:ee:c3:93:32:1f:84:e2:32:08:2f:9d: 02:d2:3e:47:39:41:47:64:36:f3:0c:ae:cf:1c:9a:f5:de:61: 35:ef:a7:71:63:2a:7a:35:d1:86:0f:ef:24:42:54:f7:59:25: 5a:4c:42:d4:f6:85:8c:85:66:b4:7f:6f:ab:05:51:4d:0d:07: a8:2e:47:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE4QUMxMTAvBgNVBAUTKDFCMDc1NDlCMjUwQ0ZDMDNEREFEN0I1NDQ0M0RBODM4 ODkxODExQ0EwHhcNMjUwODExMDYzMTQzWhcNMjUwODE4MDYzMTQzWjAYMRYwFAYD VQQDEw02ODk5OGU0Zi0xNGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mWX3qJJk8lN76Ogil+uxuDYduDHhc9+enVJhnwVLzPih5CLcGC3sXqCdvCj XDToHM9Ln2g2zbdnYBP7dVe9BjOuzRbfT83KB9h+i8wRN46lHeF1il8nwjJzEHYX dG+NXjxvlTYL7idMkoOrq7RWmMdHiw7o32lIqbcd6kPzAMa5R23SFeKaSi+nehAT lGhbvAkL8/CKj8xWWAjH103Ol3peOtDIZGGbxksAnPArLMeNsD+WvmfNgkh6f01q 5TsJ2mfWGULazHIdxvB1X3vzPG1kGyOmW1wRZ/7gZs68Qnojlu5eVCyQdLNnll66 gQ9vDalWX1Q20RjYzaa3euiLtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSYhncv dADM6FjWRmxOsnnrwTRXMB8GA1UdIwQYMBaAFBsHVJslDPwD3a17VEQ9qDiJGBHK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMThBQy9ENEJBM0Q5ODk2 Q0MxMUVGOEVGQ0I4NDlDNEY5QUUwMi9Hd2RVbXlVTV9BUGRyWHRVUkQyb09Ja1lF Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3ZFVteVVNX0FQZHJYdFVSRDJvT0lrWUVjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MThBQy9ENEJBM0Q5ODk2Q0MxMUVGOEVGQ0I4NDlDNEY5QUUwMi9Hd2RVbXlVTV9B UGRyWHRVUkQyb09Ja1lFY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4k7qsMztURlRHjQ9CsFOM1L0Hq4GMd7ZSepjCqFuqONXL1ig76Ni6 ptzQwsqUm4w3KMgiLh3J3opqAr/ldDdUu1nv5LfuXIIwtQ1dlZ7Ux7A9VWGbYUGP XtQvgfPSAiqNnqGQdYPfiXoTLruKlGqAOy49/py1G/O7xHgivLKfuqmeKg5s0MJA weh7btACGo6519uJUQyyMSscx/uKdpJq1h204sPhCYH4SBJAkwmEO3ftkHHRteKb tV7j7sOTMh+E4jIIL50C0j5HOUFHZDbzDK7PHJr13mE176dxYyp6NdGGD+8kQlT3 WSVaTELU9oWMhWa0f2+rBVFNDQeoLkf1 -----END CERTIFICATE-----Generated at Mon Aug 11 09:59:00 2025 by rpki-client