$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft File: GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft (raw, json) Hash identifier: gk0ZdpdqzBKi/y8zsnqKqI8W2LXq5v2dzAXUpvSGkRg= Subject key identifier: C9:77:E9:0A:2F:AD:ED:D7:4D:51:C9:DC:96:47:AF:C9:9F:1C:E6:7D Authority key identifier: 18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A Certificate issuer: /CN=A91F8357/serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft Manifest number: 62 Signing time: Sat 09 Aug 2025 07:32:11 +0000 Manifest this update: Sat 09 Aug 2025 07:32:11 +0000 Manifest next update: Sat 16 Aug 2025 07:32:11 +0000 Files and hashes: 1: GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl (hash: fXoMtXZpNkKP2DHNG9q0Co7m/sHM8XXSdMBbqbqEuZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Validity Not Before: Aug 9 07:32:11 2025 GMT Not After : Aug 16 07:32:11 2025 GMT Subject: CN=6896f97b-fa77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:63:0d:52:3a:4b:32:3f:96:07:30:1c:65:f0: 01:10:d0:8d:7a:83:2d:82:79:38:33:32:89:1a:0f: 7b:f5:26:6b:fd:1e:e4:4e:eb:82:8c:58:60:a5:11: ca:23:c5:02:34:4e:c5:d2:4c:e0:1c:6e:cd:80:e8: 05:e8:84:95:77:43:05:7c:6f:a3:03:af:ae:d5:88: 36:c3:2e:4f:72:26:42:f8:df:b4:33:f9:05:02:ee: 60:72:d8:61:91:90:42:06:9a:d7:b5:8b:65:5e:8a: 44:0b:b4:8b:cd:c9:c8:e0:a1:cd:54:b8:cc:7f:34: cb:da:c8:f5:9c:84:1f:22:43:a2:84:bb:63:5f:f7: 6e:e2:0a:4d:63:d1:f3:38:3d:a2:0c:52:8b:cf:59: e3:9e:24:9b:ba:4e:37:c1:0e:59:ae:7c:f7:35:72: 0b:a5:67:d2:77:43:42:00:9f:2b:a2:0d:eb:09:34: 44:4b:6e:d8:76:01:84:8b:4f:e3:a3:2d:ee:c8:c6: 85:0e:f0:f6:6f:34:6e:1e:ab:dd:04:ae:99:3a:9f: 7b:b1:32:d7:c2:a4:1c:12:73:62:4b:25:b4:4a:2e: db:8a:6b:46:20:7c:53:c5:22:33:f3:18:d4:64:0c: 6c:82:f3:14:b1:7a:ce:26:6e:a4:e1:92:c7:59:24: b6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:77:E9:0A:2F:AD:ED:D7:4D:51:C9:DC:96:47:AF:C9:9F:1C:E6:7D X509v3 Authority Key Identifier: keyid:18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:ca:6b:ad:3d:46:2e:11:bf:5b:f9:ee:e1:54:ee:e5:77:89: 4f:5b:f7:ad:68:b8:cd:6e:f9:e1:3a:db:0d:de:4f:a0:bc:48: 02:2f:c1:44:e9:15:b3:a6:5f:38:22:9a:ca:91:ad:b4:4a:a9: 22:52:20:41:16:c5:f6:16:23:61:2b:51:6a:1a:ac:9d:65:ec: c6:17:53:ed:3f:e9:ca:4f:cc:e1:e9:88:49:6e:f7:3a:8d:38: ce:53:21:9c:0b:b6:08:af:61:ce:b0:a0:16:a3:ca:26:cb:c0: 1f:4e:84:a0:fb:38:85:22:c3:39:cf:37:eb:01:c5:ad:86:44: 5c:c3:0e:a7:99:7a:fb:73:be:ca:5c:fc:92:b6:91:66:2b:48: 4b:c5:6e:6d:6b:ea:b2:68:51:3c:93:9b:ee:05:47:63:18:0e: 12:d2:17:cd:cb:98:ff:07:15:78:38:46:f9:74:f5:23:4a:95: 34:64:bd:d9:7d:25:6e:28:01:7b:a4:5e:6b:19:6f:e7:c6:5e: 0f:9f:b5:8c:1e:93:10:f8:bb:55:0a:ea:f8:cf:73:65:d6:d8: 7b:08:a5:6a:39:e7:3d:ad:be:67:79:2c:1f:7b:66:76:23:56: d9:ff:92:9d:aa:fb:cc:23:5c:2c:fe:ae:57:27:d3:4d:c0:81: 49:55:be:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMTgwQTM1MjJFMjA1MEM1RjFFMDg3MzUzOUIxMkQ2RDIz MTJBMjAxQTAeFw0yNTA4MDkwNzMyMTFaFw0yNTA4MTYwNzMyMTFaMBgxFjAUBgNV BAMTDTY4OTZmOTdiLWZhNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCYw1SOksyP5YHMBxl8AEQ0I16gy2CeTgzMokaD3v1Jmv9HuRO64KMWGClEcoj xQI0TsXSTOAcbs2A6AXohJV3QwV8b6MDr67ViDbDLk9yJkL437Qz+QUC7mBy2GGR kEIGmte1i2VeikQLtIvNycjgoc1UuMx/NMvayPWchB8iQ6KEu2Nf927iCk1j0fM4 PaIMUovPWeOeJJu6TjfBDlmufPc1cgulZ9J3Q0IAnyuiDesJNERLbth2AYSLT+Oj Le7IxoUO8PZvNG4eq90Erpk6n3uxMtfCpBwSc2JLJbRKLtuKa0YgfFPFIjPzGNRk DGyC8xSxes4mbqThksdZJLYVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyXfpCi+t 7ddNUcnclkevyZ8c5n0wHwYDVR0jBBgwFoAUGAo1IuIFDF8eCHNTmxLW0jEqIBow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzFEQTVDQzU2REY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4ZUNITlRteExXMGpFcUlC by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0FvMUl1SUZERjhlQ0hOVG14TFcwakVxSUJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzFEQTVDQzU2REY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4 ZUNITlRteExXMGpFcUlCby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHTKa609Ri4Rv1v57uFU7uV3iU9b961ouM1u+eE62w3eT6C8SAIvwUTp FbOmXzgimsqRrbRKqSJSIEEWxfYWI2ErUWoarJ1l7MYXU+0/6cpPzOHpiElu9zqN OM5TIZwLtgivYc6woBajyibLwB9OhKD7OIUiwznPN+sBxa2GRFzDDqeZevtzvspc /JK2kWYrSEvFbm1r6rJoUTyTm+4FR2MYDhLSF83LmP8HFXg4Rvl09SNKlTRkvdl9 JW4oAXukXmsZb+fGXg+ftYwekxD4u1UK6vjPc2XW2HsIpWo55z2tvmd5LB97ZnYj Vtn/kp2q+8wjXCz+rlcn003AgUlVvno= -----END CERTIFICATE-----Generated at Sat Aug 9 10:52:49 2025 by rpki-client