$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: 7EhX6c5+iDX0A2CUZ0BxOjmEyED2m0lZ/hcsK4LLC9s= Subject key identifier: 9E:19:98:0C:7B:26:17:93:0E:9C:25:9F:A6:EB:C0:A8:C1:50:E3:1C Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 04ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 04E8 Signing time: Sat 19 Jul 2025 00:05:29 +0000 Manifest this update: Sat 19 Jul 2025 00:05:28 +0000 Manifest next update: Sat 26 Jul 2025 00:05:28 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: YZns+3mvZHuzvPlNM3kBzXnsWy0jnB6v4gqVGAh7e0U=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: 40Tp9vYlwNjlXHzULzghK25QKYAH3IMjVH7JAvH5N/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:05:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1261 (0x4ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8, serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: Jul 19 00:05:28 2025 GMT Not After : Jul 26 00:05:28 2025 GMT Subject: CN=687ae148-f485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8f:a3:8a:e2:05:76:a8:65:28:5c:94:b6:a3: 47:98:e1:3a:1c:07:c6:46:ac:60:9f:4a:50:21:5b: 08:aa:ff:d6:03:ea:eb:f0:22:49:87:79:0f:7e:26: 2a:d8:75:bd:e4:e5:89:a1:0e:20:5f:b5:0e:3f:82: 11:a8:6e:3e:46:5c:17:31:ae:a3:a2:ea:b9:bd:f7: 74:9b:8b:bb:a7:d9:5c:ce:01:7e:0c:d5:aa:48:6d: 33:68:49:b5:fd:a0:a2:d1:e0:a0:ce:2e:bc:72:82: b6:c5:40:54:60:cb:49:16:7e:ef:83:91:c8:78:a1: 63:f6:28:38:2d:11:96:03:77:35:a2:5b:68:68:d9: 9b:f9:79:79:7e:86:fe:c3:54:7f:18:11:cd:39:94: ec:29:91:26:fa:e8:f2:7f:fb:de:e6:f4:05:9b:e8: 7f:59:4f:64:a0:be:f9:6e:8b:d1:42:26:5f:e7:58: 3d:43:97:02:6f:0c:e0:71:d3:d5:90:db:b9:74:17: 21:21:1c:cf:9d:65:e0:70:c3:a8:50:f8:e5:8c:e1: eb:0a:05:5b:6f:e2:10:c9:b1:21:d4:3b:41:a9:06: 9c:87:7a:17:07:79:3c:bc:c7:9a:04:e1:17:fe:9c: ce:18:70:4d:b0:c1:56:ee:41:35:fc:bb:0f:02:04: 73:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:19:98:0C:7B:26:17:93:0E:9C:25:9F:A6:EB:C0:A8:C1:50:E3:1C X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:24:16:4f:8a:3e:f4:29:c2:28:ae:41:0f:50:c3:35:d6:af: cf:e7:e9:16:7f:12:a9:95:05:d9:00:2b:85:41:38:71:1d:0e: 49:7b:0e:35:6f:e7:ea:ba:e6:c3:a0:4d:f7:6c:07:cb:4c:c9: bd:67:0b:5f:3d:da:75:2d:e4:b9:13:55:5c:e5:a1:e4:65:c7: e3:70:90:b4:ec:9f:c1:e1:d5:45:62:81:1b:45:98:82:a0:38: 14:74:8b:91:d0:93:13:6e:0a:7e:82:a1:19:41:2d:52:95:74: 5f:87:fd:f6:aa:9c:92:f7:ab:24:d6:1f:81:35:f1:eb:e2:2e: 76:c0:9d:9b:cd:58:ad:09:c1:80:af:e3:b9:56:42:1f:19:a2: 8f:7d:4b:a5:0a:60:25:be:72:74:db:af:c7:c7:24:b5:75:99: 53:23:8a:7a:4e:db:7d:08:38:1b:dc:0a:b4:9e:3c:9d:3d:cb: 16:d2:ca:62:8c:e1:fa:a2:73:f2:60:be:af:57:01:7f:00:67: 47:dc:f4:ae:58:9a:27:c5:96:4e:f8:88:14:95:b9:a6:bc:c5: 02:9b:0b:27:48:9b:24:be:45:bc:b8:d8:19:7e:01:59:ec:87: 5e:0e:79:73:47:de:66:d8:e7:07:ef:9e:d0:3b:7f:8a:35:ba: d5:85:fb:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjUwNzE5MDAwNTI4WhcNMjUwNzI2MDAwNTI4WjAYMRYwFAYD VQQDEw02ODdhZTE0OC1mNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtI+jiuIFdqhlKFyUtqNHmOE6HAfGRqxgn0pQIVsIqv/WA+rr8CJJh3kPfiYq 2HW95OWJoQ4gX7UOP4IRqG4+RlwXMa6jouq5vfd0m4u7p9lczgF+DNWqSG0zaEm1 /aCi0eCgzi68coK2xUBUYMtJFn7vg5HIeKFj9ig4LRGWA3c1oltoaNmb+Xl5fob+ w1R/GBHNOZTsKZEm+ujyf/ve5vQFm+h/WU9koL75bovRQiZf51g9Q5cCbwzgcdPV kNu5dBchIRzPnWXgcMOoUPjljOHrCgVbb+IQybEh1DtBqQach3oXB3k8vMeaBOEX /pzOGHBNsMFW7kE1/LsPAgRzfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4ZmAx7 JheTDpwln6brwKjBUOMcMB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMJBZPij70KcIorkEPUMM11q/P5+kWfxKplQXZACuFQThxHQ5Jew41 b+fquubDoE33bAfLTMm9ZwtfPdp1LeS5E1Vc5aHkZcfjcJC07J/B4dVFYoEbRZiC oDgUdIuR0JMTbgp+gqEZQS1SlXRfh/32qpyS96sk1h+BNfHr4i52wJ2bzVitCcGA r+O5VkIfGaKPfUulCmAlvnJ026/HxyS1dZlTI4p6Ttt9CDgb3Aq0njydPcsW0spi jOH6onPyYL6vVwF/AGdH3PSuWJonxZZO+IgUlbmmvMUCmwsnSJskvkW8uNgZfgFZ 7IdeDnlzR95m2OcH757QO3+KNbrVhfvG -----END CERTIFICATE-----Generated at Sun Jul 20 19:02:54 2025 by rpki-client