$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: VXQxjl7M/6dIVxNJqNFTgwWU6AdrtW72SZI+BuVmOak= Subject key identifier: E9:79:0E:C8:7A:6D:0F:40:13:74:EC:36:E6:00:5D:79:23:64:95:E5 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0DC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0DB8 Signing time: Fri 22 Aug 2025 18:00:58 +0000 Manifest this update: Fri 22 Aug 2025 18:00:58 +0000 Manifest next update: Fri 29 Aug 2025 18:00:58 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: HDz9XnujQRqo7o2qoL8i4WrHOJp35h+ICQrJQWsURWA=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: UdehkLAzVXoFe5wUis48zru/UMqEMsZcDt54OS7NI9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3521 (0xdc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Aug 22 18:00:58 2025 GMT Not After : Aug 29 18:00:58 2025 GMT Subject: CN=68a8b05a-8bb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0a:54:1a:1b:6c:aa:4c:cf:de:6e:18:21:9c: 5a:f2:0d:53:34:07:d4:51:60:8d:55:9b:af:63:1c: a6:fc:82:13:eb:02:ae:10:fc:e8:c1:bd:db:d3:9d: f4:ca:40:f3:85:cc:8d:53:59:1f:eb:cf:5b:d8:ca: 76:b3:3a:bb:16:00:bd:7a:ed:c1:af:e8:50:49:f4: a5:58:4f:2c:e6:ae:db:f9:6b:df:2b:45:bd:df:d7: 43:50:97:56:e2:ad:03:9e:93:8b:f2:09:1a:09:cb: b7:c9:29:95:d6:47:84:f3:99:43:6e:54:6e:ab:c9: 3b:f6:8c:93:20:14:c9:60:44:32:64:d1:f1:a8:16: b5:69:33:5f:a9:80:d1:47:ae:51:1c:2f:c1:2e:fa: 3b:96:b6:b3:47:b7:80:19:e0:0a:7b:40:5f:c2:31: f5:6f:d5:17:34:5d:9f:e2:a0:2c:d7:f9:eb:41:9b: 0c:7f:25:85:7f:b0:92:93:be:12:b1:dd:8e:ba:fe: 01:98:76:dc:f0:7c:21:7e:7f:0a:7e:1a:b2:9d:bf: 73:f8:5d:01:ed:e6:26:bf:7b:ad:21:a3:da:2b:7f: e5:ca:8f:bd:97:5a:92:da:ff:3b:0f:ca:b8:b6:bf: a6:3c:ec:b3:60:03:2d:d4:ec:c6:fe:71:d5:18:30: 35:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:79:0E:C8:7A:6D:0F:40:13:74:EC:36:E6:00:5D:79:23:64:95:E5 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:fc:76:6d:f9:ca:b3:11:37:7e:cc:c7:09:e5:fa:bc:e1:14: fa:b6:d8:99:c5:bb:4d:ee:41:00:f6:7d:3b:eb:5f:5d:11:4b: b2:c9:45:43:75:e1:66:fa:b7:cf:4a:3f:e5:d2:77:c2:c1:8c: 5a:d9:97:e7:58:aa:d4:05:ef:62:eb:7a:4c:b1:7a:f0:10:48: 2f:a8:17:9b:61:ed:63:26:0c:30:bf:99:e8:7a:73:45:28:be: 2b:fa:3d:8b:f9:4e:79:cf:d1:ad:0d:0c:9a:c3:04:e6:68:84: d0:fa:e0:c6:2c:b9:06:d0:ac:71:08:01:0f:d9:de:57:98:1c: 0f:6a:2f:c5:e0:d5:97:81:7d:12:c2:db:73:f3:85:7e:48:f5: eb:64:d4:26:56:9e:dd:f9:c9:55:6a:00:f2:8b:ea:17:21:00: 92:bc:3a:84:a7:b9:c9:a4:9c:7c:e1:c9:51:44:5b:e2:0e:5e: 06:03:99:9e:b0:52:0c:fc:c2:25:f9:79:07:71:53:6c:80:01: fe:fd:e8:a9:60:90:47:29:f0:04:54:8a:8c:38:23:d9:21:3e: 43:8e:f5:94:e8:a0:1f:d9:01:3d:8c:1d:b5:87:ca:7c:32:32: 7a:44:88:af:37:8f:56:f1:78:8f:3f:a4:65:5b:b6:14:c8:fd: d2:f3:f2:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUwODIyMTgwMDU4WhcNMjUwODI5MTgwMDU4WjAYMRYwFAYD VQQDEw02OGE4YjA1YS04YmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gpUGhtsqkzP3m4YIZxa8g1TNAfUUWCNVZuvYxym/IIT6wKuEPzowb3b0530 ykDzhcyNU1kf689b2Mp2szq7FgC9eu3Br+hQSfSlWE8s5q7b+WvfK0W939dDUJdW 4q0DnpOL8gkaCcu3ySmV1keE85lDblRuq8k79oyTIBTJYEQyZNHxqBa1aTNfqYDR R65RHC/BLvo7lrazR7eAGeAKe0BfwjH1b9UXNF2f4qAs1/nrQZsMfyWFf7CSk74S sd2Ouv4BmHbc8Hwhfn8Kfhqynb9z+F0B7eYmv3utIaPaK3/lyo+9l1qS2v87D8q4 tr+mPOyzYAMt1OzG/nHVGDA1jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOl5Dsh6 bQ9AE3TsNuYAXXkjZJXlMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN/HZt+cqzETd+zMcJ5fq84RT6ttiZxbtN7kEA9n07619dEUuyyUVD deFm+rfPSj/l0nfCwYxa2ZfnWKrUBe9i63pMsXrwEEgvqBebYe1jJgwwv5noenNF KL4r+j2L+U55z9GtDQyawwTmaITQ+uDGLLkG0KxxCAEP2d5XmBwPai/F4NWXgX0S wttz84V+SPXrZNQmVp7d+clVagDyi+oXIQCSvDqEp7nJpJx84clRRFviDl4GA5me sFIM/MIl+XkHcVNsgAH+/eipYJBHKfAEVIqMOCPZIT5DjvWU6KAf2QE9jB21h8p8 MjJ6RIivN49W8XiPP6RlW7YUyP3S8/Is -----END CERTIFICATE-----Generated at Sun Aug 24 00:56:17 2025 by rpki-client