$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: BygTNIR0vs+YpOKHmnJJcohvuxpCeR31uKPyfEGdBds= Subject key identifier: 5E:84:7E:DE:16:3A:37:CE:DB:6B:94:6A:D7:E9:8B:B3:93:18:A3:10 Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B4A Signing time: Fri 22 Aug 2025 19:17:45 +0000 Manifest this update: Fri 22 Aug 2025 19:17:44 +0000 Manifest next update: Fri 29 Aug 2025 19:17:44 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: iaNBZeyiZpTg9qVpEpHGhuhuSIxi67JXPyZcHSY1lsE=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2903 (0xb57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Aug 22 19:17:44 2025 GMT Not After : Aug 29 19:17:44 2025 GMT Subject: CN=68a8c259-6e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:74:51:27:68:9a:7d:8a:b2:78:6b:08:b2:49: 0b:b8:c4:21:07:ab:e7:70:45:91:41:d2:ce:bb:1a: d3:58:6c:6d:8c:15:93:24:15:cf:4c:27:ac:c6:e0: d3:ea:80:4a:8a:48:93:d6:3e:25:bf:ff:41:bd:04: ee:b7:75:56:de:83:78:1e:a4:bf:54:75:80:53:e4: 45:75:02:9a:7c:e0:b5:44:40:b2:3d:ff:b8:81:be: c9:4f:22:ce:1e:7e:7d:81:98:2d:34:a5:de:ca:ec: 48:2c:af:08:0e:5c:b3:c5:57:a2:da:bf:80:28:64: 97:17:8a:f3:04:98:76:e2:8e:00:2d:68:64:9b:f7: 22:bc:a3:e4:5c:4e:4d:e6:62:05:95:74:60:f6:a1: aa:e0:14:d4:4e:f4:d8:7b:d3:59:b4:a1:e6:90:a1: 43:a5:ba:a6:90:31:28:f6:26:b9:f5:0d:da:e1:e4: c8:79:02:ab:db:30:d3:b9:e8:28:c0:bc:9b:6c:93: d4:b6:00:5a:89:c0:48:0b:55:54:4d:07:66:55:e9: 6f:a8:b4:84:2a:fa:02:29:2a:fb:64:d2:cf:d2:ee: 65:3d:73:8a:72:bc:32:4d:29:64:fb:09:71:1a:c6: 27:48:da:8a:4c:ae:ff:e7:2a:1a:91:29:b2:f2:fa: b7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:84:7E:DE:16:3A:37:CE:DB:6B:94:6A:D7:E9:8B:B3:93:18:A3:10 X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:43:ae:e4:14:00:88:3e:30:23:d0:5d:73:83:99:77:ff:c3: 9b:a0:35:2a:40:0a:23:54:b7:b5:16:22:c6:86:1c:f8:c6:32: 99:eb:3b:09:c4:c6:25:a7:65:21:d1:56:4e:c9:94:23:5d:d5: 1e:93:e0:48:89:58:7a:46:06:57:39:4c:ef:e8:53:25:b3:27: 43:17:86:a1:d7:60:11:67:6d:02:bf:9a:4c:e0:a0:be:a5:1b: d8:ee:8f:e4:35:18:d3:ca:ad:c9:c7:c7:1e:e0:6b:35:ab:7e: ca:bc:b3:bf:53:7d:2e:49:3c:c1:ab:11:50:c4:0b:aa:2c:ac: e3:1f:68:ca:90:61:d8:a3:25:ba:20:5f:51:31:61:46:fd:39: 0f:4b:62:2c:dd:15:6b:19:5a:d7:07:09:2c:d6:25:02:ee:fe: dc:a2:6e:fa:14:fc:02:39:fd:c5:07:c5:2b:14:0a:ca:5f:cb: eb:5a:40:80:2e:1f:eb:69:6d:a9:97:a6:b7:1e:bb:dd:62:fc: bd:4e:50:e4:c8:23:9b:83:97:fc:c5:62:15:bc:de:14:f9:26: 65:98:17:2e:17:05:c5:cf:79:5b:17:4c:7c:f7:bf:0b:85:f7: f6:19:9a:49:e1:ef:ee:04:c5:e3:f1:77:44:be:dc:82:d1:63: 10:0d:21:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUwODIyMTkxNzQ0WhcNMjUwODI5MTkxNzQ0WjAYMRYwFAYD VQQDEw02OGE4YzI1OS02ZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXRRJ2iafYqyeGsIskkLuMQhB6vncEWRQdLOuxrTWGxtjBWTJBXPTCesxuDT 6oBKikiT1j4lv/9BvQTut3VW3oN4HqS/VHWAU+RFdQKafOC1RECyPf+4gb7JTyLO Hn59gZgtNKXeyuxILK8IDlyzxVei2r+AKGSXF4rzBJh24o4ALWhkm/civKPkXE5N 5mIFlXRg9qGq4BTUTvTYe9NZtKHmkKFDpbqmkDEo9ia59Q3a4eTIeQKr2zDTuego wLybbJPUtgBaicBIC1VUTQdmVelvqLSEKvoCKSr7ZNLP0u5lPXOKcrwyTSlk+wlx GsYnSNqKTK7/5yoakSmy8vq3kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6Eft4W OjfO22uUatfpi7OTGKMQMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9Q67kFACIPjAj0F1zg5l3/8OboDUqQAojVLe1FiLGhhz4xjKZ6zsJ xMYlp2Uh0VZOyZQjXdUek+BIiVh6RgZXOUzv6FMlsydDF4ah12ARZ20Cv5pM4KC+ pRvY7o/kNRjTyq3Jx8ce4Gs1q37KvLO/U30uSTzBqxFQxAuqLKzjH2jKkGHYoyW6 IF9RMWFG/TkPS2Is3RVrGVrXBwks1iUC7v7com76FPwCOf3FB8UrFArKX8vrWkCA Lh/raW2pl6a3HrvdYvy9TlDkyCObg5f8xWIVvN4U+SZlmBcuFwXFz3lbF0x8978L hff2GZpJ4e/uBMXj8XdEvtyC0WMQDSE5 -----END CERTIFICATE-----Generated at Sat Aug 23 18:20:37 2025 by rpki-client