$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft File: GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft (raw, json) Hash identifier: afYZd+djwR7e9YdWYHsDJFgIDPUwRLYNciR6TOOhJdw= Subject key identifier: 13:D4:6F:A0:EF:7F:82:80:21:24:B7:AB:71:CF:2F:AD:AF:E3:A4:B7 Authority key identifier: 18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A Certificate issuer: /CN=A91F8357/serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft Manifest number: 69 Signing time: Sat 23 Aug 2025 07:11:49 +0000 Manifest this update: Sat 23 Aug 2025 07:11:49 +0000 Manifest next update: Sat 30 Aug 2025 07:11:49 +0000 Files and hashes: 1: GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl (hash: sKkkyjWQUjTub/nXKQsKQcIXqfpGWfS//78Ykrj0i0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Validity Not Before: Aug 23 07:11:49 2025 GMT Not After : Aug 30 07:11:49 2025 GMT Subject: CN=68a969b5-d05f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fc:1a:4a:c4:2f:7e:b8:17:5a:84:25:1a:29: 3b:78:1c:63:c9:3c:be:a0:2f:07:7c:54:cb:a8:f3: 22:ff:1d:9a:c6:a5:77:6a:f2:0c:63:6c:9b:94:81: e7:87:40:53:51:84:2b:b7:92:60:f1:08:2e:73:c9: 64:5c:be:85:f9:23:4c:fb:04:ba:32:39:ed:f9:69: 86:0b:aa:b8:bb:5d:5d:98:34:47:76:79:e1:5f:99: 65:82:20:78:1a:8b:40:71:ba:b6:cb:40:a7:a2:6f: 04:5a:20:88:39:37:06:a5:39:f5:f3:30:b6:2f:c4: 25:83:44:f6:ef:1f:30:01:ec:ac:20:41:2d:26:c4: 3f:3e:85:0f:da:b7:66:b4:1f:24:02:a3:e5:dc:6c: 5f:8f:7d:53:2e:8d:1e:d1:25:a4:87:7c:b1:d8:37: c5:52:94:73:3d:ff:55:da:75:e9:52:ed:ef:ee:0f: 4d:43:43:2c:10:65:6c:f3:c9:70:b0:b4:f0:09:ae: 0b:c0:ca:fa:d6:5d:6a:e6:67:b4:09:93:b3:25:d3: e0:17:54:7a:21:64:e2:a9:a9:5c:41:d1:a9:da:df: c2:e7:6f:a5:0a:9e:1f:d2:4c:6a:5a:da:c5:1e:13: 2f:b3:7e:d2:77:08:27:cf:05:9f:82:91:d1:9f:4f: 7e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D4:6F:A0:EF:7F:82:80:21:24:B7:AB:71:CF:2F:AD:AF:E3:A4:B7 X509v3 Authority Key Identifier: keyid:18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:94:37:4b:9e:01:46:b4:9e:93:18:6c:9e:f0:ea:0d:9b:bd: 31:f9:53:cf:ca:05:f9:08:3c:bf:db:df:36:c0:9b:d7:5c:38: dc:53:1b:9e:f3:88:65:d6:95:24:49:3c:7a:16:35:94:b3:3a: 3d:79:d9:d6:a7:5b:5b:a2:1b:48:6d:9d:41:ee:5b:b3:5b:2e: 61:7a:61:44:09:d5:8e:e0:f5:63:33:a3:6d:6c:e8:a3:ab:bd: 84:13:8b:4b:cd:cb:c5:99:6b:c2:21:89:bb:00:b6:df:fe:0b: 04:20:00:2d:83:e2:9c:76:a1:64:32:44:f2:cf:46:5a:fd:5e: 3e:ad:8a:ce:f9:55:d1:7c:9e:cf:0c:28:9e:0c:0e:92:ea:0a: 1b:e3:2a:71:f1:c2:5b:b3:f6:67:9a:dd:83:0b:10:ab:80:19: c5:66:e2:92:b7:06:4e:cb:22:f4:51:42:d9:8a:53:31:33:a1: 94:15:8b:93:84:00:e3:c4:37:93:8c:26:f9:dd:e3:32:7a:1e: 8e:da:87:34:c3:3f:7a:15:62:3e:66:c8:94:4a:f6:23:d1:15: 01:2d:63:4a:15:37:79:59:6c:6d:cc:93:88:73:e2:01:05:98: 2d:a0:f8:af:9a:57:d4:f7:52:54:23:48:33:1e:c5:8a:2c:b7: 19:bb:bf:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMTgwQTM1MjJFMjA1MEM1RjFFMDg3MzUzOUIxMkQ2RDIz MTJBMjAxQTAeFw0yNTA4MjMwNzExNDlaFw0yNTA4MzAwNzExNDlaMBgxFjAUBgNV BAMTDTY4YTk2OWI1LWQwNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCa/BpKxC9+uBdahCUaKTt4HGPJPL6gLwd8VMuo8yL/HZrGpXdq8gxjbJuUgeeH QFNRhCu3kmDxCC5zyWRcvoX5I0z7BLoyOe35aYYLqri7XV2YNEd2eeFfmWWCIHga i0BxurbLQKeibwRaIIg5NwalOfXzMLYvxCWDRPbvHzAB7KwgQS0mxD8+hQ/at2a0 HyQCo+XcbF+PfVMujR7RJaSHfLHYN8VSlHM9/1XadelS7e/uD01DQywQZWzzyXCw tPAJrgvAyvrWXWrmZ7QJk7Ml0+AXVHohZOKpqVxB0ana38Lnb6UKnh/STGpa2sUe Ey+zftJ3CCfPBZ+CkdGfT37PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE9RvoO9/ goAhJLercc8vra/jpLcwHwYDVR0jBBgwFoAUGAo1IuIFDF8eCHNTmxLW0jEqIBow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzFEQTVDQzU2REY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4ZUNITlRteExXMGpFcUlC by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0FvMUl1SUZERjhlQ0hOVG14TFcwakVxSUJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzFEQTVDQzU2REY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4 ZUNITlRteExXMGpFcUlCby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALyUN0ueAUa0npMYbJ7w6g2bvTH5U8/KBfkIPL/b3zbAm9dcONxTG57z iGXWlSRJPHoWNZSzOj152danW1uiG0htnUHuW7NbLmF6YUQJ1Y7g9WMzo21s6KOr vYQTi0vNy8WZa8IhibsAtt/+CwQgAC2D4px2oWQyRPLPRlr9Xj6tis75VdF8ns8M KJ4MDpLqChvjKnHxwluz9mea3YMLEKuAGcVm4pK3Bk7LIvRRQtmKUzEzoZQVi5OE AOPEN5OMJvnd4zJ6Ho7ahzTDP3oVYj5myJRK9iPRFQEtY0oVN3lZbG3Mk4hz4gEF mC2g+K+aV9T3UlQjSDMexYostxm7v4s= -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:46 2025 by rpki-client