$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft File: gHwED6kB5dhpWmU03mbD1qC_vMU.mft (raw, json) Hash identifier: d5cqZf9aD+caN0/2s1PJ+XAqPBR9sKH0jedhy5enmqY= Subject key identifier: 1B:71:46:96:AD:D9:35:65:B4:BE:CA:47:97:4E:86:08:40:A1:7F:E5 Authority key identifier: 80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5 Certificate issuer: /CN=A91BC3F1/serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft Manifest number: F4 Signing time: Sat 23 Aug 2025 05:25:44 +0000 Manifest this update: Sat 23 Aug 2025 05:25:43 +0000 Manifest next update: Sat 30 Aug 2025 05:25:43 +0000 Files and hashes: 1: gHwED6kB5dhpWmU03mbD1qC_vMU.crl (hash: OPLVEPP8CNFmTM4Zc3jnhjpLCfZc6j2PDPoephEJCzY=) 2: 7D9F83FE10FA11EFADBBC431C4F9AE02.roa (hash: kRUKk6YhznpQLf70+sbW+4rHruxwNLVLHD+xyjgrv/8=) 3: A697738410FA11EF9A068536C4F9AE02.roa (hash: GgKSSa0DZkr/DMOZ+SWiE+267xJNKIhRXUimhakcIXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC3F1, serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5 Validity Not Before: Aug 23 05:25:43 2025 GMT Not After : Aug 30 05:25:43 2025 GMT Subject: CN=68a950d8-3ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:24:84:ee:ad:98:75:fd:bd:5f:3c:6d:6d:94: 1f:a7:76:92:57:05:1d:29:00:13:81:72:51:ec:45: 92:7e:1b:57:2e:38:f5:df:2c:13:ed:43:1c:ae:00: 8c:46:11:1d:b0:c0:90:77:cb:57:9c:4e:51:55:4a: 8f:31:af:06:ab:f8:36:69:d1:aa:f0:f3:2f:bb:10: 36:65:bc:d2:8e:61:41:d6:8b:4e:c0:13:1e:cd:28: 4f:e0:b1:6e:1a:48:30:8b:f3:ec:9d:93:be:36:da: 41:bd:f3:2d:4f:e1:e7:22:f9:ff:36:51:a0:b0:cc: 84:36:93:ab:45:b1:ca:a2:d3:47:3d:ff:88:14:4c: 70:e6:29:ce:25:3b:4c:80:cf:bd:c9:a4:2f:06:ca: 5f:2e:34:74:39:e1:5f:00:c4:f7:ac:64:44:08:3b: 9b:bb:48:e0:38:ad:2c:48:a7:b5:18:97:cf:64:0d: ac:1a:c7:19:ad:0f:34:59:28:f8:2e:dd:bb:8e:8c: 9f:39:06:a3:97:3b:3d:e3:fe:bd:18:db:d3:b6:92: 3f:d4:62:0b:1e:e5:dc:64:7a:50:8c:34:84:b9:f1: 11:4e:2b:ca:82:5c:b8:4d:ae:e3:84:6d:c8:7d:81: 03:1c:66:bf:53:c6:f4:4f:f3:94:b5:58:f6:f9:d0: 2a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:71:46:96:AD:D9:35:65:B4:BE:CA:47:97:4E:86:08:40:A1:7F:E5 X509v3 Authority Key Identifier: keyid:80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:b9:40:6d:4e:9a:7d:f4:20:bc:7b:8c:d2:db:a1:a2:38:2a: 0e:34:47:23:f3:1d:78:82:e4:f1:38:f8:5a:76:2d:a0:b1:4f: b9:d3:6b:a8:b0:47:42:ba:5d:dc:45:bf:9f:80:28:83:cd:85: af:6c:f6:0f:da:95:6e:e1:3a:1d:1b:35:2e:12:ac:a8:1e:dc: 1d:36:a0:8d:2a:67:78:27:a3:fe:1d:08:5b:fd:5f:fe:a0:cb: c2:96:d0:84:f7:a5:bb:18:e1:ce:75:b1:f9:98:22:d9:6a:18: cc:92:2a:64:ef:bd:8d:38:46:3e:ed:ff:5e:e8:17:3b:f2:9e: d8:1e:90:4d:6d:c1:a2:9d:de:69:59:10:e1:68:e3:e8:b8:c3: e8:09:a5:01:91:4a:3c:35:3e:16:53:6b:4b:35:cc:0a:06:e5: 54:67:76:2b:e9:d2:12:e8:f7:85:91:68:4d:f6:6a:4f:f7:90: 30:cf:81:4b:e7:6a:62:db:1e:f3:24:ed:06:63:8f:54:f5:36: c3:86:0e:93:2d:51:0f:1e:72:2e:15:78:5e:74:51:bc:ed:88: aa:86:64:29:72:69:b8:41:e3:76:f4:92:15:a2:4c:6e:2c:36: 34:0f:43:82:e7:f9:7c:14:12:8b:46:4f:87:cd:a3:28:48:df: 02:01:90:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMzRjExMTAvBgNVBAUTKDgwN0MwNDBGQTkwMUU1RDg2OTVBNjUzNERFNjZDM0Q2 QTBCRkJDQzUwHhcNMjUwODIzMDUyNTQzWhcNMjUwODMwMDUyNTQzWjAYMRYwFAYD VQQDEw02OGE5NTBkOC0zY2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ySE7q2Ydf29XzxtbZQfp3aSVwUdKQATgXJR7EWSfhtXLjj13ywT7UMcrgCM RhEdsMCQd8tXnE5RVUqPMa8Gq/g2adGq8PMvuxA2ZbzSjmFB1otOwBMezShP4LFu Gkgwi/PsnZO+NtpBvfMtT+HnIvn/NlGgsMyENpOrRbHKotNHPf+IFExw5inOJTtM gM+9yaQvBspfLjR0OeFfAMT3rGRECDubu0jgOK0sSKe1GJfPZA2sGscZrQ80WSj4 Lt27joyfOQajlzs94/69GNvTtpI/1GILHuXcZHpQjDSEufERTivKgly4Ta7jhG3I fYEDHGa/U8b0T/OUtVj2+dAquwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtxRpat 2TVltL7KR5dOhghAoX/lMB8GA1UdIwQYMBaAFIB8BA+pAeXYaVplNN5mw9agv7zF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzNGMS85NUI3MTFDNDEw RjkxMUVGODg4QzUyMkZDNEY5QUUwMi9nSHdFRDZrQjVkaHBXbVUwM21iRDFxQ192 TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dId0VENmtCNWRocFdtVTAzbWJEMXFDX3ZNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzNGMS85NUI3MTFDNDEwRjkxMUVGODg4QzUyMkZDNEY5QUUwMi9nSHdFRDZrQjVk aHBXbVUwM21iRDFxQ192TVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQuUBtTpp99CC8e4zS26GiOCoONEcj8x14guTxOPhadi2gsU+502uo sEdCul3cRb+fgCiDzYWvbPYP2pVu4TodGzUuEqyoHtwdNqCNKmd4J6P+HQhb/V/+ oMvCltCE96W7GOHOdbH5mCLZahjMkipk772NOEY+7f9e6Bc78p7YHpBNbcGind5p WRDhaOPouMPoCaUBkUo8NT4WU2tLNcwKBuVUZ3Yr6dIS6PeFkWhN9mpP95Awz4FL 52pi2x7zJO0GY49U9TbDhg6TLVEPHnIuFXhedFG87YiqhmQpcmm4QeN29JIVokxu LDY0D0OC5/l8FBKLRk+HzaMoSN8CAZAf -----END CERTIFICATE-----Generated at Sat Aug 23 15:19:48 2025 by rpki-client