$ rpki-client -vvf rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft File: gprYV1claHsfCkxV-UIq8zsA_LE.mft (raw, json) Hash identifier: 0Jj+1EaCEH1ck1RQbGNeTrxfK/dDMn5KhW15R+r/Sus= Subject key identifier: 59:06:07:8E:99:85:10:EF:75:2C:3F:5A:DA:68:86:B7:8A:FB:61:DF Authority key identifier: 82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 Certificate issuer: /CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft Manifest number: AF Signing time: Sat 19 Jul 2025 06:17:05 +0000 Manifest this update: Sat 19 Jul 2025 06:17:05 +0000 Manifest next update: Sat 26 Jul 2025 06:17:05 +0000 Files and hashes: 1: gprYV1claHsfCkxV-UIq8zsA_LE.crl (hash: YMQPjYVSZfdMMfW6QWUDznlzTRSg8w3oq6sOdyL2mSc=) 2: 833934745B9E11EFA7D10E5BC4F9AE02.roa (hash: Z7ymI4gwgufBDRVS5UuVZ13UBlK2Svt1pgBpOJn+u0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A511, serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Validity Not Before: Jul 19 06:17:05 2025 GMT Not After : Jul 26 06:17:05 2025 GMT Subject: CN=687b3861-8377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:22:4f:30:a2:39:d2:b9:11:20:b6:8a:b1:d5: e3:5f:6f:6e:20:9f:df:7b:31:52:8c:2e:9d:10:20: 10:cf:4d:b8:fd:9f:db:4e:d1:85:d2:b4:bb:37:1c: 6d:b1:d0:d9:5b:7a:5e:4f:fc:2b:a6:a1:47:f7:27: d1:6e:da:e3:99:20:ee:aa:63:0d:2d:b0:43:a1:c8: 82:f6:34:59:35:88:c8:a2:93:65:9c:a2:b3:04:ae: ac:3c:4b:be:eb:1e:47:43:da:28:43:c6:86:c4:89: 44:80:db:f7:02:3c:c5:84:aa:c8:39:47:72:53:7d: cc:a7:6e:38:d9:e8:11:a2:3a:0c:11:22:35:76:88: 07:f6:2a:c3:c6:85:19:1b:fa:1b:4f:fc:8e:51:8d: d1:6b:ff:2e:fd:7b:84:60:0a:a6:ae:37:f6:1f:cc: 6a:56:86:52:f4:51:67:48:04:e9:8a:b7:8a:e8:c8: f8:5d:03:b9:cd:81:21:ad:48:8a:8f:11:9d:4c:47: b5:86:fd:8c:7a:4b:0c:31:bb:88:89:4d:1a:a9:46: 6e:f5:e2:31:48:2f:2b:3b:d8:36:b2:79:60:a3:8b: 97:b7:af:90:c6:c4:ea:d5:a1:1a:a2:d1:b5:89:0e: 7f:80:55:9a:cc:c6:3d:58:51:80:16:fb:5d:79:85: 03:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:06:07:8E:99:85:10:EF:75:2C:3F:5A:DA:68:86:B7:8A:FB:61:DF X509v3 Authority Key Identifier: keyid:82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:1a:4e:c7:a7:89:cb:69:0e:a6:05:7c:2c:70:18:d1:99:34: b1:43:76:03:b4:29:af:ab:ab:b6:df:cb:88:f9:a4:e9:7b:3e: 19:b9:c0:e1:76:14:39:fd:37:95:df:51:36:0f:bf:bc:97:bc: 18:25:26:ce:43:87:2d:19:cc:93:f9:65:15:8e:90:e5:75:89: d4:67:b2:da:cd:3b:f2:b4:02:55:27:a8:4f:7b:e4:aa:38:c6: e2:22:7e:41:61:22:76:53:2e:de:9e:e2:22:0f:0d:b5:cb:3d: b3:4d:fa:6e:de:9d:72:57:dd:2a:16:06:aa:44:31:1f:21:28: 92:dc:04:27:e7:7a:41:f1:66:9d:2a:f1:bc:98:1c:39:7e:9e: 2d:b7:4d:7a:2d:9d:a2:f6:9f:76:66:cf:07:ec:5d:fa:28:dc: d6:28:ef:4c:f5:74:e4:84:f6:91:3d:83:b1:d7:b5:17:f0:b0: 3c:20:22:da:2a:73:b9:44:ea:b6:01:a2:b1:ba:fa:c9:aa:ac: f5:3e:79:c3:e5:2d:71:7b:bb:c8:de:16:9f:a4:e9:b7:36:b8: 8e:ce:b9:cb:47:77:85:1f:d4:10:a1:42:f3:2a:c4:19:bc:42: b8:16:27:c2:9e:4d:c4:f3:94:88:4a:ee:bb:68:e6:8e:9b:0d: 61:85:88:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1MTExMTAvBgNVBAUTKDgyOUFEODU3NTcyNTY4N0IxRjBBNEM1NUY5NDIyQUYz M0IwMEZDQjEwHhcNMjUwNzE5MDYxNzA1WhcNMjUwNzI2MDYxNzA1WjAYMRYwFAYD VQQDEw02ODdiMzg2MS04Mzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyJPMKI50rkRILaKsdXjX29uIJ/fezFSjC6dECAQz024/Z/bTtGF0rS7Nxxt sdDZW3peT/wrpqFH9yfRbtrjmSDuqmMNLbBDociC9jRZNYjIopNlnKKzBK6sPEu+ 6x5HQ9ooQ8aGxIlEgNv3AjzFhKrIOUdyU33Mp2442egRojoMESI1dogH9irDxoUZ G/obT/yOUY3Ra/8u/XuEYAqmrjf2H8xqVoZS9FFnSATpireK6Mj4XQO5zYEhrUiK jxGdTEe1hv2MeksMMbuIiU0aqUZu9eIxSC8rO9g2snlgo4uXt6+QxsTq1aEaotG1 iQ5/gFWazMY9WFGAFvtdeYUDzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkGB46Z hRDvdSw/WtpohreK+2HfMB8GA1UdIwQYMBaAFIKa2FdXJWh7HwpMVflCKvM7APyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTUxMS8yRENGRjYxMjVC OUUxMUVGOTQ4NDYzNUFDNEY5QUUwMi9ncHJZVjFjbGFIc2ZDa3hWLVVJcTh6c0Ff TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dwcllWMWNsYUhzZkNreFYtVUlxOHpzQV9MRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTUxMS8yRENGRjYxMjVCOUUxMUVGOTQ4NDYzNUFDNEY5QUUwMi9ncHJZVjFjbGFI c2ZDa3hWLVVJcTh6c0FfTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDGk7Hp4nLaQ6mBXwscBjRmTSxQ3YDtCmvq6u238uI+aTpez4ZucDh dhQ5/TeV31E2D7+8l7wYJSbOQ4ctGcyT+WUVjpDldYnUZ7LazTvytAJVJ6hPe+Sq OMbiIn5BYSJ2Uy7enuIiDw21yz2zTfpu3p1yV90qFgaqRDEfISiS3AQn53pB8Wad KvG8mBw5fp4tt016LZ2i9p92Zs8H7F36KNzWKO9M9XTkhPaRPYOx17UX8LA8ICLa KnO5ROq2AaKxuvrJqqz1PnnD5S1xe7vI3hafpOm3NriOzrnLR3eFH9QQoULzKsQZ vEK4FifCnk3E85SISu67aOaOmw1hhYgy -----END CERTIFICATE-----Generated at Sun Jul 20 15:20:58 2025 by rpki-client