$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: QxXGuj9e02AY5fbPf5TYiDuG+oMNC5o4UIbSjzHcHEs= Subject key identifier: 84:1F:52:CC:24:A2:29:E9:A8:01:33:AD:21:C3:24:AC:EE:F9:66:DB Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 51 Signing time: Sat 23 Aug 2025 07:33:23 +0000 Manifest this update: Sat 23 Aug 2025 07:33:23 +0000 Manifest next update: Sat 30 Aug 2025 07:33:23 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: tOiRSMGMjaqVib3103EawEwnF0zDLghLyuPo25bq4rM=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: nPtDY3U86F0NTmleyc7SWqLKxebatm/VdygMH1CJZ5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Aug 23 07:33:23 2025 GMT Not After : Aug 30 07:33:23 2025 GMT Subject: CN=68a96ec3-216b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e5:8f:71:f7:d2:96:28:49:84:ee:5d:ad:9b: 46:5b:ea:4f:47:01:47:72:ed:e1:1c:00:b5:25:ae: 0b:48:75:b8:0b:94:7d:73:ed:d6:62:71:1b:f4:5c: 0f:23:e7:5c:a6:3e:f4:3a:76:32:9f:2b:dd:34:72: 73:f8:a4:08:97:39:9f:95:88:77:1b:32:c9:38:5d: fd:7c:f6:0c:61:d0:a3:ea:15:fe:bb:a5:e8:5c:d4: ad:cb:51:94:81:86:70:ce:57:37:83:7d:78:79:20: 11:99:7e:cf:08:93:b5:d9:40:89:f7:53:bc:1e:4c: fc:eb:7e:a3:ae:f7:9e:23:07:d3:cf:5f:0c:0b:fd: 89:8a:f0:71:43:92:5f:a6:e9:61:f1:c3:d1:75:ba: d5:5a:61:02:38:0f:9f:b8:f3:ed:25:10:07:27:d7: 5e:9e:21:e9:72:d3:16:92:fb:a1:36:fb:ef:74:ff: 58:30:fc:8e:68:74:91:7b:4f:5a:18:c9:61:2d:d3: 9c:f9:27:e7:68:e9:95:3c:c9:b6:94:05:ba:8b:d3: c2:fd:51:93:38:30:d9:ff:57:ba:21:b5:90:c2:f6: fa:5d:a0:c8:d4:04:03:0b:9d:d8:69:d8:db:43:e6: 9d:0b:3a:0a:5e:b8:0d:83:69:ba:c0:11:37:44:a4: ea:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:1F:52:CC:24:A2:29:E9:A8:01:33:AD:21:C3:24:AC:EE:F9:66:DB X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:a6:47:32:07:55:6b:9f:dd:ac:de:b1:b9:1b:53:b1:dc:13: 03:9a:fb:76:18:c6:90:42:f8:72:7b:05:5c:70:85:03:07:d1: 30:5d:d9:60:f0:5f:bc:08:07:af:ad:ca:da:6a:21:c6:f1:17: 62:69:b2:35:3c:c2:02:34:27:70:d1:45:49:3e:2d:3b:db:a9: 4f:2a:0a:c6:3c:c1:6c:09:43:46:ec:9a:8c:02:01:96:f8:c3: c1:3a:a2:8e:4f:a3:04:61:b9:39:81:83:45:8d:de:df:e5:d5: 5c:bb:a0:1e:f3:c1:c7:0b:5c:b1:a5:40:6d:4e:57:08:73:75: 7b:bc:d2:5e:61:7a:c3:9b:f1:3d:89:af:86:f9:3a:96:52:5c: 3c:56:c2:c9:95:24:b5:3d:bf:a4:65:5a:c5:bd:3f:c8:f0:bb: 6b:51:9a:70:5c:01:8a:d9:25:ae:58:4a:3f:7e:72:9b:1f:d6: 78:a5:ac:d5:17:df:b9:c3:76:7e:9b:38:5a:9d:88:02:9c:98: 86:ff:fb:26:2f:ea:3f:be:c6:d5:62:73:94:96:98:57:b9:b6: f5:73:58:75:b9:05:6a:54:73:2c:d9:ba:b8:8e:3a:ae:65:3a: 3b:d4:43:c9:89:87:22:5a:b5:ca:8f:48:16:25:62:19:f0:db: 1e:e7:1c:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTA4MjMwNzMzMjNaFw0yNTA4MzAwNzMzMjNaMBgxFjAUBgNV BAMTDTY4YTk2ZWMzLTIxNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW5Y9x99KWKEmE7l2tm0Zb6k9HAUdy7eEcALUlrgtIdbgLlH1z7dZicRv0XA8j 51ymPvQ6djKfK900cnP4pAiXOZ+ViHcbMsk4Xf189gxh0KPqFf67pehc1K3LUZSB hnDOVzeDfXh5IBGZfs8Ik7XZQIn3U7weTPzrfqOu954jB9PPXwwL/YmK8HFDkl+m 6WHxw9F1utVaYQI4D5+48+0lEAcn116eIely0xaS+6E2++90/1gw/I5odJF7T1oY yWEt05z5J+do6ZU8ybaUBbqL08L9UZM4MNn/V7ohtZDC9vpdoMjUBAMLndhp2NtD 5p0LOgpeuA2DabrAETdEpOrfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhB9SzCSi KemoATOtIcMkrO75ZtswHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 OUNBL0E5RjI3MjJFMDhBMDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZ V2U2T24xeVU4ZGhZeG9vMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALamRzIHVWuf3azesbkbU7HcEwOa+3YYxpBC+HJ7BVxwhQMH0TBd2WDw X7wIB6+tytpqIcbxF2JpsjU8wgI0J3DRRUk+LTvbqU8qCsY8wWwJQ0bsmowCAZb4 w8E6oo5PowRhuTmBg0WN3t/l1Vy7oB7zwccLXLGlQG1OVwhzdXu80l5hesOb8T2J r4b5OpZSXDxWwsmVJLU9v6RlWsW9P8jwu2tRmnBcAYrZJa5YSj9+cpsf1nilrNUX 37nDdn6bOFqdiAKcmIb/+yYv6j++xtVic5SWmFe5tvVzWHW5BWpUcyzZuriOOq5l OjvUQ8mJhyJatcqPSBYlYhnw2x7nHEY= -----END CERTIFICATE-----Generated at Sat Aug 23 21:36:25 2025 by rpki-client