$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft File: GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json) Hash identifier: Nn1n9oMtC/0hBUSOFbUTY/tUm6dU9IJu5T+LW7+zdnU= Subject key identifier: 86:DD:96:BA:7A:19:1B:D5:F4:07:A9:4D:9E:C3:F3:44:AB:9F:6D:C8 Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C Certificate issuer: /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Certificate serial: 0463 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft Manifest number: 045E Signing time: Wed 23 Jul 2025 00:35:15 +0000 Manifest this update: Wed 23 Jul 2025 00:35:15 +0000 Manifest next update: Wed 30 Jul 2025 00:35:15 +0000 Files and hashes: 1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: DpjCjCC1J46/ukUtwslOwPW9LSULMFdQT5h/gJhEMD0=) 2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: xFL3ypsjaivEwLZovLg7QH0r6iiczksBr1MYMN2w3rQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 00:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09DE, serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Validity Not Before: Jul 23 00:35:15 2025 GMT Not After : Jul 30 00:35:15 2025 GMT Subject: CN=68802e43-28cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fa:a2:79:c9:f6:4e:11:2f:39:60:93:d1:f4: 9b:4c:e1:09:90:4e:b0:31:c3:9d:9d:1c:c3:30:72: a9:1f:9f:18:7a:c7:59:af:8f:07:9f:f0:e4:38:88: 0a:4c:82:43:47:a2:80:0b:16:87:57:49:48:6c:f8: cd:a7:aa:00:1b:73:a7:3b:82:c4:a5:a3:78:39:5e: 00:ec:ef:88:ee:35:e4:b5:91:c8:64:81:88:86:43: 25:29:43:24:8a:b4:65:9d:0a:71:ca:c1:d6:49:31: ad:48:06:b6:6a:7f:26:6c:f2:26:67:75:c4:3c:57: e6:ba:66:15:ee:42:57:10:c3:4e:01:26:75:12:e4: 90:4c:f8:bc:4c:6f:d7:bc:62:c7:fb:35:d2:8e:67: 54:6b:3c:28:36:33:c4:70:13:8d:95:40:a8:8e:7b: 4e:62:59:e1:76:64:31:00:fe:80:ce:b2:c9:53:e0: 06:5a:77:95:17:79:a7:4d:33:05:ef:fd:59:40:97: 74:ee:5f:12:0c:b8:6f:43:8a:2a:2f:95:c8:3f:c5: 60:9d:3f:2c:a4:6b:7b:f5:93:0d:50:18:1e:40:7f: d5:b0:fe:59:58:c1:25:77:bc:a0:a2:ad:48:e5:92: d9:88:be:8a:7a:01:1c:7e:d1:a9:b2:d2:64:e4:eb: 65:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:DD:96:BA:7A:19:1B:D5:F4:07:A9:4D:9E:C3:F3:44:AB:9F:6D:C8 X509v3 Authority Key Identifier: keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:44:96:45:b2:b3:9a:ae:4b:6c:06:77:f9:24:6c:6b:99:52: 88:9b:9d:b5:fc:93:74:9b:18:24:98:61:4a:d9:00:a0:97:dc: 27:59:df:8c:0e:b2:f7:6b:77:83:38:7f:8c:78:1d:57:a2:86: 81:9c:66:b9:7e:44:a6:16:ff:a1:95:af:20:cf:a7:a9:5b:aa: 5f:c1:07:04:a8:5e:1f:31:4b:52:ba:83:7a:25:88:e4:b7:4c: 5f:0d:10:0b:15:81:67:0d:13:15:d7:a6:4b:7e:df:62:23:9b: fb:7c:bc:34:f1:77:6f:b0:9b:0c:73:d5:85:2f:4d:01:1d:3e: 22:1c:3d:49:95:e5:5f:41:6c:d5:51:ab:72:40:51:91:a0:15: 77:51:53:be:48:1e:e8:0f:b3:6d:b8:b2:c8:13:f9:cb:f7:18: 11:64:29:ac:7a:9f:02:e9:1e:b1:33:c2:ec:e1:ae:de:e7:d7: 92:fc:83:07:5e:dd:2c:13:d2:56:9d:01:06:52:fa:28:09:1f: 4d:d1:b7:49:00:6e:84:ba:09:2c:bd:3a:67:2e:ef:ae:4c:00: 05:a0:44:6f:84:2c:31:80:59:86:d6:64:17:78:50:73:02:36: d0:54:78:a8:28:c9:64:78:f0:0a:d6:0e:5b:de:ee:51:ef:c5: f9:75:2d:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5REUxMTAvBgNVBAUTKDE4Mzk4OEZDMERFRTlEQkI4MTExNUU4MkJGREM5NTQx MjU2MTQxM0MwHhcNMjUwNzIzMDAzNTE1WhcNMjUwNzMwMDAzNTE1WjAYMRYwFAYD VQQDEw02ODgwMmU0My0yOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vqiecn2ThEvOWCT0fSbTOEJkE6wMcOdnRzDMHKpH58YesdZr48Hn/DkOIgK TIJDR6KACxaHV0lIbPjNp6oAG3OnO4LEpaN4OV4A7O+I7jXktZHIZIGIhkMlKUMk irRlnQpxysHWSTGtSAa2an8mbPImZ3XEPFfmumYV7kJXEMNOASZ1EuSQTPi8TG/X vGLH+zXSjmdUazwoNjPEcBONlUCojntOYlnhdmQxAP6AzrLJU+AGWneVF3mnTTMF 7/1ZQJd07l8SDLhvQ4oqL5XIP8VgnT8spGt79ZMNUBgeQH/VsP5ZWMEld7ygoq1I 5ZLZiL6KegEcftGpstJk5OtlOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbdlrp6 GRvV9AepTZ7D80Srn23IMB8GA1UdIwQYMBaAFBg5iPwN7p27gRFegr/clUElYUE8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlERS84QjMyMDc1QzU5 N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5idUJFVjZDdjl5VlFTVmhR VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dEbUlfQTN1bmJ1QkVWNkN2OXlWUVNWaFFUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlERS84QjMyMDc1QzU5N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5i dUJFVjZDdjl5VlFTVmhRVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2RJZFsrOarktsBnf5JGxrmVKIm521/JN0mxgkmGFK2QCgl9wnWd+M DrL3a3eDOH+MeB1XooaBnGa5fkSmFv+hla8gz6epW6pfwQcEqF4fMUtSuoN6JYjk t0xfDRALFYFnDRMV16ZLft9iI5v7fLw08XdvsJsMc9WFL00BHT4iHD1JleVfQWzV UatyQFGRoBV3UVO+SB7oD7NtuLLIE/nL9xgRZCmsep8C6R6xM8Ls4a7e59eS/IMH Xt0sE9JWnQEGUvooCR9N0bdJAG6EugksvTpnLu+uTAAFoERvhCwxgFmG1mQXeFBz AjbQVHioKMlkePAK1g5b3u5R78X5dS1T -----END CERTIFICATE-----Generated at Thu Jul 24 08:34:21 2025 by rpki-client