$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft File: GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json) Hash identifier: p7iCcayo1z3npVkey6LMw0Xt9BixFKGNVhHZasjVXP8= Subject key identifier: 6B:1D:1B:DD:2B:AA:3C:1E:00:09:13:1C:8A:FD:42:FF:87:9C:39:9C Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Certificate serial: 0CF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft Manifest number: 0CAD Signing time: Mon 21 Jul 2025 09:28:08 +0000 Manifest this update: Mon 21 Jul 2025 09:28:07 +0000 Manifest next update: Mon 28 Jul 2025 09:28:07 +0000 Files and hashes: 1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: RJlFVwPdz3qYwHOgZe/rIGS9RwaFp3qxkHIpF+PJ1Wc=) 2: 679156E4661411F0BA434131C4F9AE02.roa (hash: uh+b9q8Z5InYkMQd4BErQcQFRlkMx6jgiQb9AsG76v8=) 3: 566800AE193C11F094773636C4F9AE02.roa (hash: oNjtwWWJkGbuo8Lin/LYJIx8GnJgwkm2jbKAVsZD+6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3313 (0xcf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Validity Not Before: Jul 21 09:28:07 2025 GMT Not After : Jul 28 09:28:07 2025 GMT Subject: CN=687e0827-e511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d7:15:02:c0:4b:88:dc:78:46:15:26:28:be: 80:3a:7c:7e:a1:3f:90:d0:e4:d6:ec:21:8a:2d:ed: 43:d2:1f:e8:ee:d3:8b:ce:7e:84:47:6e:e6:c1:7a: c4:22:8c:05:d3:4b:af:91:c0:0a:67:8f:ac:47:b9: 2a:f0:eb:6c:72:e1:5f:46:a9:ad:37:d3:94:b8:d8: b7:b6:bd:ce:43:4f:ab:e6:5a:f7:67:88:8b:f5:d8: be:3c:81:f3:fd:4d:03:72:16:29:70:3c:41:0a:97: d4:87:47:db:10:65:24:dc:c2:92:37:7e:27:7b:6d: 32:1a:20:dd:fc:27:b0:3e:26:d6:8d:e2:a9:7d:f0: bb:78:da:2e:a1:4f:aa:7a:87:be:4e:e7:13:21:ee: 4b:1c:e2:83:bf:3b:97:68:fb:27:84:d8:7d:ab:64: f4:78:56:0b:5d:24:7e:da:0f:fd:24:fd:2a:ce:eb: b3:c6:34:a0:01:a5:69:cb:f9:f3:b2:5b:3f:41:c4: 68:b2:6b:02:54:4f:14:d1:93:17:08:14:4e:04:97: 6d:de:d2:54:e6:f4:fc:a5:ab:b1:4d:9b:4c:0f:5d: 23:10:fd:2b:32:04:73:2f:6f:1c:13:40:21:ad:ad: de:00:03:5a:e5:3a:8c:56:67:f6:20:f9:d3:26:f0: e2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:1D:1B:DD:2B:AA:3C:1E:00:09:13:1C:8A:FD:42:FF:87:9C:39:9C X509v3 Authority Key Identifier: keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:6f:cd:03:24:af:49:4b:38:65:4d:86:e9:02:39:30:bf:3d: ff:6a:8d:28:94:0a:3d:53:9a:be:09:c3:87:ec:73:a7:98:7c: 76:9a:15:f6:dd:50:19:1e:51:32:57:a7:8e:fd:ae:c7:41:f9: 54:8a:aa:4c:36:c9:e8:91:04:0d:00:41:91:09:59:b8:60:89: 44:bc:14:b1:c7:6c:5e:c4:0f:99:4c:03:99:75:32:54:09:61: 6a:e7:dc:2f:be:26:9a:7c:f7:a2:b9:3b:8e:d7:0b:21:bf:13: 1e:ee:4e:81:52:d6:57:8e:04:96:ae:4c:47:20:5a:e4:f9:98: 75:67:19:6f:e9:62:a6:db:b4:ab:ed:d9:7a:5c:54:d1:12:11: b6:a2:e4:c2:a7:d7:5c:9c:a6:d0:a1:be:83:1e:a0:9c:10:c8: 14:2c:6a:d7:72:08:47:29:28:30:1f:cf:1a:f1:bd:ec:34:f5: 9a:79:07:a1:3f:7d:f1:7e:9e:75:e7:09:3e:ad:aa:f2:65:55: 9e:e2:40:42:15:d6:df:4e:13:cb:83:57:ea:34:1a:4f:3c:b9: c9:83:18:c9:22:b5:d0:f2:ac:53:8f:d7:5c:4e:bb:7a:50:17: dd:f0:2a:fc:ec:35:4e:a6:97:65:6d:e1:e7:5b:38:70:66:45: 73:db:ab:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB RjYyREVGRkQwHhcNMjUwNzIxMDkyODA3WhcNMjUwNzI4MDkyODA3WjAYMRYwFAYD VQQDEw02ODdlMDgyNy1lNTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdcVAsBLiNx4RhUmKL6AOnx+oT+Q0OTW7CGKLe1D0h/o7tOLzn6ER27mwXrE IowF00uvkcAKZ4+sR7kq8OtscuFfRqmtN9OUuNi3tr3OQ0+r5lr3Z4iL9di+PIHz /U0DchYpcDxBCpfUh0fbEGUk3MKSN34ne20yGiDd/CewPibWjeKpffC7eNouoU+q eoe+TucTIe5LHOKDvzuXaPsnhNh9q2T0eFYLXSR+2g/9JP0qzuuzxjSgAaVpy/nz sls/QcRosmsCVE8U0ZMXCBROBJdt3tJU5vT8pauxTZtMD10jEP0rMgRzL28cE0Ah ra3eAANa5TqMVmf2IPnTJvDiBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsdG90r qjweAAkTHIr9Qv+HnDmcMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2 QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbb80DJK9JSzhlTYbpAjkwvz3/ao0olAo9U5q+CcOH7HOnmHx2mhX2 3VAZHlEyV6eO/a7HQflUiqpMNsnokQQNAEGRCVm4YIlEvBSxx2xexA+ZTAOZdTJU CWFq59wvviaafPeiuTuO1wshvxMe7k6BUtZXjgSWrkxHIFrk+Zh1Zxlv6WKm27Sr 7dl6XFTREhG2ouTCp9dcnKbQob6DHqCcEMgULGrXcghHKSgwH88a8b3sNPWaeQeh P33xfp515wk+raryZVWe4kBCFdbfThPLg1fqNBpPPLnJgxjJIrXQ8qxTj9dcTrt6 UBfd8Cr87DVOppdlbeHnWzhwZkVz26vW -----END CERTIFICATE-----Generated at Mon Jul 21 12:42:35 2025 by rpki-client