$ rpki-client -vvf rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft File: gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft (raw, json) Hash identifier: 3ke+LYKKOhSt9dVBGL0pzBBuR28JyB5r+Ir3JAhoUjs= Subject key identifier: 85:65:63:83:C5:3A:00:D8:E4:E9:32:67:34:C9:F2:20:7C:30:7A:0A Authority key identifier: 80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 Certificate issuer: /CN=A9114FD8/serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft Manifest number: 63 Signing time: Wed 17 Sep 2025 07:47:06 +0000 Manifest this update: Wed 17 Sep 2025 07:47:06 +0000 Manifest next update: Wed 24 Sep 2025 07:47:06 +0000 Files and hashes: 1: gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl (hash: 444/QCQ/uFg1UGSd7Zl+oUk0Fo2aRmQ5CtvDSVAWEBI=) 2: 691B3B36FCC611EF8337B652C4F9AE02.roa (hash: 9OScaduExEngNPz5wsuWcHvwLQIw8gltPcbBA5tFHWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114FD8, serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Validity Not Before: Sep 17 07:47:06 2025 GMT Not After : Sep 24 07:47:06 2025 GMT Subject: CN=68ca677a-ab75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0c:77:b1:50:b3:e3:15:ce:62:4b:3b:d8:f2: 3b:8e:30:28:7f:dd:d0:52:db:87:f0:14:d0:e6:ca: af:1d:20:34:4d:52:a1:de:b4:ad:85:19:fd:6b:93: ff:b5:e7:e0:e1:90:38:64:df:93:ec:61:41:ca:6b: db:e6:41:67:1a:32:c3:16:70:06:90:31:57:be:49: 75:11:7c:bb:63:32:d0:d3:46:35:ae:53:fc:91:4a: cf:ef:ad:20:33:c6:eb:31:21:09:6d:b0:d3:02:68: 1c:4c:6e:c3:de:33:99:18:49:db:d6:bc:bd:d3:8e: 04:f1:1e:a3:f9:52:2f:dd:ba:8f:53:da:44:9f:65: 03:ac:d2:fd:6f:1f:a1:0f:1e:52:52:c5:9a:e1:f0: 94:dd:79:3f:ed:fe:ac:3e:5a:ab:53:a6:54:9d:76: 25:32:c8:54:7f:c2:ca:b1:0a:81:c9:ad:24:7d:ff: 61:78:bd:c4:0b:f7:10:42:b7:47:12:fa:4b:1a:1c: 08:43:dc:7b:d2:ea:a9:9d:c2:4a:16:f0:21:55:24: a3:fc:9f:a4:a4:9d:8d:6d:be:dd:82:50:97:23:f8: d4:fa:17:25:bb:45:fd:33:e6:47:b7:67:90:03:9d: 31:f5:0d:ed:52:8f:8d:0c:e7:0c:f5:59:57:a8:b5: a8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:65:63:83:C5:3A:00:D8:E4:E9:32:67:34:C9:F2:20:7C:30:7A:0A X509v3 Authority Key Identifier: keyid:80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:a4:d3:10:a8:12:3e:54:0a:5e:c8:cd:21:14:bf:41:3c:23: 5c:24:52:03:e5:b1:07:53:50:b4:2d:df:87:7c:ae:60:5b:9f: c0:54:4d:2c:e9:34:c1:2f:36:fe:94:e3:6d:d3:c3:3d:9a:94: 46:58:54:69:76:5c:0f:b9:bd:6d:38:02:d9:05:9e:66:f5:d3: a3:44:71:e7:46:8b:e5:7b:e2:19:5e:dd:55:41:23:35:bb:1c: 60:5a:57:e3:97:a6:7b:00:a8:a7:29:46:c0:b0:5e:2b:7f:30: 3d:1c:46:d5:d2:3d:5a:e1:74:40:d1:54:e5:0e:a1:aa:0f:9e: 82:c6:ba:39:20:85:a4:b3:29:6a:6f:4f:30:9c:2b:27:48:ad: ed:9c:0c:ed:63:4f:6c:f1:42:61:71:54:cc:10:8d:46:94:ad: f5:f5:2d:7f:49:9f:05:0c:7b:27:83:e1:0d:e1:31:e6:a1:f5: 9e:4b:6d:db:65:df:a0:3a:ac:75:78:f6:fe:e1:af:2c:17:0f: 50:64:aa:ee:0f:a3:06:bd:5f:55:36:07:12:09:e5:60:26:32: 04:12:0f:ad:31:5a:14:a1:f7:a2:96:49:e1:94:a5:19:82:df: 95:a4:65:c5:9e:1b:2e:5a:a5:48:28:e0:be:31:89:07:8d:aa: fc:78:15:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NEZEODExMC8GA1UEBRMoODA0NjMwNzREODNGNUU4MDM1NEQxOTcwNTg2RjU0QTg5 NjVFMThEMjAeFw0yNTA5MTcwNzQ3MDZaFw0yNTA5MjQwNzQ3MDZaMBgxFjAUBgNV BAMTDTY4Y2E2NzdhLWFiNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuDHexULPjFc5iSzvY8juOMCh/3dBS24fwFNDmyq8dIDRNUqHetK2FGf1rk/+1 5+DhkDhk35PsYUHKa9vmQWcaMsMWcAaQMVe+SXURfLtjMtDTRjWuU/yRSs/vrSAz xusxIQltsNMCaBxMbsPeM5kYSdvWvL3TjgTxHqP5Ui/duo9T2kSfZQOs0v1vH6EP HlJSxZrh8JTdeT/t/qw+WqtTplSddiUyyFR/wsqxCoHJrSR9/2F4vcQL9xBCt0cS +ksaHAhD3HvS6qmdwkoW8CFVJKP8n6SknY1tvt2CUJcj+NT6FyW7Rf0z5ke3Z5AD nTH1De1Sj40M5wz1WVeotah7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhWVjg8U6 ANjk6TJnNMnyIHwwegowHwYDVR0jBBgwFoAUgEYwdNg/XoA1TRlwWG9UqJZeGNIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0RkQ4L0YzNTEyQTBBRkND NTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9BMVRSbHdXRzlVcUpaZUdO SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0VZd2ROZ19Yb0ExVFJsd1dHOVVxSlplR05JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 RkQ4L0YzNTEyQTBBRkNDNTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9B MVRSbHdXRzlVcUpaZUdOSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALuk0xCoEj5UCl7IzSEUv0E8I1wkUgPlsQdTULQt34d8rmBbn8BUTSzp NMEvNv6U423Twz2alEZYVGl2XA+5vW04AtkFnmb106NEcedGi+V74hle3VVBIzW7 HGBaV+OXpnsAqKcpRsCwXit/MD0cRtXSPVrhdEDRVOUOoaoPnoLGujkghaSzKWpv TzCcKydIre2cDO1jT2zxQmFxVMwQjUaUrfX1LX9JnwUMeyeD4Q3hMeah9Z5Lbdtl 36A6rHV49v7hrywXD1Bkqu4Powa9X1U2BxIJ5WAmMgQSD60xWhSh96KWSeGUpRmC 35WkZcWeGy5apUgo4L4xiQeNqvx4FWw= -----END CERTIFICATE-----Generated at Fri Sep 19 07:11:38 2025 by rpki-client