$ rpki-client -vvf rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft File: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft (raw, json) Hash identifier: GI2mkVQNqIXf5U2dyHienInbC5a/l3/HVXzpg3DVLZw= Subject key identifier: 11:26:2F:8E:EC:1E:F6:54:35:8A:F8:C5:AD:A3:36:88:5F:5E:E5:63 Authority key identifier: 1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 Certificate issuer: /CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Certificate serial: 0BE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft Manifest number: 0BDB Signing time: Fri 22 Aug 2025 19:00:05 +0000 Manifest this update: Fri 22 Aug 2025 19:00:05 +0000 Manifest next update: Fri 29 Aug 2025 19:00:05 +0000 Files and hashes: 1: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl (hash: qNqg5n8WJXnTPhj/G+in0lBxfPJkKMXLAKiwmTAjmO0=) 2: 1407117C216311EA90D74C52C4F9AE02.roa (hash: 2C78FaeQx3m8f9CmVKBPjRPsChYY+d/Ump5Gj8ph3JM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110A69, serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Validity Not Before: Aug 22 19:00:05 2025 GMT Not After : Aug 29 19:00:05 2025 GMT Subject: CN=68a8be35-334f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:55:e9:63:0c:0d:ab:29:e0:d1:f0:a1:ff:fe: 00:4f:b3:e1:e2:f7:54:29:4a:7c:66:78:6e:76:d6: 6b:b2:ab:08:62:81:62:e3:2b:0f:48:58:a5:ab:e4: 11:d9:26:4e:c0:ca:d0:c3:5f:9b:7e:3f:dc:cb:d4: 95:52:6c:90:02:b0:22:d6:b9:2f:dd:6c:2e:51:1d: 29:87:1e:51:4b:d4:6a:b5:73:72:7e:f6:27:2a:14: 90:79:ee:16:a4:71:3e:12:63:f4:57:6d:6a:d1:30: ff:e0:6b:90:f3:71:db:22:cd:15:1b:e3:bf:99:52: 17:76:8d:34:dc:64:d3:ba:3f:f5:ba:70:d7:bd:d1: f3:b2:5b:4d:0d:e7:45:b6:c5:66:35:a8:8d:ea:b2: e9:98:2a:e7:30:fa:cf:c6:17:53:66:0c:5d:1d:19: 18:f6:75:21:97:16:ab:99:5c:da:cb:d5:dd:59:46: ea:ee:41:57:8e:14:d9:92:96:30:f5:b9:24:cd:93: 98:b4:b2:dd:13:bc:c2:9f:2f:64:09:e0:bf:64:dc: 99:40:06:b5:0c:5f:77:f2:a3:92:84:b0:7e:e0:2b: c5:e9:8f:c6:8f:24:24:90:02:22:57:d8:01:a0:91: 3b:29:e6:2f:ea:a2:1a:b6:18:8e:4e:f8:33:ae:2f: c8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:26:2F:8E:EC:1E:F6:54:35:8A:F8:C5:AD:A3:36:88:5F:5E:E5:63 X509v3 Authority Key Identifier: keyid:1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:52:8b:6f:48:d3:6a:b7:45:a1:3f:7b:a1:9e:7c:bc:4a:11: 65:e7:a9:d9:27:4e:64:98:a6:92:f8:3f:3d:c1:2d:ed:d5:ab: fc:5f:ad:36:a6:aa:3b:17:66:4c:ae:da:83:89:fe:55:8d:2d: be:c5:59:c7:49:bd:65:44:0a:1a:2b:05:49:f7:ed:fe:bd:4d: 75:68:51:fc:6f:7a:0b:89:31:0f:52:ae:ad:56:a2:fb:d9:46: 88:82:b9:f8:a5:cb:e4:aa:56:dd:7b:ae:47:2d:66:b3:d6:81: b9:96:05:43:fa:ce:4b:6d:dc:74:ca:32:4c:0d:bf:9b:05:bd: 8c:58:69:77:a7:e6:a4:c8:98:3a:d6:80:16:a2:1f:a2:bc:be: bc:19:e7:f2:e2:33:25:4a:1c:76:2b:78:4b:bd:7d:80:22:65: b1:e6:46:28:97:bf:ee:49:90:cf:ae:db:25:9f:8a:44:7e:e6: 2e:21:4a:dc:02:17:e0:c2:1e:d2:41:8f:43:a4:8b:d2:0d:43: df:6b:ac:f2:4b:fb:aa:83:b5:b6:94:ce:4b:d0:b2:46:15:3d: ae:e4:50:7a:ac:9a:47:04:79:49:bf:bc:fe:4a:c9:39:0e:35: 12:69:27:de:26:57:52:2e:8a:75:35:57:e1:6c:3b:10:4b:bf: fe:b4:d8:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBBNjkxMTAvBgNVBAUTKDFCNkUzMjkyQzgzNTY1NEU0OTE0OTJFNTU4NENGOTkz RjA1QkQ5OTAwHhcNMjUwODIyMTkwMDA1WhcNMjUwODI5MTkwMDA1WjAYMRYwFAYD VQQDEw02OGE4YmUzNS0zMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFXpYwwNqyng0fCh//4AT7Ph4vdUKUp8ZnhudtZrsqsIYoFi4ysPSFilq+QR 2SZOwMrQw1+bfj/cy9SVUmyQArAi1rkv3WwuUR0phx5RS9RqtXNyfvYnKhSQee4W pHE+EmP0V21q0TD/4GuQ83HbIs0VG+O/mVIXdo003GTTuj/1unDXvdHzsltNDedF tsVmNaiN6rLpmCrnMPrPxhdTZgxdHRkY9nUhlxarmVzay9XdWUbq7kFXjhTZkpYw 9bkkzZOYtLLdE7zCny9kCeC/ZNyZQAa1DF938qOShLB+4CvF6Y/GjyQkkAIiV9gB oJE7KeYv6qIathiOTvgzri/IwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEmL47s HvZUNYr4xa2jNohfXuVjMB8GA1UdIwQYMBaAFBtuMpLINWVOSRSS5VhM+ZPwW9mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEE2OS9FM0FCRDA0MjIx NDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpVNUpGSkxsV0V6NWtfQmIy WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyNHlrc2cxWlU1SkZKTGxXRXo1a19CYjJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEE2OS9FM0FCRDA0MjIxNDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpV NUpGSkxsV0V6NWtfQmIyWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+UotvSNNqt0WhP3uhnny8ShFl56nZJ05kmKaS+D89wS3t1av8X602 pqo7F2ZMrtqDif5VjS2+xVnHSb1lRAoaKwVJ9+3+vU11aFH8b3oLiTEPUq6tVqL7 2UaIgrn4pcvkqlbde65HLWaz1oG5lgVD+s5Lbdx0yjJMDb+bBb2MWGl3p+akyJg6 1oAWoh+ivL68Gefy4jMlShx2K3hLvX2AImWx5kYol7/uSZDPrtsln4pEfuYuIUrc Ahfgwh7SQY9DpIvSDUPfa6zyS/uqg7W2lM5L0LJGFT2u5FB6rJpHBHlJv7z+Ssk5 DjUSaSfeJldSLop1NVfhbDsQS7/+tNiL -----END CERTIFICATE-----Generated at Sun Aug 24 00:17:49 2025 by rpki-client