$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: pfjFxjgr1Sia+Epr7CjC+0VkWxownhaNw2i9/FDfPC4= Subject key identifier: 26:59:23:3A:6B:F0:35:71:15:32:F6:7D:03:5B:6D:F7:26:1F:BF:B5 Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 063C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 0637 Signing time: Fri 22 Aug 2025 22:53:55 +0000 Manifest this update: Fri 22 Aug 2025 22:53:55 +0000 Manifest next update: Fri 29 Aug 2025 22:53:55 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: SscU86ubvc5AGcHPnu2u+2TaCNckCzIDoMY+fVeadCg=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: ljHjZ6k7MiI2pN3VX1Cgx4pPDWP1h2Cokp04xup/nNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Aug 22 22:53:55 2025 GMT Not After : Aug 29 22:53:55 2025 GMT Subject: CN=68a8f503-1069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c2:d0:b6:99:e2:5c:a3:aa:e6:4c:0f:7b:b7: c5:b1:6d:d6:02:ed:bb:20:75:32:34:13:5b:43:6a: e7:f4:a0:93:08:ea:af:14:03:db:76:72:b2:12:c6: c2:cb:3a:9d:1b:18:a3:07:55:bd:fc:61:d9:20:9e: b1:5e:b9:e0:16:89:9f:fd:f2:14:de:0d:0a:25:dc: 4c:22:ed:94:93:7e:8c:f9:d4:92:12:a4:e5:20:0a: b7:bb:a1:12:fd:0e:3d:06:68:a2:ae:b3:66:84:b2: 55:e1:c7:7c:22:e2:55:43:8d:4d:24:14:52:14:48: f6:44:4a:ba:d1:e5:e9:9a:f2:db:fe:08:84:34:27: 47:85:8a:72:d2:36:10:ce:31:c5:3b:65:29:6d:03: 1a:93:bf:13:fd:4a:bb:e9:2b:4e:46:88:bc:49:56: 7c:46:da:6a:0b:c7:c4:5c:e2:98:ac:9f:31:cc:35: 62:dc:da:81:d0:b6:b8:6b:74:49:56:66:fc:9a:87: 89:27:fb:0b:13:4c:f4:46:8f:21:fc:80:83:c8:02: dc:09:0b:62:56:44:a1:94:82:a3:78:a7:a5:73:51: 9b:6e:8a:a0:4a:fc:c5:e4:73:61:01:ff:2d:bc:59: e5:0f:f1:66:a2:24:5f:30:8d:c4:a0:88:e9:48:cd: 8d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:59:23:3A:6B:F0:35:71:15:32:F6:7D:03:5B:6D:F7:26:1F:BF:B5 X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:97:96:3a:a4:97:8a:b7:a7:3a:21:b6:76:7d:a7:2b:c7:d6: e2:27:49:8e:ac:f5:0e:2a:71:ad:73:de:cb:c4:b2:bc:01:f8: 5f:f3:1a:b4:47:d9:8e:a5:9a:1f:93:a9:82:83:b1:65:30:98: 3a:7f:06:e8:2c:b9:df:05:eb:88:3c:6f:b9:78:01:04:66:8b: 80:63:fc:ae:79:e0:a0:44:ba:23:73:f8:82:fe:95:d6:fa:3f: 65:2c:9e:55:a2:bf:e4:74:a2:d8:6f:30:00:e1:bf:61:07:2c: a6:e7:68:2f:64:58:26:ee:ea:24:4f:cf:34:95:56:fa:cb:b2: b9:e7:1e:ac:86:51:72:0e:2e:35:03:c6:59:53:50:01:2f:51: 93:fb:21:a4:c7:d1:05:b2:3d:57:68:4f:42:25:24:86:78:d5: 0d:bb:f4:18:ec:91:36:14:ae:4d:47:f5:f7:b2:57:d8:34:65: ce:ac:c7:68:07:aa:ff:c8:f6:ae:70:76:f1:ef:f6:6c:17:56: 09:10:24:d4:40:ca:e0:1f:df:55:24:ca:f6:e7:7b:2f:3c:51: 13:c8:8f:94:2a:e7:76:41:44:39:13:df:41:e7:99:cf:c4:8c: 17:09:32:98:b5:e1:a4:6e:12:2e:4f:34:7e:fe:8f:03:c0:75: f5:00:54:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjUwODIyMjI1MzU1WhcNMjUwODI5MjI1MzU1WjAYMRYwFAYD VQQDEw02OGE4ZjUwMy0xMDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8LQtpniXKOq5kwPe7fFsW3WAu27IHUyNBNbQ2rn9KCTCOqvFAPbdnKyEsbC yzqdGxijB1W9/GHZIJ6xXrngFomf/fIU3g0KJdxMIu2Uk36M+dSSEqTlIAq3u6ES /Q49BmiirrNmhLJV4cd8IuJVQ41NJBRSFEj2REq60eXpmvLb/giENCdHhYpy0jYQ zjHFO2UpbQMak78T/Uq76StORoi8SVZ8RtpqC8fEXOKYrJ8xzDVi3NqB0La4a3RJ Vmb8moeJJ/sLE0z0Ro8h/ICDyALcCQtiVkShlIKjeKelc1GbboqgSvzF5HNhAf8t vFnlD/FmoiRfMI3EoIjpSM2NwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZZIzpr 8DVxFTL2fQNbbfcmH7+1MB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAul5Y6pJeKt6c6IbZ2facrx9biJ0mOrPUOKnGtc97LxLK8Afhf8xq0 R9mOpZofk6mCg7FlMJg6fwboLLnfBeuIPG+5eAEEZouAY/yueeCgRLojc/iC/pXW +j9lLJ5Vor/kdKLYbzAA4b9hByym52gvZFgm7uokT880lVb6y7K55x6shlFyDi41 A8ZZU1ABL1GT+yGkx9EFsj1XaE9CJSSGeNUNu/QY7JE2FK5NR/X3slfYNGXOrMdo B6r/yPaucHbx7/ZsF1YJECTUQMrgH99VJMr253svPFETyI+UKud2QUQ5E99B55nP xIwXCTKYteGkbhIuTzR+/o8DwHX1AFQO -----END CERTIFICATE-----Generated at Sat Aug 23 16:02:39 2025 by rpki-client