$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: 5J1z+B3gT0scGm5lXav6su2Fw1Hx3Srnzrp9JiiWa+g= Subject key identifier: ED:24:2A:03:FF:82:91:D0:21:F0:5A:6D:CB:F3:16:EF:9F:3A:78:96 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 05E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 05E3 Signing time: Sun 20 Jul 2025 23:10:07 +0000 Manifest this update: Sun 20 Jul 2025 23:10:07 +0000 Manifest next update: Sun 27 Jul 2025 23:10:06 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: ixoqXsYavYEg6JDddPdh5CwE+spUXmyWwIVlfOnWpHA=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Jul 20 23:10:07 2025 GMT Not After : Jul 27 23:10:06 2025 GMT Subject: CN=687d774f-907a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:22:77:19:72:ae:ee:73:92:e0:9e:7f:12:00: b7:cd:00:a1:71:26:1b:c2:28:4d:f9:7f:4c:a2:00: 8e:71:45:81:a6:63:3e:ef:76:9c:6e:f4:d8:07:43: 5a:cd:10:34:b6:91:a2:cc:f5:bc:e0:ed:d3:16:f0: 8f:ef:a7:0e:20:ec:24:a9:5f:ff:3c:7b:b1:c9:d3: 20:43:02:b5:88:2f:38:01:bd:17:4c:0b:22:45:cb: ba:fd:c8:6a:7d:cc:06:95:c0:0a:ae:fc:ed:12:45: 85:e3:2f:7c:52:18:68:82:e3:e6:95:22:87:86:26: e2:85:9f:79:ee:ae:ba:d7:3f:8d:e3:25:11:91:5e: 4e:cf:c9:ec:1c:b8:d2:91:29:07:ef:87:b9:6b:09: 3e:78:77:24:06:8c:04:62:f8:05:a3:f9:ac:54:ea: cc:6e:83:c6:6e:e5:da:15:da:71:1a:aa:37:6b:47: 47:86:68:05:33:c7:63:dc:95:d8:9e:0a:86:63:3e: 2a:ca:da:c7:62:2e:af:3f:43:f9:0a:f8:b8:ee:c2: d8:9d:93:5c:a7:1d:fb:41:7f:19:9f:4a:4c:b4:f0: 95:94:05:6d:1f:58:72:8f:ff:5a:3a:22:70:f2:22: c8:0b:76:dd:47:86:5f:1c:a1:30:fe:36:af:01:38: 5a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:24:2A:03:FF:82:91:D0:21:F0:5A:6D:CB:F3:16:EF:9F:3A:78:96 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:04:e3:f7:fd:97:a0:d0:74:84:0b:60:e7:c2:65:4b:81:14: b1:4c:0e:f6:87:94:54:93:46:3b:82:76:90:c7:1c:f9:8b:93: c9:c5:fd:d8:18:cf:2f:4e:6d:69:b5:62:54:1a:a3:cd:20:ca: 8c:1b:bc:b3:1c:e3:ce:a8:5f:2e:ca:ea:ca:ae:84:15:06:e3: 9b:f8:01:d6:49:e2:83:05:f9:15:c9:00:2e:0f:16:88:82:15: c0:63:b7:b2:3a:3b:05:83:19:00:8e:84:9f:0a:0a:15:f6:15: 65:62:14:b9:d8:0d:9a:75:cb:e8:f0:bf:16:44:a7:be:88:db: 19:0f:11:ce:73:57:9b:e8:da:e3:b4:10:a2:24:5b:f1:61:de: 52:37:b4:d6:d4:f8:eb:dd:4b:e8:05:e5:4a:ba:7c:ee:02:f8: 68:35:62:18:60:2e:65:66:45:aa:85:a4:5b:db:c3:b4:4b:e8: 95:06:9a:1f:76:be:a9:03:f7:25:9e:d5:1a:03:04:47:30:f8: 9e:6c:29:64:a5:6a:d0:7a:4e:c3:81:a2:9d:e7:bc:72:5f:5a: 63:1c:fd:10:ae:a5:79:b8:49:71:af:3a:1e:f8:8f:9a:c7:69: a5:db:62:49:27:9f:14:f5:80:3d:75:7c:04:ad:59:f8:a6:da: 3e:99:c2:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwNzIwMjMxMDA3WhcNMjUwNzI3MjMxMDA2WjAYMRYwFAYD VQQDEw02ODdkNzc0Zi05MDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviJ3GXKu7nOS4J5/EgC3zQChcSYbwihN+X9MogCOcUWBpmM+73acbvTYB0Na zRA0tpGizPW84O3TFvCP76cOIOwkqV//PHuxydMgQwK1iC84Ab0XTAsiRcu6/chq fcwGlcAKrvztEkWF4y98UhhoguPmlSKHhibihZ957q661z+N4yURkV5Oz8nsHLjS kSkH74e5awk+eHckBowEYvgFo/msVOrMboPGbuXaFdpxGqo3a0dHhmgFM8dj3JXY ngqGYz4qytrHYi6vP0P5Cvi47sLYnZNcpx37QX8Zn0pMtPCVlAVtH1hyj/9aOiJw 8iLIC3bdR4ZfHKEw/javAThaOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0kKgP/ gpHQIfBabcvzFu+fOniWMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByBOP3/Zeg0HSEC2DnwmVLgRSxTA72h5RUk0Y7gnaQxxz5i5PJxf3Y GM8vTm1ptWJUGqPNIMqMG7yzHOPOqF8uyurKroQVBuOb+AHWSeKDBfkVyQAuDxaI ghXAY7eyOjsFgxkAjoSfCgoV9hVlYhS52A2adcvo8L8WRKe+iNsZDxHOc1eb6Nrj tBCiJFvxYd5SN7TW1Pjr3UvoBeVKunzuAvhoNWIYYC5lZkWqhaRb28O0S+iVBpof dr6pA/clntUaAwRHMPiebClkpWrQek7DgaKd57xyX1pjHP0QrqV5uElxrzoe+I+a x2ml22JJJ58U9YA9dXwErVn4pto+mcKF -----END CERTIFICATE-----Generated at Mon Jul 21 06:14:07 2025 by rpki-client