$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: TmZqTsYpoeD3uXmB9ILQu3nnggkwTKDZagTPlMsqqcA= Subject key identifier: A4:C3:56:07:62:CE:82:C3:50:F7:A5:98:69:75:8C:ED:42:0A:AC:AE Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 34BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 34B6 Signing time: Fri 22 Aug 2025 14:42:02 +0000 Manifest this update: Fri 22 Aug 2025 14:42:01 +0000 Manifest next update: Fri 29 Aug 2025 14:42:01 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: kafTgwxRKUMyNhp4xoTd4m3uhONaNMfv9LvHTzYBPQs=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13503 (0x34bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Aug 22 14:42:01 2025 GMT Not After : Aug 29 14:42:01 2025 GMT Subject: CN=68a881b9-1fe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e8:e1:60:0c:f6:95:43:b2:c0:4b:ae:4b:e3: 7f:d1:6c:9b:ef:b8:39:ae:c9:46:ce:c8:1d:dc:23: 83:56:7e:eb:62:8a:ed:97:f8:99:87:31:14:af:81: 17:61:bd:19:83:e0:39:2e:f7:a5:e9:2f:35:15:b3: 01:65:2c:0b:a6:50:2e:1e:e8:57:41:fd:aa:35:e2: 65:7f:29:d6:65:5d:0d:d7:5b:de:cb:ac:c6:95:bc: 4a:24:da:4c:6a:23:22:5e:b8:5e:75:c2:67:75:77: d0:6f:b5:a7:d2:cd:db:27:fd:5a:9b:0e:8d:14:03: dc:dd:74:f3:0c:c9:29:3a:3a:71:08:de:12:d3:00: 00:7f:f1:2a:f8:c5:f7:7b:22:56:72:90:f7:20:50: 39:3f:1c:01:e2:b7:0d:93:78:c6:dc:d3:3e:f9:ae: fa:9e:62:63:f2:40:7a:05:7e:1f:0d:47:d4:47:de: 94:18:cc:65:7a:87:92:e0:3b:a5:c3:17:36:2c:19: ee:a6:85:26:43:b9:cc:9a:38:ba:b9:4a:1b:b4:4f: fc:75:f5:0d:86:9c:76:31:5e:e5:6b:ed:30:31:e4: 48:51:36:22:da:ca:70:f5:28:69:cd:b3:66:de:27: c1:cd:fe:ad:7b:34:1f:23:34:1a:65:59:a1:0b:37: d8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:C3:56:07:62:CE:82:C3:50:F7:A5:98:69:75:8C:ED:42:0A:AC:AE X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:1c:6e:13:41:e1:28:c3:34:30:1a:e1:3c:c5:0e:94:fb:b6: e3:c2:1f:ed:7f:2b:ac:9d:14:59:92:69:81:f7:5a:a7:bf:58: 03:6e:f9:f4:81:99:35:2a:9f:d4:b3:24:16:3f:d2:f8:ea:44: aa:1f:8e:14:24:78:1a:a0:a0:00:97:5a:05:09:9c:50:66:0d: 52:af:26:47:83:64:a0:cb:35:f3:6c:c9:9a:19:87:17:f4:86: 0d:60:96:63:74:ef:a4:6e:d6:51:6d:84:b8:c0:d9:c2:cf:a9: 8b:d4:73:fa:14:14:b6:50:ba:a7:c0:df:47:e3:43:c3:52:ab: 50:34:45:38:16:c9:98:e9:4e:a8:d9:e0:7f:43:bc:5b:ec:5d: 26:ad:b8:c7:95:88:fd:14:5d:fe:61:b0:e9:92:f1:44:0e:f7: e0:d8:1a:b6:74:f4:02:38:60:69:c6:26:76:9a:d4:9d:fd:51: 6d:49:0f:c1:49:ea:e6:8b:3b:5e:67:5d:d4:c8:e6:b7:fc:2c: 64:1c:fa:f2:b9:ec:f2:69:25:c4:e8:f7:be:bd:19:07:42:0b: 64:28:2a:c5:81:9e:7e:dd:f1:40:cf:ad:80:d8:df:d6:f1:6b: ce:99:35:06:b0:d4:35:a6:4e:d0:27:87:8f:aa:c8:00:4c:ec: 41:97:f9:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUwODIyMTQ0MjAxWhcNMjUwODI5MTQ0MjAxWjAYMRYwFAYD VQQDEw02OGE4ODFiOS0xZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ejhYAz2lUOywEuuS+N/0Wyb77g5rslGzsgd3CODVn7rYortl/iZhzEUr4EX Yb0Zg+A5Lvel6S81FbMBZSwLplAuHuhXQf2qNeJlfynWZV0N11vey6zGlbxKJNpM aiMiXrhedcJndXfQb7Wn0s3bJ/1amw6NFAPc3XTzDMkpOjpxCN4S0wAAf/Eq+MX3 eyJWcpD3IFA5PxwB4rcNk3jG3NM++a76nmJj8kB6BX4fDUfUR96UGMxleoeS4Dul wxc2LBnupoUmQ7nMmji6uUobtE/8dfUNhpx2MV7la+0wMeRIUTYi2spw9ShpzbNm 3ifBzf6tezQfIzQaZVmhCzfYrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTDVgdi zoLDUPelmGl1jO1CCqyuMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZHG4TQeEowzQwGuE8xQ6U+7bjwh/tfyusnRRZkmmB91qnv1gDbvn0 gZk1Kp/UsyQWP9L46kSqH44UJHgaoKAAl1oFCZxQZg1SryZHg2SgyzXzbMmaGYcX 9IYNYJZjdO+kbtZRbYS4wNnCz6mL1HP6FBS2ULqnwN9H40PDUqtQNEU4FsmY6U6o 2eB/Q7xb7F0mrbjHlYj9FF3+YbDpkvFEDvfg2Bq2dPQCOGBpxiZ2mtSd/VFtSQ/B SermizteZ13UyOa3/CxkHPryuezyaSXE6Pe+vRkHQgtkKCrFgZ5+3fFAz62A2N/W 8WvOmTUGsNQ1pk7QJ4ePqsgATOxBl/mZ -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:22 2025 by rpki-client