$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft File: gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft (raw, json) Hash identifier: ZimI/sseYrXNTK0HYpndKD6HSGQ55Fkl3RITudUZgzc= Subject key identifier: C6:84:13:4C:97:1A:59:D8:49:19:2F:28:78:D3:18:0B:61:4B:53:A6 Authority key identifier: 80:FB:52:63:6A:9E:50:C0:88:68:E6:27:52:0A:1A:0D:8A:87:F0:46 Certificate issuer: /CN=A91B3EDE/serialNumber=80FB52636A9E50C08868E627520A1A0D8A87F046 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gPtSY2qeUMCIaOYnUgoaDYqH8EY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft Manifest number: 47 Signing time: Sat 19 Jul 2025 07:40:29 +0000 Manifest this update: Sat 19 Jul 2025 07:40:28 +0000 Manifest next update: Sat 26 Jul 2025 07:40:28 +0000 Files and hashes: 1: gPtSY2qeUMCIaOYnUgoaDYqH8EY.crl (hash: I8/jPtXiUUmaGBupBRQIr6VvGmZwX18TbBB97jiNIQ8=) 2: BC66C474FB5C11EFB5FF765EC4F9AE02.roa (hash: 8cVWvhVTaDx9YrIBArb9pQY5a8aQELboLZU4FfWd7+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.crl rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gPtSY2qeUMCIaOYnUgoaDYqH8EY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3EDE, serialNumber=80FB52636A9E50C08868E627520A1A0D8A87F046 Validity Not Before: Jul 19 07:40:28 2025 GMT Not After : Jul 26 07:40:28 2025 GMT Subject: CN=687b4bec-6fff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:76:a6:01:99:78:d6:93:93:b1:5a:88:c3:88: 46:27:a9:aa:bc:20:b2:ce:1f:cd:4e:2f:1c:a2:cb: 56:54:9e:48:60:a2:9e:34:80:62:98:cd:3a:87:c0: b9:8f:0c:0d:65:db:d8:d1:77:07:49:e3:92:c6:40: 4d:5b:af:68:47:10:ba:8f:d9:88:33:13:c0:4f:71: 8e:76:4b:84:f5:34:db:a7:7b:f0:9e:7a:31:a5:3a: f2:39:67:6c:45:0e:38:72:68:88:c2:ae:b7:e8:e5: 2c:21:2c:32:3b:c2:3b:ef:ee:8f:74:60:fd:b6:9c: 3e:dd:3c:97:b2:7b:01:2e:ca:43:33:e2:78:4e:50: 80:49:be:5f:c8:e3:a1:99:a3:bd:69:da:eb:63:da: a8:7f:d7:59:99:27:7d:f3:6c:59:4c:92:87:e8:f1: 0a:10:02:c8:53:53:13:0d:49:7f:2b:9a:b3:65:f3: 27:4f:2a:a0:52:1c:ae:09:70:b8:18:b6:5b:8e:2a: f2:be:5b:a2:86:c4:55:fc:96:49:69:a8:df:6e:a8: 0a:2b:8d:b7:93:bb:6d:3a:26:73:ae:1f:64:f7:3e: ea:75:0a:94:c6:9b:e8:ca:1d:33:32:99:7a:6a:87: a0:d6:0a:a8:2c:44:6f:1c:e2:85:9a:f4:07:db:33: 63:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:84:13:4C:97:1A:59:D8:49:19:2F:28:78:D3:18:0B:61:4B:53:A6 X509v3 Authority Key Identifier: keyid:80:FB:52:63:6A:9E:50:C0:88:68:E6:27:52:0A:1A:0D:8A:87:F0:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gPtSY2qeUMCIaOYnUgoaDYqH8EY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:aa:c0:fc:0f:b4:93:94:6c:5e:83:0d:b2:18:79:b8:12:3c: 86:6b:e2:34:90:5a:9d:93:af:67:eb:3f:2f:30:3a:e9:bf:82: cd:3f:e7:b1:70:6b:3b:33:4b:0e:2d:b2:66:13:0a:5f:14:d5: 28:28:9f:a3:06:8e:cc:6b:7b:2e:0e:ab:1b:a4:01:8c:15:e5: be:dd:ca:24:ee:42:91:d6:ce:0a:07:23:b0:b6:8e:9e:ba:31: 72:38:69:f5:f4:eb:13:65:a9:fd:34:4b:c2:25:86:44:0c:44: 73:55:48:96:21:fc:bb:92:5c:8b:e7:9c:b6:34:37:6e:3c:86: e2:b8:3b:d8:fe:96:4e:12:58:67:d1:d4:04:df:83:d5:c8:df: 38:33:9b:14:8a:d2:89:be:b9:c0:ba:b0:0c:c3:1c:13:07:59: d8:d8:f9:da:00:53:30:06:03:b9:15:bf:1e:47:91:15:08:64: f3:14:2b:a3:d2:02:24:a2:00:73:11:b7:ef:bd:ce:5f:0a:c9: c0:a1:f5:86:d2:44:c7:25:c2:13:be:86:c8:5d:61:ec:13:dc: 13:86:a8:63:70:00:93:24:2c:07:3e:6d:a6:7d:a6:1e:c6:b1: 22:b5:66:3d:5c:e3:c3:e2:d1:26:04:e9:1a:b9:66:ba:ce:6c: 68:3e:32:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC M0VERTExMC8GA1UEBRMoODBGQjUyNjM2QTlFNTBDMDg4NjhFNjI3NTIwQTFBMEQ4 QTg3RjA0NjAeFw0yNTA3MTkwNzQwMjhaFw0yNTA3MjYwNzQwMjhaMBgxFjAUBgNV BAMTDTY4N2I0YmVjLTZmZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+dqYBmXjWk5OxWojDiEYnqaq8ILLOH81OLxyiy1ZUnkhgop40gGKYzTqHwLmP DA1l29jRdwdJ45LGQE1br2hHELqP2YgzE8BPcY52S4T1NNune/CeejGlOvI5Z2xF DjhyaIjCrrfo5SwhLDI7wjvv7o90YP22nD7dPJeyewEuykMz4nhOUIBJvl/I46GZ o71p2utj2qh/11mZJ33zbFlMkofo8QoQAshTUxMNSX8rmrNl8ydPKqBSHK4JcLgY tluOKvK+W6KGxFX8lklpqN9uqAorjbeTu206JnOuH2T3Pup1CpTGm+jKHTMymXpq h6DWCqgsRG8c4oWa9AfbM2NXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxoQTTJca WdhJGS8oeNMYC2FLU6YwHwYDVR0jBBgwFoAUgPtSY2qeUMCIaOYnUgoaDYqH8EYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzRURFLzU5MDREOTcwRkI1 QzExRUY4RUFGMzExQ0M0RjlBRTAyL2dQdFNZMnFlVU1DSWFPWW5VZ29hRFlxSDhF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1B0U1kycWVVTUNJYU9ZblVnb2FEWXFIOEVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz RURFLzU5MDREOTcwRkI1QzExRUY4RUFGMzExQ0M0RjlBRTAyL2dQdFNZMnFlVU1D SWFPWW5VZ29hRFlxSDhFWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIKqwPwPtJOUbF6DDbIYebgSPIZr4jSQWp2Tr2frPy8wOum/gs0/57Fw azszSw4tsmYTCl8U1Sgon6MGjsxrey4OqxukAYwV5b7dyiTuQpHWzgoHI7C2jp66 MXI4afX06xNlqf00S8IlhkQMRHNVSJYh/LuSXIvnnLY0N248huK4O9j+lk4SWGfR 1ATfg9XI3zgzmxSK0om+ucC6sAzDHBMHWdjY+doAUzAGA7kVvx5HkRUIZPMUK6PS AiSiAHMRt++9zl8KycCh9YbSRMclwhO+hshdYewT3BOGqGNwAJMkLAc+baZ9ph7G sSK1Zj1c48Pi0SYE6Rq5ZrrObGg+Mo0= -----END CERTIFICATE-----Generated at Sun Jul 20 12:08:03 2025 by rpki-client