$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft File: GLHIjO5o9jwhzWoMsbgx1db11s8.mft (raw, json) Hash identifier: 2g79r9lSbt5BiVWuKZwjFe+jz72QG2yVkQozkmDLVZA= Subject key identifier: 16:9B:69:33:E0:21:89:C3:E8:A0:82:1D:76:31:37:D8:E8:D0:F1:9C Authority key identifier: 18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF Certificate issuer: /CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Certificate serial: 1C29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft Manifest number: 1C1E Signing time: Fri 08 Aug 2025 16:21:08 +0000 Manifest this update: Fri 08 Aug 2025 16:21:07 +0000 Manifest next update: Fri 15 Aug 2025 16:21:07 +0000 Files and hashes: 1: GLHIjO5o9jwhzWoMsbgx1db11s8.crl (hash: W3en5gIxoJfS8autIYNKCre7d/mCEBEuTfudVaUaL3c=) 2: 02FB1DCAEF6A11E69A4AD551C4F9AE02.roa (hash: 87Eagj9nbEvxROvw6iIl3FH0KdIVxp+aZzvllNFI0J8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7209 (0x1c29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAFA2, serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Validity Not Before: Aug 8 16:21:07 2025 GMT Not After : Aug 15 16:21:07 2025 GMT Subject: CN=689623f4-1d8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4f:6e:b4:ad:82:7d:15:62:be:cc:7b:14:d7: 09:be:12:a6:33:93:66:0d:09:0e:d2:76:2f:03:71: f2:44:fd:46:5e:c8:54:1f:cc:6d:3a:a5:8c:aa:98: de:73:2c:2f:1f:80:13:7a:65:32:ff:08:3b:71:25: 91:f7:8d:4d:90:90:95:a8:b8:ec:ca:18:71:b4:bd: 87:f8:93:82:f7:68:ea:53:09:0f:78:66:31:51:c7: 4a:fd:58:b7:1d:00:b9:a7:38:47:ff:56:36:30:cb: 55:1e:66:18:9f:a3:d4:b4:c0:14:67:70:14:c7:7c: a7:67:66:4a:42:08:80:69:d1:22:54:ae:d5:8a:10: f7:a2:ed:5f:85:c4:0b:30:08:4b:f4:38:7e:55:1c: fc:6b:d0:35:00:47:01:7a:29:8c:e5:90:ae:80:91: c1:a4:81:de:49:ab:45:88:57:3c:1b:9c:1b:04:15: 0c:e9:aa:11:52:08:01:db:5c:7a:a7:a1:e1:07:a6: d6:6e:ec:59:27:48:a2:ee:91:70:2d:3c:e1:79:65: 0a:bb:0b:53:dc:1d:f5:10:02:b4:6f:1c:67:71:e7: 23:44:9b:b6:51:c7:25:fa:be:81:cd:18:0d:08:be: 79:a9:dd:c0:db:75:e0:9d:06:f2:27:45:56:1f:20: cb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:9B:69:33:E0:21:89:C3:E8:A0:82:1D:76:31:37:D8:E8:D0:F1:9C X509v3 Authority Key Identifier: keyid:18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:55:61:69:e3:5d:00:aa:d4:66:72:cc:1a:49:ee:45:ef:24: d5:f5:a9:79:1e:d5:7e:11:42:5f:3a:2d:7b:19:02:0b:76:66: 43:d3:81:71:de:9e:1c:3c:fb:31:b3:f3:86:cb:3b:90:f9:e9: 6a:ef:79:64:59:71:ec:2a:b0:c1:19:bf:ef:75:ea:b3:08:02: 4d:df:12:34:13:8a:b1:a1:06:ad:58:be:fc:9e:bd:2c:60:df: a7:00:67:ca:81:27:fa:b1:a0:67:4d:8d:24:5c:29:33:c4:4d: fa:9f:e2:f1:b6:d9:03:15:4f:d0:ce:93:bb:65:a3:58:1d:eb: a7:0e:da:12:ab:79:a0:68:a3:31:46:c6:76:59:a4:01:02:f4: 5e:a5:86:18:03:a9:d7:f8:bf:e3:94:a9:6c:66:f1:04:82:1f: 79:01:39:8f:84:7d:a0:d1:e6:e1:80:97:af:c7:f2:71:e5:8a: 20:ec:5a:4d:ab:bd:8d:18:6e:24:50:24:ee:39:69:c9:d8:58: 64:76:ee:b7:75:cc:03:30:68:f0:e9:81:ac:61:07:9e:4d:1d: 94:19:28:e9:8d:8d:26:60:fe:88:f5:c4:8a:00:a5:c8:37:d9: 27:c2:54:e5:46:ca:31:b3:22:d6:09:e0:2b:dc:f5:b8:e4:22: e3:bb:79:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFGQTIxMTAvBgNVBAUTKDE4QjFDODhDRUU2OEY2M0MyMUNENkEwQ0IxQjgzMUQ1 RDZGNUQ2Q0YwHhcNMjUwODA4MTYyMTA3WhcNMjUwODE1MTYyMTA3WjAYMRYwFAYD VQQDEw02ODk2MjNmNC0xZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2k9utK2CfRVivsx7FNcJvhKmM5NmDQkO0nYvA3HyRP1GXshUH8xtOqWMqpje cywvH4ATemUy/wg7cSWR941NkJCVqLjsyhhxtL2H+JOC92jqUwkPeGYxUcdK/Vi3 HQC5pzhH/1Y2MMtVHmYYn6PUtMAUZ3AUx3ynZ2ZKQgiAadEiVK7VihD3ou1fhcQL MAhL9Dh+VRz8a9A1AEcBeimM5ZCugJHBpIHeSatFiFc8G5wbBBUM6aoRUggB21x6 p6HhB6bWbuxZJ0ii7pFwLTzheWUKuwtT3B31EAK0bxxncecjRJu2Uccl+r6BzRgN CL55qd3A23XgnQbyJ0VWHyDLgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBabaTPg IYnD6KCCHXYxN9jo0PGcMB8GA1UdIwQYMBaAFBixyIzuaPY8Ic1qDLG4MdXW9dbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUZBMi9CN0I2Nzc2MEVG NjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlqd2h6V29Nc2JneDFkYjEx czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMSElqTzVvOWp3aHpXb01zYmd4MWRiMTFzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUZBMi9CN0I2Nzc2MEVGNjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlq d2h6V29Nc2JneDFkYjExczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoVWFp410AqtRmcswaSe5F7yTV9al5HtV+EUJfOi17GQILdmZD04Fx 3p4cPPsxs/OGyzuQ+elq73lkWXHsKrDBGb/vdeqzCAJN3xI0E4qxoQatWL78nr0s YN+nAGfKgSf6saBnTY0kXCkzxE36n+LxttkDFU/QzpO7ZaNYHeunDtoSq3mgaKMx RsZ2WaQBAvRepYYYA6nX+L/jlKlsZvEEgh95ATmPhH2g0ebhgJevx/Jx5Yog7FpN q72NGG4kUCTuOWnJ2Fhkdu63dcwDMGjw6YGsYQeeTR2UGSjpjY0mYP6I9cSKAKXI N9knwlTlRsoxsyLWCeAr3PW45CLju3lV -----END CERTIFICATE-----Generated at Sun Aug 10 03:48:25 2025 by rpki-client