$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft File: gH5oiqUL0-OL4xtdTE4GCATrFdw.mft (raw, json) Hash identifier: 2gYFnJjXJUGIFIhOZTLlvLXSAv+xwYvvpuC+2J6YupM= Subject key identifier: 9D:5F:AE:39:B1:F7:C9:32:F5:4A:C5:1F:7E:29:04:A0:E3:CB:93:1B Authority key identifier: 80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC Certificate issuer: /CN=A918F0E2/serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft Manifest number: 93 Signing time: Sat 23 Aug 2025 06:42:15 +0000 Manifest this update: Sat 23 Aug 2025 06:42:15 +0000 Manifest next update: Sat 30 Aug 2025 06:42:14 +0000 Files and hashes: 1: gH5oiqUL0-OL4xtdTE4GCATrFdw.crl (hash: 7f0z12rhBcBZvSQcRGXZhc6SVh9gADHhnmCp4S9Jcv0=) 2: EF63DB0EA26B11EF8F077C3FC4F9AE02.roa (hash: etgfr2FMXbKAdL4ONMDhHdEqlj7eq8Os+Vy9Aq6JfHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0E2, serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Validity Not Before: Aug 23 06:42:15 2025 GMT Not After : Aug 30 06:42:14 2025 GMT Subject: CN=68a962c7-bd00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a8:19:97:bd:ba:8d:f7:4d:98:df:89:6c:b7: ce:85:43:0b:77:0d:e6:96:04:1e:8c:b5:fc:de:75: 93:ea:4e:56:9e:51:59:46:cf:61:90:21:f0:9b:bf: 9f:6c:20:8c:84:c4:9e:2c:30:a4:13:74:d7:1e:20: 2d:3d:0a:4d:a4:0f:fa:c4:0e:fd:13:68:6b:76:c9: 22:98:c9:48:c0:4b:45:8d:d5:14:b8:fe:69:34:fd: 99:5b:15:23:bf:0f:ad:22:af:0a:4b:93:1b:2f:7b: 70:84:e6:22:14:4b:7e:d8:8d:14:5d:9f:62:83:3d: c9:d7:aa:62:2f:91:4e:8d:33:d0:f9:9e:88:bb:a4: 16:09:8a:8a:2c:a2:d9:3d:2f:b3:79:9d:e4:11:f5: 4c:98:ff:9d:6d:eb:77:bc:d6:3a:ad:91:fc:17:a6: e8:4d:ef:89:43:c1:e5:72:9c:1a:25:54:98:f1:60: 07:0a:2f:9e:ba:0f:f0:ed:6d:43:b9:c0:c2:64:0c: 5a:2b:91:50:b3:a0:13:bf:8e:5b:29:5e:34:f4:ca: fe:bb:ec:92:57:19:27:cf:77:2b:5d:c4:14:11:01: f9:b6:76:97:27:35:54:2a:19:95:04:00:90:4a:9e: de:de:ff:ab:8f:83:46:80:ab:a5:04:d4:af:27:73: 1a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:5F:AE:39:B1:F7:C9:32:F5:4A:C5:1F:7E:29:04:A0:E3:CB:93:1B X509v3 Authority Key Identifier: keyid:80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:3a:6c:bd:52:7b:ce:a8:84:33:46:71:f8:2f:46:77:92:ec: 8f:fc:28:5d:a2:11:cb:68:00:00:d3:33:d7:de:66:f3:d8:53: 30:33:19:a8:c8:b9:4f:6f:9d:f1:4a:07:33:08:d9:ea:44:40: 6d:32:ee:4f:50:ba:49:9f:93:c8:b3:47:21:ed:36:61:27:61: 7c:07:3c:b3:0e:af:3e:11:8f:22:a7:00:14:84:25:2f:60:f8: 96:9d:73:fe:9e:18:b2:d5:e6:e2:dd:3a:25:ba:53:e1:8b:eb: 9e:ba:e6:96:ca:05:3d:ce:f6:94:c5:c2:a4:7e:d5:bc:41:96: 5d:29:93:a2:c7:34:61:c1:e5:d9:d2:9e:a9:9a:ea:50:f2:15: 18:5d:52:41:d1:62:a3:c9:55:11:64:73:5e:1a:f2:82:2c:ab: 99:a6:39:52:25:54:d6:29:12:3d:fa:47:47:51:cf:94:dd:2d: f6:51:7b:9f:c3:8e:ea:7b:07:bb:d7:ac:b5:b1:dc:76:1f:a4: 16:d8:c9:6a:47:92:19:0c:ab:08:41:32:9e:a1:a8:39:d2:bd: 95:d5:06:c0:e7:d5:0a:64:2b:16:12:26:e0:05:f3:03:78:68: de:c8:d5:47:60:f1:fe:fa:e1:6e:e1:c7:d6:07:5a:08:58:80: d2:ac:1d:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwRTIxMTAvBgNVBAUTKDgwN0U2ODhBQTUwQkQzRTM4QkUzMUI1RDRDNEUwNjA4 MDRFQjE1REMwHhcNMjUwODIzMDY0MjE1WhcNMjUwODMwMDY0MjE0WjAYMRYwFAYD VQQDEw02OGE5NjJjNy1iZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6gZl726jfdNmN+JbLfOhUMLdw3mlgQejLX83nWT6k5WnlFZRs9hkCHwm7+f bCCMhMSeLDCkE3TXHiAtPQpNpA/6xA79E2hrdskimMlIwEtFjdUUuP5pNP2ZWxUj vw+tIq8KS5MbL3twhOYiFEt+2I0UXZ9igz3J16piL5FOjTPQ+Z6Iu6QWCYqKLKLZ PS+zeZ3kEfVMmP+dbet3vNY6rZH8F6boTe+JQ8HlcpwaJVSY8WAHCi+eug/w7W1D ucDCZAxaK5FQs6ATv45bKV409Mr+u+ySVxknz3crXcQUEQH5tnaXJzVUKhmVBACQ Sp7e3v+rj4NGgKulBNSvJ3MapwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1frjmx 98ky9UrFH34pBKDjy5MbMB8GA1UdIwQYMBaAFIB+aIqlC9Pji+MbXUxOBggE6xXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjBFMi8yQjRCQjQyRUEy NUUxMUVGQTM4RDkzNzVDNEY5QUUwMi9nSDVvaXFVTDAtT0w0eHRkVEU0R0NBVHJG ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dINW9pcVVMMC1PTDR4dGRURTRHQ0FUckZkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjBFMi8yQjRCQjQyRUEyNUUxMUVGQTM4RDkzNzVDNEY5QUUwMi9nSDVvaXFVTDAt T0w0eHRkVEU0R0NBVHJGZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoOmy9UnvOqIQzRnH4L0Z3kuyP/ChdohHLaAAA0zPX3mbz2FMwMxmo yLlPb53xSgczCNnqREBtMu5PULpJn5PIs0ch7TZhJ2F8BzyzDq8+EY8ipwAUhCUv YPiWnXP+nhiy1ebi3TolulPhi+ueuuaWygU9zvaUxcKkftW8QZZdKZOixzRhweXZ 0p6pmupQ8hUYXVJB0WKjyVURZHNeGvKCLKuZpjlSJVTWKRI9+kdHUc+U3S32UXuf w47qewe716y1sdx2H6QW2MlqR5IZDKsIQTKeoag50r2V1QbA59UKZCsWEibgBfMD eGjeyNVHYPH++uFu4cfWB1oIWIDSrB3G -----END CERTIFICATE-----Generated at Sat Aug 23 17:16:29 2025 by rpki-client