$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: gDIRnL1t5vBRgGJdaqPrrG8DPL+fyYK5dnhcFz4DzuA= Subject key identifier: C0:79:32:AD:67:6A:8B:A2:62:06:45:FA:B3:7E:47:DC:5C:35:14:67 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 04A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 04A0 Signing time: Sun 03 Aug 2025 00:27:57 +0000 Manifest this update: Sun 03 Aug 2025 00:27:56 +0000 Manifest next update: Sun 10 Aug 2025 00:27:56 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: +QxV60pvQreUQwBZHDDJYzuK09PCaRaYkUkpFGpEO/M=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 00:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1188 (0x4a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Aug 3 00:27:56 2025 GMT Not After : Aug 10 00:27:56 2025 GMT Subject: CN=688ead0d-c350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:da:a3:7b:29:48:a6:cc:f5:d4:23:90:d2:fa: 4f:da:1f:10:2b:b8:a2:2d:b9:d1:26:14:11:21:d4: da:a7:e6:06:c1:d6:8c:8e:04:6d:59:26:4c:08:31: 39:8e:c4:5b:71:eb:6d:3b:8d:5f:63:79:6e:ba:39: 4c:cd:d1:9b:d4:6e:73:31:1e:c8:a6:9c:b6:c5:b0: d3:b0:dd:c8:b9:4e:09:12:23:18:b3:5c:6d:a3:04: 50:65:49:19:de:72:c5:31:57:68:87:d6:6a:92:b6: 72:9a:13:23:e2:23:32:b5:bb:d7:fc:f3:c1:82:08: 5c:84:55:91:1b:d3:d9:4a:71:63:3b:97:a2:b2:b4: f4:3f:06:e0:e8:25:24:9d:27:31:d9:23:e9:77:85: be:c8:1e:06:9c:81:b9:9f:f5:e1:7a:74:a1:05:4f: d3:7c:37:3a:49:d5:c8:eb:a4:f3:52:ec:75:d1:90: d3:4f:ea:3a:9f:4a:ee:7d:0b:6f:f2:5f:17:5c:74: 5d:d4:3f:85:22:20:64:1d:cc:0c:37:ee:bf:7c:76: c3:b6:17:22:0f:0e:86:eb:1a:0f:99:b9:2c:1a:77: df:e7:74:0f:c9:9a:1e:d3:3d:32:fe:42:c6:1e:db: 1b:d5:bc:56:47:3a:fc:d4:eb:a1:06:3b:f3:e8:ee: 5c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:79:32:AD:67:6A:8B:A2:62:06:45:FA:B3:7E:47:DC:5C:35:14:67 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:a0:c8:bf:14:6c:28:23:3e:44:cd:33:b8:8f:9c:01:51:14: 77:ca:38:72:2a:e7:87:d6:fc:72:2f:1b:4f:d4:48:b4:a1:40: 5e:7d:5d:cd:d6:fd:1f:4b:f3:a8:be:c6:7a:ea:7c:35:8a:54: c7:2b:92:19:a6:40:7c:43:21:c0:07:a6:4b:7f:42:c2:28:75: 92:46:a9:36:5b:39:95:49:69:09:b6:de:39:97:55:11:97:10: 9e:d9:f6:1b:e0:06:f8:b0:86:d0:05:cc:ef:3e:47:55:e1:f2: 9b:68:d0:48:82:8b:a4:38:d1:16:9f:55:cf:82:d2:75:eb:29: 2e:2e:0a:08:c3:01:5a:3c:59:f3:a0:aa:15:5f:21:3c:d5:c5: 9f:ad:b4:57:c7:84:cd:6b:7c:ed:af:ed:b8:92:91:12:00:4c: 1e:c4:e1:e7:f5:c2:71:b1:83:70:ed:eb:d3:ec:08:f3:28:b8: 38:25:3b:fc:05:03:11:9d:b0:fc:c1:a3:5e:79:a6:8d:67:df: fb:7e:8a:30:fa:e1:07:37:7f:a5:9f:1f:d3:72:e4:1f:8a:11: ff:a1:d8:46:d5:83:c2:97:8e:75:88:bd:bb:aa:42:2c:4e:37: fd:f2:a3:47:89:ef:91:13:be:c7:4f:ec:98:d6:c2:76:ca:93: c1:07:5e:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUwODAzMDAyNzU2WhcNMjUwODEwMDAyNzU2WjAYMRYwFAYD VQQDEw02ODhlYWQwZC1jMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tqjeylIpsz11COQ0vpP2h8QK7iiLbnRJhQRIdTap+YGwdaMjgRtWSZMCDE5 jsRbcettO41fY3luujlMzdGb1G5zMR7Ippy2xbDTsN3IuU4JEiMYs1xtowRQZUkZ 3nLFMVdoh9ZqkrZymhMj4iMytbvX/PPBgghchFWRG9PZSnFjO5eisrT0Pwbg6CUk nScx2SPpd4W+yB4GnIG5n/XhenShBU/TfDc6SdXI66TzUux10ZDTT+o6n0rufQtv 8l8XXHRd1D+FIiBkHcwMN+6/fHbDthciDw6G6xoPmbksGnff53QPyZoe0z0y/kLG Htsb1bxWRzr81OuhBjvz6O5cpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMB5Mq1n aouiYgZF+rN+R9xcNRRnMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkoMi/FGwoIz5EzTO4j5wBURR3yjhyKueH1vxyLxtP1Ei0oUBefV3N 1v0fS/OovsZ66nw1ilTHK5IZpkB8QyHAB6ZLf0LCKHWSRqk2WzmVSWkJtt45l1UR lxCe2fYb4Ab4sIbQBczvPkdV4fKbaNBIgoukONEWn1XPgtJ16ykuLgoIwwFaPFnz oKoVXyE81cWfrbRXx4TNa3ztr+24kpESAEwexOHn9cJxsYNw7evT7AjzKLg4JTv8 BQMRnbD8waNeeaaNZ9/7foow+uEHN3+lnx/TcuQfihH/odhG1YPCl451iL27qkIs Tjf98qNHie+RE77HT+yY1sJ2ypPBB16L -----END CERTIFICATE-----Generated at Mon Aug 4 11:07:04 2025 by rpki-client