$ rpki-client -vvf rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft File: gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft (raw, json) Hash identifier: im9Yyk9hRy8yx4nqkx6TM/gdW/is0ogmQyHtPIHMv28= Subject key identifier: C5:13:D9:8F:FA:4E:06:5C:31:A3:CD:5F:FE:F0:E8:16:8A:40:CB:AF Authority key identifier: 80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 Certificate issuer: /CN=A9134A42/serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft Manifest number: 67 Signing time: Sat 23 Aug 2025 07:17:50 +0000 Manifest this update: Sat 23 Aug 2025 07:17:50 +0000 Manifest next update: Sat 30 Aug 2025 07:17:50 +0000 Files and hashes: 1: gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl (hash: UeYuoIKbUHumecTbswZjp/7fv7lCiIkD9hi1W6Ey350=) 2: 89040F5A341011F0808A991DC4F9AE02.roa (hash: aQCWDBoOh5osM5C7MBD0kh6o6WsN7hx2kjcWDkx53es=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:17:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134A42, serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Validity Not Before: Aug 23 07:17:50 2025 GMT Not After : Aug 30 07:17:50 2025 GMT Subject: CN=68a96b1e-c3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d4:bb:aa:b7:74:2a:89:f5:49:37:c9:52:d3: e9:02:48:0c:74:b3:e0:09:05:72:2e:07:7e:73:1c: 86:ae:73:78:8a:19:dc:99:13:ed:a9:5e:e6:8d:55: d6:e6:03:14:a4:8d:0f:5d:b9:3a:56:c5:e5:a8:87: 76:e4:e6:45:68:01:8d:be:c0:5d:c0:30:f9:c8:53: 95:dd:5e:10:3b:b4:4b:73:31:d4:70:64:cc:6f:eb: 49:6f:49:77:1a:ae:d7:35:f4:0e:01:51:f7:ea:4f: 16:fa:97:0f:d4:dd:7c:b1:20:ad:9d:8a:c6:6d:85: 04:c5:16:82:84:ab:60:07:93:0d:15:80:71:5a:ae: 23:fd:9a:5d:12:7c:2f:31:35:58:08:51:a6:73:4d: 49:64:69:f8:71:6c:54:b1:e7:72:2a:8b:09:ee:f7: 09:83:e8:c5:52:fd:8c:2b:cc:7f:f4:e0:b0:b9:34: 08:ee:f1:c9:58:de:b0:85:09:ae:b8:dc:e0:82:2b: e4:47:ff:c8:b6:e0:dc:b6:3a:fc:13:07:24:0e:8f: 10:77:b1:ef:65:85:cc:30:1d:56:d7:f1:8a:d2:45: d0:75:d2:8a:e9:8a:8a:06:35:f1:0d:a7:b8:09:bf: 14:e0:0c:0b:da:1a:ff:f1:57:fc:8d:49:9e:71:11: ad:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:13:D9:8F:FA:4E:06:5C:31:A3:CD:5F:FE:F0:E8:16:8A:40:CB:AF X509v3 Authority Key Identifier: keyid:80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:4a:9d:46:b4:12:9a:a1:04:a5:74:1e:be:a4:4b:6d:20:66: 90:61:2f:df:a5:5c:1b:fb:ee:cc:57:b7:fb:55:10:a0:ec:67: 28:90:ee:57:c3:c9:29:f6:8a:52:52:63:1c:b5:7e:7d:53:ce: d2:a0:b9:49:8b:1a:62:8b:88:16:f7:aa:e3:0d:6e:b2:ac:13: 41:a7:2a:cf:1d:27:ca:e9:1b:82:11:b3:09:83:3a:c2:87:3f: 01:23:42:94:ed:66:6c:75:3e:6b:e8:2c:5e:1d:5b:39:73:c2: 82:9d:3b:48:0d:fe:aa:37:81:eb:ca:bc:89:6e:58:22:eb:7e: 67:fc:d6:dc:e6:2d:00:38:6f:35:9b:bb:75:a2:0f:ba:10:0e: 04:29:61:7f:68:19:6b:e3:29:c0:1e:7b:8a:38:dc:a3:8f:39: 6e:76:e9:c7:d0:26:ca:29:c0:3c:8a:a3:9e:0f:29:3d:ab:22: 0b:31:58:fb:45:04:13:b0:5f:32:4c:da:b6:3b:39:bb:f8:00: 50:4e:6b:b3:0f:fa:32:ab:95:e2:96:b6:94:6c:37:ed:41:ad: 7d:d1:78:0e:98:e6:e5:2d:35:7f:dd:f8:a4:be:82:98:6a:04: 8b:43:64:3b:7a:11:4c:ca:6b:2d:7e:e6:d9:d3:b4:2d:97:94: 56:62:fa:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NEE0MjExMC8GA1UEBRMoODBCMThCODFENDdCNjE3NzEzMDRFMEY3NjEwRDExQTdD MzQwNjEyMzAeFw0yNTA4MjMwNzE3NTBaFw0yNTA4MzAwNzE3NTBaMBgxFjAUBgNV BAMTDTY4YTk2YjFlLWMzZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG1Luqt3QqifVJN8lS0+kCSAx0s+AJBXIuB35zHIauc3iKGdyZE+2pXuaNVdbm AxSkjQ9duTpWxeWoh3bk5kVoAY2+wF3AMPnIU5XdXhA7tEtzMdRwZMxv60lvSXca rtc19A4BUffqTxb6lw/U3XyxIK2disZthQTFFoKEq2AHkw0VgHFariP9ml0SfC8x NVgIUaZzTUlkafhxbFSx53Iqiwnu9wmD6MVS/YwrzH/04LC5NAju8clY3rCFCa64 3OCCK+RH/8i24Ny2OvwTByQOjxB3se9lhcwwHVbX8YrSRdB10orpiooGNfENp7gJ vxTgDAvaGv/xV/yNSZ5xEa0fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxRPZj/pO Blwxo81f/vDoFopAy68wHwYDVR0jBBgwFoAUgLGLgdR7YXcTBOD3YQ0Rp8NAYSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0QTQyLzFGQjBGNjc2RUE4 QzExRUY4OEM5MDg1QUM0RjlBRTAyL2dMR0xnZFI3WVhjVEJPRDNZUTBScDhOQVlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0xHTGdkUjdZWGNUQk9EM1lRMFJwOE5BWVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0 QTQyLzFGQjBGNjc2RUE4QzExRUY4OEM5MDg1QUM0RjlBRTAyL2dMR0xnZFI3WVhj VEJPRDNZUTBScDhOQVlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA1KnUa0EpqhBKV0Hr6kS20gZpBhL9+lXBv77sxXt/tVEKDsZyiQ7lfD ySn2ilJSYxy1fn1TztKguUmLGmKLiBb3quMNbrKsE0GnKs8dJ8rpG4IRswmDOsKH PwEjQpTtZmx1PmvoLF4dWzlzwoKdO0gN/qo3gevKvIluWCLrfmf81tzmLQA4bzWb u3WiD7oQDgQpYX9oGWvjKcAee4o43KOPOW526cfQJsopwDyKo54PKT2rIgsxWPtF BBOwXzJM2rY7Obv4AFBOa7MP+jKrleKWtpRsN+1BrX3ReA6Y5uUtNX/d+KS+gphq BItDZDt6EUzKay1+5tnTtC2XlFZi+v8= -----END CERTIFICATE-----Generated at Sat Aug 23 20:24:25 2025 by rpki-client