$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: xLRXyPdUR/QGm1LC5ZUDXMWYYbtz6ZpsIpuDObt5qJM= Subject key identifier: E5:35:43:BB:C8:BE:BA:AD:6D:DC:9B:45:3E:6D:35:A7:C3:BB:A4:DE Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 0765 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 0752 Signing time: Fri 22 Aug 2025 21:52:36 +0000 Manifest this update: Fri 22 Aug 2025 21:52:35 +0000 Manifest next update: Fri 29 Aug 2025 21:52:35 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: SIi+2apvzM5pbx5TrGfUGKe2fDRaYbT7K7IUe2eB1BE=) 2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1893 (0x765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834, serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Validity Not Before: Aug 22 21:52:35 2025 GMT Not After : Aug 29 21:52:35 2025 GMT Subject: CN=68a8e6a3-d971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:57:2a:52:ca:7c:a4:07:61:78:51:5f:84:fc: 0c:36:a3:08:ff:95:0f:76:c7:fd:7c:83:07:12:e0: 41:f9:3b:d9:c3:83:ab:f7:c1:80:9a:03:88:e9:88: f2:59:54:e4:9a:42:97:5d:dd:65:27:e6:b7:15:01: 84:a1:36:1d:64:23:14:56:4e:57:1b:98:23:01:dc: 37:64:12:3a:77:60:57:ca:65:4f:81:a2:85:eb:aa: 3c:9b:cd:41:b1:d5:41:fc:37:d0:46:75:1a:ce:55: 61:be:4b:63:11:6c:27:7c:e6:9a:e3:94:5e:96:4c: 64:be:a2:8f:68:a5:32:b6:99:88:48:8f:eb:5f:49: e0:34:c8:f4:3d:23:cc:56:4e:09:fb:51:30:34:28: b2:b6:cc:8c:07:7c:0d:01:a2:99:e1:88:ea:b1:55: dd:41:43:29:48:eb:e0:78:18:60:96:76:10:a5:fe: 5a:07:7c:64:2c:f4:fb:1f:51:c8:30:86:cc:05:14: a2:0b:fc:c9:dd:6f:73:5e:2c:e8:35:54:d4:a5:92: 66:27:7b:d5:7f:ab:8b:91:c0:9b:86:b3:57:d4:fe: 53:0d:2c:d4:e0:a5:15:89:96:d6:d7:22:0a:f6:8c: b8:17:6f:97:9d:1b:39:c5:ff:fc:c6:d9:45:5f:a6: 4c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:35:43:BB:C8:BE:BA:AD:6D:DC:9B:45:3E:6D:35:A7:C3:BB:A4:DE X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:0e:1e:55:7c:9a:3f:15:34:bc:44:82:9e:3c:51:12:e0:db: 58:72:0f:cf:1b:0f:e6:dd:37:f0:6b:dd:18:bb:42:68:1a:3a: 40:b6:8f:c2:7b:b0:fa:7f:80:6c:a4:e9:0d:eb:e8:a5:03:ce: 60:c9:73:c7:57:7a:ee:6b:dd:a6:44:f1:03:ea:54:30:55:24: 6d:d2:ff:6b:21:1a:c2:30:4d:9e:12:3d:bb:f4:af:ff:2f:5a: a0:f6:80:38:0c:a7:d2:2b:a3:1b:6b:73:47:1f:91:0c:c6:a8: fb:ca:db:e8:10:9b:1e:10:78:f5:3f:04:c6:57:d2:24:41:85: 14:e4:45:92:62:e2:3b:00:62:02:3a:a7:2a:13:7f:8f:c4:86: 5b:8b:7e:9e:b1:a2:25:d3:0c:4c:9f:53:60:d1:03:5f:a9:7c: c3:b9:94:43:c0:2c:35:6f:69:5c:18:6b:a7:1a:08:86:ea:4a: 67:8b:e4:33:d1:5d:b2:64:6a:1c:4d:16:c3:0c:3c:60:78:15: 08:b8:2b:45:aa:88:62:ac:e2:3d:53:cf:2a:ed:e1:c0:48:fd: ec:26:f1:3f:01:46:d0:47:d2:0a:5f:4d:59:a8:70:6f:ee:ec: 48:bd:fb:95:ff:21:ff:66:8d:e1:ad:2b:b9:d2:a6:6d:09:dc: 9a:96:02:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjUwODIyMjE1MjM1WhcNMjUwODI5MjE1MjM1WjAYMRYwFAYD VQQDEw02OGE4ZTZhMy1kOTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4VcqUsp8pAdheFFfhPwMNqMI/5UPdsf9fIMHEuBB+TvZw4Or98GAmgOI6Yjy WVTkmkKXXd1lJ+a3FQGEoTYdZCMUVk5XG5gjAdw3ZBI6d2BXymVPgaKF66o8m81B sdVB/DfQRnUazlVhvktjEWwnfOaa45RelkxkvqKPaKUytpmISI/rX0ngNMj0PSPM Vk4J+1EwNCiytsyMB3wNAaKZ4YjqsVXdQUMpSOvgeBhglnYQpf5aB3xkLPT7H1HI MIbMBRSiC/zJ3W9zXizoNVTUpZJmJ3vVf6uLkcCbhrNX1P5TDSzU4KUViZbW1yIK 9oy4F2+XnRs5xf/8xtlFX6ZMKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOU1Q7vI vrqtbdybRT5tNafDu6TeMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyDh5VfJo/FTS8RIKePFES4NtYcg/PGw/m3Tfwa90Yu0JoGjpAto/C e7D6f4BspOkN6+ilA85gyXPHV3rua92mRPED6lQwVSRt0v9rIRrCME2eEj279K// L1qg9oA4DKfSK6Mba3NHH5EMxqj7ytvoEJseEHj1PwTGV9IkQYUU5EWSYuI7AGIC OqcqE3+PxIZbi36esaIl0wxMn1Ng0QNfqXzDuZRDwCw1b2lcGGunGgiG6kpni+Qz 0V2yZGocTRbDDDxgeBUIuCtFqohirOI9U88q7eHASP3sJvE/AUbQR9IKX01ZqHBv 7uxIvfuV/yH/Zo3hrSu50qZtCdyalgJ3 -----END CERTIFICATE-----Generated at Sun Aug 24 08:51:53 2025 by rpki-client