$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft File: gja7zXAtSCL93VuwVmDPEDjsjH4.mft (raw, json) Hash identifier: zE4SZ/QXB0PEzVmmCvoCo548CNnA6nfx+E1gsJU9cn4= Subject key identifier: C9:43:63:1D:7D:AB:6C:2F:51:B9:16:0E:6D:AE:38:85:87:17:BD:2C Authority key identifier: 82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E Certificate issuer: /CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Certificate serial: 0869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft Manifest number: 0860 Signing time: Sat 06 Sep 2025 20:53:23 +0000 Manifest this update: Sat 06 Sep 2025 20:53:22 +0000 Manifest next update: Sat 13 Sep 2025 20:53:22 +0000 Files and hashes: 1: gja7zXAtSCL93VuwVmDPEDjsjH4.crl (hash: kkrPUoYAvU/iuuL/VCqQUDAlC09/jbJOfdaIyi/XKwE=) 2: 3ABFAC2231E211EFA341983CC4F9AE02.roa (hash: UaoBno6EmWaBFcw5TBVRPYFiWGMBoSDzhu3pQGtDygg=) 3: 63B7CB76D0E511EA9916E053C4F9AE02.roa (hash: 4fGi9gJaC/oEbDcGBoBEInsd7LIWjlkoV1ytai5f/QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4B, serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Validity Not Before: Sep 6 20:53:22 2025 GMT Not After : Sep 13 20:53:22 2025 GMT Subject: CN=68bc9f42-fd4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:fe:49:fb:21:6e:41:ac:40:29:42:35:fc:7d: b8:b8:b1:04:3f:92:28:35:28:74:e2:ed:8b:7c:0f: 42:b1:fe:26:6f:04:7c:23:d6:24:56:04:24:60:8e: 41:a8:9e:ca:ae:69:36:fc:ac:72:c8:8e:15:80:b3: c3:db:48:49:d8:c8:0e:f3:f9:d1:3e:4a:44:23:67: 56:02:b3:1d:e2:8c:1b:63:42:9d:72:43:d5:f7:c9: 1a:23:1a:08:e4:81:ca:00:11:65:1d:3d:40:50:9c: 78:ac:78:3e:2a:ff:aa:b3:cd:71:fe:e6:75:64:55: 33:38:90:ea:cb:70:94:ea:dc:3a:b8:09:c2:2b:d9: d3:ef:02:df:0a:f8:d3:4f:e1:50:28:6c:56:0b:cf: c7:06:8a:40:87:b5:bc:e6:2e:e1:e8:f7:bc:44:81: 89:a8:7b:37:09:c4:98:80:94:6c:d2:2b:bd:d2:4c: e1:54:9a:eb:ad:09:0a:2c:80:10:19:bd:4c:dd:07: 09:2c:5d:84:b8:90:84:94:8a:f7:5e:7a:98:8d:79: d4:83:90:66:36:37:c6:63:94:cc:35:71:aa:f3:b7: 6b:74:b0:c0:fd:18:f3:4d:84:ec:9e:85:83:08:9e: 96:3e:c8:dc:36:fb:09:88:23:1e:67:eb:97:a9:b7: 03:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:43:63:1D:7D:AB:6C:2F:51:B9:16:0E:6D:AE:38:85:87:17:BD:2C X509v3 Authority Key Identifier: keyid:82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:c0:8d:ed:1c:fc:a3:aa:ba:db:d0:d8:13:90:1c:09:2a:e0: 31:3f:37:14:04:04:55:58:53:8b:45:7c:da:9f:1e:f2:50:6c: 3e:30:12:b8:fb:e3:5f:eb:39:35:7d:52:98:15:7c:21:2f:33: 33:57:57:37:e5:71:a3:51:d1:b4:76:dc:d2:d5:ad:10:49:8e: f3:1f:ec:1b:92:e9:7b:23:94:9f:4c:be:88:25:7a:7f:da:54: b9:21:1a:e7:71:e2:63:1e:66:bd:26:92:2d:43:81:36:01:77: 32:a2:52:7d:61:c3:f7:aa:54:7c:45:87:e5:ca:bc:0a:85:ca: d2:f1:13:38:06:ba:01:2e:39:82:c1:99:c2:22:c8:48:15:ef: 10:bd:81:51:f6:bf:be:6d:e6:26:ac:cf:62:d9:3f:40:71:8a: 51:2c:7f:4f:29:33:8b:47:73:84:b2:c3:14:25:86:5a:4e:75: 54:b2:06:29:a2:e0:7f:59:41:72:fe:f0:8f:d1:5b:e6:ba:bc: ce:cb:37:58:46:5e:f4:2e:90:91:b3:1c:93:ac:0d:01:ac:5c: 19:cd:87:f6:ed:15:e8:8a:88:9e:d9:ba:e3:25:a7:b2:a4:70: 29:7f:bc:ec:c2:f1:06:e1:b4:34:4f:b3:d4:99:f9:64:62:a0: d3:45:ac:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEIxMTAvBgNVBAUTKDgyMzZCQkNENzAyRDQ4MjJGRERENUJCMDU2NjBDRjEw MzhFQzhDN0UwHhcNMjUwOTA2MjA1MzIyWhcNMjUwOTEzMjA1MzIyWjAYMRYwFAYD VQQDEw02OGJjOWY0Mi1mZDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3f5J+yFuQaxAKUI1/H24uLEEP5IoNSh04u2LfA9Csf4mbwR8I9YkVgQkYI5B qJ7Krmk2/KxyyI4VgLPD20hJ2MgO8/nRPkpEI2dWArMd4owbY0KdckPV98kaIxoI 5IHKABFlHT1AUJx4rHg+Kv+qs81x/uZ1ZFUzOJDqy3CU6tw6uAnCK9nT7wLfCvjT T+FQKGxWC8/HBopAh7W85i7h6Pe8RIGJqHs3CcSYgJRs0iu90kzhVJrrrQkKLIAQ Gb1M3QcJLF2EuJCElIr3XnqYjXnUg5BmNjfGY5TMNXGq87drdLDA/RjzTYTsnoWD CJ6WPsjcNvsJiCMeZ+uXqbcDtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlDYx19 q2wvUbkWDm2uOIWHF70sMB8GA1UdIwQYMBaAFII2u81wLUgi/d1bsFZgzxA47Ix+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0Qi8yNEE2OEU5Q0Qw RTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFNDTDkzVnV3Vm1EUEVEanNq SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqYTd6WEF0U0NMOTNWdXdWbURQRURqc2pINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU0Qi8yNEE2OEU5Q0QwRTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFND TDkzVnV3Vm1EUEVEanNqSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAwI3tHPyjqrrb0NgTkBwJKuAxPzcUBARVWFOLRXzanx7yUGw+MBK4 ++Nf6zk1fVKYFXwhLzMzV1c35XGjUdG0dtzS1a0QSY7zH+wbkul7I5SfTL6IJXp/ 2lS5IRrnceJjHma9JpItQ4E2AXcyolJ9YcP3qlR8RYflyrwKhcrS8RM4BroBLjmC wZnCIshIFe8QvYFR9r++beYmrM9i2T9AcYpRLH9PKTOLR3OEssMUJYZaTnVUsgYp ouB/WUFy/vCP0VvmurzOyzdYRl70LpCRsxyTrA0BrFwZzYf27RXoioie2brjJaey pHApf7zswvEG4bQ0T7PUmflkYqDTRayb -----END CERTIFICATE-----Generated at Sun Sep 7 14:22:34 2025 by rpki-client