$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft File: GkhD6J8kRLLN24EYqoovRBgOhJg.mft (raw, json) Hash identifier: 77ZyYjvWPxqghUAK1mk86CEB0URyQbeyvaBwT2WgNsA= Subject key identifier: 85:81:EF:2E:66:9A:F9:F6:08:E5:B5:B9:25:46:12:83:31:B0:95:A8 Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft Manifest number: 018B Signing time: Sat 19 Jul 2025 03:43:22 +0000 Manifest this update: Sat 19 Jul 2025 03:43:22 +0000 Manifest next update: Sat 26 Jul 2025 03:43:22 +0000 Files and hashes: 1: GkhD6J8kRLLN24EYqoovRBgOhJg.crl (hash: /Zzl79yEnuOko8A2cG3px7JPUIo/AScT06fvgM5Uav0=) 2: B5569B88096311EE9ECB644DC4F9AE02.roa (hash: r69ry07FlZRyxMcGSskusquMKld1QByFguUcoWDQa3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Jul 19 03:43:22 2025 GMT Not After : Jul 26 03:43:22 2025 GMT Subject: CN=687b145a-f389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:55:a7:2b:4e:8c:b9:1a:08:0e:00:c9:b3:53: 15:f0:0e:bd:d3:37:0f:29:ef:9e:34:cf:d6:f3:19: 3a:ca:6b:5f:5c:96:17:7f:f7:ef:9d:a8:5e:ae:44: 58:7d:0f:ba:1e:20:ce:9d:22:a4:20:b3:01:cb:ad: bc:a6:48:e0:11:7b:a8:05:0b:e3:d5:9e:11:1d:9d: 84:55:ef:80:c1:0b:22:fb:e6:9f:79:d9:5b:55:45: fc:8c:3b:c0:55:4b:c7:50:20:7e:ea:b9:08:11:ef: 33:bb:4b:c7:5e:bf:29:9b:ed:ec:ec:8e:8d:23:59: 91:fd:dc:0f:2e:27:ef:18:c1:65:eb:c5:95:f2:00: f9:d4:23:7b:b2:ee:44:36:bc:fb:ee:da:da:a9:e8: cc:b3:82:a0:20:e5:1c:42:9f:25:70:69:69:0e:01: 5f:6b:a7:08:60:be:69:16:4e:6c:6f:cd:1d:2d:42: 84:9e:20:74:c0:56:e2:30:fc:1c:7f:1e:52:67:24: bf:bc:e1:7f:65:8c:26:2e:26:22:fe:9b:64:88:5d: d1:f3:c0:57:0e:d8:3b:57:8e:0a:84:29:09:04:68: 69:86:1c:4b:f8:56:8d:2b:7e:ca:a8:41:15:a0:23: 47:a3:35:e1:29:62:0a:cb:25:db:2a:e4:67:4c:ff: 65:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:81:EF:2E:66:9A:F9:F6:08:E5:B5:B9:25:46:12:83:31:B0:95:A8 X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:18:e7:4f:ca:ea:11:02:ec:ae:6d:4a:c6:35:64:a9:32:ce: 7d:6e:66:71:56:b1:57:36:8a:2c:5f:24:d8:0d:b5:d7:22:9b: 00:c3:a4:e0:91:fd:ab:90:37:7d:1a:18:13:e0:c3:7b:9a:60: 42:cd:0b:8b:ea:a8:1a:7e:fb:0e:fd:48:13:77:a5:14:2e:95: 12:17:88:41:01:d6:82:56:ee:8e:81:23:64:a3:54:9e:fa:f7: 2b:d5:98:d5:82:86:f9:22:29:a3:5a:dc:8b:a7:b8:45:20:6c: 7c:4a:3e:d1:49:51:ce:60:97:ca:ea:01:c0:24:e8:d1:24:ed: 96:f3:d4:a2:4d:03:8d:e6:fd:ee:ef:8c:1c:80:79:a3:d0:aa: c5:ec:07:88:3d:23:43:26:8d:66:6a:7a:93:ae:5d:55:22:e7: 7b:30:d3:23:5e:c3:1a:52:67:8f:42:f8:40:72:fb:00:6b:7c: ec:c5:d6:23:f0:f9:18:a7:13:59:48:9d:c7:67:40:f8:4a:2b: 11:fb:a4:96:62:8c:45:87:9b:04:03:9b:7f:f0:15:1f:5a:20: e6:2d:d9:d3:23:96:28:60:27:f4:f9:b3:21:fb:8b:56:a4:d3: 3a:50:94:d6:d5:4b:a9:f9:ef:28:21:60:f8:76:c8:5c:26:0f: 5f:92:9f:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjUwNzE5MDM0MzIyWhcNMjUwNzI2MDM0MzIyWjAYMRYwFAYD VQQDEw02ODdiMTQ1YS1mMzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFWnK06MuRoIDgDJs1MV8A690zcPKe+eNM/W8xk6ymtfXJYXf/fvnaherkRY fQ+6HiDOnSKkILMBy628pkjgEXuoBQvj1Z4RHZ2EVe+AwQsi++afedlbVUX8jDvA VUvHUCB+6rkIEe8zu0vHXr8pm+3s7I6NI1mR/dwPLifvGMFl68WV8gD51CN7su5E Nrz77traqejMs4KgIOUcQp8lcGlpDgFfa6cIYL5pFk5sb80dLUKEniB0wFbiMPwc fx5SZyS/vOF/ZYwmLiYi/ptkiF3R88BXDtg7V44KhCkJBGhphhxL+FaNK37KqEEV oCNHozXhKWIKyyXbKuRnTP9lywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWB7y5m mvn2COW1uSVGEoMxsJWoMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JM TE4yNEVZcW9vdlJCZ09oSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYGOdPyuoRAuyubUrGNWSpMs59bmZxVrFXNoosXyTYDbXXIpsAw6Tg kf2rkDd9GhgT4MN7mmBCzQuL6qgafvsO/UgTd6UULpUSF4hBAdaCVu6OgSNko1Se +vcr1ZjVgob5IimjWtyLp7hFIGx8Sj7RSVHOYJfK6gHAJOjRJO2W89SiTQON5v3u 74wcgHmj0KrF7AeIPSNDJo1manqTrl1VIud7MNMjXsMaUmePQvhAcvsAa3zsxdYj 8PkYpxNZSJ3HZ0D4SisR+6SWYoxFh5sEA5t/8BUfWiDmLdnTI5YoYCf0+bMh+4tW pNM6UJTW1Uup+e8oIWD4dshcJg9fkp+t -----END CERTIFICATE-----Generated at Sun Jul 20 07:32:18 2025 by rpki-client