$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: vWDci5P+3wtrIALyk+za//YL1qIQrJ/Yaa1Z3cWhi7c= Subject key identifier: DB:ED:52:68:BD:32:87:5B:86:6D:2A:D0:AA:C4:C9:32:F2:04:73:2F Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: CD Signing time: Sat 23 Aug 2025 05:52:40 +0000 Manifest this update: Sat 23 Aug 2025 05:52:40 +0000 Manifest next update: Sat 30 Aug 2025 05:52:40 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: 3j5c4EKmrk9VJmqDIcruBiQcQ5xVeZEq3oNRfMrdq6I=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: zLr4joEY+P4VPtuV8/aIjLwuAD3fE/qCh+JRJT72wJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Aug 23 05:52:40 2025 GMT Not After : Aug 30 05:52:40 2025 GMT Subject: CN=68a95728-38db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:29:ad:15:78:8f:c6:17:a1:7e:07:1f:c2:a6: 29:ef:04:52:0c:56:c3:c8:68:7c:85:15:a4:be:04: 06:d0:ad:c7:9b:4a:17:c2:31:2c:84:b4:88:95:fe: 26:ad:62:cb:ad:29:d3:d5:78:d6:95:3a:23:38:d6: e7:5d:a8:ac:ba:15:00:31:90:2d:bf:04:a9:24:e1: dc:4f:a0:f1:d1:40:2c:b0:34:ad:ea:1c:1c:db:f3: 53:c8:ee:3c:62:2c:a7:8c:48:c4:a6:c0:56:5e:1f: cf:28:3e:ad:46:9f:07:84:d3:4d:8d:60:78:d6:01: f2:6e:50:ba:21:e4:21:2b:9b:c6:be:2e:05:a1:6e: 77:88:7a:ed:83:23:f5:87:18:02:a0:35:ae:99:39: 45:6e:92:fb:71:e5:4d:1b:46:51:3d:b5:3a:60:2a: 28:de:0e:32:2c:c0:12:4b:f4:22:53:7c:8a:1f:20: e8:8e:55:8f:69:2b:80:a7:99:fe:4d:26:86:0d:62: 4d:17:13:45:18:a5:b8:29:3e:5f:a6:b9:4a:f5:cb: 2d:50:ce:d9:ab:36:52:e7:3f:b0:29:15:30:cc:ab: 2e:d4:bf:ac:74:f0:9e:e2:c2:59:3d:f3:dc:7c:12: 4f:3e:38:cb:f9:1c:6e:4a:c9:e3:ba:4e:d0:3a:a8: cf:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:ED:52:68:BD:32:87:5B:86:6D:2A:D0:AA:C4:C9:32:F2:04:73:2F X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:61:36:69:7c:fd:7b:07:b5:f3:30:0f:3f:7a:a4:02:9a:95: 5a:16:0d:6d:37:58:04:6d:0c:b4:3d:cf:19:a6:28:ec:b5:b9: a4:a0:ca:a0:cd:19:9f:53:29:38:bf:0d:0d:c2:f0:48:76:06: a9:62:f0:3f:c7:5f:30:af:10:6a:fd:19:6a:71:59:88:a1:17: 2e:63:ed:e7:cc:b2:62:77:a5:b2:ed:11:7a:85:ba:02:25:c8: 9a:69:c1:f2:ca:1e:5c:a6:7a:04:e5:68:46:3a:0b:b7:b5:8c: 22:ab:6a:9b:0c:d4:95:ea:cf:f2:47:eb:6a:d2:86:c2:a3:65: 5f:fa:2c:da:de:a4:80:a5:f0:be:8f:94:1e:53:8c:5b:78:77: 1e:7d:87:c3:a4:97:23:5a:3e:ed:31:8c:f5:bb:dc:e1:d7:01: ce:a3:a7:9c:65:b8:6e:c9:f1:8a:c9:53:a7:e4:d1:9b:bd:b6: ee:b7:c1:88:c7:9b:54:a2:a4:3b:8e:f5:bb:bc:7f:98:c8:26: 37:ea:59:b2:94:58:44:f0:0f:29:f0:53:5e:a7:a4:f7:fc:85: 95:b5:54:72:75:06:75:c2:7f:89:24:6a:0d:93:f9:11:13:ac: 97:99:fd:ab:f5:62:12:20:ae:6d:97:e1:0a:ba:7f:bd:63:15: c7:73:b7:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjUwODIzMDU1MjQwWhcNMjUwODMwMDU1MjQwWjAYMRYwFAYD VQQDEw02OGE5NTcyOC0zOGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCmtFXiPxhehfgcfwqYp7wRSDFbDyGh8hRWkvgQG0K3Hm0oXwjEshLSIlf4m rWLLrSnT1XjWlTojONbnXaisuhUAMZAtvwSpJOHcT6Dx0UAssDSt6hwc2/NTyO48 YiynjEjEpsBWXh/PKD6tRp8HhNNNjWB41gHyblC6IeQhK5vGvi4FoW53iHrtgyP1 hxgCoDWumTlFbpL7ceVNG0ZRPbU6YCoo3g4yLMASS/QiU3yKHyDojlWPaSuAp5n+ TSaGDWJNFxNFGKW4KT5fprlK9cstUM7ZqzZS5z+wKRUwzKsu1L+sdPCe4sJZPfPc fBJPPjjL+RxuSsnjuk7QOqjP0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvtUmi9 Modbhm0q0KrEyTLyBHMvMB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH clhXRjEycjdha0FMVVVMRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvYTZpfP17B7XzMA8/eqQCmpVaFg1tN1gEbQy0Pc8ZpijstbmkoMqg zRmfUyk4vw0NwvBIdgapYvA/x18wrxBq/RlqcVmIoRcuY+3nzLJid6Wy7RF6hboC JciaacHyyh5cpnoE5WhGOgu3tYwiq2qbDNSV6s/yR+tq0obCo2Vf+iza3qSApfC+ j5QeU4xbeHcefYfDpJcjWj7tMYz1u9zh1wHOo6ecZbhuyfGKyVOn5NGbvbbut8GI x5tUoqQ7jvW7vH+YyCY36lmylFhE8A8p8FNep6T3/IWVtVRydQZ1wn+JJGoNk/kR E6yXmf2r9WISIK5tl+EKun+9YxXHc7ci -----END CERTIFICATE-----Generated at Sat Aug 23 14:14:03 2025 by rpki-client