$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft File: GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json) Hash identifier: +aUaoghXDo9Mza0FiPnKKUoAjPIcJtFilPoPIrv+o3c= Subject key identifier: AC:BD:D1:54:6C:B5:31:7C:33:B4:C1:47:92:F9:51:20:30:F2:E9:C1 Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Certificate serial: 0D1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft Manifest number: 0CD1 Signing time: Mon 08 Sep 2025 18:26:55 +0000 Manifest this update: Mon 08 Sep 2025 18:26:55 +0000 Manifest next update: Mon 15 Sep 2025 18:26:55 +0000 Files and hashes: 1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: 71+aZexazHz6zVThMzfU4QuuEKvn9Bmk9fmH4LoDkF8=) 2: 6BD78854828411F099E2E925C4F9AE02.roa (hash: 9j0RVXeWOTqtCIIu8pRWvFaGzaYiOgKNK4oM1aL4Rcw=) 3: 566800AE193C11F094773636C4F9AE02.roa (hash: klNEh0iBDmlYHaqprksR4hJ0HMUi4umtQtEjhFTsAmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3355 (0xd1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Validity Not Before: Sep 8 18:26:55 2025 GMT Not After : Sep 15 18:26:55 2025 GMT Subject: CN=68bf1fef-9116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:80:5d:9f:3e:16:a6:2a:dc:f1:bd:c6:0f:64: d5:d8:1f:a7:0a:83:2d:e3:71:c9:84:8a:f1:bf:be: 7b:c0:4b:65:4e:e4:75:d4:58:cb:c6:e5:b0:fe:14: 21:2f:b4:f5:0c:cb:cd:45:98:0f:68:25:8b:39:f6: 5a:07:bc:c9:a6:a0:d5:d0:c8:d1:c0:16:12:99:bf: 9a:ca:90:5e:f0:2e:6c:8a:a1:b5:32:ad:70:ae:cf: f6:e2:76:85:28:e3:84:8d:0d:2c:cf:ae:ce:76:5a: 0e:e7:8d:50:35:82:48:b7:40:b1:db:ff:33:6e:84: e3:67:fd:ac:eb:1f:3b:3a:e4:38:a1:23:cc:3c:3f: 18:c3:6b:d5:57:b6:9f:76:50:29:cf:d1:b4:7e:59: 76:19:1b:78:78:7d:5f:5c:28:6b:ac:04:24:df:87: b9:c4:6a:5c:e2:7f:d4:46:60:7d:3f:97:e4:aa:70: 94:8d:8a:07:4d:fa:dc:c1:01:f5:11:4f:28:5c:bc: fa:80:6f:e1:c8:9a:d5:3c:26:9d:a9:56:7b:85:ad: aa:e6:67:47:4c:6d:4a:9b:4d:4e:c0:89:74:98:3e: 16:24:3a:64:32:43:ae:c4:f1:27:93:b1:7b:fe:4a: ca:0e:c6:ce:35:ff:af:bf:70:00:b0:00:84:c0:8f: 3e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:BD:D1:54:6C:B5:31:7C:33:B4:C1:47:92:F9:51:20:30:F2:E9:C1 X509v3 Authority Key Identifier: keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:27:d5:f5:d3:65:83:fd:bb:b8:8b:52:2c:26:50:81:03:50: bf:0b:04:e7:92:21:24:78:68:87:48:ea:f9:e0:af:45:de:08: 77:2b:b6:23:94:e3:ca:47:91:23:3b:25:39:aa:cb:44:11:8d: 02:e8:a4:fc:27:7b:7c:1c:68:84:53:f5:28:0c:32:1d:48:ec: b2:5d:43:1d:24:0d:c7:5c:ab:fa:ac:8b:ca:a8:f3:75:1a:1c: 76:e9:3e:ac:64:60:a1:37:5a:d7:28:83:50:dd:e0:36:b0:ba: d0:8f:ad:03:17:2d:13:a3:3a:f2:3d:fb:d0:47:7e:4d:53:1b: c0:cc:8d:b7:33:79:be:6a:7a:92:ab:cb:99:6d:63:78:95:bf: b9:c6:50:1e:2f:67:23:43:9f:88:48:67:51:20:71:35:00:3a: 96:e6:11:5d:2c:d6:b6:fd:64:38:d9:06:65:db:2b:17:f5:f9: ee:99:eb:7c:dd:bf:89:5f:33:6c:f8:1f:02:80:50:39:c5:c8: 34:5c:63:76:b8:94:c0:ef:54:51:47:4e:c6:06:2d:07:08:15: 59:24:cd:16:ef:54:0d:3e:7a:b0:91:c6:d0:26:c2:9c:dd:77: b7:2f:7a:d6:75:be:f2:81:3b:1b:42:99:a6:82:2b:c6:2a:74: f2:e3:0d:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB RjYyREVGRkQwHhcNMjUwOTA4MTgyNjU1WhcNMjUwOTE1MTgyNjU1WjAYMRYwFAYD VQQDEw02OGJmMWZlZi05MTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYBdnz4Wpirc8b3GD2TV2B+nCoMt43HJhIrxv757wEtlTuR11FjLxuWw/hQh L7T1DMvNRZgPaCWLOfZaB7zJpqDV0MjRwBYSmb+aypBe8C5siqG1Mq1wrs/24naF KOOEjQ0sz67OdloO541QNYJIt0Cx2/8zboTjZ/2s6x87OuQ4oSPMPD8Yw2vVV7af dlApz9G0fll2GRt4eH1fXChrrAQk34e5xGpc4n/URmB9P5fkqnCUjYoHTfrcwQH1 EU8oXLz6gG/hyJrVPCadqVZ7ha2q5mdHTG1Km01OwIl0mD4WJDpkMkOuxPEnk7F7 /krKDsbONf+vv3AAsACEwI8+nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKy90VRs tTF8M7TBR5L5USAw8unBMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2 QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWJ9X102WD/bu4i1IsJlCBA1C/CwTnkiEkeGiHSOr54K9F3gh3K7Yj lOPKR5EjOyU5qstEEY0C6KT8J3t8HGiEU/UoDDIdSOyyXUMdJA3HXKv6rIvKqPN1 Ghx26T6sZGChN1rXKINQ3eA2sLrQj60DFy0TozryPfvQR35NUxvAzI23M3m+anqS q8uZbWN4lb+5xlAeL2cjQ5+ISGdRIHE1ADqW5hFdLNa2/WQ42QZl2ysX9fnumet8 3b+JXzNs+B8CgFA5xcg0XGN2uJTA71RRR07GBi0HCBVZJM0W71QNPnqwkcbQJsKc 3Xe3L3rWdb7ygTsbQpmmgivGKnTy4w3W -----END CERTIFICATE-----Generated at Tue Sep 9 16:36:13 2025 by rpki-client