$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft File: 1gwwsan1nJWa1JZ_L21XKst1KZw.mft (raw, json) Hash identifier: 30GxTrAvEEsqvi+u93LsScyaBpCvcDYBMsP7orGe89g= Subject key identifier: 1D:A6:6D:8D:01:D1:37:A0:24:E4:E6:7F:1C:BE:94:C1:39:5F:FD:C2 Authority key identifier: D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C Certificate issuer: /CN=A91E5EEA/serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft Manifest number: 77 Signing time: Sat 23 Aug 2025 07:07:33 +0000 Manifest this update: Sat 23 Aug 2025 07:07:33 +0000 Manifest next update: Sat 30 Aug 2025 07:07:33 +0000 Files and hashes: 1: 1gwwsan1nJWa1JZ_L21XKst1KZw.crl (hash: ymSz/WQRrhuVsJCCWBrde/s6rLb48wweLRhu7VOb95I=) 2: 2B6A4C480CDC11F0BAA65183C4F9AE02.roa (hash: PQLVpWWHthzNnD5URwix2MJ4GqKKAheIHq2d7TmXEW0=) 3: A7C0D96E0CDD11F0A8463D28C4F9AE02.roa (hash: QHLRTEx6Qgh4+lTDIbuuL3PGb+4V0jC1oeBCPhaLkPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:07:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Validity Not Before: Aug 23 07:07:33 2025 GMT Not After : Aug 30 07:07:33 2025 GMT Subject: CN=68a968b5-bf59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:87:2a:33:6f:d7:72:23:8e:01:21:e1:e8:ef: 36:14:be:7c:c3:ef:b4:e5:8b:f3:17:71:a7:9b:b2: 41:d8:4f:d0:b4:57:76:4a:e7:61:56:30:86:e2:74: b5:fe:ad:96:9d:c2:05:34:84:b1:c6:15:96:45:46: a4:8b:a0:25:59:32:db:42:5c:05:99:d8:e4:dd:18: 29:73:66:f5:2b:c8:5b:04:5f:a8:eb:0c:70:52:d3: 10:01:19:4d:ae:35:c3:72:c8:f8:84:81:0c:45:9c: db:dd:d0:26:84:11:b8:1f:9c:c6:ec:20:5f:ec:f4: 06:e6:94:7b:49:44:00:87:98:26:e8:a1:7e:77:10: 5d:98:d9:c1:26:fc:1f:00:4d:51:ac:ae:62:07:6b: e8:8c:d3:26:ba:9c:7d:9b:97:29:0a:b0:b3:2f:13: b9:b0:05:f0:dd:10:a9:e0:a0:2d:ff:3a:1e:21:76: 3e:bd:c5:b2:88:40:ef:80:5b:36:f7:57:dc:b9:04: 60:da:5a:0e:19:2d:27:82:cb:b3:a2:9b:66:a5:f0: c7:79:51:a8:87:45:85:91:68:a6:6d:4d:71:6a:36: f5:32:04:af:cb:b4:cc:ac:92:03:88:7a:35:1a:ef: 45:87:3d:11:63:8c:50:d2:8f:28:d9:74:51:b2:8f: 39:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A6:6D:8D:01:D1:37:A0:24:E4:E6:7F:1C:BE:94:C1:39:5F:FD:C2 X509v3 Authority Key Identifier: keyid:D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:be:12:b5:a4:23:33:e7:8d:b4:d2:6b:5c:3e:31:13:89:2e: 15:0a:cd:05:36:65:5f:d2:a5:8a:3a:ea:b3:4b:87:3a:03:e3: b5:5d:17:f9:b1:09:63:32:ea:1e:68:34:3d:61:d0:a8:df:39: 6c:6f:90:63:04:76:75:e1:c7:29:95:c3:e4:d6:f9:9a:b2:9e: 85:b5:3a:84:89:66:a0:8b:36:52:bf:34:28:c0:3f:2a:77:c5: 03:f6:27:b2:28:89:af:d1:e0:f5:b1:b0:5a:ee:02:72:98:2f: 16:5f:98:50:73:39:96:6b:bc:54:cf:e0:a4:f9:dd:f0:e1:9f: 96:95:49:7d:27:91:99:51:d4:f3:41:4b:35:84:9b:1b:68:44: 42:7f:44:e7:3f:a1:0a:f6:0a:4a:28:ed:19:59:6c:a3:cb:56: 36:12:4a:53:77:a6:9d:6e:da:28:34:73:83:ce:12:78:40:e3: 5f:98:1a:0a:21:e9:51:0f:10:7d:4a:28:e9:0d:53:74:b1:d9: db:6f:e5:70:54:41:c6:e6:c6:5f:88:c3:79:42:42:31:75:86: ab:4b:45:c0:61:0e:b3:d1:44:ab:b4:d4:ea:10:9a:ed:87:9e: f2:a6:7b:3a:ae:81:75:7c:1e:1e:48:0f:83:5e:15:8f:f8:ea: 85:33:96:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoRDYwQzMwQjFBOUY1OUM5NTlBRDQ5NjdGMkY2RDU3MkFD Qjc1Mjk5QzAeFw0yNTA4MjMwNzA3MzNaFw0yNTA4MzAwNzA3MzNaMBgxFjAUBgNV BAMTDTY4YTk2OGI1LWJmNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOhyozb9dyI44BIeHo7zYUvnzD77Tli/MXcaebskHYT9C0V3ZK52FWMIbidLX+ rZadwgU0hLHGFZZFRqSLoCVZMttCXAWZ2OTdGClzZvUryFsEX6jrDHBS0xABGU2u NcNyyPiEgQxFnNvd0CaEEbgfnMbsIF/s9AbmlHtJRACHmCbooX53EF2Y2cEm/B8A TVGsrmIHa+iM0ya6nH2blykKsLMvE7mwBfDdEKngoC3/Oh4hdj69xbKIQO+AWzb3 V9y5BGDaWg4ZLSeCy7Oim2al8Md5UaiHRYWRaKZtTXFqNvUyBK/LtMyskgOIejUa 70WHPRFjjFDSjyjZdFGyjzkXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHaZtjQHR N6Ak5OZ/HL6UwTlf/cIwHwYDVR0jBBgwFoAU1gwwsan1nJWa1JZ/L21XKst1KZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0UzRkNEMTQ0RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyLzFnd3dzYW4xbkpXYTFKWl9MMjFYS3N0MUta dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMWd3d3NhbjFuSldhMUpaX0wyMVhLc3QxS1p3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0UzRkNEMTQ0RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyLzFnd3dzYW4xbkpX YTFKWl9MMjFYS3N0MUtady5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF2+ErWkIzPnjbTSa1w+MROJLhUKzQU2ZV/SpYo66rNLhzoD47VdF/mx CWMy6h5oND1h0KjfOWxvkGMEdnXhxymVw+TW+ZqynoW1OoSJZqCLNlK/NCjAPyp3 xQP2J7Ioia/R4PWxsFruAnKYLxZfmFBzOZZrvFTP4KT53fDhn5aVSX0nkZlR1PNB SzWEmxtoREJ/ROc/oQr2Ckoo7RlZbKPLVjYSSlN3pp1u2ig0c4POEnhA41+YGgoh 6VEPEH1KKOkNU3Sx2dtv5XBUQcbmxl+Iw3lCQjF1hqtLRcBhDrPRRKu01OoQmu2H nvKmezqugXV8Hh5ID4NeFY/46oUzlqo= -----END CERTIFICATE-----Generated at Sat Aug 23 17:11:38 2025 by rpki-client