$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json) Hash identifier: 2GKbeMvogvZBnQjg58kAOVpfnvupR0aCIRfJXPnlnwc= Subject key identifier: EC:F5:42:AC:DF:64:02:C7:69:66:4E:63:E4:36:80:2E:BA:D6:78:BD Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Certificate serial: 09C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft Manifest number: 09B5 Signing time: Fri 18 Jul 2025 20:16:18 +0000 Manifest this update: Fri 18 Jul 2025 20:16:18 +0000 Manifest next update: Fri 25 Jul 2025 20:16:18 +0000 Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: IWWvdkSf5bVPS8ez7/aWML6Etdnx1ITF9seE/kUpqb4=) 2: E09840C4D5B511EFB22A647DC4F9AE02.roa (hash: UUua9CtlmlNUMxfEXymhiloAwqTpKtC9fDGIWh1Bzk8=) 3: CFD6E5708AFA11EAAACB392AC4F9AE02.roa (hash: +YzJrYGnbGLCjVsOBK3rhph4HgKiBqVFBpU2hsaMvKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2497 (0x9c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5642, serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Validity Not Before: Jul 18 20:16:18 2025 GMT Not After : Jul 25 20:16:18 2025 GMT Subject: CN=687aab92-e0bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3d:6d:bc:e6:5f:ab:0f:fc:36:59:20:9f:0a: cc:e8:46:16:be:c9:35:eb:be:93:33:3c:3c:ab:a6: 6a:06:81:2f:a7:8e:2c:8f:45:94:48:6a:0c:8a:1c: cd:ee:1d:a5:72:63:3d:cd:d1:a0:34:7b:a7:0b:18: ee:ee:d2:9d:15:d7:1d:0f:7d:8d:e1:2c:e8:9f:1f: 96:56:14:5e:ee:92:19:7f:0e:2a:46:7f:ed:d4:41: 9f:e8:13:95:2c:a3:fb:89:26:64:77:e6:f2:9f:0d: 34:2e:2f:0b:93:38:98:46:d6:75:21:af:0f:0a:b8: 9b:ea:b2:9d:e5:24:c6:3a:b1:6e:43:8a:18:6e:bf: e4:96:95:ea:ee:f5:35:c9:87:d8:a7:90:cd:4e:16: 48:bb:ef:e1:b6:93:9a:28:c4:99:57:ca:5e:83:b2: 15:04:7b:1a:f6:22:39:b5:eb:50:76:1c:69:7b:2f: 21:8d:dd:11:a4:92:b1:21:71:69:06:4e:d2:d7:2d: 4e:3e:5b:18:42:e2:0f:10:7e:b0:b8:11:4b:c0:d2: 92:98:f2:08:f9:d8:b2:3e:bb:61:9a:83:f0:ac:00: 9a:52:e9:84:55:dc:b1:9f:d7:67:11:c7:31:9f:52: ff:04:cb:50:37:52:8f:d3:28:0f:57:9d:23:82:f0: 0e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F5:42:AC:DF:64:02:C7:69:66:4E:63:E4:36:80:2E:BA:D6:78:BD X509v3 Authority Key Identifier: keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:11:48:0d:b9:5e:49:20:27:9c:92:7a:52:37:07:87:ec:73: 55:d5:fa:29:48:9d:a9:f1:84:86:be:f5:09:d1:9c:ce:33:1c: ba:6b:98:71:6c:2d:aa:8d:db:73:9c:64:8e:9f:7d:a8:f0:f6: 4a:f7:7e:65:a0:27:5c:58:77:19:4e:e2:61:d9:47:e7:ff:44: dc:4f:73:5c:8f:b9:c0:c6:a1:9a:86:21:c8:0f:cd:95:62:cc: 16:fd:ef:25:4d:ea:3e:ac:1d:e8:df:10:c2:3b:b3:60:5e:07: 1f:ab:cd:85:a2:db:25:be:c7:3f:e5:33:0f:5e:ff:44:6d:87: ae:09:7c:4d:c6:6f:8f:b0:51:ed:6c:a5:65:59:c9:fe:d2:87: 8b:0a:b9:b0:76:e0:29:90:2b:76:18:0d:ef:46:fe:6c:27:19: 79:0f:69:4b:a9:71:e3:ba:1f:43:cf:f7:4e:77:9b:02:90:99: 33:b8:6d:fc:d9:e6:52:30:23:90:7c:30:ba:30:24:4f:c1:87: 5a:7d:f4:f5:d0:20:5d:21:f4:98:0a:d9:f5:f2:a5:c2:3d:e0: 2e:44:42:84:8f:87:19:3a:26:3a:92:2c:da:9a:aa:5b:66:69: dd:4a:51:73:30:15:eb:fa:1b:5f:31:2b:5d:cb:76:08:00:27: 49:5e:d2:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2NDIxMTAvBgNVBAUTKDgwMzA3OUJBQjJGMUY2QjNCOUFBQzQxMURGNEE4MkMz RjA2QTY1NzEwHhcNMjUwNzE4MjAxNjE4WhcNMjUwNzI1MjAxNjE4WjAYMRYwFAYD VQQDEw02ODdhYWI5Mi1lMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsj1tvOZfqw/8NlkgnwrM6EYWvsk1676TMzw8q6ZqBoEvp44sj0WUSGoMihzN 7h2lcmM9zdGgNHunCxju7tKdFdcdD32N4Szonx+WVhRe7pIZfw4qRn/t1EGf6BOV LKP7iSZkd+bynw00Li8LkziYRtZ1Ia8PCrib6rKd5STGOrFuQ4oYbr/klpXq7vU1 yYfYp5DNThZIu+/htpOaKMSZV8peg7IVBHsa9iI5tetQdhxpey8hjd0RpJKxIXFp Bk7S1y1OPlsYQuIPEH6wuBFLwNKSmPII+diyPrthmoPwrACaUumEVdyxn9dnEccx n1L/BMtQN1KP0ygPV50jgvAOywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOz1Qqzf ZALHaWZOY+Q2gC661ni9MB8GA1UdIwQYMBaAFIAwebqy8fazuarEEd9KgsPwamVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTY0Mi8xMDQwRjMyQzhB RkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDlyTzVxc1FSMzBxQ3dfQnFa WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEQjV1ckx4OXJPNXFzUVIzMHFDd19CcVpYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTY0Mi8xMDQwRjMyQzhBRkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDly TzVxc1FSMzBxQ3dfQnFaWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPEUgNuV5JICecknpSNweH7HNV1fopSJ2p8YSGvvUJ0ZzOMxy6a5hx bC2qjdtznGSOn32o8PZK935loCdcWHcZTuJh2Ufn/0TcT3Ncj7nAxqGahiHID82V YswW/e8lTeo+rB3o3xDCO7NgXgcfq82Fotslvsc/5TMPXv9EbYeuCXxNxm+PsFHt bKVlWcn+0oeLCrmwduApkCt2GA3vRv5sJxl5D2lLqXHjuh9Dz/dOd5sCkJkzuG38 2eZSMCOQfDC6MCRPwYdaffT10CBdIfSYCtn18qXCPeAuREKEj4cZOiY6kizamqpb ZmndSlFzMBXr+htfMStdy3YIACdJXtIu -----END CERTIFICATE-----Generated at Sun Jul 20 10:26:27 2025 by rpki-client