$ rpki-client -vvf rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft File: gBf49rHsAjxINqRXp7BYQqBxnyg.mft (raw, json) Hash identifier: 1UlzF1ged904f1apDrce7R/xxma/ykPlpxbAbhv16K0= Subject key identifier: D7:E8:A4:CA:25:8B:3C:F1:E2:2F:9A:7F:47:D6:DF:AB:87:E7:14:6D Authority key identifier: 80:17:F8:F6:B1:EC:02:3C:48:36:A4:57:A7:B0:58:42:A0:71:9F:28 Certificate issuer: /CN=A913B088/serialNumber=8017F8F6B1EC023C4836A457A7B05842A0719F28 Certificate serial: 0B6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBf49rHsAjxINqRXp7BYQqBxnyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft Manifest number: 0B65 Signing time: Fri 22 Aug 2025 19:13:15 +0000 Manifest this update: Fri 22 Aug 2025 19:13:15 +0000 Manifest next update: Fri 29 Aug 2025 19:13:15 +0000 Files and hashes: 1: gBf49rHsAjxINqRXp7BYQqBxnyg.crl (hash: MM5ePPNs4hKJb/I0TydEHtVdT2rTEQxCWa3bRumdsX4=) 2: 6DEDEF66387A11EA9450A37CC4F9AE02.roa (hash: o4u5Q2Jc2gCY8tVjsD1bgPzcbwwoDr6mqctN+7fPekU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.crl rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBf49rHsAjxINqRXp7BYQqBxnyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2924 (0xb6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B088, serialNumber=8017F8F6B1EC023C4836A457A7B05842A0719F28 Validity Not Before: Aug 22 19:13:15 2025 GMT Not After : Aug 29 19:13:15 2025 GMT Subject: CN=68a8c14b-f38f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:df:8c:8f:3f:11:21:67:56:96:8e:a7:fa: 3b:11:37:00:c4:1f:bd:81:f7:69:ee:ef:ef:cd:5d: b6:da:c0:63:30:cc:1c:b4:de:64:cf:17:da:30:1c: 93:c2:77:66:b7:fa:03:f6:7d:df:fd:c6:a5:d9:4a: 7c:fe:ee:91:09:dd:2b:32:44:1a:f8:db:33:22:db: c8:1b:3a:7d:eb:4c:bc:98:6a:9e:73:3d:33:29:7d: 04:b4:c9:e5:30:ae:c6:90:32:be:d5:1a:3f:67:e9: 33:65:6f:ea:38:93:fb:c2:77:90:1a:72:49:8b:cc: 04:61:96:dc:7c:4c:50:3a:ef:69:a4:06:39:06:7e: 01:af:39:93:bc:32:2f:c3:7d:54:40:88:be:65:41: 7f:fe:0c:f0:86:c4:3b:28:ee:6a:6a:ab:99:f0:ee: 81:fb:63:09:a6:c0:85:07:9d:69:ad:b0:85:ef:61: 61:c6:45:5b:18:e3:1f:5e:a9:d4:9c:c9:1b:5a:0a: 72:58:51:b7:7d:b7:2a:0b:0c:f4:c0:ab:81:fa:84: 57:52:72:1b:f1:17:d7:7d:fa:76:95:4c:9a:79:83: 8e:06:33:6f:b1:1c:5a:83:e3:40:e0:14:b5:55:fe: 43:04:a3:cc:64:3a:79:25:d6:f6:fd:92:0a:f9:98: 7e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E8:A4:CA:25:8B:3C:F1:E2:2F:9A:7F:47:D6:DF:AB:87:E7:14:6D X509v3 Authority Key Identifier: keyid:80:17:F8:F6:B1:EC:02:3C:48:36:A4:57:A7:B0:58:42:A0:71:9F:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBf49rHsAjxINqRXp7BYQqBxnyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:86:31:ca:61:f0:1f:79:a8:f6:f6:3e:36:2d:d1:be:c8:6f: 73:e5:08:67:fa:a0:ee:bd:9e:97:e8:f1:2a:e9:ef:86:2e:34: be:11:5f:73:25:3e:c3:15:83:f6:a2:b8:a2:8f:e3:d0:b1:42: ba:2c:fa:c0:06:26:dc:a2:63:21:f7:77:65:d3:bc:11:7b:b1: db:e2:5c:ff:9b:1d:65:28:1f:2c:79:32:12:8a:9b:10:cd:40: 05:95:ba:25:57:84:00:11:36:f0:f2:34:96:a2:cd:26:19:4a: 04:0d:42:74:9a:20:73:89:c9:39:2e:d8:29:fd:e8:9f:c1:09: f1:ed:78:b0:c7:df:d1:fe:64:b2:b6:af:67:b3:98:d6:80:35: 98:7e:e3:e8:b6:97:ae:2b:e6:27:34:8f:9e:92:f3:bf:bb:2f: f4:c4:b5:84:e5:b8:ba:58:4b:89:76:3f:c7:49:d3:52:43:0b: 76:f0:c1:c2:b1:04:af:e9:12:1a:13:74:87:ef:10:0a:47:41: d0:ef:3c:6a:6a:9c:cd:93:94:32:88:4b:ea:fe:d3:e9:a2:ba: 73:58:f1:4c:b4:ac:44:a6:ea:5b:95:63:f6:56:e9:76:b8:11: ee:8b:ee:7b:c7:c7:df:89:39:5e:d3:16:eb:ee:d5:48:7e:10: 83:0e:0a:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwODgxMTAvBgNVBAUTKDgwMTdGOEY2QjFFQzAyM0M0ODM2QTQ1N0E3QjA1ODQy QTA3MTlGMjgwHhcNMjUwODIyMTkxMzE1WhcNMjUwODI5MTkxMzE1WjAYMRYwFAYD VQQDEw02OGE4YzE0Yi1mMzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN3fjI8/ESFnVpaOp/o7ETcAxB+9gfdp7u/vzV222sBjMMwctN5kzxfaMByT wndmt/oD9n3f/cal2Up8/u6RCd0rMkQa+NszItvIGzp960y8mGqecz0zKX0EtMnl MK7GkDK+1Ro/Z+kzZW/qOJP7wneQGnJJi8wEYZbcfExQOu9ppAY5Bn4BrzmTvDIv w31UQIi+ZUF//gzwhsQ7KO5qaquZ8O6B+2MJpsCFB51prbCF72FhxkVbGOMfXqnU nMkbWgpyWFG3fbcqCwz0wKuB+oRXUnIb8RfXffp2lUyaeYOOBjNvsRxag+NA4BS1 Vf5DBKPMZDp5Jdb2/ZIK+Zh+hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfopMol izzx4i+af0fW36uH5xRtMB8GA1UdIwQYMBaAFIAX+Pax7AI8SDakV6ewWEKgcZ8o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA4OC9GNTY5Q0Y3NjM4 NzcxMUVBOTM2OTUxNzlDNEY5QUUwMi9nQmY0OXJIc0FqeElOcVJYcDdCWVFxQnhu eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dCZjQ5ckhzQWp4SU5xUlhwN0JZUXFCeG55Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA4OC9GNTY5Q0Y3NjM4NzcxMUVBOTM2OTUxNzlDNEY5QUUwMi9nQmY0OXJIc0Fq eElOcVJYcDdCWVFxQnhueWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4hjHKYfAfeaj29j42LdG+yG9z5Qhn+qDuvZ6X6PEq6e+GLjS+EV9z JT7DFYP2oriij+PQsUK6LPrABibcomMh93dl07wRe7Hb4lz/mx1lKB8seTISipsQ zUAFlbolV4QAETbw8jSWos0mGUoEDUJ0miBzick5Ltgp/eifwQnx7Xiwx9/R/mSy tq9ns5jWgDWYfuPotpeuK+YnNI+ekvO/uy/0xLWE5bi6WEuJdj/HSdNSQwt28MHC sQSv6RIaE3SH7xAKR0HQ7zxqapzNk5QyiEvq/tPporpzWPFMtKxEpupblWP2Vul2 uBHui+57x8ffiTle0xbr7tVIfhCDDgo+ -----END CERTIFICATE-----Generated at Sun Aug 24 04:49:50 2025 by rpki-client