$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: 2+tvQJz/X8iPSAf2QklEcbAhiOSJZ8jt+zQfgtYXVO0= Subject key identifier: D1:6B:53:01:37:3B:85:70:A7:95:6C:6B:F3:A9:0B:3C:CE:F8:1B:6D Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 05F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 05F4 Signing time: Fri 22 Aug 2025 23:07:22 +0000 Manifest this update: Fri 22 Aug 2025 23:07:22 +0000 Manifest next update: Fri 29 Aug 2025 23:07:22 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: Z1EYWa/xaepDLKbRYHnwN3CF/2ZhvuDdi+Uyxpn5Ur8=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:07:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1529 (0x5f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Aug 22 23:07:22 2025 GMT Not After : Aug 29 23:07:22 2025 GMT Subject: CN=68a8f82a-0746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:44:6d:ca:5f:a3:2e:2a:7c:19:61:e4:5f:ce: 4f:d6:c0:ea:eb:dd:74:31:3e:f9:6a:31:72:3b:c2: 8a:1d:a3:30:8d:19:6b:93:c3:b2:fa:9a:1f:be:0c: a3:a9:b3:65:d7:8e:07:c4:3c:fe:27:7c:a6:11:86: a2:ef:00:18:e1:13:ca:3b:3e:de:43:1e:4b:08:39: a0:ff:09:a7:10:7a:bf:37:89:cb:ea:48:fe:8f:d8: e2:92:cd:f7:7c:48:a7:88:8c:16:30:7b:61:db:50: bb:b1:db:e2:65:b2:f8:76:3e:29:e7:af:26:33:da: 99:42:3f:6d:02:35:df:af:f7:c0:e3:6f:40:5a:91: 8e:8b:83:67:ea:0c:16:db:63:a4:f0:d0:22:12:b3: 09:2b:49:73:da:1e:39:62:c9:d4:79:e1:7f:ba:9a: 21:31:72:1b:8f:41:fd:b3:e9:24:ab:ae:24:35:99: 7f:9d:c0:29:29:25:61:95:f9:10:99:af:1a:8d:38: 0a:9a:ea:65:76:54:ec:88:e7:1b:26:6d:57:1b:dc: 0c:b5:5c:ac:3a:5a:bb:95:da:44:29:9d:29:21:c1: 6d:7c:88:db:11:bc:02:19:77:a6:f2:da:4f:db:95: 37:e8:3f:b6:6b:ad:35:23:f2:60:80:a0:a6:b7:66: 25:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:6B:53:01:37:3B:85:70:A7:95:6C:6B:F3:A9:0B:3C:CE:F8:1B:6D X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e8:50:c1:37:4e:67:d4:a9:19:c6:4c:22:b7:79:21:36:92: 7f:fd:45:91:3f:d8:82:5a:ac:ed:db:79:58:6c:29:1c:ef:e1: f9:37:9c:a5:86:99:37:a3:a4:bc:f1:8c:8b:57:cb:8a:29:bf: bf:6a:d2:78:c6:4e:b8:52:c0:a5:b6:f6:21:02:32:d2:e6:18: 02:43:00:c0:b0:a1:bd:a1:36:4a:e7:8c:24:43:c2:10:cd:b7: c1:df:1f:1e:47:92:2a:0b:3d:22:70:8c:0a:85:d4:47:c4:42: c8:de:0c:28:70:e4:45:6e:aa:84:67:2a:a9:88:67:d5:5a:de: 4a:a2:6f:ba:a4:57:40:28:82:ee:d3:2f:9b:ce:35:88:08:a8: 86:51:23:47:28:00:33:82:f7:f7:50:10:8e:3c:56:3a:0f:9e: 18:2e:84:51:be:8d:5d:8c:8f:d3:4a:96:75:05:65:b6:25:a0: 25:1a:be:81:bf:9c:ad:d3:59:08:78:da:ab:da:ee:48:33:4f: 0e:34:53:06:c3:72:63:0b:38:67:0e:66:9f:24:20:33:81:6a: 25:bc:d4:2f:74:a4:8e:79:a0:7e:08:43:9f:31:4c:4f:e1:8d: 1d:54:ab:d1:61:e0:ea:04:bb:00:b0:c8:19:9a:7d:ad:d5:d7: 51:96:0a:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwODIyMjMwNzIyWhcNMjUwODI5MjMwNzIyWjAYMRYwFAYD VQQDEw02OGE4ZjgyYS0wNzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxERtyl+jLip8GWHkX85P1sDq6910MT75ajFyO8KKHaMwjRlrk8Oy+pofvgyj qbNl144HxDz+J3ymEYai7wAY4RPKOz7eQx5LCDmg/wmnEHq/N4nL6kj+j9jiks33 fEiniIwWMHth21C7sdviZbL4dj4p568mM9qZQj9tAjXfr/fA429AWpGOi4Nn6gwW 22Ok8NAiErMJK0lz2h45YsnUeeF/upohMXIbj0H9s+kkq64kNZl/ncApKSVhlfkQ ma8ajTgKmupldlTsiOcbJm1XG9wMtVysOlq7ldpEKZ0pIcFtfIjbEbwCGXem8tpP 25U36D+2a601I/JggKCmt2YlfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFrUwE3 O4Vwp5Vsa/OpCzzO+BttMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL6FDBN05n1KkZxkwit3khNpJ//UWRP9iCWqzt23lYbCkc7+H5N5yl hpk3o6S88YyLV8uKKb+/atJ4xk64UsCltvYhAjLS5hgCQwDAsKG9oTZK54wkQ8IQ zbfB3x8eR5IqCz0icIwKhdRHxELI3gwocORFbqqEZyqpiGfVWt5Kom+6pFdAKILu 0y+bzjWICKiGUSNHKAAzgvf3UBCOPFY6D54YLoRRvo1djI/TSpZ1BWW2JaAlGr6B v5yt01kIeNqr2u5IM08ONFMGw3JjCzhnDmafJCAzgWolvNQvdKSOeaB+CEOfMUxP 4Y0dVKvRYeDqBLsAsMgZmn2t1ddRlgoN -----END CERTIFICATE-----Generated at Sun Aug 24 00:37:05 2025 by rpki-client