$ rpki-client -vvf rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft File: GNdIiJK3LFSvZOLdI4thnIm3LWg.mft (raw, json) Hash identifier: h1Ab30rPwVlDO8jHPkoH79Yo8oKPDLO/m0s8+S1u2KQ= Subject key identifier: 3A:53:7B:3B:4F:71:7A:02:66:98:5E:6C:99:F3:FC:B9:2B:49:2D:94 Authority key identifier: 18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 Certificate issuer: /CN=A91E17BF/serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Certificate serial: 02B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft Manifest number: 02AD Signing time: Thu 07 Aug 2025 02:06:59 +0000 Manifest this update: Thu 07 Aug 2025 02:06:59 +0000 Manifest next update: Thu 14 Aug 2025 02:06:59 +0000 Files and hashes: 1: GNdIiJK3LFSvZOLdI4thnIm3LWg.crl (hash: MaRHoK/yQiY5VHiLJ0uMYCPzG1Hu+p6eSY+4n66QIvk=) 2: 83D6FAEE077511EDBD013D37C4F9AE02.roa (hash: kMCJJ8NAnniqHWPJmFXYj+p1oepcYEa7mi3n3n8XfS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E17BF, serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Validity Not Before: Aug 7 02:06:59 2025 GMT Not After : Aug 14 02:06:59 2025 GMT Subject: CN=68940a43-2189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:87:9d:b7:9d:f6:44:7f:83:33:73:c1:38:7d: 6e:ec:d8:8c:9e:1d:9c:48:81:0b:eb:d7:df:fa:fc: 3e:ca:9a:97:13:cf:bd:d6:46:b8:12:3f:2f:79:3e: 00:d9:1d:34:94:d6:e8:fd:bd:26:34:4f:d4:16:95: 17:8a:38:bd:46:0a:f8:e9:77:be:2d:9b:1b:b7:4d: 4e:0f:d1:53:a9:38:bf:de:fb:a2:36:06:f8:76:29: c1:16:f9:30:d0:c5:3b:27:bc:4e:12:58:bc:bf:4c: 8e:4b:eb:2a:87:12:41:7c:a2:5b:b4:66:36:ed:bb: 7b:4d:ad:e3:8d:a7:d8:bf:d6:3f:c6:ed:3d:bc:e0: 76:ac:01:35:14:7c:89:ca:52:83:48:1b:a7:8b:af: f0:9d:5d:3b:67:fe:7e:a7:58:c2:91:2c:67:d2:73: 4f:a3:a3:53:85:35:85:67:4d:7d:51:79:ba:7c:d4: 7d:a3:c2:b7:dd:1d:c7:aa:f3:eb:58:87:b4:1b:53: a4:6c:1f:f8:cc:8b:c1:dc:88:8a:ed:7f:77:a6:dc: 12:b2:6c:3d:9c:39:2c:a7:f8:70:f8:57:15:b9:56: 74:40:c5:d1:ef:a6:d6:91:c1:32:35:3e:4f:3f:78: 13:a8:80:1a:30:bb:0b:b7:b8:54:4a:fa:f6:a3:6a: 67:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:53:7B:3B:4F:71:7A:02:66:98:5E:6C:99:F3:FC:B9:2B:49:2D:94 X509v3 Authority Key Identifier: keyid:18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:6b:4a:cb:33:1f:d3:ba:2d:0e:5e:f6:c7:aa:0a:f8:02:89: 63:80:84:75:cf:1f:f5:68:0b:d4:40:34:f7:34:b1:04:ff:09: b7:14:c9:b3:70:1a:0b:cd:79:d0:77:ec:b9:c3:24:d5:ef:82: f1:67:1e:88:46:e3:54:0c:6e:c8:7e:e6:50:66:7b:7c:6a:44: 34:11:94:37:32:23:20:09:30:72:0f:45:a6:0e:f2:56:9e:60: 67:b8:95:8a:4c:0a:25:e7:ce:f6:8b:e7:83:2f:9e:a8:a7:f5: b7:54:f3:ca:1d:ac:6a:a2:8b:b9:e7:e6:db:a8:23:87:52:57: c5:34:49:a3:44:ca:4e:bf:1f:f0:78:e9:44:78:67:e9:e1:f6: 3e:4c:25:6c:64:38:3d:da:06:0f:10:cf:28:e8:bf:67:18:e9: c4:50:34:b2:15:6f:a9:52:f3:8d:c9:98:ba:54:08:8b:c6:68: 66:c7:98:7c:ed:a4:3a:23:20:6a:24:5e:83:bb:51:19:9c:e0: f4:44:ed:61:73:4e:fc:64:dd:91:2f:74:29:1b:09:f5:83:49: ed:10:92:b1:76:bc:01:1c:89:8d:18:6a:cd:34:13:78:12:05: b0:0d:42:73:c0:86:9d:2a:b3:d2:0e:51:b8:ca:f7:fa:16:df: ba:f6:04:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3QkYxMTAvBgNVBAUTKDE4RDc0ODg4OTJCNzJDNTRBRjY0RTJERDIzOEI2MTlD ODlCNzJENjgwHhcNMjUwODA3MDIwNjU5WhcNMjUwODE0MDIwNjU5WjAYMRYwFAYD VQQDEw02ODk0MGE0My0yMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Iedt532RH+DM3PBOH1u7NiMnh2cSIEL69ff+vw+ypqXE8+91ka4Ej8veT4A 2R00lNbo/b0mNE/UFpUXiji9Rgr46Xe+LZsbt01OD9FTqTi/3vuiNgb4dinBFvkw 0MU7J7xOEli8v0yOS+sqhxJBfKJbtGY27bt7Ta3jjafYv9Y/xu09vOB2rAE1FHyJ ylKDSBuni6/wnV07Z/5+p1jCkSxn0nNPo6NThTWFZ019UXm6fNR9o8K33R3HqvPr WIe0G1OkbB/4zIvB3IiK7X93ptwSsmw9nDksp/hw+FcVuVZ0QMXR76bWkcEyNT5P P3gTqIAaMLsLt7hUSvr2o2pnJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpTeztP cXoCZphebJnz/LkrSS2UMB8GA1UdIwQYMBaAFBjXSIiStyxUr2Ti3SOLYZyJty1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTdCRi84RDBEQzA5NjA3 NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xGU3ZaT0xkSTR0aG5JbTNM V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOZElpSkszTEZTdlpPTGRJNHRobkltM0xXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTdCRi84RDBEQzA5NjA3NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xG U3ZaT0xkSTR0aG5JbTNMV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4a0rLMx/Tui0OXvbHqgr4AoljgIR1zx/1aAvUQDT3NLEE/wm3FMmz cBoLzXnQd+y5wyTV74LxZx6IRuNUDG7IfuZQZnt8akQ0EZQ3MiMgCTByD0WmDvJW nmBnuJWKTAol5872i+eDL56op/W3VPPKHaxqoou55+bbqCOHUlfFNEmjRMpOvx/w eOlEeGfp4fY+TCVsZDg92gYPEM8o6L9nGOnEUDSyFW+pUvONyZi6VAiLxmhmx5h8 7aQ6IyBqJF6Du1EZnOD0RO1hc078ZN2RL3QpGwn1g0ntEJKxdrwBHImNGGrNNBN4 EgWwDUJzwIadKrPSDlG4yvf6Ft+69gSV -----END CERTIFICATE-----Generated at Sat Aug 9 01:01:56 2025 by rpki-client