$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft File: gUM6Y8LXXQAyVSxCbENTPsrINRU.mft (raw, json) Hash identifier: DQzIVNCx2GLPzbXYd1qjoyY4dfzMN7EpM22dVAlr2Og= Subject key identifier: 79:9A:12:02:08:A9:92:FA:3D:C3:DA:00:55:77:83:A4:5D:81:78:50 Authority key identifier: 81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 Certificate issuer: /CN=A91F1AF5/serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Certificate serial: 0747 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft Manifest number: 0742 Signing time: Tue 12 Aug 2025 22:03:52 +0000 Manifest this update: Tue 12 Aug 2025 22:03:51 +0000 Manifest next update: Tue 19 Aug 2025 22:03:51 +0000 Files and hashes: 1: gUM6Y8LXXQAyVSxCbENTPsrINRU.crl (hash: aT+M/YVnBb0cB3ovQiiTQnlK6+hbPyWUBfDlEeR6C5U=) 2: DDFEB10C385E11EB8E85F467C4F9AE02.roa (hash: vYc0h4qvjuE88FDf7yqk3rmrIjWt9VABoOzgwIDoM5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1863 (0x747) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1AF5, serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Validity Not Before: Aug 12 22:03:51 2025 GMT Not After : Aug 19 22:03:51 2025 GMT Subject: CN=689bba47-2c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0c:be:ca:2d:41:28:62:40:61:30:20:d0:67: e2:32:91:93:eb:f3:87:bf:54:b2:d2:32:27:e1:50: 85:3c:c7:26:11:f2:37:46:1e:f6:e0:b3:29:68:ca: 58:f0:f6:8c:01:4f:71:78:c5:14:ce:73:5d:e2:ee: e7:2f:ca:44:8f:44:eb:de:5c:de:37:94:fe:31:2e: f2:62:21:ec:13:f6:94:24:82:37:dd:a5:e8:f7:fb: de:42:a7:5d:bd:0a:64:49:14:18:76:68:47:c8:f7: 4b:ea:51:df:f5:f1:bc:43:24:93:48:b8:a0:b2:3c: b1:8b:1c:18:34:d1:ae:a8:a9:91:1d:c1:f1:81:6a: 4a:d5:eb:3b:13:5b:35:89:88:b6:ab:e5:6e:7e:90: ef:c0:1e:22:df:41:3e:6c:88:12:5b:02:83:90:76: 85:54:7e:29:11:dc:67:d5:f9:c8:af:31:85:82:dd: 40:0f:3a:46:73:6a:e2:1a:aa:25:83:ec:19:1f:c3: bc:d3:fc:ff:b9:05:aa:bd:a4:9b:8f:2d:bf:ae:ef: 7a:e5:06:25:91:11:51:e4:e1:90:e5:4b:33:2e:e5: 0c:45:46:11:2c:5e:e4:9e:ea:37:cf:e4:f4:59:37: 11:ea:cb:ad:c7:ea:95:3f:be:f9:6d:48:3b:ac:f2: d8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:9A:12:02:08:A9:92:FA:3D:C3:DA:00:55:77:83:A4:5D:81:78:50 X509v3 Authority Key Identifier: keyid:81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:e6:f0:20:da:19:59:5d:bf:82:e6:c0:12:fa:6d:11:88:35: e9:8c:20:bd:37:63:a2:41:fc:a5:24:9f:d2:89:11:41:ef:51: 75:98:12:8d:c6:ad:49:7f:7b:f8:29:19:1f:e1:76:c3:6c:d5: 14:e4:fb:36:a0:5b:8d:8d:a2:39:e2:7f:3e:c1:91:9e:fb:d9: 87:3d:e4:01:cf:0e:40:16:7a:4b:33:04:ff:fc:1b:83:c5:d9: b9:63:25:97:12:4a:d3:27:b1:88:fa:9d:0d:1f:9e:4b:16:87: 33:d0:cf:b3:5e:04:89:e7:1a:74:c8:5b:74:ee:6a:df:78:25: 73:82:84:94:98:db:ca:d3:cd:1c:58:26:d8:bb:70:bd:d5:bf: f6:45:0b:d0:d8:fc:49:cf:de:48:71:e0:7f:2e:b3:a8:1c:8f: 90:fe:01:2d:94:d7:97:8a:91:6d:9b:24:f7:ba:26:cc:f7:91: 88:18:b5:46:6e:c7:19:da:dc:53:7d:2e:5a:49:b7:10:0c:f2: 52:3d:42:0e:30:c0:52:5e:64:c0:1c:2a:ca:c0:1e:d7:1c:7d: 95:ff:bf:d8:eb:b5:42:0d:1c:fe:c9:04:a9:ee:ac:20:75:de: a6:eb:ce:57:d8:a6:25:4e:bd:c7:c9:b7:79:00:79:fd:68:c0: ab:74:73:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFBRjUxMTAvBgNVBAUTKDgxNDMzQTYzQzJENzVEMDAzMjU1MkM0MjZDNDM1MzNF Q0FDODM1MTUwHhcNMjUwODEyMjIwMzUxWhcNMjUwODE5MjIwMzUxWjAYMRYwFAYD VQQDEw02ODliYmE0Ny0yYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmgy+yi1BKGJAYTAg0GfiMpGT6/OHv1Sy0jIn4VCFPMcmEfI3Rh724LMpaMpY 8PaMAU9xeMUUznNd4u7nL8pEj0Tr3lzeN5T+MS7yYiHsE/aUJII33aXo9/veQqdd vQpkSRQYdmhHyPdL6lHf9fG8QySTSLigsjyxixwYNNGuqKmRHcHxgWpK1es7E1s1 iYi2q+VufpDvwB4i30E+bIgSWwKDkHaFVH4pEdxn1fnIrzGFgt1ADzpGc2riGqol g+wZH8O80/z/uQWqvaSbjy2/ru965QYlkRFR5OGQ5UszLuUMRUYRLF7knuo3z+T0 WTcR6sutx+qVP775bUg7rPLYjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmaEgII qZL6PcPaAFV3g6RdgXhQMB8GA1UdIwQYMBaAFIFDOmPC110AMlUsQmxDUz7KyDUV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUFGNS8xNTEwRkI1QzM4 NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhRQXlWU3hDYkVOVFBzcklO UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dVTTZZOExYWFFBeVZTeENiRU5UUHNySU5SVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUFGNS8xNTEwRkI1QzM4NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhR QXlWU3hDYkVOVFBzcklOUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ5vAg2hlZXb+C5sAS+m0RiDXpjCC9N2OiQfylJJ/SiRFB71F1mBKN xq1Jf3v4KRkf4XbDbNUU5Ps2oFuNjaI54n8+wZGe+9mHPeQBzw5AFnpLMwT//BuD xdm5YyWXEkrTJ7GI+p0NH55LFocz0M+zXgSJ5xp0yFt07mrfeCVzgoSUmNvK080c WCbYu3C91b/2RQvQ2PxJz95IceB/LrOoHI+Q/gEtlNeXipFtmyT3uibM95GIGLVG bscZ2txTfS5aSbcQDPJSPUIOMMBSXmTAHCrKwB7XHH2V/7/Y67VCDRz+yQSp7qwg dd6m685X2KYlTr3Hybd5AHn9aMCrdHNS -----END CERTIFICATE-----Generated at Wed Aug 13 00:30:06 2025 by rpki-client