$ rpki-client -vvf rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft File: ggCxpefBdgW1czx0_sHvEnOz6iU.mft (raw, json) Hash identifier: gSSFGLjJ/rtlr9+HjOeO2u9Lx9MwSuztkevr/qcekts= Subject key identifier: 30:42:8F:C2:07:E5:74:78:AC:78:03:FB:84:71:8B:8C:A0:57:AF:50 Authority key identifier: 82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 Certificate issuer: /CN=A911AD0C/serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Certificate serial: 34AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft Manifest number: 34AA Signing time: Fri 22 Aug 2025 15:20:24 +0000 Manifest this update: Fri 22 Aug 2025 15:20:24 +0000 Manifest next update: Fri 29 Aug 2025 15:20:24 +0000 Files and hashes: 1: ggCxpefBdgW1czx0_sHvEnOz6iU.crl (hash: hJvlQffUfdIBozMVXslOCiywQonpx9Tt9QASd2gCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13482 (0x34aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AD0C, serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Validity Not Before: Aug 22 15:20:24 2025 GMT Not After : Aug 29 15:20:24 2025 GMT Subject: CN=68a88ab8-0ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:45:f8:70:dc:4d:39:db:02:6b:7c:11:93:1e: f8:90:50:9f:87:73:d4:d8:a2:8d:80:a6:db:f8:16: 11:fc:06:c3:55:21:60:ff:d6:f7:54:e8:02:fc:67: d9:fa:f9:48:2a:b9:6e:45:b4:7f:d0:55:10:ef:64: eb:2e:72:c9:df:64:4b:33:e2:c9:7d:5f:43:dc:8c: ce:7c:dc:38:f6:e5:55:b3:c2:34:5f:45:1e:3d:ad: b2:4b:cd:d7:72:1b:a2:32:5b:0f:b5:b9:fe:18:c0: 75:06:75:b1:2f:9f:fe:cd:4c:7d:1c:92:8a:c1:21: 2f:15:fe:ed:ff:b3:57:5d:94:95:35:51:78:aa:78: a3:6a:61:44:43:9c:4e:e3:56:7f:1e:6f:e1:3d:ae: 67:19:7e:54:9b:12:e5:41:c3:6b:cd:a2:b8:5b:83: e5:f8:06:59:11:c7:29:19:cf:b5:53:e9:8c:0e:b0: 05:75:c4:e6:9f:af:26:9b:1d:cd:33:97:9e:7b:e6: 98:5b:ee:63:25:4d:6d:09:6b:b4:66:be:42:f4:34: 50:2a:ef:86:b2:3a:28:a4:19:d0:3c:9b:01:e2:53: 7f:7a:ff:10:69:f4:f5:f5:a4:59:5b:bf:7f:02:3e: 0a:a3:c9:22:da:b5:22:8f:ad:9b:13:3b:b5:88:75: 8a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:42:8F:C2:07:E5:74:78:AC:78:03:FB:84:71:8B:8C:A0:57:AF:50 X509v3 Authority Key Identifier: keyid:82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:ed:58:c9:45:64:bd:94:7d:d6:7a:3c:f4:00:e1:7c:f4:43: 32:29:1b:80:19:bd:0d:7c:f9:3c:3a:43:b2:41:dc:0b:2e:90: 61:b1:ba:07:06:b4:e1:e3:1b:4b:bd:0c:98:77:95:c9:ba:4a: 5d:b8:e7:07:10:7b:0a:0f:ca:29:90:b5:2c:8d:e8:a7:5c:6c: 5e:aa:7d:77:f8:18:bb:30:96:31:03:cf:aa:fb:86:fb:d4:91: 15:a0:85:c6:ca:30:28:93:46:42:45:ba:b7:5f:ca:a7:c1:81: 5c:bb:2d:1a:b0:27:a8:a1:c3:f5:99:6c:03:44:02:5c:20:cd: a0:f8:3e:92:c0:c0:b7:b6:88:86:fd:e1:e1:41:46:8b:6c:9b: 9a:f7:83:76:b7:bf:7b:8c:12:0d:50:88:63:af:86:d9:a1:a3: 82:df:5b:c1:d9:48:29:7b:6e:78:16:0d:de:0a:78:31:de:cb: a5:5c:78:09:f7:0e:96:e0:f8:15:45:3b:4e:d3:7d:c6:60:d7: e8:f2:7b:b3:32:c3:71:63:63:c8:f6:2d:b6:b8:27:9d:e7:56: b6:f9:60:f8:9f:36:21:76:80:d5:d4:50:c6:26:ee:44:1b:9d: 6d:4c:60:4c:6d:26:0c:a2:ca:27:09:24:b0:a1:ff:9c:5a:47: eb:00:43:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFEMEMxMTAvBgNVBAUTKDgyMDBCMUE1RTdDMTc2MDVCNTczM0M3NEZFQzFFRjEy NzNCM0VBMjUwHhcNMjUwODIyMTUyMDI0WhcNMjUwODI5MTUyMDI0WjAYMRYwFAYD VQQDEw02OGE4OGFiOC0wY2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UX4cNxNOdsCa3wRkx74kFCfh3PU2KKNgKbb+BYR/AbDVSFg/9b3VOgC/GfZ +vlIKrluRbR/0FUQ72TrLnLJ32RLM+LJfV9D3IzOfNw49uVVs8I0X0UePa2yS83X chuiMlsPtbn+GMB1BnWxL5/+zUx9HJKKwSEvFf7t/7NXXZSVNVF4qnijamFEQ5xO 41Z/Hm/hPa5nGX5UmxLlQcNrzaK4W4Pl+AZZEccpGc+1U+mMDrAFdcTmn68mmx3N M5eee+aYW+5jJU1tCWu0Zr5C9DRQKu+GsjoopBnQPJsB4lN/ev8QafT19aRZW79/ Aj4Ko8ki2rUij62bEzu1iHWKKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBCj8IH 5XR4rHgD+4Rxi4ygV69QMB8GA1UdIwQYMBaAFIIAsaXnwXYFtXM8dP7B7xJzs+ol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUQwQy8xQjBCMzU4RTFE QUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRnVzFjengwX3NIdkVuT3o2 aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnQ3hwZWZCZGdXMWN6eDBfc0h2RW5PejZpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUQwQy8xQjBCMzU4RTFEQUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRn VzFjengwX3NIdkVuT3o2aVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA27VjJRWS9lH3Wejz0AOF89EMyKRuAGb0NfPk8OkOyQdwLLpBhsboH BrTh4xtLvQyYd5XJukpduOcHEHsKD8opkLUsjeinXGxeqn13+Bi7MJYxA8+q+4b7 1JEVoIXGyjAok0ZCRbq3X8qnwYFcuy0asCeoocP1mWwDRAJcIM2g+D6SwMC3toiG /eHhQUaLbJua94N2t797jBINUIhjr4bZoaOC31vB2Ugpe254Fg3eCngx3sulXHgJ 9w6W4PgVRTtO033GYNfo8nuzMsNxY2PI9i22uCed51a2+WD4nzYhdoDV1FDGJu5E G51tTGBMbSYMosonCSSwof+cWkfrAEPZ -----END CERTIFICATE-----Generated at Sat Aug 23 20:40:16 2025 by rpki-client