$ rpki-client -vvf rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft File: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft (raw, json) Hash identifier: yx3Li3aQLgMqHb4CVqEuorVIWeeA3zZrTJlp3BYjNkc= Subject key identifier: F3:22:74:1A:6F:9A:BE:65:FB:8C:10:3C:CC:B4:60:51:26:BD:7C:4A Authority key identifier: 1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 Certificate issuer: /CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Certificate serial: 0BD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft Manifest number: 0BCB Signing time: Tue 22 Jul 2025 19:08:13 +0000 Manifest this update: Tue 22 Jul 2025 19:08:13 +0000 Manifest next update: Tue 29 Jul 2025 19:08:13 +0000 Files and hashes: 1: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl (hash: RQmwA2WZNGof6y/cWTQTQBHs9BAkZZxU6W2ivs9ZNPI=) 2: 1407117C216311EA90D74C52C4F9AE02.roa (hash: 2C78FaeQx3m8f9CmVKBPjRPsChYY+d/Ump5Gj8ph3JM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3025 (0xbd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110A69, serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Validity Not Before: Jul 22 19:08:13 2025 GMT Not After : Jul 29 19:08:13 2025 GMT Subject: CN=687fe19d-ead9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ed:6e:47:c5:7c:27:d2:aa:79:d0:c4:48:bb: 9e:77:3e:5c:3a:cd:66:41:fa:6e:01:2c:2a:d4:dc: b8:51:d0:13:42:60:5f:25:97:c4:8c:5a:46:0e:21: 12:a9:d7:28:d9:b4:98:f9:7f:21:0e:0e:b3:7f:51: eb:5e:7f:1b:00:23:2f:c5:22:af:e2:ac:1c:d2:c2: c6:06:7a:7a:9c:43:6f:b7:f4:a8:ae:fc:6e:53:bc: c8:26:08:59:08:e0:bd:92:47:49:99:39:91:80:51: cf:05:b4:09:1a:80:5a:a6:2d:d8:69:98:24:c9:e6: f2:86:ad:71:9f:6d:9f:ec:b7:2b:0d:ef:d2:7b:42: 52:d9:46:27:ad:16:52:81:db:ee:96:99:33:cc:1c: d3:a5:46:f2:8d:93:32:44:cf:ab:98:36:bb:b4:6b: e1:ed:bf:5c:2e:d1:3b:26:73:ab:e5:84:fb:c9:d6: 98:7b:6b:dc:f7:61:d6:bb:cb:a3:8f:fd:7b:14:0b: 6f:e7:8c:cf:85:d1:05:2e:ed:c6:7f:b2:9c:4d:87: b5:c4:44:44:39:02:8f:44:8f:4f:9f:f2:bc:d8:d7: 6b:c9:0f:68:23:05:d5:d6:75:65:0b:af:21:7f:06: 8c:50:68:b2:fd:10:17:80:61:54:d0:ee:b3:eb:ee: 48:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:22:74:1A:6F:9A:BE:65:FB:8C:10:3C:CC:B4:60:51:26:BD:7C:4A X509v3 Authority Key Identifier: keyid:1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:f4:67:42:a9:a2:9b:d6:89:87:ad:56:04:40:c0:4f:ef:8f: bd:b7:4b:48:d4:0a:03:bf:56:22:69:1f:fd:f1:cc:78:60:8d: 8f:3d:c7:64:2f:9d:5e:a4:7e:3a:97:54:5a:9f:1e:b6:01:ca: bd:b4:c7:38:7a:f9:97:1e:e0:e3:fb:c8:9e:6f:6f:8c:2b:83: 3d:ca:b0:72:24:29:e6:ab:4c:f2:e6:e7:1c:da:18:7f:da:fd: 88:22:1d:35:d8:f4:f5:41:8c:e1:a3:6a:0f:7f:1e:ae:d7:78: 29:9b:04:76:1f:7c:80:da:67:5b:97:99:21:82:d9:68:83:0f: 9f:2d:71:6f:28:2d:6d:06:97:72:6f:5a:ce:b4:04:e0:b7:5d: 7f:3d:44:cd:a3:90:c7:bf:5f:40:45:20:aa:04:d4:b6:20:19: 86:c2:f0:86:17:8c:6d:4f:f3:29:33:1a:f5:17:e4:be:6d:3c: e4:5c:7f:89:65:3c:16:4e:04:ae:96:69:36:6d:f0:74:48:51: 9e:2d:3b:cf:b0:61:1b:98:53:18:25:67:b4:34:83:0f:dc:35: c3:26:0c:a0:97:55:b8:7f:f5:cf:b8:1c:3a:9d:9f:4a:93:27: 7e:92:4e:37:7e:c2:e0:c7:cd:4c:45:0c:ea:ae:2b:d2:60:6a: 90:9e:30:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBBNjkxMTAvBgNVBAUTKDFCNkUzMjkyQzgzNTY1NEU0OTE0OTJFNTU4NENGOTkz RjA1QkQ5OTAwHhcNMjUwNzIyMTkwODEzWhcNMjUwNzI5MTkwODEzWjAYMRYwFAYD VQQDEw02ODdmZTE5ZC1lYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvu1uR8V8J9KqedDESLuedz5cOs1mQfpuASwq1Ny4UdATQmBfJZfEjFpGDiES qdco2bSY+X8hDg6zf1HrXn8bACMvxSKv4qwc0sLGBnp6nENvt/SorvxuU7zIJghZ COC9kkdJmTmRgFHPBbQJGoBapi3YaZgkyebyhq1xn22f7LcrDe/Se0JS2UYnrRZS gdvulpkzzBzTpUbyjZMyRM+rmDa7tGvh7b9cLtE7JnOr5YT7ydaYe2vc92HWu8uj j/17FAtv54zPhdEFLu3Gf7KcTYe1xEREOQKPRI9Pn/K82NdryQ9oIwXV1nVlC68h fwaMUGiy/RAXgGFU0O6z6+5IgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMidBpv mr5l+4wQPMy0YFEmvXxKMB8GA1UdIwQYMBaAFBtuMpLINWVOSRSS5VhM+ZPwW9mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEE2OS9FM0FCRDA0MjIx NDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpVNUpGSkxsV0V6NWtfQmIy WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyNHlrc2cxWlU1SkZKTGxXRXo1a19CYjJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEE2OS9FM0FCRDA0MjIxNDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpV NUpGSkxsV0V6NWtfQmIyWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE9GdCqaKb1omHrVYEQMBP74+9t0tI1AoDv1YiaR/98cx4YI2PPcdk L51epH46l1Ranx62Acq9tMc4evmXHuDj+8ieb2+MK4M9yrByJCnmq0zy5ucc2hh/ 2v2IIh012PT1QYzho2oPfx6u13gpmwR2H3yA2mdbl5khgtlogw+fLXFvKC1tBpdy b1rOtATgt11/PUTNo5DHv19ARSCqBNS2IBmGwvCGF4xtT/MpMxr1F+S+bTzkXH+J ZTwWTgSulmk2bfB0SFGeLTvPsGEbmFMYJWe0NIMP3DXDJgygl1W4f/XPuBw6nZ9K kyd+kk43fsLgx81MRQzqrivSYGqQnjCu -----END CERTIFICATE-----Generated at Wed Jul 23 18:54:41 2025 by rpki-client