$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft File: GJHVTO9qkMIy_KiR45n5eDhnEe4.mft (raw, json) Hash identifier: xOj4tKDzR2TOYEofn6n2xnaSOlboqvhuaMjwHxyvCgk= Subject key identifier: 04:E0:9B:A2:95:98:F1:98:FF:01:DE:8C:DD:1C:50:B1:7E:00:D2:21 Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft Manifest number: 6E Signing time: Sat 23 Aug 2025 07:08:38 +0000 Manifest this update: Sat 23 Aug 2025 07:08:37 +0000 Manifest next update: Sat 30 Aug 2025 07:08:37 +0000 Files and hashes: 1: GJHVTO9qkMIy_KiR45n5eDhnEe4.crl (hash: AVlHujtrYNWaz8z/pE11Qp6aeEVkv4/L6pYkYo00Y8E=) 2: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (hash: Fo5VkT431J+zLy9igbQ3SFfIsb+FgMetIU9BycrAICA=) 3: C9B06ECCD7A411EF9AB81933C4F9AE02.roa (hash: ftkSUsDxtIg6s2jX13CXTFZ0keaCV5YjPDUyQbqNBxE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:08:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: Aug 23 07:08:37 2025 GMT Not After : Aug 30 07:08:37 2025 GMT Subject: CN=68a968f5-8f62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:97:52:97:35:c1:4a:ae:35:07:d6:fa:2b:d7: 1d:67:63:64:cc:97:ef:44:b9:6e:41:90:31:5d:c5: 5c:cb:63:21:c7:55:c4:85:4c:68:26:60:19:4f:82: f1:6a:c8:c7:ac:c9:bd:8f:ea:39:1d:77:b2:d5:ff: 58:be:14:32:61:20:d6:c8:b7:33:10:2e:28:0c:8c: 2a:eb:35:20:cc:5d:d9:02:fd:1c:0e:07:e9:88:e4: e7:5b:ae:30:4e:02:7e:c1:8e:2b:01:3f:d7:55:77: 89:f2:8a:96:fc:fd:ee:f9:2f:7e:35:ca:d4:1c:72: a1:c0:ef:38:b5:5b:3d:96:35:cf:dd:1a:09:5a:d4: c4:75:cc:c9:51:e4:f4:68:6c:75:3f:a2:9b:d9:12: c2:74:46:5e:80:bb:23:24:8a:a8:9b:e9:34:3c:5c: 40:18:79:4a:b4:cc:99:48:bf:1f:e7:49:42:87:6c: c3:87:57:b8:cd:0e:36:90:99:d1:8c:4a:ad:e4:88: f9:90:5d:ce:87:63:21:f6:f8:47:76:20:d8:99:ff: 88:63:09:f3:ff:e0:21:06:4a:ac:8f:20:76:54:e8: 23:f0:96:d6:5a:29:7d:56:6c:37:41:76:6a:d1:d3: 4b:5c:8a:ca:fc:ed:f1:c1:a8:5f:3e:27:7e:59:7e: a1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E0:9B:A2:95:98:F1:98:FF:01:DE:8C:DD:1C:50:B1:7E:00:D2:21 X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:f3:29:2a:6e:d4:f7:dd:8f:51:ba:39:ab:ee:c5:5d:17:6f: f4:51:0f:d5:7d:72:f0:c2:c2:18:e4:c6:73:54:95:80:ae:42: 36:19:de:e9:60:20:09:be:f4:ed:87:b1:a1:fc:33:42:5e:b6: 12:5f:98:da:30:df:73:04:b6:b4:5c:3b:11:f1:23:31:3c:42: 5f:15:25:42:cb:9b:2e:a8:60:87:c6:de:16:74:a7:30:1c:77: f4:55:9f:c9:42:0d:32:96:64:bd:6f:7a:95:65:c4:a1:86:e3: 2f:ab:80:61:84:27:dd:79:c2:4c:fd:50:c5:ef:8d:cc:94:30: 9f:83:2a:5e:be:d8:7d:89:e5:60:b1:5b:4e:95:24:9f:14:84: 54:7a:89:2c:09:f0:c4:46:b7:a4:e4:44:57:de:81:cc:26:b1: 58:31:6f:ab:c3:05:20:24:4f:d2:43:8b:4d:89:5c:6b:99:c9: e1:20:f8:f5:f9:c1:cd:6e:93:99:a6:9e:63:e7:d2:49:54:29: 32:94:68:b0:28:38:e9:a8:36:e7:37:02:25:23:f3:02:6a:f7: fe:dc:47:8e:57:ae:b0:86:08:62:15:21:3a:8e:4e:0f:25:45: 9f:f9:3d:41:f5:89:0a:84:69:c0:56:90:b1:d5:a1:17:bd:0c: 8f:05:db:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy ODU3NjExMC8GA1UEBRMoMTg5MUQ1NENFRjZBOTBDMjMyRkNBODkxRTM5OUY5Nzgz ODY3MTFFRTAeFw0yNTA4MjMwNzA4MzdaFw0yNTA4MzAwNzA4MzdaMBgxFjAUBgNV BAMTDTY4YTk2OGY1LThmNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMl1KXNcFKrjUH1vor1x1nY2TMl+9EuW5BkDFdxVzLYyHHVcSFTGgmYBlPgvFq yMesyb2P6jkdd7LV/1i+FDJhINbItzMQLigMjCrrNSDMXdkC/RwOB+mI5OdbrjBO An7BjisBP9dVd4nyipb8/e75L341ytQccqHA7zi1Wz2WNc/dGgla1MR1zMlR5PRo bHU/opvZEsJ0Rl6AuyMkiqib6TQ8XEAYeUq0zJlIvx/nSUKHbMOHV7jNDjaQmdGM Sq3kiPmQXc6HYyH2+Ed2INiZ/4hjCfP/4CEGSqyPIHZU6CPwltZaKX1WbDdBdmrR 00tcisr87fHBqF8+J35ZfqEjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBOCbopWY 8Zj/Ad6M3RxQsX4A0iEwHwYDVR0jBBgwFoAUGJHVTO9qkMIy/KiR45n5eDhnEe4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4NTc2LzJERTk0QTlBRDdB NDExRUY5NjRENkQ3Q0M0RjlBRTAyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVl NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0pIVlRPOXFrTUl5X0tpUjQ1bjVlRGhuRWU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4 NTc2LzJERTk0QTlBRDdBNDExRUY5NjRENkQ3Q0M0RjlBRTAyL0dKSFZUTzlxa01J eV9LaVI0NW41ZURobkVlNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAADzKSpu1Pfdj1G6OavuxV0Xb/RRD9V9cvDCwhjkxnNUlYCuQjYZ3ulg IAm+9O2HsaH8M0JethJfmNow33MEtrRcOxHxIzE8Ql8VJULLmy6oYIfG3hZ0pzAc d/RVn8lCDTKWZL1vepVlxKGG4y+rgGGEJ915wkz9UMXvjcyUMJ+DKl6+2H2J5WCx W06VJJ8UhFR6iSwJ8MRGt6TkRFfegcwmsVgxb6vDBSAkT9JDi02JXGuZyeEg+PX5 wc1uk5mmnmPn0klUKTKUaLAoOOmoNuc3AiUj8wJq9/7cR45XrrCGCGIVITqOTg8l RZ/5PUH1iQqEacBWkLHVoRe9DI8F24Y= -----END CERTIFICATE-----Generated at Sun Aug 24 00:52:02 2025 by rpki-client