$ rpki-client -vvf rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft File: GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft (raw, json) Hash identifier: za/jwOgUA4LUwz1uO1j8TvfbRIenYgbmp2kD0L2+gmk= Subject key identifier: C4:8F:0B:B5:FC:6C:E6:C8:78:1A:2A:83:91:C4:53:67:1E:23:BC:C3 Authority key identifier: 18:3A:98:67:F2:E3:B3:73:16:2B:EF:A6:B8:6E:81:BD:8C:86:88:77 Certificate issuer: /CN=A912A5D4/serialNumber=183A9867F2E3B373162BEFA6B86E81BD8C868877 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft Manifest number: 5E Signing time: Sat 23 Aug 2025 07:20:58 +0000 Manifest this update: Sat 23 Aug 2025 07:20:57 +0000 Manifest next update: Sat 30 Aug 2025 07:20:57 +0000 Files and hashes: 1: GDqYZ_Ljs3MWK--muG6BvYyGiHc.crl (hash: FAMCpFQ/9YWWJH5AhEMzpl7Fb87L7JiXaRyNAbHx8lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.crl rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A5D4, serialNumber=183A9867F2E3B373162BEFA6B86E81BD8C868877 Validity Not Before: Aug 23 07:20:57 2025 GMT Not After : Aug 30 07:20:57 2025 GMT Subject: CN=68a96bd9-c4a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ce:3b:d5:5f:ed:7d:41:4a:9e:07:de:f6:68: 49:71:ca:cb:91:3e:7d:dc:8b:14:18:ab:0a:fb:51: 99:23:b8:7f:a2:00:fe:03:98:a6:17:e2:00:51:ba: d4:4a:28:68:25:d5:bd:17:cb:f9:fb:3a:fa:2c:6e: 2e:7f:a3:38:e0:dd:3a:6e:3b:43:f9:4d:52:9b:53: 4b:5a:4e:cb:d2:83:74:49:f4:34:12:41:ff:d2:16: de:a5:df:91:e4:b7:13:74:05:18:b0:4c:22:5b:35: 46:c6:74:5d:14:28:dd:7e:33:7d:da:b4:69:0f:4b: e3:14:75:c6:16:09:b1:4b:8d:c6:b3:86:a1:12:5c: ff:65:fa:8f:bb:23:8b:fe:01:ee:39:91:7b:46:c5: ef:6a:2b:42:0f:45:d1:aa:2c:bc:30:63:2a:ab:85: 55:8d:77:d5:ca:3a:01:0f:b3:d5:c5:a2:fd:2d:ac: 6d:44:b8:a8:18:de:26:e4:70:85:13:53:3d:cd:1d: 71:d5:86:92:0a:aa:09:86:0f:32:ea:fc:da:a3:5a: 17:bf:1f:ab:db:99:a3:24:ea:fe:d1:98:08:57:36: 29:7a:03:fb:55:02:9e:6c:a4:b3:0b:a8:8e:61:ff: 16:30:bf:ae:d7:5d:f2:99:3b:fb:cc:b4:0f:7b:1b: 24:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:8F:0B:B5:FC:6C:E6:C8:78:1A:2A:83:91:C4:53:67:1E:23:BC:C3 X509v3 Authority Key Identifier: keyid:18:3A:98:67:F2:E3:B3:73:16:2B:EF:A6:B8:6E:81:BD:8C:86:88:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:d4:e2:a6:54:d8:a6:22:cd:a8:65:c6:fc:96:87:f9:93:0a: 91:54:61:30:8a:6d:d8:b7:8a:ce:7a:e1:f1:e4:ce:fa:5e:05: 4e:4b:6b:0a:7d:8e:9b:fc:d9:68:93:25:3c:de:d7:ff:1d:a9: c6:fa:2f:ad:ce:0d:32:af:bc:2a:c9:e4:71:ec:ea:d7:be:74: cc:01:8f:d3:7e:35:19:0d:ce:46:1a:91:c6:0e:08:ed:f3:ae: b0:71:f3:d0:4b:ae:b3:6d:33:2b:9b:92:73:f9:5e:aa:48:9e: 4a:da:c3:d0:14:45:45:75:68:2f:7c:fc:45:51:ad:f2:87:95: 79:0b:6a:b8:9d:1b:7b:dc:3c:b5:eb:6d:5c:8f:16:27:89:5e: 13:cc:a1:14:b8:65:dd:e5:65:1b:1b:80:b3:7b:d0:2f:63:b0: a0:e0:3d:6a:2d:74:e9:ac:41:ba:dd:08:ed:10:e1:f2:59:82: 75:01:2c:cd:41:c0:8a:ce:a3:0d:7e:ed:c2:22:16:ae:10:d2: 48:f0:42:f6:40:64:0d:a8:b0:ff:bb:a3:d5:28:44:91:c5:17: d4:0e:7a:0b:56:8f:91:08:f7:f5:80:0c:1f:19:65:73:b2:d5: 3c:ab:a2:96:16:89:e5:3f:55:ac:90:68:80:5c:1a:cc:6c:e9: e1:50:4a:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTVENDExMC8GA1UEBRMoMTgzQTk4NjdGMkUzQjM3MzE2MkJFRkE2Qjg2RTgxQkQ4 Qzg2ODg3NzAeFw0yNTA4MjMwNzIwNTdaFw0yNTA4MzAwNzIwNTdaMBgxFjAUBgNV BAMTDTY4YTk2YmQ5LWM0YTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRzjvVX+19QUqeB972aElxysuRPn3cixQYqwr7UZkjuH+iAP4DmKYX4gBRutRK KGgl1b0Xy/n7Ovosbi5/ozjg3TpuO0P5TVKbU0taTsvSg3RJ9DQSQf/SFt6l35Hk txN0BRiwTCJbNUbGdF0UKN1+M33atGkPS+MUdcYWCbFLjcazhqESXP9l+o+7I4v+ Ae45kXtGxe9qK0IPRdGqLLwwYyqrhVWNd9XKOgEPs9XFov0trG1EuKgY3ibkcIUT Uz3NHXHVhpIKqgmGDzLq/NqjWhe/H6vbmaMk6v7RmAhXNil6A/tVAp5spLMLqI5h /xYwv67XXfKZO/vMtA97GyQtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxI8Ltfxs 5sh4GiqDkcRTZx4jvMMwHwYDVR0jBBgwFoAUGDqYZ/Ljs3MWK++muG6BvYyGiHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBNUQ0LzZFMEYyRUEwRjND RTExRUY5MTRFRjY0NEM0RjlBRTAyL0dEcVlaX0xqczNNV0stLW11RzZCdll5R2lI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0RxWVpfTGpzM01XSy0tbXVHNkJ2WXlHaUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJB NUQ0LzZFMEYyRUEwRjNDRTExRUY5MTRFRjY0NEM0RjlBRTAyL0dEcVlaX0xqczNN V0stLW11RzZCdll5R2lIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE3U4qZU2KYizahlxvyWh/mTCpFUYTCKbdi3is564fHkzvpeBU5Lawp9 jpv82WiTJTze1/8dqcb6L63ODTKvvCrJ5HHs6te+dMwBj9N+NRkNzkYakcYOCO3z rrBx89BLrrNtMyubknP5XqpInkraw9AURUV1aC98/EVRrfKHlXkLaridG3vcPLXr bVyPFieJXhPMoRS4Zd3lZRsbgLN70C9jsKDgPWotdOmsQbrdCO0Q4fJZgnUBLM1B wIrOow1+7cIiFq4Q0kjwQvZAZA2osP+7o9UoRJHFF9QOegtWj5EI9/WADB8ZZXOy 1TyropYWieU/VayQaIBcGsxs6eFQSls= -----END CERTIFICATE-----Generated at Sat Aug 23 21:38:20 2025 by rpki-client