$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: 4BQC1/HzrFeNaeuG6mTqhFKuMtqB+ztX472dROOg22w= Subject key identifier: 41:31:4F:97:7A:54:8C:E1:6A:11:82:A6:83:38:4E:00:FE:A6:FC:AA Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B3B Signing time: Thu 24 Jul 2025 19:20:16 +0000 Manifest this update: Thu 24 Jul 2025 19:20:15 +0000 Manifest next update: Thu 31 Jul 2025 19:20:15 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: HSmfjkqyMqQvF5INTthrUmFxUsqDn/130ui5JsF0WKo=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:20:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2888 (0xb48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Jul 24 19:20:15 2025 GMT Not After : Jul 31 19:20:15 2025 GMT Subject: CN=68828770-2ebb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7b:18:6b:1f:7d:4f:5d:cb:c6:d1:53:2a:6a: cf:a6:5a:a6:c5:df:c0:f5:e0:89:05:67:1f:d4:87: 3c:9c:2b:9b:c5:f1:94:c3:78:72:d3:98:91:ca:b8: 95:e7:a8:be:d0:90:3a:dc:85:4c:8d:2b:84:df:2c: be:9f:73:87:89:be:49:c9:69:1e:96:7b:0e:07:25: ff:fd:99:70:05:23:28:8a:39:80:66:d5:9c:7e:ed: d0:5f:35:be:91:af:0d:96:06:d9:b0:1b:8f:30:da: 2d:c7:02:95:aa:0a:53:53:fc:12:b8:ed:1f:2b:73: d3:19:9e:e8:7d:e9:31:b7:eb:dd:d3:7a:fc:24:26: 45:6b:4f:38:fa:30:af:68:0b:d2:59:29:00:96:e2: 35:4d:9e:b5:74:84:97:03:35:43:48:b9:4a:c4:3e: 08:50:db:70:40:74:85:c4:c0:31:b9:0d:75:71:dd: de:72:1d:db:95:2b:ba:6a:f9:fc:9a:2f:99:28:bb: c2:e3:c2:23:ba:a3:62:5b:69:5d:e8:51:24:30:3f: 84:42:78:05:dd:b7:4c:85:f5:90:82:6a:f8:17:9f: 27:e3:29:2c:8e:7c:dd:88:0c:a3:eb:db:d0:cd:02: f0:e2:54:3d:5e:68:9b:56:a9:c1:6f:73:b1:b5:93: c5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:31:4F:97:7A:54:8C:E1:6A:11:82:A6:83:38:4E:00:FE:A6:FC:AA X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:b7:7b:60:26:b6:99:84:c6:bb:b4:9d:f7:e4:0c:55:5b:93: f2:55:9c:e9:ec:25:45:be:d9:3e:e1:69:c5:cf:1f:55:c2:e8: 1a:e4:2a:ba:a2:5c:c6:fe:4c:39:79:cb:90:c2:3a:91:8f:68: 61:bb:21:2b:1d:fc:4e:5f:b0:ba:30:cd:cd:ba:d0:04:0d:8f: 29:6a:13:05:f6:b5:d2:f3:06:53:86:d9:40:28:57:2e:f6:34: 20:61:57:9e:00:a4:1f:e8:22:92:f4:b6:6c:fc:d4:3e:09:5f: ad:a3:49:21:40:60:ca:dd:cf:d5:fc:f6:74:e3:29:a6:3a:7e: 2a:9e:15:c1:2c:7d:0c:0b:c9:6f:3e:6c:2e:65:c9:98:c5:7a: 6a:3e:c1:66:78:aa:7c:b0:0b:79:ba:ee:6f:2c:2f:fb:82:34: f5:1b:46:c8:67:5d:3b:04:1e:f6:5f:79:47:23:fb:5b:ba:06: 92:6b:2e:80:d8:cc:e4:fb:e4:2e:89:07:3a:91:b3:f2:0e:2e: c4:87:ae:d0:cd:6a:00:22:cb:e7:89:8d:42:79:7b:80:ca:f5: 24:31:82:da:9c:4f:6c:e0:bd:3a:14:41:fe:7b:46:ca:7c:c4: e2:69:40:80:c4:cf:e3:1d:11:ec:8d:46:de:9d:4e:f4:fd:99: b8:92:13:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUwNzI0MTkyMDE1WhcNMjUwNzMxMTkyMDE1WjAYMRYwFAYD VQQDEw02ODgyODc3MC0yZWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3sYax99T13LxtFTKmrPplqmxd/A9eCJBWcf1Ic8nCubxfGUw3hy05iRyriV 56i+0JA63IVMjSuE3yy+n3OHib5JyWkelnsOByX//ZlwBSMoijmAZtWcfu3QXzW+ ka8NlgbZsBuPMNotxwKVqgpTU/wSuO0fK3PTGZ7ofekxt+vd03r8JCZFa084+jCv aAvSWSkAluI1TZ61dISXAzVDSLlKxD4IUNtwQHSFxMAxuQ11cd3ech3blSu6avn8 mi+ZKLvC48IjuqNiW2ld6FEkMD+EQngF3bdMhfWQgmr4F58n4yksjnzdiAyj69vQ zQLw4lQ9XmibVqnBb3OxtZPFawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEExT5d6 VIzhahGCpoM4TgD+pvyqMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2t3tgJraZhMa7tJ335AxVW5PyVZzp7CVFvtk+4WnFzx9Vwuga5Cq6 olzG/kw5ecuQwjqRj2hhuyErHfxOX7C6MM3NutAEDY8pahMF9rXS8wZThtlAKFcu 9jQgYVeeAKQf6CKS9LZs/NQ+CV+to0khQGDK3c/V/PZ04ymmOn4qnhXBLH0MC8lv PmwuZcmYxXpqPsFmeKp8sAt5uu5vLC/7gjT1G0bIZ107BB72X3lHI/tbugaSay6A 2Mzk++QuiQc6kbPyDi7Eh67QzWoAIsvniY1CeXuAyvUkMYLanE9s4L06FEH+e0bK fMTiaUCAxM/jHRHsjUbenU70/Zm4khPJ -----END CERTIFICATE-----Generated at Sat Jul 26 01:22:53 2025 by rpki-client