$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft File: GkhD6J8kRLLN24EYqoovRBgOhJg.mft (raw, json) Hash identifier: fRRuqSVY+vhq646Wr1LFDugM/s/GGxTTNUsZ903s1sE= Subject key identifier: DE:59:3C:8C:F8:08:FE:8B:CE:29:EF:3E:2C:CE:22:28:5F:42:EC:88 Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft Manifest number: 0194 Signing time: Tue 05 Aug 2025 03:52:21 +0000 Manifest this update: Tue 05 Aug 2025 03:52:20 +0000 Manifest next update: Tue 12 Aug 2025 03:52:20 +0000 Files and hashes: 1: GkhD6J8kRLLN24EYqoovRBgOhJg.crl (hash: 7RuoFo9KoDdQ8ksw5zmIGImiHVWXnWOBBqR0RZ0j46g=) 2: B5569B88096311EE9ECB644DC4F9AE02.roa (hash: r69ry07FlZRyxMcGSskusquMKld1QByFguUcoWDQa3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Aug 5 03:52:20 2025 GMT Not After : Aug 12 03:52:20 2025 GMT Subject: CN=68917ff4-8271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2a:11:89:7a:5e:bc:62:3e:58:16:ab:ae:91: b0:af:70:0d:ac:0a:a8:93:42:c7:d9:21:b9:aa:89: 4e:3e:37:17:21:a0:7e:5d:4d:5a:61:7d:72:c3:91: bf:db:55:a3:39:e1:5c:93:a5:98:ea:79:c6:a8:4e: 39:14:7e:19:4a:99:6a:68:b4:cd:40:f7:3f:2b:27: e5:da:d5:34:1d:e1:d8:36:a9:88:cf:6a:f1:97:bb: 4a:e3:30:0a:bf:16:26:b3:2a:1f:65:b4:e4:d3:d3: f0:f4:dc:b5:0c:7b:a2:37:32:f8:31:9f:e7:6a:ee: a4:17:cd:1e:e9:c8:72:d5:93:f4:2f:c1:09:d5:cb: e3:b1:fa:d7:a6:bd:dd:0b:30:44:b9:dd:f3:8e:81: 47:24:80:98:8c:b6:bc:4a:b4:e5:dc:9e:22:34:cc: 20:d6:24:52:f8:87:99:7f:6c:5f:f8:1c:c0:d1:e8: 30:26:17:fd:c7:df:fb:c7:9d:f2:88:8f:68:59:20: 91:be:a2:a7:7b:26:55:00:f3:72:f4:7d:6f:08:41: d3:ab:91:d6:d9:f1:66:42:ad:da:a7:7a:0f:6a:dc: 0a:45:da:21:83:56:e6:fc:6f:c8:6b:09:09:b5:c1: ac:17:28:64:cd:69:58:0c:89:b6:9d:46:8f:ed:a2: 5b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:59:3C:8C:F8:08:FE:8B:CE:29:EF:3E:2C:CE:22:28:5F:42:EC:88 X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ef:38:dd:8a:6b:0d:d1:b8:6c:cd:c8:b2:d8:6b:8f:84:73: 92:2b:30:f6:ef:27:7e:e1:1d:a1:be:ad:43:5f:08:6b:32:c3: ed:4a:8c:e9:10:71:25:e8:f1:e6:80:dd:0e:51:ad:7c:64:b2: e8:6d:0c:43:2f:64:d9:b1:32:65:6d:dd:d7:d6:b1:89:25:4d: 4e:ad:e9:59:5e:cf:1f:ff:cb:80:7f:34:b6:b1:22:12:b4:b6: 49:53:3e:a3:e0:b6:6d:fa:63:85:b4:ef:ef:54:96:81:45:dc: a5:20:19:02:95:d7:d0:11:f8:95:98:0b:d0:88:16:17:79:ea: 0c:62:28:e8:da:53:ae:1e:71:cf:95:5a:57:6f:0f:40:ac:c0: d1:ca:a7:ba:4c:22:1a:f2:92:cb:01:8b:9f:f1:27:bf:ef:dd: 83:cc:e1:5c:85:04:0c:d0:8e:7a:d1:6c:50:a4:c0:8e:4e:59: b5:75:5e:dd:3d:76:63:eb:a2:cb:13:1d:b7:c5:79:18:5c:56: 4d:ba:a0:14:e4:b5:8e:53:40:c2:b8:76:6f:3b:ff:f8:e1:34: 2c:6d:c1:c3:73:dc:66:63:02:bf:f6:5a:83:1f:ca:11:49:de: 4d:d5:bb:41:3b:e4:f7:c2:22:eb:b4:3e:6f:6c:e9:0e:d8:0d: 97:6c:a1:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjUwODA1MDM1MjIwWhcNMjUwODEyMDM1MjIwWjAYMRYwFAYD VQQDEw02ODkxN2ZmNC04MjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSoRiXpevGI+WBarrpGwr3ANrAqok0LH2SG5qolOPjcXIaB+XU1aYX1yw5G/ 21WjOeFck6WY6nnGqE45FH4ZSplqaLTNQPc/Kyfl2tU0HeHYNqmIz2rxl7tK4zAK vxYmsyofZbTk09Pw9Ny1DHuiNzL4MZ/nau6kF80e6chy1ZP0L8EJ1cvjsfrXpr3d CzBEud3zjoFHJICYjLa8SrTl3J4iNMwg1iRS+IeZf2xf+BzA0egwJhf9x9/7x53y iI9oWSCRvqKneyZVAPNy9H1vCEHTq5HW2fFmQq3ap3oPatwKRdohg1bm/G/IawkJ tcGsFyhkzWlYDIm2nUaP7aJbiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5ZPIz4 CP6LzinvPizOIihfQuyIMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JM TE4yNEVZcW9vdlJCZ09oSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO7zjdimsN0bhszciy2GuPhHOSKzD27yd+4R2hvq1DXwhrMsPtSozp EHEl6PHmgN0OUa18ZLLobQxDL2TZsTJlbd3X1rGJJU1OrelZXs8f/8uAfzS2sSIS tLZJUz6j4LZt+mOFtO/vVJaBRdylIBkCldfQEfiVmAvQiBYXeeoMYijo2lOuHnHP lVpXbw9ArMDRyqe6TCIa8pLLAYuf8Se/792DzOFchQQM0I560WxQpMCOTlm1dV7d PXZj66LLEx23xXkYXFZNuqAU5LWOU0DCuHZvO//44TQsbcHDc9xmYwK/9lqDH8oR Sd5N1btBO+T3wiLrtD5vbOkO2A2XbKH5 -----END CERTIFICATE-----Generated at Wed Aug 6 14:21:36 2025 by rpki-client