$ rpki-client -vvf rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft File: gO0g9_wH3gyfPBuOKunNP85u2yE.mft (raw, json) Hash identifier: SVR2AaTAY0HopZMTWogJnHaBcUUGlS2sVybDoltt1xY= Subject key identifier: 19:54:D2:37:23:82:A1:B6:56:48:04:26:09:76:4C:72:DE:95:5F:CE Authority key identifier: 80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 Certificate issuer: /CN=A915BE00/serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Certificate serial: 0563 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft Manifest number: 055B Signing time: Fri 18 Jul 2025 23:43:27 +0000 Manifest this update: Fri 18 Jul 2025 23:43:26 +0000 Manifest next update: Fri 25 Jul 2025 23:43:26 +0000 Files and hashes: 1: gO0g9_wH3gyfPBuOKunNP85u2yE.crl (hash: Fa7s3ap3PAfU8qiwg/NQqeYLRKLv4mPtRyXNF9VsySs=) 2: 972D6576112511F08AC1A549C4F9AE02.roa (hash: QOFOeJ0/TitkOVKuCtknVXKhDl8rDuqKOlqBjNU794M=) 3: 513D702E112511F081CC4E49C4F9AE02.roa (hash: Kg31LYu7Durk6j8slLyu/vJtO9Dfls9nej9ZAhspvEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1379 (0x563) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BE00, serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Validity Not Before: Jul 18 23:43:26 2025 GMT Not After : Jul 25 23:43:26 2025 GMT Subject: CN=687adc1e-b099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:85:57:5f:2b:84:5f:33:45:d1:e9:55:cf:46: db:41:69:cc:58:cb:e8:e3:aa:64:e4:cd:cc:68:2c: be:ee:7f:4d:bc:47:5d:58:64:71:bc:07:70:bc:fc: ad:99:88:08:1a:63:60:eb:54:8a:eb:a8:ac:04:03: 68:d7:1f:71:7e:22:5e:26:16:58:d3:2a:4c:6d:8c: c2:1f:a1:cf:94:c4:2c:3a:31:d6:76:52:09:1d:f7: 25:c1:04:a6:1f:0f:cb:fa:1c:fc:9b:c7:ec:04:46: 8e:39:b0:80:ac:b4:9c:d8:79:7c:85:43:9a:76:45: 90:0e:a3:d9:16:55:1c:95:da:e3:df:97:93:c8:07: 1f:9a:bc:d3:a8:33:d8:b1:47:47:60:52:f4:63:ec: 2b:38:39:2e:cb:bb:8b:51:0f:a2:0d:6d:a2:4b:42: 16:72:77:0a:54:a4:d8:42:c0:41:9f:50:42:e8:c7: dd:dc:08:36:58:86:58:0b:6c:31:d4:b0:95:e0:5b: 65:76:bb:b7:2a:f3:9c:0f:18:66:84:b6:91:61:b8: d6:05:15:5e:53:5b:77:bf:6c:94:ed:0a:4e:34:33: 0b:ce:93:89:fe:44:fa:e3:71:7b:49:8f:3d:f4:cc: 9d:63:a3:91:05:da:15:fc:88:f0:dd:74:6b:fe:90: 67:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:54:D2:37:23:82:A1:B6:56:48:04:26:09:76:4C:72:DE:95:5F:CE X509v3 Authority Key Identifier: keyid:80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ba:67:03:f3:4e:89:33:41:a1:d2:df:3f:ff:31:c9:f0:cd: b0:83:90:42:74:e1:3f:95:b3:94:be:29:b4:6e:4d:22:97:aa: fd:1c:34:e0:9f:5b:d3:fd:0d:ce:7b:ec:0d:e5:dc:ab:2f:42: 89:ba:9d:9d:f3:8b:a8:06:f4:ea:d7:ad:dc:31:ce:61:3f:92: b3:44:9b:2a:9f:29:2a:ed:0e:8a:75:94:f0:93:78:fb:e3:74: 75:1f:d0:13:68:82:f6:88:ad:c8:cd:0a:07:f2:9e:8a:25:19: 5c:e9:3c:df:68:23:86:d7:68:57:27:c3:7b:06:92:4d:73:20: 1a:06:f0:a3:57:17:94:14:01:be:79:4f:eb:0a:5b:ea:16:ba: a2:8a:e6:c6:bd:33:6a:bf:3d:ee:80:dc:6e:0f:db:38:99:9e: 35:0d:59:3c:9c:1d:30:46:37:cb:9a:b6:68:31:7e:a6:14:5b: a8:4d:0f:b4:c9:03:03:a4:bf:64:a1:71:06:a2:b4:dd:84:0f: 27:3a:b8:b5:bb:6f:4e:cc:a5:b8:ac:85:69:fa:62:4a:7d:71: d3:08:d1:65:20:42:88:d9:5a:90:52:38:7c:79:c6:80:a3:5b: 37:55:a0:98:f9:3e:7c:6c:76:40:de:4e:0c:d1:99:93:32:f3: 83:ae:d4:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJFMDAxMTAvBgNVBAUTKDgwRUQyMEY3RkMwN0RFMEM5RjNDMUI4RTJBRTlDRDNG Q0U2RURCMjEwHhcNMjUwNzE4MjM0MzI2WhcNMjUwNzI1MjM0MzI2WjAYMRYwFAYD VQQDEw02ODdhZGMxZS1iMDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4VXXyuEXzNF0elVz0bbQWnMWMvo46pk5M3MaCy+7n9NvEddWGRxvAdwvPyt mYgIGmNg61SK66isBANo1x9xfiJeJhZY0ypMbYzCH6HPlMQsOjHWdlIJHfclwQSm Hw/L+hz8m8fsBEaOObCArLSc2Hl8hUOadkWQDqPZFlUcldrj35eTyAcfmrzTqDPY sUdHYFL0Y+wrODkuy7uLUQ+iDW2iS0IWcncKVKTYQsBBn1BC6Mfd3Ag2WIZYC2wx 1LCV4Ftldru3KvOcDxhmhLaRYbjWBRVeU1t3v2yU7QpONDMLzpOJ/kT643F7SY89 9MydY6ORBdoV/Ijw3XRr/pBnqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlU0jcj gqG2VkgEJgl2THLelV/OMB8GA1UdIwQYMBaAFIDtIPf8B94MnzwbjirpzT/Obtsh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkUwMC8zRDBCMjEyQUY0 RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNneWZQQnVPS3VuTlA4NXUy eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPMGc5X3dIM2d5ZlBCdU9LdW5OUDg1dTJ5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkUwMC8zRDBCMjEyQUY0RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNn eWZQQnVPS3VuTlA4NXUyeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAumcD806JM0Gh0t8//zHJ8M2wg5BCdOE/lbOUvim0bk0il6r9HDTg n1vT/Q3Oe+wN5dyrL0KJup2d84uoBvTq163cMc5hP5KzRJsqnykq7Q6KdZTwk3j7 43R1H9ATaIL2iK3IzQoH8p6KJRlc6TzfaCOG12hXJ8N7BpJNcyAaBvCjVxeUFAG+ eU/rClvqFrqiiubGvTNqvz3ugNxuD9s4mZ41DVk8nB0wRjfLmrZoMX6mFFuoTQ+0 yQMDpL9koXEGorTdhA8nOri1u29OzKW4rIVp+mJKfXHTCNFlIEKI2VqQUjh8ecaA o1s3VaCY+T58bHZA3k4M0ZmTMvODrtS6 -----END CERTIFICATE-----Generated at Sun Jul 20 10:23:40 2025 by rpki-client