$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft File: gtgYhh3Upw93CNIF5LiehRTKH2w.mft (raw, json) Hash identifier: xIncz2nYApLbwnL5zBRx2OAbdLGfexhD2D2ThJTtTp8= Subject key identifier: 3C:CB:8C:0E:07:25:7C:31:24:C8:7B:3C:0E:D6:35:A7:CB:89:9F:40 Authority key identifier: 82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C Certificate issuer: /CN=A91C9A8D/serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft Manifest number: 0477 Signing time: Sat 23 Aug 2025 00:40:48 +0000 Manifest this update: Sat 23 Aug 2025 00:40:47 +0000 Manifest next update: Sat 30 Aug 2025 00:40:47 +0000 Files and hashes: 1: gtgYhh3Upw93CNIF5LiehRTKH2w.crl (hash: emBFUE8CwQ8zwcOlviJOEz7Lh0D2bgX0pAkOD+bXmo4=) 2: D2A57AD8DDF111EF969ABC1CC4F9AE02.roa (hash: O1MkwGdKDfVHdsOhHQrlU/aFTqc21EnEwMBW12Asebg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Validity Not Before: Aug 23 00:40:47 2025 GMT Not After : Aug 30 00:40:47 2025 GMT Subject: CN=68a90e0f-983e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:67:7a:51:2b:37:84:3c:50:4d:9d:64:a0:a5: 68:1d:bd:4a:8a:7a:96:67:46:fb:5c:e6:23:cf:4f: ef:8f:5c:4f:7d:24:e6:8c:27:e9:03:ec:e2:dd:ae: 68:dd:ba:72:6a:83:a9:39:3b:58:48:fd:fd:27:76: e2:eb:d6:04:e4:3b:8e:8d:69:0e:22:d3:e9:e3:d6: e1:b2:1e:d1:bb:47:ff:32:6c:47:36:7b:ec:12:c3: 84:05:9b:6e:2a:f4:8d:cd:8f:f3:da:2e:83:fe:03: c5:1f:94:17:17:b0:2d:9c:d1:55:16:21:dd:32:68: 75:84:d4:82:b6:2f:92:98:80:19:ba:40:87:29:71: 5e:97:f0:4f:ec:f6:e3:f4:6f:c2:1b:c1:ca:29:81: 08:71:e1:f8:10:5c:f0:1d:24:28:6c:4a:1d:38:41: 1d:85:10:bf:53:b0:4e:db:43:5b:f9:86:c9:de:6b: b5:ef:38:0f:64:14:b6:f0:d6:f1:00:47:da:9a:cf: 83:f9:b6:8a:da:fa:58:b6:f0:3d:81:c5:23:7f:2e: af:59:83:93:cb:60:f9:6c:a1:ab:53:a9:1d:e3:06: 86:70:8d:76:c0:82:48:93:ec:6c:a2:78:f1:da:9d: 57:18:fc:a0:b3:02:8b:03:23:79:43:20:a2:f4:96: 72:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CB:8C:0E:07:25:7C:31:24:C8:7B:3C:0E:D6:35:A7:CB:89:9F:40 X509v3 Authority Key Identifier: keyid:82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e7:8e:70:82:e2:2d:4d:9c:46:cc:2e:2c:e5:cf:4f:bb:00: 6f:9f:0e:ae:4d:fc:ab:df:85:18:9b:27:ab:20:c2:e5:08:11: 10:2d:3e:97:3f:5a:0e:d3:f2:d1:87:23:dc:bd:5d:c1:0f:7e: 34:11:0f:0f:8a:51:49:20:62:ef:e7:c8:aa:8a:6d:77:f8:42: 02:f6:2d:b3:8e:16:3b:b8:e8:f6:8b:95:ea:af:f0:47:37:d2: 11:4f:d3:0b:74:94:a8:3d:d7:8e:29:5f:0f:09:40:75:d9:98: 82:0e:04:91:c1:d4:83:3f:1f:ba:89:6b:bf:31:48:c1:2c:97: ab:fb:ce:13:fa:10:65:95:b5:76:dd:ac:23:25:76:fd:8e:ba: 9a:8b:02:40:3b:3a:e4:7b:1a:c8:69:ea:a0:7d:1a:b1:12:45: ce:36:0f:15:30:7c:4c:41:e4:dd:53:ed:72:2a:81:c5:d0:50: 21:11:91:2a:67:97:40:16:7d:30:d5:f5:51:98:36:1f:88:3e: d5:3e:ee:78:50:20:48:20:ff:da:88:76:9d:f5:07:3e:a6:13: 2a:ee:90:b3:f9:77:9d:61:bc:3e:0f:db:28:b4:65:47:0d:53: 7d:f4:42:74:d7:4a:b7:c3:b6:a4:9c:f9:41:35:d7:46:45:f7: e3:02:b5:a0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUE4RDExMC8GA1UEBRMoODJEODE4ODYxREQ0QTcwRjc3MDhEMjA1RTRCODlFODUx NENBMUY2QzAeFw0yNTA4MjMwMDQwNDdaFw0yNTA4MzAwMDQwNDdaMBgxFjAUBgNV BAMTDTY4YTkwZTBmLTk4M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeZ3pRKzeEPFBNnWSgpWgdvUqKepZnRvtc5iPPT++PXE99JOaMJ+kD7OLdrmjd unJqg6k5O1hI/f0nduLr1gTkO46NaQ4i0+nj1uGyHtG7R/8ybEc2e+wSw4QFm24q 9I3Nj/PaLoP+A8UflBcXsC2c0VUWId0yaHWE1IK2L5KYgBm6QIcpcV6X8E/s9uP0 b8IbwcopgQhx4fgQXPAdJChsSh04QR2FEL9TsE7bQ1v5hsnea7XvOA9kFLbw1vEA R9qaz4P5tora+li28D2BxSN/Lq9Zg5PLYPlsoatTqR3jBoZwjXbAgkiT7GyiePHa nVcY/KCzAosDI3lDIKL0lnLjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPMuMDgcl fDEkyHs8DtY1p8uJn0AwHwYDVR0jBBgwFoAUgtgYhh3Upw93CNIF5LiehRTKH2ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QThELzMyRjFGNEMyODNF OTExRUNCODczQzg3MUM0RjlBRTAyL2d0Z1loaDNVcHc5M0NOSUY1TGllaFJUS0gy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3RnWWhoM1VwdzkzQ05JRjVMaWVoUlRLSDJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QThELzMyRjFGNEMyODNFOTExRUNCODczQzg3MUM0RjlBRTAyL2d0Z1loaDNVcHc5 M0NOSUY1TGllaFJUS0gydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIvnjnCC4i1NnEbMLizlz0+7AG+fDq5N/KvfhRibJ6sgwuUIERAtPpc/ Wg7T8tGHI9y9XcEPfjQRDw+KUUkgYu/nyKqKbXf4QgL2LbOOFju46PaLleqv8Ec3 0hFP0wt0lKg9144pXw8JQHXZmIIOBJHB1IM/H7qJa78xSMEsl6v7zhP6EGWVtXbd rCMldv2OupqLAkA7OuR7Gshp6qB9GrESRc42DxUwfExB5N1T7XIqgcXQUCERkSpn l0AWfTDV9VGYNh+IPtU+7nhQIEgg/9qIdp31Bz6mEyrukLP5d51hvD4P2yi0ZUcN U330QnTXSrfDtqSc+UE110ZF9+MCtaA= -----END CERTIFICATE-----Generated at Sat Aug 23 23:11:19 2025 by rpki-client