$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: Cck185ccnBwzAV6fD+pgt9uvKRNkuqNLJcHtIvuuDqg= Subject key identifier: A8:5D:7D:0A:F7:A8:27:4E:B6:7E:AC:CA:FB:A6:39:0C:1A:5B:EF:90 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 34BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 34B1 Signing time: Tue 12 Aug 2025 14:42:37 +0000 Manifest this update: Tue 12 Aug 2025 14:42:36 +0000 Manifest next update: Tue 19 Aug 2025 14:42:36 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: +o73aQZh8tdzTGmt3z44vJwZJl0ZIdBynY+6N/zGQnE=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 14:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13498 (0x34ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Aug 12 14:42:36 2025 GMT Not After : Aug 19 14:42:36 2025 GMT Subject: CN=689b52dc-a779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:52:54:cd:dc:62:0f:c1:45:be:8d:3e:f1:80: 93:e2:06:a8:57:2f:5b:c0:78:ce:c7:32:c1:74:f6: c6:ef:1f:ab:5b:3f:48:6a:92:54:c9:d6:89:e0:fd: 61:08:fa:42:50:c9:86:01:b0:25:97:57:bf:12:62: bb:07:da:2c:e6:3a:bd:7e:49:09:8c:a5:10:43:8f: d3:6e:1b:34:7e:f9:23:89:98:1f:9b:a2:a4:22:43: e5:64:a1:82:d9:38:5f:f9:ca:82:30:f0:dc:4c:0f: 8c:c5:bb:56:0f:39:c8:46:5b:46:c0:63:27:54:7b: 8c:90:28:1a:c4:fb:6c:b2:22:f7:13:66:a1:8a:ef: 9e:a1:6d:ad:cb:05:a8:f9:b5:a7:56:86:c5:85:26: ef:e4:1d:31:3d:8b:6f:28:e8:af:db:34:f4:1b:3c: 01:e3:ea:d0:36:c7:b4:ab:40:d5:51:ce:62:11:06: e1:27:b3:b9:ca:d7:fb:09:c9:15:91:97:5a:aa:a5: 49:46:16:b0:7e:68:b2:fb:f5:b1:70:37:eb:21:05: c1:be:8c:fb:ab:51:aa:31:7a:a5:e4:36:c3:90:30: 3a:d0:6d:5b:6a:09:c8:45:5c:a2:f6:3d:19:90:b6: 17:45:69:a7:98:d1:e2:ad:d9:dd:18:61:81:0b:b9: a6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:5D:7D:0A:F7:A8:27:4E:B6:7E:AC:CA:FB:A6:39:0C:1A:5B:EF:90 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:c8:a3:55:e5:c6:9e:1a:0a:14:29:bc:40:8d:76:43:42:be: e5:b7:11:fc:e1:cc:c0:3c:8f:8d:d2:15:db:38:76:65:d3:a2: a0:89:07:02:e5:68:7e:bc:1e:9f:5a:f8:af:87:59:91:ca:48: 0f:ac:80:2b:0c:cf:e8:d6:be:c1:88:e0:b1:49:5e:fd:6c:da: 8f:17:06:1c:f4:07:c0:71:1e:5c:3a:66:0e:ee:6e:26:d0:8c: 90:da:ea:3e:0a:e1:47:8d:04:81:f9:57:4b:65:2c:5c:bc:17: e9:66:6f:4a:c9:c6:e4:bb:67:33:87:a0:72:0e:ad:19:eb:d7: e2:ee:1a:a3:69:82:23:83:96:fa:92:53:d5:b8:7b:25:77:97: 18:5e:74:23:4f:02:2c:7f:4b:32:73:f0:6e:e8:70:40:ba:01: 6e:46:59:f2:c9:11:b5:10:79:10:25:ad:b6:ab:6e:17:c9:67: a1:89:68:2a:c4:0c:1b:3c:50:8d:d0:73:0d:2e:1b:5a:15:5d: 3d:af:a2:3c:03:c1:9e:ab:e7:0b:a4:52:4d:3f:e9:86:66:be: 72:90:34:9f:21:b7:20:37:77:78:86:f4:22:22:4a:2b:50:5a: 53:32:0b:dc:c1:a2:c2:79:0d:ba:b0:06:30:5f:6b:9c:f9:c7: 17:94:46:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUwODEyMTQ0MjM2WhcNMjUwODE5MTQ0MjM2WjAYMRYwFAYD VQQDEw02ODliNTJkYy1hNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylJUzdxiD8FFvo0+8YCT4gaoVy9bwHjOxzLBdPbG7x+rWz9IapJUydaJ4P1h CPpCUMmGAbAll1e/EmK7B9os5jq9fkkJjKUQQ4/Tbhs0fvkjiZgfm6KkIkPlZKGC 2Thf+cqCMPDcTA+MxbtWDznIRltGwGMnVHuMkCgaxPtssiL3E2ahiu+eoW2tywWo +bWnVobFhSbv5B0xPYtvKOiv2zT0GzwB4+rQNse0q0DVUc5iEQbhJ7O5ytf7CckV kZdaqqVJRhawfmiy+/WxcDfrIQXBvoz7q1GqMXql5DbDkDA60G1bagnIRVyi9j0Z kLYXRWmnmNHirdndGGGBC7mm7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhdfQr3 qCdOtn6syvumOQwaW++QMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCryKNV5caeGgoUKbxAjXZDQr7ltxH84czAPI+N0hXbOHZl06KgiQcC 5Wh+vB6fWvivh1mRykgPrIArDM/o1r7BiOCxSV79bNqPFwYc9AfAcR5cOmYO7m4m 0IyQ2uo+CuFHjQSB+VdLZSxcvBfpZm9Kycbku2czh6ByDq0Z69fi7hqjaYIjg5b6 klPVuHsld5cYXnQjTwIsf0syc/Bu6HBAugFuRlnyyRG1EHkQJa22q24XyWehiWgq xAwbPFCN0HMNLhtaFV09r6I8A8Geq+cLpFJNP+mGZr5ykDSfIbcgN3d4hvQiIkor UFpTMgvcwaLCeQ26sAYwX2uc+ccXlEYz -----END CERTIFICATE-----Generated at Wed Aug 13 04:25:28 2025 by rpki-client