$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: smIZQO2CaZPfNKqvSqrspZb+X4EIRpYG3h+C44oFJxA= Subject key identifier: 94:96:8B:12:1E:B8:6A:73:59:72:69:58:9B:7F:2A:05:B5:B9:C0:F4 Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 03B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 03A5 Signing time: Sat 19 Jul 2025 01:12:20 +0000 Manifest this update: Sat 19 Jul 2025 01:12:20 +0000 Manifest next update: Sat 26 Jul 2025 01:12:20 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: WQMzolZaAH53RwNysaF80hwwTIlM0tnFr+gqwGQaiCc=) 2: 888790B6CD3A11EF87D85012C4F9AE02.roa (hash: AvFxWnXdXVRW4gSsV2SM184h5qE1FtXhjp3kh4Swn5U=) 3: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: WV0++0ZN/bagS69tHu4GzxXJWra/B4BQBtuEVcU79xQ=) 4: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: CVz2Xf9+JNVQc+OnMj39alF6Xn/77a8odRw6ivgbb84=) 5: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: PSuOk5hKLAcVmpB6whliDPWrfFKAhRcAnnfVLoCffRg=) 6: 8CA353C4EF5E11EF9E61950EC4F9AE02.roa (hash: 5Blz9K5XE6h6oYg/gQUJxXMDOjmAua+CLgWpZB5MaIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:12:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 951 (0x3b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A, serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: Jul 19 01:12:20 2025 GMT Not After : Jul 26 01:12:20 2025 GMT Subject: CN=687af0f4-4ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c6:ac:97:d0:c6:e5:81:2f:f0:6c:89:7b:e4: 4a:24:16:49:f7:79:ac:18:af:14:ab:61:1d:77:3c: a9:ea:ec:87:b4:c0:f9:c9:eb:38:95:68:62:e9:9d: 4d:41:8e:1e:fb:b8:a6:39:f0:78:3c:ee:2d:5d:21: 37:d9:23:e2:87:21:b7:7c:f5:14:06:db:5f:a9:22: 78:9d:f2:1b:86:53:c7:1c:ff:53:4b:e0:23:cb:74: 89:88:c3:fc:80:2b:a8:0b:55:73:99:de:36:19:e0: e1:54:4f:60:e1:ef:f3:f0:15:42:79:a8:89:e9:b4: 3a:09:76:ea:03:d6:59:db:b6:99:7d:4e:ba:4c:f5: 27:04:ea:63:27:2c:43:2e:48:64:f1:33:e9:7d:b7: 92:c5:94:61:89:93:40:be:dc:15:4c:65:f6:66:f0: a9:c8:58:ae:4f:8b:77:e2:78:92:ff:73:94:94:e7: 45:2b:88:4e:dd:fb:e2:52:83:11:b3:6b:26:43:63: 36:6e:a4:6d:d8:47:7c:54:00:96:b6:c1:57:ec:30: 99:5c:2f:1c:59:e5:cb:ec:c4:18:8f:04:5f:df:24: 16:a8:14:e0:1f:13:5a:08:7a:1a:da:b9:9e:3c:96: c7:4c:ce:ac:f8:e5:57:ad:8c:37:da:33:ad:f0:8e: 5a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:96:8B:12:1E:B8:6A:73:59:72:69:58:9B:7F:2A:05:B5:B9:C0:F4 X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:0e:36:02:0c:f7:8a:3e:97:79:0e:cf:a6:10:c6:b0:88:44: dd:55:ad:71:95:70:aa:5b:eb:90:6c:8f:12:1a:6d:22:cc:e5: 27:bc:f9:a5:18:c9:f6:e1:fe:6a:80:85:b1:7e:48:37:50:b2: 1a:70:39:cd:42:ce:b8:e4:f3:54:3f:ea:20:16:07:f3:eb:b9: 90:4a:2b:df:bb:63:aa:a1:ff:10:c7:4d:e1:3a:03:bc:0c:bc: 7a:fc:10:32:ea:7f:11:81:f8:c9:b9:64:a8:d4:d8:40:37:6c: 36:d8:c5:7a:b5:41:3b:be:4a:c8:ef:8e:45:c5:10:aa:2e:1e: 14:86:f0:a4:97:0d:0f:a6:0c:d1:de:46:db:1f:ca:56:17:d5: 80:df:56:e2:87:0f:d6:b5:25:fa:56:1b:18:e2:8e:63:2a:cc: da:3a:04:0e:31:3e:4e:36:05:2b:43:56:01:91:d9:50:27:43: bb:f2:16:79:39:5b:ad:86:2c:3f:b1:35:73:0f:10:92:fd:40: 7c:db:02:fb:c3:d9:95:ab:36:54:34:9b:c0:a8:87:f1:5c:b9: 0b:0e:ab:25:7f:93:9f:dc:8a:a6:14:9f:fd:71:9a:00:48:49: 93:c0:68:e0:2a:0c:13:2b:04:7e:51:af:72:57:db:69:38:5b: 3d:61:68:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjUwNzE5MDExMjIwWhcNMjUwNzI2MDExMjIwWjAYMRYwFAYD VQQDEw02ODdhZjBmNC00YWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8asl9DG5YEv8GyJe+RKJBZJ93msGK8Uq2Eddzyp6uyHtMD5yes4lWhi6Z1N QY4e+7imOfB4PO4tXSE32SPihyG3fPUUBttfqSJ4nfIbhlPHHP9TS+Ajy3SJiMP8 gCuoC1Vzmd42GeDhVE9g4e/z8BVCeaiJ6bQ6CXbqA9ZZ27aZfU66TPUnBOpjJyxD Lkhk8TPpfbeSxZRhiZNAvtwVTGX2ZvCpyFiuT4t34niS/3OUlOdFK4hO3fviUoMR s2smQ2M2bqRt2Ed8VACWtsFX7DCZXC8cWeXL7MQYjwRf3yQWqBTgHxNaCHoa2rme PJbHTM6s+OVXrYw32jOt8I5afQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSWixIe uGpzWXJpWJt/KgW1ucD0MB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgDjYCDPeKPpd5Ds+mEMawiETdVa1xlXCqW+uQbI8SGm0izOUnvPml GMn24f5qgIWxfkg3ULIacDnNQs645PNUP+ogFgfz67mQSivfu2Oqof8Qx03hOgO8 DLx6/BAy6n8RgfjJuWSo1NhAN2w22MV6tUE7vkrI745FxRCqLh4UhvCklw0PpgzR 3kbbH8pWF9WA31bihw/WtSX6VhsY4o5jKszaOgQOMT5ONgUrQ1YBkdlQJ0O78hZ5 OVuthiw/sTVzDxCS/UB82wL7w9mVqzZUNJvAqIfxXLkLDqslf5Of3IqmFJ/9cZoA SEmTwGjgKgwTKwR+Ua9yV9tpOFs9YWgQ -----END CERTIFICATE-----Generated at Mon Jul 21 01:57:59 2025 by rpki-client