$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: V/pCfAfsQ9c2jRMhuu6JK4YFYArSjtiA5J3Q8WyhprE= Subject key identifier: 63:94:AA:01:6A:4C:14:9C:5E:37:1F:DA:11:F1:84:AD:4D:5C:87:72 Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 0164 Signing time: Tue 05 Aug 2025 04:25:58 +0000 Manifest this update: Tue 05 Aug 2025 04:25:57 +0000 Manifest next update: Tue 12 Aug 2025 04:25:57 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: MPjl3ZDdYJpqxvg4CGRzHL4KYQcCCDrXxXeJ+6WlNWI=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: iKZhrYsqwja6p9Jg0/rXm6hAG4LxSI3ekb53k0lCuBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Aug 5 04:25:57 2025 GMT Not After : Aug 12 04:25:57 2025 GMT Subject: CN=689187d5-847e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:13:8d:a8:36:04:48:30:5e:10:3d:6d:7f:20: cc:9b:af:ca:50:67:cf:cf:07:2a:e4:01:d7:00:e7: 42:b8:e2:15:a6:44:73:8f:7b:95:43:6b:d3:dd:b4: e2:05:ef:0d:95:b1:4f:74:c7:47:6b:54:43:ef:f4: dc:3c:d5:22:85:b7:62:40:38:09:7d:4b:7e:6c:1a: db:9f:0c:c9:4d:ca:68:bd:d3:97:f1:71:65:6f:c5: d0:15:5f:90:93:32:b8:cb:0b:f9:03:10:54:26:a3: 12:11:85:34:92:27:7a:c1:a6:1b:1a:68:e9:ef:28: e0:7c:5a:7a:48:c2:d3:f1:33:4d:da:3a:7d:72:c4: 5f:72:b5:14:7f:c7:8b:91:6a:f5:a0:93:9d:f0:7c: 1d:7c:ec:cd:4f:48:ce:34:85:ab:ee:13:3f:2f:c7: 76:b4:48:e7:ff:2a:d4:93:ca:74:cf:08:16:bb:1e: 5f:40:a0:2f:40:69:aa:f8:43:fb:7b:6d:2f:9f:99: 1d:da:3a:79:0d:e8:cf:9b:7f:b1:70:46:80:69:84: 7a:c2:1d:39:39:7b:2c:ba:15:88:9a:1f:06:5f:dc: 66:78:2f:a2:da:52:5a:fa:09:b2:fb:53:3b:fc:a6: 6c:11:2e:ff:45:0a:a4:89:6e:01:1f:12:ce:16:83: ae:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:94:AA:01:6A:4C:14:9C:5E:37:1F:DA:11:F1:84:AD:4D:5C:87:72 X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:a4:c2:4a:6c:ac:54:5b:f0:e2:87:a5:8d:36:8c:ab:68:56: bb:ad:09:13:b5:87:a5:b5:cc:26:3a:3a:11:cd:4a:07:db:7c: 98:dc:0c:6b:9d:98:8a:21:99:ee:dd:dc:75:d6:c1:47:c2:3d: a0:ad:98:41:3f:74:a9:1d:f2:e1:21:ef:71:2d:b8:03:02:8c: 78:28:09:a8:cd:9c:f9:a4:50:e5:bc:70:91:a3:19:14:5c:2e: 1a:d7:a0:a9:24:84:de:6a:b5:c3:1d:9a:6a:c3:2f:f5:4a:4e: f7:12:37:77:36:de:f2:e5:85:b3:15:ea:9f:69:81:cb:98:9b: 64:6a:dd:d2:64:39:06:49:4e:bd:38:38:55:09:41:64:41:62: 7f:6d:01:ea:51:7b:25:6b:81:bf:46:fa:a1:d6:6d:bf:80:43: a4:79:dc:21:18:be:ce:d9:64:db:7a:50:d3:f5:87:c9:cb:3e: e6:40:b9:0c:a6:6a:84:79:4a:05:ef:2b:7e:29:f4:a9:23:12: 27:0b:57:84:d9:ab:e7:41:0d:db:27:06:f9:6c:a0:5d:0c:a9: 0c:4e:6a:6d:b5:e4:ff:62:45:3c:39:b1:ec:1a:94:45:e7:17: 23:fc:cb:c3:15:a9:ff:dd:ec:32:19:42:a0:e1:f9:9c:3e:54: b3:ce:8f:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjUwODA1MDQyNTU3WhcNMjUwODEyMDQyNTU3WjAYMRYwFAYD VQQDEw02ODkxODdkNS04NDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RONqDYESDBeED1tfyDMm6/KUGfPzwcq5AHXAOdCuOIVpkRzj3uVQ2vT3bTi Be8NlbFPdMdHa1RD7/TcPNUihbdiQDgJfUt+bBrbnwzJTcpovdOX8XFlb8XQFV+Q kzK4ywv5AxBUJqMSEYU0kid6waYbGmjp7yjgfFp6SMLT8TNN2jp9csRfcrUUf8eL kWr1oJOd8HwdfOzNT0jONIWr7hM/L8d2tEjn/yrUk8p0zwgWux5fQKAvQGmq+EP7 e20vn5kd2jp5DejPm3+xcEaAaYR6wh05OXssuhWImh8GX9xmeC+i2lJa+gmy+1M7 /KZsES7/RQqkiW4BHxLOFoOuowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOUqgFq TBScXjcf2hHxhK1NXIdyMB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrpMJKbKxUW/Dih6WNNoyraFa7rQkTtYeltcwmOjoRzUoH23yY3Axr nZiKIZnu3dx11sFHwj2grZhBP3SpHfLhIe9xLbgDAox4KAmozZz5pFDlvHCRoxkU XC4a16CpJITearXDHZpqwy/1Sk73Ejd3Nt7y5YWzFeqfaYHLmJtkat3SZDkGSU69 ODhVCUFkQWJ/bQHqUXsla4G/Rvqh1m2/gEOkedwhGL7O2WTbelDT9YfJyz7mQLkM pmqEeUoF7yt+KfSpIxInC1eE2avnQQ3bJwb5bKBdDKkMTmptteT/YkU8ObHsGpRF 5xcj/MvDFan/3ewyGUKg4fmcPlSzzo/c -----END CERTIFICATE-----Generated at Tue Aug 5 20:17:37 2025 by rpki-client