$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft File: anyGILARkTWk4pZxECAuepIQ_XY.mft (raw, json) Hash identifier: 6FW1nLkdN3M29uJqbBnUODsmwbVFKSd5ergxkiK05uI= Subject key identifier: D9:C3:1A:6D:2E:92:A2:BF:22:C2:DE:33:55:02:3E:1E:FA:79:E2:89 Authority key identifier: 6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 Certificate issuer: /CN=A91D2659/serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Certificate serial: 0CDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft Manifest number: 0CD5 Signing time: Fri 22 Aug 2025 18:12:47 +0000 Manifest this update: Fri 22 Aug 2025 18:12:47 +0000 Manifest next update: Fri 29 Aug 2025 18:12:47 +0000 Files and hashes: 1: anyGILARkTWk4pZxECAuepIQ_XY.crl (hash: wayYnAqxmPkcfwQdzVq8l+2wTcpFuRnkCiVOPLxnfp8=) 2: 3ED2E738F0C511E9AD7DCC11C4F9AE02.roa (hash: Wr1nIVXklBpPXHRfvPiRNdEC8EzroDNqpMylbn6Uxs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3292 (0xcdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2659, serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Validity Not Before: Aug 22 18:12:47 2025 GMT Not After : Aug 29 18:12:47 2025 GMT Subject: CN=68a8b31f-f941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a0:18:dd:20:8e:94:6a:2b:fb:ca:03:ce:14: 21:5a:f8:0b:79:d7:84:f6:93:ad:c1:c1:38:3f:81: 9a:a2:74:57:57:6e:57:6c:2b:de:a0:b5:04:50:87: b4:3d:7d:1f:6f:44:19:c4:e5:09:e9:38:ef:6a:bb: b7:59:26:8d:4b:82:96:aa:27:c4:85:7c:7a:36:73: 14:9f:0d:0c:38:46:bd:28:df:3f:69:16:21:dc:68: 34:13:df:68:ad:e6:fa:fc:c8:f4:79:e0:15:0d:0d: ff:97:cf:55:04:4a:0d:00:65:c6:24:fc:6d:89:e4: 24:4c:6e:6b:12:ea:3a:18:42:44:ae:9c:49:9a:27: 5a:b1:0c:99:10:39:30:f2:5f:87:cf:02:c2:24:86: 60:fe:28:f1:a1:34:01:04:60:55:b1:df:24:08:59: 57:85:a0:67:8f:8b:77:21:de:b0:aa:9d:4d:aa:59: 7f:9e:9f:91:fa:31:21:84:10:44:80:21:b9:a6:43: 37:96:95:b7:fd:fa:fb:5d:ac:c4:54:64:7f:57:79: 80:2c:c5:e3:6a:e2:6e:70:01:aa:19:b5:0b:24:26: e5:30:ff:4b:00:29:b9:72:93:aa:02:92:51:f7:d0: a2:2e:63:6b:a6:4f:76:37:e1:ca:12:35:51:74:3d: 3a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C3:1A:6D:2E:92:A2:BF:22:C2:DE:33:55:02:3E:1E:FA:79:E2:89 X509v3 Authority Key Identifier: keyid:6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:13:6d:54:96:32:e7:71:bf:ee:d7:72:a9:eb:48:45:7e:97: 50:bd:d7:bb:01:57:0a:e2:a0:d0:0d:b2:02:14:f3:51:23:55: 4c:23:e4:d1:ab:dc:27:c7:cb:d4:6e:fe:00:b7:9d:ba:7f:bb: f4:7c:60:a7:75:a3:81:68:42:03:6d:75:72:14:df:04:e9:05: ca:5b:a7:7b:6b:c6:3c:14:67:5f:f7:fa:6c:11:bd:dc:8f:ce: 9d:58:58:d6:5d:a2:8a:57:29:e8:fa:1d:02:f0:73:53:72:f3: ca:47:81:4a:ce:c5:ee:e9:81:f1:6f:31:ad:17:cc:f9:21:7d: ba:16:de:01:28:20:dc:63:46:48:b1:12:68:89:bb:e9:b4:b9: 5c:99:22:1f:81:c9:21:31:c9:3e:c5:d9:88:b4:40:bf:91:40: fc:b3:23:46:c4:08:62:67:80:ae:f6:ed:39:7d:46:f6:e0:7e: 98:e1:0c:9b:a4:79:fa:cf:9a:34:ad:c0:21:c2:3f:ad:ed:65: 2a:39:c5:6f:09:29:b6:e7:ea:b3:a9:6b:90:c4:54:32:29:ca: e7:b1:6d:d5:8a:c3:69:a8:04:69:20:d7:1e:cb:70:86:0f:6c: cc:fe:57:fe:52:18:be:b3:0e:f8:fe:d2:11:99:da:80:f2:19: 26:ea:df:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI2NTkxMTAvBgNVBAUTKDZBN0M4NjIwQjAxMTkxMzVBNEUyOTY3MTEwMjAyRTdB OTIxMEZENzYwHhcNMjUwODIyMTgxMjQ3WhcNMjUwODI5MTgxMjQ3WjAYMRYwFAYD VQQDEw02OGE4YjMxZi1mOTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6AY3SCOlGor+8oDzhQhWvgLedeE9pOtwcE4P4GaonRXV25XbCveoLUEUIe0 PX0fb0QZxOUJ6Tjvaru3WSaNS4KWqifEhXx6NnMUnw0MOEa9KN8/aRYh3Gg0E99o reb6/Mj0eeAVDQ3/l89VBEoNAGXGJPxtieQkTG5rEuo6GEJErpxJmidasQyZEDkw 8l+HzwLCJIZg/ijxoTQBBGBVsd8kCFlXhaBnj4t3Id6wqp1Nqll/np+R+jEhhBBE gCG5pkM3lpW3/fr7XazEVGR/V3mALMXjauJucAGqGbULJCblMP9LACm5cpOqApJR 99CiLmNrpk92N+HKEjVRdD06/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnDGm0u kqK/IsLeM1UCPh76eeKJMB8GA1UdIwQYMBaAFGp8hiCwEZE1pOKWcRAgLnqSEP12 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjY1OS9DNDY4RTlDNkYw QzMxMUU5OTI2Q0NEMEVDNEY5QUUwMi9hbnlHSUxBUmtUV2s0cFp4RUNBdWVwSVFf WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FueUdJTEFSa1RXazRwWnhFQ0F1ZXBJUV9YWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjY1OS9DNDY4RTlDNkYwQzMxMUU5OTI2Q0NEMEVDNEY5QUUwMi9hbnlHSUxBUmtU V2s0cFp4RUNBdWVwSVFfWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIE21UljLncb/u13Kp60hFfpdQvde7AVcK4qDQDbICFPNRI1VMI+TR q9wnx8vUbv4At526f7v0fGCndaOBaEIDbXVyFN8E6QXKW6d7a8Y8FGdf9/psEb3c j86dWFjWXaKKVyno+h0C8HNTcvPKR4FKzsXu6YHxbzGtF8z5IX26Ft4BKCDcY0ZI sRJoibvptLlcmSIfgckhMck+xdmItEC/kUD8syNGxAhiZ4Cu9u05fUb24H6Y4Qyb pHn6z5o0rcAhwj+t7WUqOcVvCSm25+qzqWuQxFQyKcrnsW3VisNpqARpINcey3CG D2zM/lf+Uhi+sw74/tIRmdqA8hkm6t+4 -----END CERTIFICATE-----Generated at Sat Aug 23 19:10:41 2025 by rpki-client