$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: WvM6UQH3ADvXERC7S8SQoSRxWxfZdmvDPgUPjyhcsxk= Subject key identifier: 19:42:53:F4:06:35:BE:42:97:1E:5E:E7:E2:AD:60:9A:8E:EF:1F:BF Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 34AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 34A5 Signing time: Sun 20 Jul 2025 14:42:39 +0000 Manifest this update: Sun 20 Jul 2025 14:42:39 +0000 Manifest next update: Sun 27 Jul 2025 14:42:39 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: +dhBREAPgF/eYI7TEVH1XEVbuVkpYj6pax0oGybLQgI=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:42:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13486 (0x34ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Jul 20 14:42:39 2025 GMT Not After : Jul 27 14:42:39 2025 GMT Subject: CN=687d005f-b2eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9f:da:48:dd:9b:c6:84:28:77:ac:01:d3:fe: 52:6e:35:73:ba:3a:b6:4f:f8:32:ce:43:89:52:ee: a1:65:8d:ce:7c:53:f0:d7:6e:40:e6:d1:47:d2:e0: 6e:17:73:1a:f3:15:65:0d:cb:a4:b3:57:12:c7:db: ac:0a:c7:67:19:da:fc:1c:e3:b2:a1:76:3d:45:ea: ef:aa:33:fc:24:70:b1:5a:1b:f4:75:81:0a:92:e7: 51:7d:c7:3d:a6:24:fb:7d:b0:57:64:ac:fb:5d:0e: 9a:8a:7c:11:7b:18:11:82:9c:dc:ab:be:8c:cf:bc: 31:a4:46:c5:30:4a:d1:99:35:b9:5b:40:99:93:88: 54:0c:06:2f:94:cd:e5:21:7f:24:23:5f:9d:44:8e: 99:e9:34:4a:e7:2c:15:8e:9e:9b:d1:8f:7f:f8:06: 5d:a4:c3:8c:0a:1a:4f:93:3d:2b:cc:17:19:ef:f7: 89:0c:87:5b:a4:2e:f1:3e:06:6d:1d:00:79:e7:1d: 8c:f9:f9:22:3e:c2:50:c6:5b:f1:20:e3:fa:4e:a5: ab:ed:7e:b1:54:dd:03:af:eb:a3:97:ce:bb:1e:af: 86:d2:82:54:d3:89:65:9b:bb:5d:94:00:f3:0d:a2: 5d:d7:23:4a:46:00:30:45:d5:e7:0e:d2:7c:87:0f: e2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:42:53:F4:06:35:BE:42:97:1E:5E:E7:E2:AD:60:9A:8E:EF:1F:BF X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:43:4a:6a:7a:ac:e7:ca:35:94:84:8b:28:50:d1:f3:43:93: 6a:ba:0a:c9:82:88:87:bc:24:4c:c2:a9:9f:8f:f5:51:1c:86: 8e:19:df:b5:45:ed:6f:19:7a:d8:2b:94:1a:c2:8e:79:96:18: 8f:06:99:07:38:cf:40:fa:4e:34:1e:fe:8b:91:1e:da:88:08: ba:1e:f0:64:d6:9f:43:ea:71:67:25:7d:9e:67:43:c4:7c:0a: 70:3e:d9:3c:76:40:dd:f5:46:e6:1d:e9:16:e3:f3:dd:b1:e1: c2:5c:1d:21:61:4d:1c:af:eb:5b:8d:4e:af:40:5b:44:a7:08: 50:7c:4e:00:f2:ec:e9:e5:81:29:da:e6:36:02:82:7e:bc:96: c8:dd:cf:f3:84:bc:7a:5b:b7:7f:42:b8:3c:f6:9e:3d:e4:0a: b1:2d:73:94:7c:14:df:5d:7a:00:3c:75:f6:fc:6e:e7:f3:09: 2e:73:46:5f:ca:bc:04:8f:06:69:a4:5f:0d:31:5e:b9:6c:ac: a3:bd:f0:72:7e:ac:d0:32:1f:bb:9c:79:39:88:7c:a6:0a:84: 38:54:99:7f:4b:f4:12:65:22:7e:6a:ca:24:07:ed:9c:e4:70: 3b:b5:89:a9:a7:58:38:03:e3:99:f5:9e:74:ce:0c:e6:e6:4f: a1:4d:2f:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUwNzIwMTQ0MjM5WhcNMjUwNzI3MTQ0MjM5WjAYMRYwFAYD VQQDEw02ODdkMDA1Zi1iMmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2J/aSN2bxoQod6wB0/5SbjVzujq2T/gyzkOJUu6hZY3OfFPw125A5tFH0uBu F3Ma8xVlDcuks1cSx9usCsdnGdr8HOOyoXY9RervqjP8JHCxWhv0dYEKkudRfcc9 piT7fbBXZKz7XQ6ainwRexgRgpzcq76Mz7wxpEbFMErRmTW5W0CZk4hUDAYvlM3l IX8kI1+dRI6Z6TRK5ywVjp6b0Y9/+AZdpMOMChpPkz0rzBcZ7/eJDIdbpC7xPgZt HQB55x2M+fkiPsJQxlvxIOP6TqWr7X6xVN0Dr+ujl867Hq+G0oJU04llm7tdlADz DaJd1yNKRgAwRdXnDtJ8hw/imQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlCU/QG Nb5Clx5e5+KtYJqO7x+/MB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSQ0pqeqznyjWUhIsoUNHzQ5NqugrJgoiHvCRMwqmfj/VRHIaOGd+1 Re1vGXrYK5Qawo55lhiPBpkHOM9A+k40Hv6LkR7aiAi6HvBk1p9D6nFnJX2eZ0PE fApwPtk8dkDd9UbmHekW4/PdseHCXB0hYU0cr+tbjU6vQFtEpwhQfE4A8uzp5YEp 2uY2AoJ+vJbI3c/zhLx6W7d/Qrg89p495AqxLXOUfBTfXXoAPHX2/G7n8wkuc0Zf yrwEjwZppF8NMV65bKyjvfByfqzQMh+7nHk5iHymCoQ4VJl/S/QSZSJ+asokB+2c 5HA7tYmpp1g4A+OZ9Z50zgzm5k+hTS8S -----END CERTIFICATE-----Generated at Sun Jul 20 19:00:22 2025 by rpki-client