$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: +F/KAzGKzJ/3LhXplsLn0NQiQafYiUv//sBZpNT36X0= Subject key identifier: 45:84:63:A4:FD:E6:60:8E:3A:71:09:39:0A:2A:46:0A:40:25:F8:47 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 03DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 03D3 Signing time: Sat 23 Aug 2025 00:50:37 +0000 Manifest this update: Sat 23 Aug 2025 00:50:37 +0000 Manifest next update: Sat 30 Aug 2025 00:50:37 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: fAtKRy0iWcAKEB4Q6dWlhIJPc/wfiwlDJIVylRlKkNM=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: eviaeNHpTyeX/nwMhD0qRHeqmHQSy0IY0Lvxy4hMeV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:50:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Aug 23 00:50:37 2025 GMT Not After : Aug 30 00:50:37 2025 GMT Subject: CN=68a9105d-fa74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d6:ff:1c:dd:95:90:56:76:15:e5:3d:7a:60: a8:a8:e5:af:41:da:a4:88:67:04:cf:4e:a3:8c:e7: 38:ba:6d:bf:0e:49:94:e1:d0:af:ea:68:90:31:6f: 66:a2:60:5e:96:ab:c3:91:a4:0e:18:cb:cc:4e:36: 2c:11:95:0e:d7:62:50:95:0e:35:0f:de:ef:65:39: f0:b8:cf:95:cb:37:9c:08:86:4a:ef:7a:15:c9:30: da:33:17:75:2c:e0:ee:44:9d:d7:13:5a:d0:fc:db: b0:18:00:73:93:db:cd:03:31:64:39:7b:e1:e7:ef: d2:62:a7:de:06:bc:a9:d7:dd:f9:88:fb:c8:a2:26: b1:f8:71:e4:a3:22:9e:af:43:21:18:22:89:b4:c0: 22:9e:ee:82:0c:71:4f:df:b1:df:01:93:f1:fd:d8: 04:9f:02:29:46:3a:7a:88:82:74:12:9a:05:db:b4: b1:43:17:f5:90:86:cf:81:6c:e0:3b:5b:ea:98:e6: 7a:de:10:13:6f:61:69:e3:f7:83:59:16:d2:91:d0: 88:f1:02:59:cb:5f:e2:5e:42:02:db:ed:bd:c9:10: 48:91:89:e0:b0:96:a5:a2:78:db:56:3b:85:8c:f6: 06:eb:b4:2d:94:10:10:8e:c6:49:38:2e:07:2c:ea: 4d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:84:63:A4:FD:E6:60:8E:3A:71:09:39:0A:2A:46:0A:40:25:F8:47 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:b4:4a:16:06:8a:7e:88:be:a6:c9:71:dc:50:b0:d9:3d:81: 98:7b:b1:26:7f:a9:ed:25:2f:00:5f:dc:7b:c8:2b:67:44:7c: 5b:01:33:3d:1c:e0:a1:c3:17:81:76:12:04:c2:ed:25:b5:ef: 53:32:a2:c3:02:1a:1d:c5:0c:41:65:84:1a:d1:5d:eb:f7:46: 0a:11:24:dc:d6:a4:49:30:7b:07:1b:be:b4:06:46:3f:1d:6f: e6:7e:6f:c0:1f:68:47:63:ca:c9:68:48:0d:b4:6a:93:f1:72: 2e:7f:91:61:de:a1:42:45:50:d5:71:93:63:ef:3c:93:fd:00: b9:ef:0a:fa:48:09:c1:15:52:13:db:5a:c0:a9:39:d0:39:4c: 4e:6e:1b:52:df:4a:41:f6:5f:4c:cb:95:df:20:fb:ed:63:ae: c7:a4:08:e0:b2:70:29:dd:4a:cd:5e:f9:f7:e0:bd:18:09:85: 5e:5d:10:3b:8c:6e:63:d3:96:4d:37:4e:4e:9d:ee:ad:c2:4a: 6a:7b:c1:92:38:3c:43:e2:40:a7:41:0c:b0:53:3a:71:4f:24: 18:de:55:c0:9b:9d:51:52:90:e8:cd:47:2f:5b:e8:47:79:8a: 5f:15:f1:41:bc:ad:03:0a:83:82:c6:8c:cd:81:ac:ae:89:fa: fc:62:dc:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUwODIzMDA1MDM3WhcNMjUwODMwMDA1MDM3WjAYMRYwFAYD VQQDEw02OGE5MTA1ZC1mYTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tb/HN2VkFZ2FeU9emCoqOWvQdqkiGcEz06jjOc4um2/DkmU4dCv6miQMW9m omBelqvDkaQOGMvMTjYsEZUO12JQlQ41D97vZTnwuM+VyzecCIZK73oVyTDaMxd1 LODuRJ3XE1rQ/NuwGABzk9vNAzFkOXvh5+/SYqfeBryp1935iPvIoiax+HHkoyKe r0MhGCKJtMAinu6CDHFP37HfAZPx/dgEnwIpRjp6iIJ0EpoF27SxQxf1kIbPgWzg O1vqmOZ63hATb2Fp4/eDWRbSkdCI8QJZy1/iXkIC2+29yRBIkYngsJalonjbVjuF jPYG67QtlBAQjsZJOC4HLOpN9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWEY6T9 5mCOOnEJOQoqRgpAJfhHMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjtEoWBop+iL6myXHcULDZPYGYe7Emf6ntJS8AX9x7yCtnRHxbATM9 HOChwxeBdhIEwu0lte9TMqLDAhodxQxBZYQa0V3r90YKESTc1qRJMHsHG760BkY/ HW/mfm/AH2hHY8rJaEgNtGqT8XIuf5Fh3qFCRVDVcZNj7zyT/QC57wr6SAnBFVIT 21rAqTnQOUxObhtS30pB9l9My5XfIPvtY67HpAjgsnAp3UrNXvn34L0YCYVeXRA7 jG5j05ZNN05One6twkpqe8GSODxD4kCnQQywUzpxTyQY3lXAm51RUpDozUcvW+hH eYpfFfFBvK0DCoOCxozNgayuifr8YtzQ -----END CERTIFICATE-----Generated at Sat Aug 23 21:30:08 2025 by rpki-client