$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft File: gJ7_H3gZuBdR8XerWv7YK8wypWk.mft (raw, json) Hash identifier: l6qfeI581AaO/NTjIZIkpfsUKx64NSP0/cDM/gz5fX8= Subject key identifier: BE:06:EE:A0:52:F7:07:7A:71:3B:3A:41:1F:A2:20:3B:BA:E2:3A:2F Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 0642 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft Manifest number: 063D Signing time: Fri 22 Aug 2025 22:52:33 +0000 Manifest this update: Fri 22 Aug 2025 22:52:32 +0000 Manifest next update: Fri 29 Aug 2025 22:52:32 +0000 Files and hashes: 1: gJ7_H3gZuBdR8XerWv7YK8wypWk.crl (hash: HKwgEfoJn9O0+E7ZkHohAoL9NHnWhgMmeH+RrBQuA4g=) 2: 687D7178B85D11EBB2E17F26C4F9AE02.roa (hash: IMdjByBIYJm1pushgtHVRf7baWnF2aGGxcZRsZb6Kqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:52:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1602 (0x642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028, serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Validity Not Before: Aug 22 22:52:32 2025 GMT Not After : Aug 29 22:52:32 2025 GMT Subject: CN=68a8f4b0-a676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1f:b3:55:b5:b4:6c:0a:08:18:9d:61:09:49: 3e:0a:73:d4:dd:24:b8:e2:90:09:82:38:55:90:66: be:88:42:a2:7b:14:2d:58:a6:c5:04:0e:7e:54:92: ca:28:dc:64:76:27:14:90:63:fa:7c:a5:db:08:f4: 0c:61:b7:f5:2f:c1:3d:54:fb:8c:27:a7:b7:5f:7d: 6c:f2:8d:8e:51:5a:17:4b:f7:48:77:44:5b:b6:5a: a7:75:fa:a7:6c:ff:6d:c7:f6:91:b9:b3:4b:9d:e1: 85:4b:d9:f4:f7:84:99:9d:be:8a:64:74:e9:09:24: 95:68:1f:2b:e4:4a:a5:e2:86:7f:65:51:47:09:4d: 6b:28:53:89:28:37:ab:90:45:59:75:64:d4:78:03: 44:b7:8f:3d:b4:1f:7a:5d:20:56:72:e9:ea:03:81: 82:29:e3:d0:44:31:61:01:93:cc:00:d4:3f:ea:ac: 2f:e5:c2:2f:23:ef:57:82:2e:a2:69:66:a2:49:34: 84:a4:7a:4e:57:a9:37:28:84:98:07:16:12:ba:84: cc:17:4a:90:b8:ce:2f:d3:32:b0:44:9a:bf:2b:2e: 2d:00:b6:f7:22:a5:23:bc:6b:eb:91:25:9d:72:86: ab:55:c1:fd:18:17:03:6d:a5:ea:5f:e8:75:84:30: 0b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:06:EE:A0:52:F7:07:7A:71:3B:3A:41:1F:A2:20:3B:BA:E2:3A:2F X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:0e:02:31:79:ed:e4:90:f7:58:e1:30:e0:bd:b9:7d:9b:94: 54:1e:cc:de:fc:13:9a:33:d6:5d:1f:2d:52:a3:12:e1:e7:13: d0:b6:7d:15:c0:aa:8f:71:fe:6b:08:56:0a:8a:f1:e7:fa:f9: c4:b3:1d:29:19:f6:93:ff:28:2e:35:f8:ae:1e:8b:79:58:ff: c1:d6:73:8d:64:55:37:fd:ba:d3:41:d5:3d:ad:41:c5:3e:63: 44:38:2b:76:84:33:0e:34:ad:3f:6b:04:e2:6f:5a:6b:07:fa: 4c:d9:17:45:5e:e0:79:42:2f:b7:cd:0f:d2:5e:f7:71:95:2e: b0:ad:59:6f:56:b0:c5:b1:94:ea:31:2a:23:8e:ff:ff:82:a1: 67:9e:30:21:36:2e:f8:d2:51:a9:02:5b:cc:c4:0c:0a:db:80: 0b:12:b7:11:97:00:a2:af:d8:d5:69:5a:0f:b2:14:97:98:a7: a7:7a:39:f5:c3:5f:99:b0:34:b7:c2:f7:40:38:c2:5f:d9:31: 55:a6:1a:e1:79:7a:6e:4e:01:5a:36:98:d1:26:41:55:8f:9e: 36:9f:24:6f:df:fb:3f:26:72:20:a1:28:8b:d4:4f:9d:af:81: bd:8d:87:cb:4d:07:1a:19:f8:e5:11:c2:04:f2:6f:bc:73:9d: 63:fc:7e:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjUwODIyMjI1MjMyWhcNMjUwODI5MjI1MjMyWjAYMRYwFAYD VQQDEw02OGE4ZjRiMC1hNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuR+zVbW0bAoIGJ1hCUk+CnPU3SS44pAJgjhVkGa+iEKiexQtWKbFBA5+VJLK KNxkdicUkGP6fKXbCPQMYbf1L8E9VPuMJ6e3X31s8o2OUVoXS/dId0Rbtlqndfqn bP9tx/aRubNLneGFS9n094SZnb6KZHTpCSSVaB8r5Eql4oZ/ZVFHCU1rKFOJKDer kEVZdWTUeANEt489tB96XSBWcunqA4GCKePQRDFhAZPMANQ/6qwv5cIvI+9Xgi6i aWaiSTSEpHpOV6k3KISYBxYSuoTMF0qQuM4v0zKwRJq/Ky4tALb3IqUjvGvrkSWd coarVcH9GBcDbaXqX+h1hDAL/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4G7qBS 9wd6cTs6QR+iIDu64jovMB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyOC84QTRBREVFNEExMUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVC ZFI4WGVyV3Y3WUs4d3lwV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrDgIxee3kkPdY4TDgvbl9m5RUHsze/BOaM9ZdHy1SoxLh5xPQtn0V wKqPcf5rCFYKivHn+vnEsx0pGfaT/yguNfiuHot5WP/B1nONZFU3/brTQdU9rUHF PmNEOCt2hDMONK0/awTib1prB/pM2RdFXuB5Qi+3zQ/SXvdxlS6wrVlvVrDFsZTq MSojjv//gqFnnjAhNi740lGpAlvMxAwK24ALErcRlwCir9jVaVoPshSXmKenejn1 w1+ZsDS3wvdAOMJf2TFVphrheXpuTgFaNpjRJkFVj542nyRv3/s/JnIgoSiL1E+d r4G9jYfLTQcaGfjlEcIE8m+8c51j/H5L -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:03 2025 by rpki-client