$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: bNB+c8LqldQugqv4zw8ZMtnWA4xQg5dwrz1tflb8ICk= Subject key identifier: F3:EB:21:59:80:26:62:2B:6B:FE:33:82:68:56:0E:A8:8D:04:2F:77 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 04AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 04AA Signing time: Sat 23 Aug 2025 00:08:15 +0000 Manifest this update: Sat 23 Aug 2025 00:08:14 +0000 Manifest next update: Sat 30 Aug 2025 00:08:14 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: aQnXEPyBA/OfhJCtex/6MMLsFH1q10sVc0a+UjsvSSk=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1198 (0x4ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Aug 23 00:08:14 2025 GMT Not After : Aug 30 00:08:14 2025 GMT Subject: CN=68a9066f-64db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d5:59:94:57:5e:43:67:d8:b5:e7:77:3d:29: 56:23:c5:02:bb:74:52:e8:25:9e:c6:b1:87:a2:28: 9d:c3:58:4f:23:b7:c0:4f:b2:ec:a8:5e:c7:46:47: 76:d6:d6:5d:5f:01:56:d5:e8:33:52:43:8f:a0:14: 7b:ed:e4:d7:3f:89:02:15:4c:ac:ad:19:39:17:f1: 7f:08:3d:52:da:5f:18:1d:29:6a:b0:b5:36:92:35: 30:92:f9:94:c4:0c:ad:34:ca:a2:e0:f4:3a:1a:aa: 7f:0d:8b:5c:d4:8b:48:9d:07:49:02:7a:23:b3:bd: f2:58:7c:d0:6b:bb:c4:6f:1d:0a:03:04:db:17:fd: 01:ee:14:29:4c:75:9e:56:f1:b0:42:3d:15:62:ab: 83:7c:83:a6:a9:b9:59:b9:55:72:c1:81:a8:d5:10: de:c9:12:ce:47:b5:08:ad:e8:56:a0:17:3e:ec:26: 3b:1e:be:5d:78:16:fc:f6:2b:05:19:ca:90:5c:7a: 22:4f:36:c3:9a:f4:41:40:c3:0d:21:08:1a:69:4a: 2e:39:7a:ba:be:25:9c:c8:a1:8e:a9:0b:e1:2c:b0: ee:16:79:50:08:05:8f:c9:b0:bb:af:c8:82:72:aa: 56:7a:eb:42:52:9c:bd:26:06:cb:d0:68:f5:9f:8d: b5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:EB:21:59:80:26:62:2B:6B:FE:33:82:68:56:0E:A8:8D:04:2F:77 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:ec:a5:6c:50:20:9f:e7:e0:6b:90:db:11:b1:03:93:63:ed: d2:01:7f:f8:ff:7a:0d:dd:e3:6e:92:f7:28:64:01:34:55:7d: b2:73:61:3d:3a:5d:5a:e5:92:08:c3:33:58:28:f4:d2:65:60: 0b:6e:5e:d1:8a:cf:6c:62:52:89:9c:4b:6c:6f:f2:e9:66:3e: e6:b1:77:9b:ab:e8:06:05:9c:10:51:af:75:64:7c:3f:52:83: 8f:b6:96:ca:c4:9e:db:3b:e5:51:af:b9:7d:17:76:9f:57:2a: 8b:46:7a:4a:47:7d:10:30:43:fe:2d:d9:c5:6f:3b:38:de:9f: e8:e6:ee:89:5f:29:62:85:17:46:aa:dc:3b:b9:e7:aa:98:41: 14:9e:c6:f9:5b:19:1c:68:6b:09:9a:46:8e:47:2a:6f:36:24: c6:1d:39:ce:71:a6:bf:cf:0e:8f:03:7d:23:64:c6:1a:22:ba: e1:5e:60:b8:4b:ff:aa:f3:fd:62:be:65:8e:07:72:9e:5c:78: 2d:05:08:4a:21:43:77:74:53:3a:ac:ee:e7:0c:99:23:09:ac: ea:75:85:f5:93:a5:37:43:fd:04:f0:3c:28:62:5b:b4:d9:10: 16:63:20:70:c6:05:79:3f:e4:7f:49:59:ec:d2:6e:e5:7f:43: 7c:22:53:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUwODIzMDAwODE0WhcNMjUwODMwMDAwODE0WjAYMRYwFAYD VQQDEw02OGE5MDY2Zi02NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttVZlFdeQ2fYted3PSlWI8UCu3RS6CWexrGHoiidw1hPI7fAT7LsqF7HRkd2 1tZdXwFW1egzUkOPoBR77eTXP4kCFUysrRk5F/F/CD1S2l8YHSlqsLU2kjUwkvmU xAytNMqi4PQ6Gqp/DYtc1ItInQdJAnojs73yWHzQa7vEbx0KAwTbF/0B7hQpTHWe VvGwQj0VYquDfIOmqblZuVVywYGo1RDeyRLOR7UIrehWoBc+7CY7Hr5deBb89isF GcqQXHoiTzbDmvRBQMMNIQgaaUouOXq6viWcyKGOqQvhLLDuFnlQCAWPybC7r8iC cqpWeutCUpy9JgbL0Gj1n421iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPrIVmA JmIra/4zgmhWDqiNBC93MB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG7KVsUCCf5+BrkNsRsQOTY+3SAX/4/3oN3eNukvcoZAE0VX2yc2E9 Ol1a5ZIIwzNYKPTSZWALbl7Ris9sYlKJnEtsb/LpZj7msXebq+gGBZwQUa91ZHw/ UoOPtpbKxJ7bO+VRr7l9F3afVyqLRnpKR30QMEP+LdnFbzs43p/o5u6JXylihRdG qtw7ueeqmEEUnsb5WxkcaGsJmkaORypvNiTGHTnOcaa/zw6PA30jZMYaIrrhXmC4 S/+q8/1ivmWOB3KeXHgtBQhKIUN3dFM6rO7nDJkjCazqdYX1k6U3Q/0E8DwoYlu0 2RAWYyBwxgV5P+R/SVns0m7lf0N8IlO7 -----END CERTIFICATE-----Generated at Sat Aug 23 15:05:15 2025 by rpki-client