$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: 0Xjw5jX4UB3tEP04MgcLnAF6khOv7Ipqs2aqiahexUw= Subject key identifier: 80:84:55:57:20:C8:36:E7:BE:DE:5D:38:D9:20:BC:DF:62:D8:94:A1 Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 0753 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 0740 Signing time: Fri 18 Jul 2025 22:03:14 +0000 Manifest this update: Fri 18 Jul 2025 22:03:13 +0000 Manifest next update: Fri 25 Jul 2025 22:03:13 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: lcJDRw/S7TVOA+8hAhg/kz+RRjcZf0blkE1dxJGV81A=) 2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834, serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Validity Not Before: Jul 18 22:03:13 2025 GMT Not After : Jul 25 22:03:13 2025 GMT Subject: CN=687ac4a1-d6a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:be:fd:9c:31:64:b5:fb:de:4a:4b:23:2f:33: a4:1f:f5:01:0e:96:39:cb:d2:17:98:16:0c:db:c6: cf:89:a4:41:3c:68:e3:69:24:44:39:5e:e8:cb:f9: 7c:c5:80:5c:09:f0:4c:80:21:12:c2:0f:67:e4:74: b1:85:77:e5:ef:23:7a:2e:06:04:76:6c:5c:5f:37: 6b:39:9c:5f:0f:56:c1:3e:3b:23:eb:da:d5:f2:39: 08:6b:28:d8:ce:9a:21:ee:53:e6:b8:0a:f1:6e:d8: 70:0c:bf:97:af:92:fe:ce:0a:31:02:a8:df:2e:18: 77:12:b8:a5:48:88:69:08:cc:c7:f8:47:c1:bc:86: 8b:15:f9:91:6f:84:b6:79:8a:cf:80:38:28:cd:4e: ca:29:33:7d:da:d8:b7:86:69:df:30:a8:c2:8e:14: 77:27:16:08:31:74:1f:08:35:58:ce:2a:02:c8:c8: 67:82:8f:82:bf:c9:8e:fe:50:d7:6d:c7:e2:57:b4: 04:b0:2a:7b:d9:5e:a3:43:b4:ff:93:b4:80:b0:dc: f3:b9:ec:41:c4:ba:92:5c:df:bc:16:0c:d8:c9:de: 76:cf:20:63:4c:f9:f7:9e:aa:37:9b:e9:82:78:5d: 34:33:61:14:c5:89:cf:c1:07:38:5a:26:95:7a:6a: 7f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:84:55:57:20:C8:36:E7:BE:DE:5D:38:D9:20:BC:DF:62:D8:94:A1 X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:0f:85:14:31:e1:e5:d1:8d:30:20:4a:e7:7e:16:2e:98:01: 93:f6:c0:c9:e2:86:60:c6:5a:35:cf:54:c7:43:33:4e:d2:7a: 22:6b:c5:bb:5a:0e:57:48:34:14:bc:0d:d9:1d:04:e6:bc:96: 33:a8:ae:ee:b3:18:f3:3a:b0:8c:9a:fb:dd:99:e8:22:3a:74: 11:6b:a3:b4:4a:2e:c3:2a:7a:21:96:e5:3c:ee:b4:a3:c9:a9: e7:b9:a2:1b:46:a1:bf:e5:65:eb:ae:06:89:f8:f6:61:d3:4f: 72:5e:37:1b:c2:5e:77:1f:53:9e:33:31:6d:89:b9:1c:cf:2c: 1e:33:91:2e:71:08:b8:f7:7a:0b:df:70:16:9d:1b:a7:95:28: b9:6d:f1:b9:5f:b8:b1:0e:b1:f5:bb:2e:af:9e:00:21:bb:43: 3c:19:f0:03:2a:bb:48:33:d8:2d:90:be:0b:c6:14:5b:9b:5c: 47:2a:f0:b1:ab:50:cd:47:a6:d2:4d:6f:2d:f7:34:a5:56:ad: e1:1d:8d:7a:f4:2c:59:8c:47:b3:8c:91:e4:7a:72:30:fd:1d: 5b:9c:18:6f:32:c7:b2:53:64:f8:05:fd:3c:8f:67:31:36:ae: d6:21:f5:01:e1:00:d0:8b:7d:56:11:4c:b0:86:52:f8:fd:31: e9:b9:6c:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjUwNzE4MjIwMzEzWhcNMjUwNzI1MjIwMzEzWjAYMRYwFAYD VQQDEw02ODdhYzRhMS1kNmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxb79nDFktfveSksjLzOkH/UBDpY5y9IXmBYM28bPiaRBPGjjaSREOV7oy/l8 xYBcCfBMgCESwg9n5HSxhXfl7yN6LgYEdmxcXzdrOZxfD1bBPjsj69rV8jkIayjY zpoh7lPmuArxbthwDL+Xr5L+zgoxAqjfLhh3ErilSIhpCMzH+EfBvIaLFfmRb4S2 eYrPgDgozU7KKTN92ti3hmnfMKjCjhR3JxYIMXQfCDVYzioCyMhngo+Cv8mO/lDX bcfiV7QEsCp72V6jQ7T/k7SAsNzzuexBxLqSXN+8FgzYyd52zyBjTPn3nqo3m+mC eF00M2EUxYnPwQc4WiaVemp/4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICEVVcg yDbnvt5dONkgvN9i2JShMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADD4UUMeHl0Y0wIErnfhYumAGT9sDJ4oZgxlo1z1THQzNO0noia8W7 Wg5XSDQUvA3ZHQTmvJYzqK7usxjzOrCMmvvdmegiOnQRa6O0Si7DKnohluU87rSj yannuaIbRqG/5WXrrgaJ+PZh009yXjcbwl53H1OeMzFtibkczyweM5EucQi493oL 33AWnRunlSi5bfG5X7ixDrH1uy6vngAhu0M8GfADKrtIM9gtkL4LxhRbm1xHKvCx q1DNR6bSTW8t9zSlVq3hHY169CxZjEezjJHkenIw/R1bnBhvMseyU2T4Bf08j2cx Nq7WIfUB4QDQi31WEUywhlL4/THpuWwy -----END CERTIFICATE-----Generated at Sun Jul 20 03:30:53 2025 by rpki-client