$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: gDH0hKiZuDdgs5J1EvporOrCDRCbYwF7MpOyK7X6AMA= Subject key identifier: 53:C6:DC:8D:B5:98:1F:61:E3:B1:77:FC:9D:02:4D:EC:11:B2:3D:F5 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 0112 Signing time: Sat 23 Aug 2025 05:03:21 +0000 Manifest this update: Sat 23 Aug 2025 05:03:21 +0000 Manifest next update: Sat 30 Aug 2025 05:03:21 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: 0uQzJ4x5lzL0MwiCNsNaW2MN4Za45Fr5wDFHGsOEaWE=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Aug 23 05:03:21 2025 GMT Not After : Aug 30 05:03:21 2025 GMT Subject: CN=68a94b99-b1b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:48:51:68:53:b2:4f:2e:ea:ac:7c:10:af:84: 90:6b:d7:3e:79:bc:88:ab:e6:eb:eb:aa:7f:a6:78: 5b:9c:73:13:d5:31:1d:9b:d4:6d:b5:a0:93:18:b8: 5b:48:07:1d:8c:20:50:ce:a6:0a:77:29:a5:73:ed: ab:35:c6:01:cf:e5:55:9c:d0:f4:da:73:ac:df:8b: 32:98:be:b6:cd:73:2d:a2:98:2e:2c:52:63:86:27: ef:fe:76:65:43:a6:7a:5b:f7:da:08:16:ef:2f:d6: 7c:db:67:7f:21:7c:fa:fd:ac:60:32:eb:24:96:51: 4b:ff:7d:10:1d:b3:a8:57:36:6f:fb:28:fc:bb:30: 98:d4:fb:f4:fb:bf:3a:d0:dc:6f:0d:5a:b0:3d:50: 00:2e:5c:d2:d0:6b:5e:cb:e3:f0:31:0d:77:b3:e9: c9:eb:90:c4:7d:98:be:b3:4b:1e:16:d3:ed:0c:fd: 4e:2e:be:f4:30:26:72:38:1d:f5:20:c8:ea:5e:f0: c0:8d:03:7d:c7:bc:af:84:88:df:74:a0:9a:86:cb: 30:e4:90:8a:19:6b:9f:2d:01:75:03:bb:11:e7:73: e2:f2:a2:81:fa:a6:0f:e6:20:3e:af:97:c1:7b:6c: 3d:4c:8e:0d:c8:ee:86:95:0f:7a:4f:73:f0:c2:35: f6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C6:DC:8D:B5:98:1F:61:E3:B1:77:FC:9D:02:4D:EC:11:B2:3D:F5 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:dd:78:86:08:de:c2:cd:c3:4a:3e:5b:69:8c:22:69:13:59: c8:ac:46:87:24:0c:bf:45:00:09:82:82:f6:3d:cc:ff:29:01: ca:9a:9b:14:38:66:b1:06:c8:3a:31:2b:e9:52:7e:68:8e:b5: 93:7e:85:a8:ad:de:d7:06:a0:91:e9:dd:35:81:10:40:7c:e3: d0:32:4d:33:76:47:99:06:22:b1:bd:1a:0b:f3:f8:80:a3:b0: f2:1c:26:00:8d:8c:e3:62:ea:d2:e1:7a:6c:5b:b2:e4:de:01: 10:b9:14:49:f7:1e:07:ef:d3:c6:6a:1e:ba:02:1d:a4:99:af: 73:9b:5b:f2:58:7c:6a:53:39:5a:39:1e:9e:b9:55:d2:f7:90: ab:76:76:7c:ea:3c:39:38:89:3e:5f:09:98:df:4a:e9:cf:05: 94:94:b7:d3:50:cf:08:a2:7b:36:f5:be:47:69:78:e9:7a:4e: e4:18:d0:51:09:e0:ac:54:82:5c:53:62:82:fd:fe:ba:f2:88: 0d:fd:44:53:22:8d:c3:57:63:46:2a:a7:8a:e5:94:c3:2e:77: 06:6a:0d:75:60:1f:3e:87:8c:d6:d6:b4:1c:f5:1f:60:82:60: 39:5c:a6:82:91:77:3c:a0:d1:14:ec:ca:05:c9:60:3a:f2:3d: 04:1e:21:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjUwODIzMDUwMzIxWhcNMjUwODMwMDUwMzIxWjAYMRYwFAYD VQQDEw02OGE5NGI5OS1iMWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskhRaFOyTy7qrHwQr4SQa9c+ebyIq+br66p/pnhbnHMT1TEdm9RttaCTGLhb SAcdjCBQzqYKdymlc+2rNcYBz+VVnND02nOs34symL62zXMtopguLFJjhifv/nZl Q6Z6W/faCBbvL9Z822d/IXz6/axgMuskllFL/30QHbOoVzZv+yj8uzCY1Pv0+786 0NxvDVqwPVAALlzS0Gtey+PwMQ13s+nJ65DEfZi+s0seFtPtDP1OLr70MCZyOB31 IMjqXvDAjQN9x7yvhIjfdKCahssw5JCKGWufLQF1A7sR53Pi8qKB+qYP5iA+r5fB e2w9TI4NyO6GlQ96T3PwwjX2fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPG3I21 mB9h47F3/J0CTewRsj31MB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDO3XiGCN7CzcNKPltpjCJpE1nIrEaHJAy/RQAJgoL2Pcz/KQHKmpsU OGaxBsg6MSvpUn5ojrWTfoWord7XBqCR6d01gRBAfOPQMk0zdkeZBiKxvRoL8/iA o7DyHCYAjYzjYurS4XpsW7Lk3gEQuRRJ9x4H79PGah66Ah2kma9zm1vyWHxqUzla OR6euVXS95CrdnZ86jw5OIk+XwmY30rpzwWUlLfTUM8Ions29b5HaXjpek7kGNBR CeCsVIJcU2KC/f668ogN/URTIo3DV2NGKqeK5ZTDLncGag11YB8+h4zW1rQc9R9g gmA5XKaCkXc8oNEU7MoFyWA68j0EHiFN -----END CERTIFICATE-----Generated at Sat Aug 23 10:45:45 2025 by rpki-client