$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft File: -gRcYwK4c-iDZfqaAhSZtPPFhog.mft (raw, json) Hash identifier: rSNtyYOc1YITjfthkaG/f+RaEtRhVv4eMEMH25MhcxQ= Subject key identifier: 92:D5:0F:E1:7C:65:70:B8:F5:61:BC:08:DE:A1:27:F2:B5:ED:A5:8F Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 055A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft Manifest number: 054B Signing time: Fri 18 Jul 2025 23:50:32 +0000 Manifest this update: Fri 18 Jul 2025 23:50:31 +0000 Manifest next update: Fri 25 Jul 2025 23:50:31 +0000 Files and hashes: 1: -gRcYwK4c-iDZfqaAhSZtPPFhog.crl (hash: bqlK1tDSV5eV/AoJPHj8S9tMWfMgvG+G5SNBsLHlzC0=) 2: D62399042D1E11EE8C614E3EC4F9AE02.roa (hash: dy7HlTozJjIKYVnOC7Ac5E0oRz65i8VQkjJrYKePISw=) 3: 14A59A26E15B11ECA05C9236C4F9AE02.roa (hash: mfi7/O1q/PlMOgkBjbRpL3IW/lsvy+Z+UkSI5FHbr6c=) 4: 36C4FAAAA9FC11EEBEF3E64AC4F9AE02.roa (hash: RH9GugeUqxFAlpVwNYGHYX1wxhyc5gJGTmNYoQjg2Ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1370 (0x55a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3, serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: Jul 18 23:50:31 2025 GMT Not After : Jul 25 23:50:31 2025 GMT Subject: CN=687addc8-fc84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:72:b2:f5:53:f5:cf:51:66:20:c7:9b:1a:ed: 01:ce:e5:42:8c:d1:1d:b7:92:00:ff:bf:87:c6:6b: b2:0f:ed:a0:aa:27:af:c8:ab:52:15:f6:f0:94:cb: 2f:67:e9:8f:a1:5b:e9:a3:92:ca:61:80:42:77:b8: aa:90:24:a7:69:32:75:61:e9:de:92:4a:9b:3b:92: 39:e1:14:de:5f:53:a4:73:18:a1:b1:63:c5:ad:ec: 78:77:40:e4:21:5e:6b:3a:1d:60:63:25:6e:f4:59: 2b:6a:36:b1:e3:56:4e:8f:40:be:33:46:f7:f8:34: da:70:43:48:a5:df:d5:d4:13:6d:e7:ba:3b:0d:ed: 06:96:0e:3c:31:da:ff:2d:b1:4b:bb:a9:ba:b1:a6: 6b:86:e6:12:3f:16:15:12:c1:09:07:2b:e0:23:7a: 7d:e2:a8:f5:cf:5d:d7:f2:97:28:d3:9c:68:3c:17: c1:9c:ae:a7:8e:01:55:95:0b:51:aa:1a:e8:b9:5a: 4f:71:22:d1:dc:0d:47:7c:e3:30:ea:3b:0c:14:8c: f9:58:2f:93:98:7b:8f:88:fe:01:54:b3:6b:69:79: 4a:62:e3:82:3f:be:00:a8:66:b8:66:55:f7:72:5e: 21:4f:76:69:a2:7a:0c:21:8e:3a:f6:a2:50:21:b9: 9d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D5:0F:E1:7C:65:70:B8:F5:61:BC:08:DE:A1:27:F2:B5:ED:A5:8F X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:89:1b:d8:61:d3:40:2f:d2:fb:0f:44:22:1b:7d:91:4e:e0: 39:29:51:9e:49:c2:b0:42:85:2c:61:9b:22:48:84:9e:d0:96: 43:ca:65:16:40:60:1f:69:2e:d6:12:30:94:97:8a:e4:83:42: e9:d0:da:7e:07:72:53:7e:d0:38:bd:85:9f:88:09:df:cc:95: 5c:7b:91:2b:2a:61:8e:64:26:e5:1e:59:a1:1d:12:69:5e:80: fd:6a:e6:a4:e0:96:53:56:86:2f:51:4d:bb:3a:ee:3e:81:05: 90:9f:38:cd:0b:a6:a7:c1:99:d0:49:23:55:ab:16:73:c8:3e: 96:b0:37:ee:e0:43:38:4a:80:91:5d:e2:c4:72:de:05:c6:3d: 8b:f0:d3:b6:67:58:fa:13:5c:0d:2c:7a:d5:6f:e7:36:13:4d: bf:43:5e:a9:5b:b9:6d:7b:2c:d3:bc:ab:9f:d1:47:f1:6e:e4: 42:7f:fd:33:0f:34:15:dc:bc:6c:a4:f8:65:7d:e8:d6:ab:ab: db:fc:61:df:cf:40:0d:d3:fd:3a:2c:b8:84:f3:de:03:7a:f3: 46:0e:e6:d6:16:90:8a:a2:e4:bd:db:e4:c4:6c:9a:ba:14:f8: 88:32:2c:b7:f3:42:ee:0b:03:87:f6:5c:7d:6e:41:90:cb:d8: 83:80:bf:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjUwNzE4MjM1MDMxWhcNMjUwNzI1MjM1MDMxWjAYMRYwFAYD VQQDEw02ODdhZGRjOC1mYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HKy9VP1z1FmIMebGu0BzuVCjNEdt5IA/7+HxmuyD+2gqievyKtSFfbwlMsv Z+mPoVvpo5LKYYBCd7iqkCSnaTJ1YenekkqbO5I54RTeX1OkcxihsWPFrex4d0Dk IV5rOh1gYyVu9Fkrajax41ZOj0C+M0b3+DTacENIpd/V1BNt57o7De0Glg48Mdr/ LbFLu6m6saZrhuYSPxYVEsEJByvgI3p94qj1z13X8pco05xoPBfBnK6njgFVlQtR qhrouVpPcSLR3A1HfOMw6jsMFIz5WC+TmHuPiP4BVLNraXlKYuOCP74AqGa4ZlX3 cl4hT3ZponoMIY469qJQIbmdPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLVD+F8 ZXC49WG8CN6hJ/K17aWPMB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTNEMy82RUMwRTM2ODAwMEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMt aURaZnFhQWhTWnRQUEZob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9iRvYYdNAL9L7D0QiG32RTuA5KVGeScKwQoUsYZsiSISe0JZDymUW QGAfaS7WEjCUl4rkg0Lp0Np+B3JTftA4vYWfiAnfzJVce5ErKmGOZCblHlmhHRJp XoD9auak4JZTVoYvUU27Ou4+gQWQnzjNC6anwZnQSSNVqxZzyD6WsDfu4EM4SoCR XeLEct4Fxj2L8NO2Z1j6E1wNLHrVb+c2E02/Q16pW7lteyzTvKuf0UfxbuRCf/0z DzQV3LxspPhlfejWq6vb/GHfz0AN0/06LLiE894DevNGDubWFpCKouS92+TEbJq6 FPiIMiy380LuCwOH9lx9bkGQy9iDgL8b -----END CERTIFICATE-----Generated at Sun Jul 20 14:25:01 2025 by rpki-client