$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: bBRvsHs3+rPEcSRKvRte/julHgZUoQnQMyiu04SQ8/M= Subject key identifier: 26:98:29:F1:68:CC:EC:BF:02:16:07:54:40:27:12:19:05:02:EA:B9 Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 02DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 02D2 Signing time: Wed 23 Jul 2025 01:51:52 +0000 Manifest this update: Wed 23 Jul 2025 01:51:51 +0000 Manifest next update: Wed 30 Jul 2025 01:51:51 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: UE7OeppSnYbkjJuuuMpqbn7RGPTJYu481JQ5ant80bU=) 2: 3785A958EF4711EF906AD167C4F9AE02.roa (hash: Xop4pF7LmPiWj4qFmNK9jXxRuc+SVOdI5Rsywj/dhPQ=) 3: 464B4494F7D911EF8EA69265C4F9AE02.roa (hash: kw7ZHY1axLvj55a+YPxHpHPEy1diN3j6tF6SRdvVlY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 01:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F, serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: Jul 23 01:51:51 2025 GMT Not After : Jul 30 01:51:51 2025 GMT Subject: CN=68804038-6782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:51:ce:2f:63:48:7a:2f:1e:dc:f6:e3:16:3f: 0e:eb:06:eb:3e:c7:d6:a0:bd:e0:08:d3:22:d2:99: c2:f7:c7:ce:b3:9a:ca:0c:7d:b0:1a:b3:2b:e4:97: d3:66:22:21:d4:90:21:7d:5f:3b:6f:db:42:1f:0a: 1a:aa:83:60:69:71:2f:1c:c7:cc:03:e2:69:64:8e: d6:a6:4e:67:5d:f8:3e:2b:08:48:7a:41:01:44:8f: 70:9a:1d:83:71:0a:95:51:0d:5a:9e:00:30:d8:e6: c5:71:21:14:78:0b:0c:15:e6:81:6a:a6:23:3a:63: 6b:3f:47:45:53:83:fb:fe:6a:b1:e6:e9:c4:90:4d: 38:a6:a2:ff:9c:ae:80:6d:e4:eb:28:e0:e6:e5:a2: 90:33:a3:54:b9:db:7e:b2:c3:29:0c:61:5c:61:a6: c0:b3:5d:09:90:e1:57:e9:71:1c:ce:69:45:93:ae: 76:22:eb:69:72:45:a2:a1:b6:24:a2:64:69:c1:95: 97:ab:15:eb:f4:7f:7a:55:bf:a7:c5:81:f2:8a:21: dc:93:61:86:49:5f:f7:b5:95:40:a7:cf:1e:b2:36: 7c:4c:ea:43:ae:d8:6b:39:51:db:c1:6b:d7:9c:90: ae:57:cb:bd:aa:59:7a:36:85:b3:84:28:8c:6f:96: 85:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:98:29:F1:68:CC:EC:BF:02:16:07:54:40:27:12:19:05:02:EA:B9 X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:f4:04:d3:0f:0f:17:05:ea:b5:bd:a5:95:d2:59:7e:51:b7: 38:3a:47:6e:01:4e:49:47:6c:1f:94:97:96:0b:86:40:82:e4: c7:1d:6d:3a:af:68:59:b3:41:84:f7:cd:e6:bd:dd:0d:d1:94: e6:9c:1e:bf:b8:fe:9c:d7:61:ca:ec:93:8a:f8:f1:26:fd:ed: a8:a6:0c:95:30:7e:82:a0:7c:7c:64:cf:32:a2:98:45:c5:84: 7f:3d:71:cf:19:4a:04:b9:03:dc:99:83:04:38:74:a6:ed:88: 5d:d2:31:38:29:11:86:34:1e:35:15:4c:18:97:78:f0:e9:29: 03:a1:e4:58:81:9a:d0:57:3a:85:9d:24:d4:9e:e6:c9:f8:e0: e5:47:2c:3c:9e:4d:1b:91:6c:d6:fc:37:42:c5:81:e8:2b:ec: df:5d:ba:33:df:71:2f:f7:1c:27:35:a5:50:45:4e:8a:b7:e7: 1a:a7:06:e7:f5:b3:81:df:27:8d:98:f6:23:db:40:4b:8c:25: 96:c1:15:90:d0:cd:fc:50:8b:1e:73:d7:39:6f:66:4a:b4:c6: 80:fe:54:a2:1a:a9:7f:c5:a8:b3:dd:93:92:31:3a:2f:19:06: 94:1d:65:3c:7e:17:7f:58:03:62:c4:2d:42:86:2a:23:0f:6f: 71:6d:1a:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUwNzIzMDE1MTUxWhcNMjUwNzMwMDE1MTUxWjAYMRYwFAYD VQQDEw02ODgwNDAzOC02NzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFHOL2NIei8e3PbjFj8O6wbrPsfWoL3gCNMi0pnC98fOs5rKDH2wGrMr5JfT ZiIh1JAhfV87b9tCHwoaqoNgaXEvHMfMA+JpZI7Wpk5nXfg+KwhIekEBRI9wmh2D cQqVUQ1angAw2ObFcSEUeAsMFeaBaqYjOmNrP0dFU4P7/mqx5unEkE04pqL/nK6A beTrKODm5aKQM6NUudt+ssMpDGFcYabAs10JkOFX6XEczmlFk652IutpckWiobYk omRpwZWXqxXr9H96Vb+nxYHyiiHck2GGSV/3tZVAp88esjZ8TOpDrthrOVHbwWvX nJCuV8u9qll6NoWzhCiMb5aFgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaYKfFo zOy/AhYHVEAnEhkFAuq5MB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi9ATTDw8XBeq1vaWV0ll+Ubc4OkduAU5JR2wflJeWC4ZAguTHHW06 r2hZs0GE983mvd0N0ZTmnB6/uP6c12HK7JOK+PEm/e2opgyVMH6CoHx8ZM8yophF xYR/PXHPGUoEuQPcmYMEOHSm7Yhd0jE4KRGGNB41FUwYl3jw6SkDoeRYgZrQVzqF nSTUnubJ+ODlRyw8nk0bkWzW/DdCxYHoK+zfXboz33Ev9xwnNaVQRU6Kt+capwbn 9bOB3yeNmPYj20BLjCWWwRWQ0M38UIsec9c5b2ZKtMaA/lSiGql/xaiz3ZOSMTov GQaUHWU8fhd/WANixC1ChiojD29xbRpH -----END CERTIFICATE-----Generated at Wed Jul 23 12:14:09 2025 by rpki-client