$ rpki-client -vvf rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft File: GF_2ZH4elndQE3e1UVR5uelGEGc.mft (raw, json) Hash identifier: Ek8se+qA41afrQpEDgKuhnquqeEtdHl+5TwanuOufNE= Subject key identifier: A6:98:8F:83:A7:24:04:C9:1E:FF:EC:96:5F:1B:A6:AF:97:34:6A:9E Authority key identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 Certificate issuer: /CN=A9193C85/serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Certificate serial: 11BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft Manifest number: 11B1 Signing time: Fri 22 Aug 2025 17:19:49 +0000 Manifest this update: Fri 22 Aug 2025 17:19:48 +0000 Manifest next update: Fri 29 Aug 2025 17:19:48 +0000 Files and hashes: 1: GF_2ZH4elndQE3e1UVR5uelGEGc.crl (hash: 7NWsczNc01TUNAejj9HSfNqAEo7zE+81zD9ydtyfsAE=) 2: A1E87910832A11ECA409521EC4F9AE02.roa (hash: pWwzKrBi4ex9pqtRPtIPRabSwqTwDTnYV8iW2v8i1Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:19:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4540 (0x11bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193C85, serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Validity Not Before: Aug 22 17:19:48 2025 GMT Not After : Aug 29 17:19:48 2025 GMT Subject: CN=68a8a6b5-ed5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fa:ba:86:38:4b:33:63:fe:83:9c:cf:69:33: e1:e3:01:40:e0:36:46:cc:89:b7:33:d0:b4:3b:98: b7:2c:3f:31:03:56:66:43:93:02:7b:25:85:ad:4a: 43:c8:eb:a5:7b:89:ba:9e:28:5a:46:c6:d7:71:91: 5a:ea:17:4d:5d:d2:0e:0e:41:c7:00:ef:ff:16:9d: 70:3d:12:93:45:0d:1c:9c:48:06:05:ac:e6:a6:91: 01:87:78:d5:82:70:9f:5f:0c:1a:0d:75:f9:97:5c: 0f:fd:fb:54:32:1c:95:f8:c5:68:0d:ab:45:a4:27: 18:ae:ba:a1:05:7b:9c:09:f9:70:6b:80:9b:fe:95: 64:d5:a8:cc:14:21:3a:26:99:a8:e1:16:82:e0:a7: bd:a7:04:76:2a:65:d4:c6:cd:58:86:b2:0a:e3:d5: 10:73:4c:74:15:c0:88:09:bf:d3:3e:ed:cf:08:12: 05:c4:dd:b0:a3:c9:a3:00:25:9b:f1:4c:50:f6:f1: bd:fc:f2:03:c1:0a:df:32:3f:0e:a7:b2:ec:01:55: cc:83:a5:68:15:1e:14:14:45:20:c7:12:f9:bd:0d: 48:46:be:09:cf:ca:c2:f9:2e:d5:9c:92:1f:4b:ff: 67:03:86:ed:09:84:b7:42:bf:ec:e2:e0:b3:50:fa: 64:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:98:8F:83:A7:24:04:C9:1E:FF:EC:96:5F:1B:A6:AF:97:34:6A:9E X509v3 Authority Key Identifier: keyid:18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:7c:d0:c4:81:b5:33:26:89:a1:49:50:fe:87:2f:31:8c:7b: f5:11:48:9a:a9:8b:01:e7:79:ce:1e:cc:f0:8a:d6:50:87:43: db:13:d1:4c:b7:4e:92:4c:d7:0c:2a:62:fa:3d:46:47:7a:75: 8c:c7:ba:52:4e:89:d0:61:cf:6e:d8:a1:9a:da:63:64:66:e2: 46:1a:ca:8a:66:8e:df:c5:71:96:05:98:8f:c5:f9:74:e9:3b: a5:51:b4:38:89:18:20:db:78:b7:bc:f6:42:5d:88:80:65:66: 00:24:61:b8:ec:4d:cc:94:27:34:b0:31:7d:da:95:9f:06:5f: 9b:d5:e6:13:cc:9e:19:2a:f7:20:7c:b9:e3:ad:06:ef:20:1e: 99:ab:c0:84:6a:de:6b:16:3e:87:10:93:21:63:ee:ed:f7:d9: d2:cb:50:24:c7:73:51:32:8d:be:37:c4:4f:bf:9e:85:e2:6b: d2:88:ad:de:9b:a9:e1:27:f9:7a:f5:de:43:7b:b0:d8:29:56: 86:96:2c:5b:b4:90:c8:a6:54:d5:31:eb:86:e7:e9:0b:98:f9: ff:0f:c5:dc:c4:8e:9e:20:98:9d:43:ed:04:1c:ee:56:ae:8b: 5a:fc:b2:b0:19:99:8d:73:37:66:f2:12:d2:cd:e3:36:9b:c4: ad:fb:2e:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNDODUxMTAvBgNVBAUTKDE4NUZGNjY0N0UxRTk2Nzc1MDEzNzdCNTUxNTQ3OUI5 RTk0NjEwNjcwHhcNMjUwODIyMTcxOTQ4WhcNMjUwODI5MTcxOTQ4WjAYMRYwFAYD VQQDEw02OGE4YTZiNS1lZDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnPq6hjhLM2P+g5zPaTPh4wFA4DZGzIm3M9C0O5i3LD8xA1ZmQ5MCeyWFrUpD yOule4m6nihaRsbXcZFa6hdNXdIODkHHAO//Fp1wPRKTRQ0cnEgGBazmppEBh3jV gnCfXwwaDXX5l1wP/ftUMhyV+MVoDatFpCcYrrqhBXucCflwa4Cb/pVk1ajMFCE6 Jpmo4RaC4Ke9pwR2KmXUxs1YhrIK49UQc0x0FcCICb/TPu3PCBIFxN2wo8mjACWb 8UxQ9vG9/PIDwQrfMj8Op7LsAVXMg6VoFR4UFEUgxxL5vQ1IRr4Jz8rC+S7VnJIf S/9nA4btCYS3Qr/s4uCzUPpk1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaYj4On JATJHv/sll8bpq+XNGqeMB8GA1UdIwQYMBaAFBhf9mR+HpZ3UBN3tVFUebnpRhBn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0M4NS80RkY0Q0I3MkZE RTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxuZFFFM2UxVVZSNXVlbEdF R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dGXzJaSDRlbG5kUUUzZTFVVlI1dWVsR0VHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0M4NS80RkY0Q0I3MkZERTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxu ZFFFM2UxVVZSNXVlbEdFR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAfNDEgbUzJomhSVD+hy8xjHv1EUiaqYsB53nOHszwitZQh0PbE9FM t06STNcMKmL6PUZHenWMx7pSTonQYc9u2KGa2mNkZuJGGsqKZo7fxXGWBZiPxfl0 6TulUbQ4iRgg23i3vPZCXYiAZWYAJGG47E3MlCc0sDF92pWfBl+b1eYTzJ4ZKvcg fLnjrQbvIB6Zq8CEat5rFj6HEJMhY+7t99nSy1Akx3NRMo2+N8RPv56F4mvSiK3e m6nhJ/l69d5De7DYKVaGlixbtJDIplTVMeuG5+kLmPn/D8XcxI6eIJidQ+0EHO5W rota/LKwGZmNczdm8hLSzeM2m8St+y6M -----END CERTIFICATE-----Generated at Sun Aug 24 03:10:31 2025 by rpki-client