$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft File: GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json) Hash identifier: CbjyfNEsKlN7dq5yDwhs2GBi3lkiinlzkhuzomM/6fo= Subject key identifier: 7B:82:D2:CC:CC:D9:51:03:2B:C3:14:E4:44:5E:2F:85:93:26:BE:FF Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C Certificate issuer: /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Certificate serial: 0473 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft Manifest number: 046E Signing time: Sat 23 Aug 2025 00:21:51 +0000 Manifest this update: Sat 23 Aug 2025 00:21:51 +0000 Manifest next update: Sat 30 Aug 2025 00:21:51 +0000 Files and hashes: 1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: xS/GNTS7zv/AK2SbvRgRJTHSw3me53WfOt/cyAtSKnI=) 2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: xFL3ypsjaivEwLZovLg7QH0r6iiczksBr1MYMN2w3rQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1139 (0x473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09DE, serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Validity Not Before: Aug 23 00:21:51 2025 GMT Not After : Aug 30 00:21:51 2025 GMT Subject: CN=68a9099f-92e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:04:47:28:41:c6:a6:a2:7e:f5:5c:6c:e7:95: d1:de:36:0b:a2:7e:92:e4:dc:e8:31:b1:b1:02:d0: 48:89:10:c7:1f:3a:6c:55:93:3d:61:53:33:d5:da: 20:07:ce:5f:14:69:c8:2b:7c:49:24:38:32:45:53: 5d:45:b9:ae:f7:ee:a3:24:26:31:f9:70:4d:32:22: f4:a4:e4:14:fb:c3:e5:eb:48:16:03:a6:46:ee:d4: 43:95:ed:74:5c:3d:bc:80:c7:39:31:c7:7a:d6:d0: c3:19:77:97:5f:32:c5:0a:b7:92:90:10:65:fc:de: 5f:41:fb:ef:8a:b2:32:d6:e7:d5:2c:c4:9f:22:72: 49:b2:45:b0:1d:cc:df:5e:ac:c8:0d:3e:44:3d:98: f3:74:2e:87:bd:ee:87:26:a0:f5:4d:8a:a1:1f:3b: 61:c8:b8:2f:07:e0:a0:e6:5f:bb:7d:3e:d5:ac:cd: f4:20:83:78:49:ae:63:93:8b:a9:41:b1:ac:78:87: d7:8c:48:11:78:bc:4d:b9:a4:96:75:4a:48:c8:84: c0:88:a1:3a:8b:35:d8:c0:2b:f5:72:22:78:c0:69: 16:d4:64:dd:69:0f:0a:b6:5e:8e:c6:25:e2:08:f0: bc:41:31:89:24:75:5a:fe:5a:61:98:56:d5:27:48: 29:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:82:D2:CC:CC:D9:51:03:2B:C3:14:E4:44:5E:2F:85:93:26:BE:FF X509v3 Authority Key Identifier: keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e9:74:8e:67:a4:fb:5e:31:c6:cf:86:c1:89:5d:33:04:84: 9e:d9:23:03:19:be:cc:2c:5e:ac:c6:a9:ca:1d:9a:b3:5c:73: 87:03:6d:80:d9:2b:07:d0:a9:24:62:19:ee:24:90:17:78:21: 29:b1:0e:98:92:43:df:fd:ff:2c:8a:16:c1:75:5b:1b:62:fa: d6:ee:47:d5:ab:88:3a:5f:5b:16:01:10:05:70:71:0f:cf:88: 2f:6f:a9:1d:e3:7a:3b:d7:fa:30:be:49:93:93:fe:8a:97:c9: 8a:eb:cc:10:f1:71:c3:4e:43:a0:5c:26:d7:ed:ef:07:79:07: 27:29:3c:3c:70:9e:7a:c5:78:34:ca:f8:b2:2a:33:08:fd:de: 35:1f:71:dc:55:72:71:5a:d5:02:c9:c5:de:4a:08:30:d1:e8: 82:3f:29:cd:98:97:a6:e8:36:fe:a9:d7:0d:3c:f2:22:71:5e: 14:65:28:4a:df:74:5e:0f:bc:b8:7e:72:ff:95:52:27:a8:d4: 09:74:55:34:84:c5:b8:16:45:e4:79:7c:02:da:76:6c:77:a2: bd:e5:10:30:51:20:1f:5f:d1:c2:08:d5:a9:a5:22:62:9e:ff: ca:e0:2a:c5:d6:b1:47:4a:06:c3:5f:bd:d1:ff:dd:58:96:06: da:4d:c1:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5REUxMTAvBgNVBAUTKDE4Mzk4OEZDMERFRTlEQkI4MTExNUU4MkJGREM5NTQx MjU2MTQxM0MwHhcNMjUwODIzMDAyMTUxWhcNMjUwODMwMDAyMTUxWjAYMRYwFAYD VQQDEw02OGE5MDk5Zi05MmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wRHKEHGpqJ+9Vxs55XR3jYLon6S5NzoMbGxAtBIiRDHHzpsVZM9YVMz1dog B85fFGnIK3xJJDgyRVNdRbmu9+6jJCYx+XBNMiL0pOQU+8Pl60gWA6ZG7tRDle10 XD28gMc5Mcd61tDDGXeXXzLFCreSkBBl/N5fQfvvirIy1ufVLMSfInJJskWwHczf XqzIDT5EPZjzdC6Hve6HJqD1TYqhHzthyLgvB+Cg5l+7fT7VrM30IIN4Sa5jk4up QbGseIfXjEgReLxNuaSWdUpIyITAiKE6izXYwCv1ciJ4wGkW1GTdaQ8Ktl6OxiXi CPC8QTGJJHVa/lphmFbVJ0gpRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuC0szM 2VEDK8MU5EReL4WTJr7/MB8GA1UdIwQYMBaAFBg5iPwN7p27gRFegr/clUElYUE8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlERS84QjMyMDc1QzU5 N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5idUJFVjZDdjl5VlFTVmhR VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dEbUlfQTN1bmJ1QkVWNkN2OXlWUVNWaFFUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlERS84QjMyMDc1QzU5N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5i dUJFVjZDdjl5VlFTVmhRVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI6XSOZ6T7XjHGz4bBiV0zBISe2SMDGb7MLF6sxqnKHZqzXHOHA22A 2SsH0KkkYhnuJJAXeCEpsQ6YkkPf/f8sihbBdVsbYvrW7kfVq4g6X1sWARAFcHEP z4gvb6kd43o71/owvkmTk/6Kl8mK68wQ8XHDTkOgXCbX7e8HeQcnKTw8cJ56xXg0 yviyKjMI/d41H3HcVXJxWtUCycXeSggw0eiCPynNmJem6Db+qdcNPPIicV4UZShK 33ReD7y4fnL/lVInqNQJdFU0hMW4FkXkeXwC2nZsd6K95RAwUSAfX9HCCNWppSJi nv/K4CrF1rFHSgbDX73R/91YlgbaTcGk -----END CERTIFICATE-----Generated at Sun Aug 24 01:02:18 2025 by rpki-client