$ rpki-client -vvf rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft File: gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft (raw, json) Hash identifier: lh3aYywWcMoxCdc/0GvJEN0+P5BAge4iuFcjY3kbSmk= Subject key identifier: EF:42:42:AA:5A:C2:F8:C7:A2:A6:12:D1:5C:75:6C:85:5E:F5:22:34 Authority key identifier: 81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 Certificate issuer: /CN=A912096C/serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124 Certificate serial: 0773 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft Manifest number: 076A Signing time: Fri 18 Jul 2025 21:51:40 +0000 Manifest this update: Fri 18 Jul 2025 21:51:39 +0000 Manifest next update: Fri 25 Jul 2025 21:51:39 +0000 Files and hashes: 1: gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl (hash: HL6U8rWHA0J/qaofwoUHpKRQGAwYDAlDL3N3eYYS5vQ=) 2: 7D7B467CE06011EDBB10FD53C4F9AE02.roa (hash: S7PCclJgGscLtYe2Pj+Y6a3iFp4ZeeTuzvJeZrm+yCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1907 (0x773) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912096C, serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124 Validity Not Before: Jul 18 21:51:39 2025 GMT Not After : Jul 25 21:51:39 2025 GMT Subject: CN=687ac1eb-a001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e8:ce:6c:8d:c3:00:81:ac:3b:64:58:78:ec: 76:ad:ce:7e:2d:6d:7b:78:72:1a:33:a4:b5:22:29: b0:7a:e6:d3:a1:b6:59:d1:f4:42:fc:05:06:a1:69: dd:bc:b3:d6:9f:27:0a:26:eb:02:63:a9:70:4d:4f: e1:4d:e0:0a:66:b5:41:d4:18:1b:12:1d:fe:10:7c: 39:df:dd:69:19:8d:b1:22:a9:d1:fb:dc:bf:d1:cc: 1e:8e:78:73:d4:80:4d:e8:59:56:74:38:5f:b0:da: bf:0f:f0:41:62:ea:7c:31:98:4f:fb:f7:2b:dd:9d: ab:67:76:b5:24:50:3b:a4:36:ee:1a:fd:0c:83:49: 49:71:1e:d4:67:62:01:ab:68:d9:6e:9a:d4:23:94: 71:37:1e:b6:28:f8:b5:c0:a3:1b:fd:d6:0c:43:40: fe:a9:dc:ec:6e:9d:dc:55:4f:31:ac:d3:0e:c6:ff: df:7a:f6:ac:95:89:7e:69:55:37:f4:fe:1c:0e:33: 58:dd:a4:a6:f2:34:9a:87:1d:5e:57:04:a2:84:7c: 10:fb:66:61:ac:9d:31:1a:8a:b8:b5:2b:47:92:11: a8:c8:92:cc:db:a6:29:30:a3:e2:89:8c:13:26:33: 00:c5:59:58:e6:1b:4f:b9:6d:98:4f:c5:61:95:fc: 2a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:42:42:AA:5A:C2:F8:C7:A2:A6:12:D1:5C:75:6C:85:5E:F5:22:34 X509v3 Authority Key Identifier: keyid:81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:55:06:df:fc:9c:15:22:e9:7c:5b:3c:d9:bd:ba:19:fc:65: a7:a1:6d:39:0f:7c:3b:56:65:ad:0f:da:7b:aa:90:d2:0f:7e: d1:cc:71:0e:fe:28:22:2e:64:9c:00:84:be:06:13:37:5f:83: 66:c2:b2:74:8c:d2:a0:60:ce:2c:c1:1c:6b:c8:50:7c:ed:96: a8:f7:c4:9f:3f:d1:55:7d:b8:b4:29:34:51:df:10:c4:6e:95: 32:14:83:5a:f0:e0:ce:2e:b6:e8:55:56:ab:68:9a:d2:28:37: 69:b9:4e:37:34:3b:d5:2b:da:e0:5c:78:d0:a0:16:0a:6e:7f: b7:8f:3e:c0:5a:4c:32:f9:56:bc:7e:22:29:ae:be:16:36:25: ad:8b:ac:4d:9a:d3:87:28:c4:7e:79:f5:4d:f1:ed:b6:a8:61: 82:9b:af:33:97:ac:f7:9d:34:80:97:0f:60:ed:89:a4:54:28: e1:8b:4f:a5:76:00:47:43:cb:5b:d2:ba:c7:2c:e8:20:7d:5e: ed:0f:8f:cf:e4:83:8c:04:72:3b:ab:71:fc:bc:fb:a5:6c:0e: 8e:84:4a:77:43:8e:e0:9e:9f:a0:95:cf:72:88:3f:b2:32:b1: 64:6e:3f:99:d3:34:2c:93:23:8c:b1:34:b2:94:23:90:b7:a6: 01:1a:dc:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NkMxMTAvBgNVBAUTKDgxOTc2NjNBN0Y2MzQ3RDU5MUI2QjJCOUFERDVBMkQ1 NzRFOTExMjQwHhcNMjUwNzE4MjE1MTM5WhcNMjUwNzI1MjE1MTM5WjAYMRYwFAYD VQQDEw02ODdhYzFlYi1hMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+jObI3DAIGsO2RYeOx2rc5+LW17eHIaM6S1IimweubTobZZ0fRC/AUGoWnd vLPWnycKJusCY6lwTU/hTeAKZrVB1BgbEh3+EHw5391pGY2xIqnR+9y/0cwejnhz 1IBN6FlWdDhfsNq/D/BBYup8MZhP+/cr3Z2rZ3a1JFA7pDbuGv0Mg0lJcR7UZ2IB q2jZbprUI5RxNx62KPi1wKMb/dYMQ0D+qdzsbp3cVU8xrNMOxv/fevaslYl+aVU3 9P4cDjNY3aSm8jSahx1eVwSihHwQ+2ZhrJ0xGoq4tStHkhGoyJLM26YpMKPiiYwT JjMAxVlY5htPuW2YT8VhlfwqqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9CQqpa wvjHoqYS0Vx1bIVe9SI0MB8GA1UdIwQYMBaAFIGXZjp/Y0fVkbayua3VotV06REk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk2Qy8xRDMxQzE4NDI4 OTIxMUVCQUM4Q0NFMTNDNEY5QUUwMi9nWmRtT245alI5V1J0cks1cmRXaTFYVHBF U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2daZG1PbjlqUjlXUnRySzVyZFdpMVhUcEVTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDk2Qy8xRDMxQzE4NDI4OTIxMUVCQUM4Q0NFMTNDNEY5QUUwMi9nWmRtT245alI5 V1J0cks1cmRXaTFYVHBFU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCVQbf/JwVIul8WzzZvboZ/GWnoW05D3w7VmWtD9p7qpDSD37RzHEO /igiLmScAIS+BhM3X4NmwrJ0jNKgYM4swRxryFB87Zao98SfP9FVfbi0KTRR3xDE bpUyFINa8ODOLrboVVaraJrSKDdpuU43NDvVK9rgXHjQoBYKbn+3jz7AWkwy+Va8 fiIprr4WNiWti6xNmtOHKMR+efVN8e22qGGCm68zl6z3nTSAlw9g7YmkVCjhi0+l dgBHQ8tb0rrHLOggfV7tD4/P5IOMBHI7q3H8vPulbA6OhEp3Q47gnp+glc9yiD+y MrFkbj+Z0zQskyOMsTSylCOQt6YBGtwI -----END CERTIFICATE-----Generated at Sun Jul 20 22:34:20 2025 by rpki-client