$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft File: GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json) Hash identifier: 6/AJz1L2wxRJ80fRoTHHiDcjafMHvqJ55I9zhYW0D5g= Subject key identifier: 62:67:83:70:AB:83:46:C3:2B:61:96:37:6E:62:74:93:45:42:D0:8E Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C Certificate issuer: /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Certificate serial: 0459 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft Manifest number: 0454 Signing time: Thu 03 Jul 2025 00:33:35 +0000 Manifest this update: Thu 03 Jul 2025 00:33:35 +0000 Manifest next update: Thu 10 Jul 2025 00:33:35 +0000 Files and hashes: 1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: L2MOnuD2eQeuQeHnayyy13usgo/5l/ipAy7Kaeb2LHA=) 2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: xFL3ypsjaivEwLZovLg7QH0r6iiczksBr1MYMN2w3rQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09DE, serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Validity Not Before: Jul 3 00:33:35 2025 GMT Not After : Jul 10 00:33:35 2025 GMT Subject: CN=6865cfdf-9376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0a:ac:ee:37:a5:f1:2d:f4:3f:a5:2f:58:a2: e8:8f:cd:a4:1f:b8:73:b9:b7:36:79:7e:1c:95:8c: ad:41:90:9b:df:9a:97:bf:2d:35:73:93:6e:65:42: a4:f0:78:f7:1b:48:47:7d:97:3c:bb:70:68:10:0e: 47:63:ba:a1:dc:d7:91:09:1d:80:f7:c6:37:d4:f5: d0:07:22:53:2c:5e:11:e4:33:95:21:6e:ca:31:53: d6:0e:4a:f6:c4:8f:b9:92:6c:c9:a9:c6:72:93:df: 4e:ad:48:13:f4:0b:36:97:66:da:59:bb:ad:cf:68: 13:e3:0e:54:3f:67:30:23:22:cc:42:d9:e5:e7:ba: e4:5c:b4:ff:8f:73:47:a3:97:26:3f:ac:f5:49:b3: 13:15:aa:d6:d3:4f:9a:83:bd:d4:e2:72:a4:75:44: d4:e2:77:7a:0d:0f:0b:77:c5:41:fe:65:fb:8f:ab: 4b:0e:50:41:e1:94:67:0a:8d:fb:c7:b6:bb:15:0c: 88:21:7e:f3:6d:84:7b:c7:6c:7e:32:54:7a:14:1a: 43:13:b9:f2:e7:0a:7a:0d:5c:00:1d:18:39:a1:22: 92:29:56:65:11:78:9b:60:aa:66:9e:24:e0:51:07: 17:a6:4a:87:a4:2d:27:d7:bc:10:9a:38:cc:5c:d0: 89:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:67:83:70:AB:83:46:C3:2B:61:96:37:6E:62:74:93:45:42:D0:8E X509v3 Authority Key Identifier: keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c4:95:6d:e2:ff:df:b4:03:28:85:f8:37:75:98:0b:1d:b4: eb:31:e3:d2:f7:c2:62:6b:85:07:c9:fa:f6:a9:aa:de:07:f2: 3b:5e:c5:42:8c:29:36:1b:21:e4:a6:da:41:f7:c9:23:18:bb: e4:04:24:a8:3f:49:0e:9f:d0:81:48:0a:21:b6:1a:97:b3:a7: b2:a9:c4:04:e0:42:ce:e8:36:17:6c:d9:f0:31:01:17:0e:0b: f2:b3:4b:b7:4e:60:1d:af:48:1c:b9:e4:b6:93:13:b0:5c:e3: 8d:55:c8:8c:c6:d2:e0:8d:bc:18:54:14:1b:9a:bf:ca:90:a1: 48:1a:be:13:1c:69:f1:f4:31:cc:37:3b:21:f7:e9:31:1f:26: 83:c4:65:0c:db:41:18:d6:b1:d9:fb:1a:4d:a0:b6:c2:f6:e9: 98:de:98:74:4b:5e:b3:2c:b1:ba:b6:d9:15:23:8f:59:e6:b6: 81:80:c7:a7:59:e1:c7:38:06:1e:ac:f3:d8:24:18:97:a6:14: 66:13:30:12:74:00:a8:c4:4f:9b:ea:19:4c:26:0e:a1:40:73: 2a:63:18:39:91:ef:ed:4d:c3:52:66:b8:e1:02:fd:ad:22:1e: 3b:73:da:fa:67:be:26:12:0b:35:61:c4:d7:4e:11:53:33:be: 3d:b3:2f:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5REUxMTAvBgNVBAUTKDE4Mzk4OEZDMERFRTlEQkI4MTExNUU4MkJGREM5NTQx MjU2MTQxM0MwHhcNMjUwNzAzMDAzMzM1WhcNMjUwNzEwMDAzMzM1WjAYMRYwFAYD VQQDEw02ODY1Y2ZkZi05Mzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAqs7jel8S30P6UvWKLoj82kH7hzubc2eX4clYytQZCb35qXvy01c5NuZUKk 8Hj3G0hHfZc8u3BoEA5HY7qh3NeRCR2A98Y31PXQByJTLF4R5DOVIW7KMVPWDkr2 xI+5kmzJqcZyk99OrUgT9As2l2baWbutz2gT4w5UP2cwIyLMQtnl57rkXLT/j3NH o5cmP6z1SbMTFarW00+ag73U4nKkdUTU4nd6DQ8Ld8VB/mX7j6tLDlBB4ZRnCo37 x7a7FQyIIX7zbYR7x2x+MlR6FBpDE7ny5wp6DVwAHRg5oSKSKVZlEXibYKpmniTg UQcXpkqHpC0n17wQmjjMXNCJjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJng3Cr g0bDK2GWN25idJNFQtCOMB8GA1UdIwQYMBaAFBg5iPwN7p27gRFegr/clUElYUE8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlERS84QjMyMDc1QzU5 N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5idUJFVjZDdjl5VlFTVmhR VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dEbUlfQTN1bmJ1QkVWNkN2OXlWUVNWaFFUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlERS84QjMyMDc1QzU5N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5i dUJFVjZDdjl5VlFTVmhRVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGxJVt4v/ftAMohfg3dZgLHbTrMePS98Jia4UHyfr2qareB/I7XsVC jCk2GyHkptpB98kjGLvkBCSoP0kOn9CBSAohthqXs6eyqcQE4ELO6DYXbNnwMQEX Dgvys0u3TmAdr0gcueS2kxOwXOONVciMxtLgjbwYVBQbmr/KkKFIGr4THGnx9DHM Nzsh9+kxHyaDxGUM20EY1rHZ+xpNoLbC9umY3ph0S16zLLG6ttkVI49Z5raBgMen WeHHOAYerPPYJBiXphRmEzASdACoxE+b6hlMJg6hQHMqYxg5ke/tTcNSZrjhAv2t Ih47c9r6Z74mEgs1YcTXThFTM749sy9u -----END CERTIFICATE-----Generated at Fri Jul 4 03:52:26 2025 by rpki-client