$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json) Hash identifier: MmaBcxf98GIgAJjWaSKahneyIKH5IVG5b3p9raitk60= Subject key identifier: 3C:8C:6A:D6:58:17:80:EB:02:AC:EC:03:77:BA:E6:93:18:68:9F:7A Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Certificate serial: 09D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft Manifest number: 09C7 Signing time: Fri 22 Aug 2025 20:08:02 +0000 Manifest this update: Fri 22 Aug 2025 20:08:01 +0000 Manifest next update: Fri 29 Aug 2025 20:08:01 +0000 Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: ulQLash3DvjiWqL1ZnbPuzI8ehC983wLlPIv/Ey/coQ=) 2: E09840C4D5B511EFB22A647DC4F9AE02.roa (hash: UUua9CtlmlNUMxfEXymhiloAwqTpKtC9fDGIWh1Bzk8=) 3: CFD6E5708AFA11EAAACB392AC4F9AE02.roa (hash: +YzJrYGnbGLCjVsOBK3rhph4HgKiBqVFBpU2hsaMvKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2515 (0x9d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5642, serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Validity Not Before: Aug 22 20:08:01 2025 GMT Not After : Aug 29 20:08:01 2025 GMT Subject: CN=68a8ce21-6859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:1c:52:56:5f:6b:af:01:59:16:4b:b9:cf: 05:64:d3:c0:89:67:0b:07:cf:98:90:00:e3:69:c3: 95:b6:cf:9e:43:be:fe:7d:ad:ad:68:1e:d0:95:44: 54:2d:08:b2:4d:8a:c2:fb:d0:97:fd:94:46:52:cd: 7e:e5:0c:92:b1:ae:2b:7a:de:f6:3d:c6:63:ac:0b: 51:b5:eb:5f:86:8f:a7:c3:10:73:ae:12:23:79:ab: 70:2a:ba:36:06:7c:d0:6c:b1:2e:fc:54:91:39:0a: 91:6a:c0:2c:0b:f6:a5:db:bc:fc:c1:3c:5b:12:7b: 35:d3:6f:34:1f:38:1c:0d:5b:8b:8b:fd:c0:e5:ea: 87:3b:0b:98:63:03:a1:51:39:51:3d:81:28:29:d4: b6:bc:9e:83:e9:ce:5d:ad:e9:8e:9d:ab:19:94:6f: b4:22:57:00:92:29:93:6d:e6:89:5b:de:ee:20:e8: b1:71:b7:06:2f:20:7d:05:10:97:e4:13:40:84:0c: ed:3f:ee:7d:5c:44:2b:d2:ec:65:71:cc:57:67:fb: 62:59:a0:02:12:bd:d1:51:5e:6e:38:b2:57:db:30: 1f:93:0e:7d:f1:08:74:1e:61:55:39:f3:11:35:c8: 2e:ab:ca:31:16:2a:76:00:cc:6e:68:6a:94:a3:79: 85:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8C:6A:D6:58:17:80:EB:02:AC:EC:03:77:BA:E6:93:18:68:9F:7A X509v3 Authority Key Identifier: keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:da:b5:b0:19:3b:a6:91:99:75:81:f7:ad:e9:15:cc:4e:61: 67:f5:f4:7f:c1:9a:cd:ab:86:9c:03:14:23:39:67:89:8a:26: f8:bc:0b:cd:9f:92:b9:d0:e3:69:96:b3:09:49:45:cf:af:b3: 75:af:a9:6e:dc:92:d2:8d:f0:eb:a2:59:e4:3a:b6:41:77:97: b7:ff:32:f2:1a:04:4e:d6:50:67:0e:0c:92:b9:6d:31:7e:4f: 6e:15:b6:54:84:01:7e:37:c3:a4:81:e8:ec:61:d8:b7:ff:65: a9:12:00:cc:b4:2d:24:85:88:01:a1:0f:6b:32:5a:33:d0:4c: 01:be:6f:d6:26:45:c3:3a:fb:e2:de:d2:51:c9:ed:d1:3d:f1: f5:f8:a9:ca:d1:2f:6e:2e:f8:d9:b9:54:8c:11:ad:01:0b:9c: a0:95:02:d9:8c:44:cc:cf:5e:4a:76:0e:b6:f9:a5:0d:36:50: d0:a9:a4:46:f0:ca:3f:e1:66:46:40:81:f1:9a:0d:c3:da:92: 74:bd:e4:14:8a:b7:64:72:ca:39:1c:b3:80:17:72:da:8d:bc: 96:04:5c:b5:c1:c7:4e:42:fb:f4:b2:df:60:26:47:2f:9c:c9: a7:15:a5:5b:87:f5:7d:a6:af:4e:e4:fe:f5:18:70:dd:f2:65: 7d:f3:cd:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2NDIxMTAvBgNVBAUTKDgwMzA3OUJBQjJGMUY2QjNCOUFBQzQxMURGNEE4MkMz RjA2QTY1NzEwHhcNMjUwODIyMjAwODAxWhcNMjUwODI5MjAwODAxWjAYMRYwFAYD VQQDEw02OGE4Y2UyMS02ODU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvR8cUlZfa68BWRZLuc8FZNPAiWcLB8+YkADjacOVts+eQ77+fa2taB7QlURU LQiyTYrC+9CX/ZRGUs1+5QySsa4ret72PcZjrAtRtetfho+nwxBzrhIjeatwKro2 BnzQbLEu/FSROQqRasAsC/al27z8wTxbEns10280HzgcDVuLi/3A5eqHOwuYYwOh UTlRPYEoKdS2vJ6D6c5dremOnasZlG+0IlcAkimTbeaJW97uIOixcbcGLyB9BRCX 5BNAhAztP+59XEQr0uxlccxXZ/tiWaACEr3RUV5uOLJX2zAfkw598Qh0HmFVOfMR Ncguq8oxFip2AMxuaGqUo3mFRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyMatZY F4DrAqzsA3e65pMYaJ96MB8GA1UdIwQYMBaAFIAwebqy8fazuarEEd9KgsPwamVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTY0Mi8xMDQwRjMyQzhB RkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDlyTzVxc1FSMzBxQ3dfQnFa WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEQjV1ckx4OXJPNXFzUVIzMHFDd19CcVpYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTY0Mi8xMDQwRjMyQzhBRkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDly TzVxc1FSMzBxQ3dfQnFaWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU2rWwGTumkZl1gfet6RXMTmFn9fR/wZrNq4acAxQjOWeJiib4vAvN n5K50ONplrMJSUXPr7N1r6lu3JLSjfDrolnkOrZBd5e3/zLyGgRO1lBnDgySuW0x fk9uFbZUhAF+N8OkgejsYdi3/2WpEgDMtC0khYgBoQ9rMloz0EwBvm/WJkXDOvvi 3tJRye3RPfH1+KnK0S9uLvjZuVSMEa0BC5yglQLZjETMz15Kdg62+aUNNlDQqaRG 8Mo/4WZGQIHxmg3D2pJ0veQUirdkcso5HLOAF3LajbyWBFy1wcdOQvv0st9gJkcv nMmnFaVbh/V9pq9O5P71GHDd8mV9882z -----END CERTIFICATE-----Generated at Sat Aug 23 20:34:13 2025 by rpki-client