$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: 4tNnb1UFpVAPZwLkaKvcIi1n27iQZU5CBmfEq2mkX6g= Subject key identifier: DE:6A:95:25:9F:57:F2:2C:21:83:55:2E:80:13:43:48:1F:55:FE:2E Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 03BE Signing time: Fri 05 Sep 2025 01:01:41 +0000 Manifest this update: Fri 05 Sep 2025 01:01:41 +0000 Manifest next update: Fri 12 Sep 2025 01:01:41 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: IzQGLRL8sgDQSXMzrCPjveVUzUfdPDxGWfTx1nTNJRk=) 2: 888790B6CD3A11EF87D85012C4F9AE02.roa (hash: AvFxWnXdXVRW4gSsV2SM184h5qE1FtXhjp3kh4Swn5U=) 3: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: WV0++0ZN/bagS69tHu4GzxXJWra/B4BQBtuEVcU79xQ=) 4: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: CVz2Xf9+JNVQc+OnMj39alF6Xn/77a8odRw6ivgbb84=) 5: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: PSuOk5hKLAcVmpB6whliDPWrfFKAhRcAnnfVLoCffRg=) 6: 8CA353C4EF5E11EF9E61950EC4F9AE02.roa (hash: 5Blz9K5XE6h6oYg/gQUJxXMDOjmAua+CLgWpZB5MaIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A, serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: Sep 5 01:01:41 2025 GMT Not After : Sep 12 01:01:41 2025 GMT Subject: CN=68ba3675-397d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5c:4a:81:26:4c:82:4f:ac:89:21:c6:f7:76: a3:ee:ee:41:a1:97:f7:c2:f7:6c:6b:10:ef:31:e8: da:c5:e1:a3:75:c2:12:6c:b0:99:68:85:64:9f:b8: 89:8c:2c:47:3b:6d:db:d8:82:06:42:2a:07:7d:9a: b6:b1:c1:0a:e4:42:c9:fc:45:c1:4e:68:97:d4:45: e7:ec:27:57:81:87:a5:6a:79:20:bb:eb:58:cf:5d: 72:6e:f5:7e:01:4a:ea:28:d7:ac:d8:8a:4b:04:91: 11:c1:52:ff:7b:f0:2f:78:02:5c:3e:b1:c6:8c:6b: 65:c8:79:dd:08:d5:f4:86:61:3e:70:91:20:2e:ac: 60:92:33:8e:c7:9b:fe:c3:35:2b:a5:a1:3f:5f:28: 7a:40:ab:12:9b:d7:03:2e:8e:d0:49:ba:73:6b:86: 7b:6b:ae:9a:75:6a:d6:98:12:60:fe:77:50:d7:b9: 3d:77:0e:b9:f2:49:b0:1e:62:bb:36:76:20:36:6e: 89:8d:b3:f0:d1:9f:7a:29:cb:b4:fc:24:f4:75:6d: f9:80:1c:75:e3:3d:fb:12:f1:83:65:ab:cd:96:ad: 0a:e8:7e:3b:e5:aa:9e:0b:a6:23:bd:62:95:57:08: f2:6a:7b:a4:7f:ea:dc:a4:d8:0d:22:af:46:98:14: 31:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6A:95:25:9F:57:F2:2C:21:83:55:2E:80:13:43:48:1F:55:FE:2E X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:f5:d0:20:26:2c:8a:c5:4d:67:da:75:47:ed:f0:4f:98:1b: 53:cc:11:e2:6f:4b:1c:b3:1e:d1:4c:83:f3:33:dc:ac:1c:db: 7d:fa:43:f7:c3:36:bc:ea:16:eb:21:e4:c0:f3:f8:3c:67:b7: 41:67:40:b4:ea:85:f8:9a:48:45:cf:0b:37:24:fd:e0:5b:06: 66:89:5d:c8:e1:66:96:17:bc:7f:01:9d:ed:94:37:85:59:84: 07:7b:78:8f:ba:dc:17:6e:78:05:88:13:2d:75:55:9e:12:25: 3d:08:97:ee:91:0c:49:e2:d1:7f:01:ae:cd:b5:1b:81:96:05: 40:9a:85:2d:45:b3:03:f6:e6:64:e4:39:b6:b6:8c:7b:d0:73: a5:69:53:83:1c:93:dd:5a:34:55:c3:49:40:c0:6a:bc:12:7c: c8:8d:c2:9c:ab:0b:37:d9:a3:0a:a4:36:03:62:e5:73:e8:8e: ab:1b:72:b1:33:70:ac:4c:d6:a7:dd:57:ed:17:6c:8e:f4:93: 17:91:e8:ed:50:24:40:ca:76:ed:90:d0:6f:f9:44:9b:e3:73: 3b:00:49:b6:f0:21:19:71:f2:e6:21:2b:a4:30:e3:89:fd:ee: 39:b8:d4:78:b6:e6:92:19:9a:12:5e:89:6d:0e:cb:a9:68:1d: 76:37:5f:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjUwOTA1MDEwMTQxWhcNMjUwOTEyMDEwMTQxWjAYMRYwFAYD VQQDEw02OGJhMzY3NS0zOTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lxKgSZMgk+siSHG93aj7u5BoZf3wvdsaxDvMejaxeGjdcISbLCZaIVkn7iJ jCxHO23b2IIGQioHfZq2scEK5ELJ/EXBTmiX1EXn7CdXgYelankgu+tYz11ybvV+ AUrqKNes2IpLBJERwVL/e/AveAJcPrHGjGtlyHndCNX0hmE+cJEgLqxgkjOOx5v+ wzUrpaE/Xyh6QKsSm9cDLo7QSbpza4Z7a66adWrWmBJg/ndQ17k9dw658kmwHmK7 NnYgNm6JjbPw0Z96Kcu0/CT0dW35gBx14z37EvGDZavNlq0K6H475aqeC6YjvWKV Vwjyanukf+rcpNgNIq9GmBQx3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5qlSWf V/IsIYNVLoATQ0gfVf4uMB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd9dAgJiyKxU1n2nVH7fBPmBtTzBHib0scsx7RTIPzM9ysHNt9+kP3 wza86hbrIeTA8/g8Z7dBZ0C06oX4mkhFzws3JP3gWwZmiV3I4WaWF7x/AZ3tlDeF WYQHe3iPutwXbngFiBMtdVWeEiU9CJfukQxJ4tF/Aa7NtRuBlgVAmoUtRbMD9uZk 5Dm2tox70HOlaVODHJPdWjRVw0lAwGq8EnzIjcKcqws32aMKpDYDYuVz6I6rG3Kx M3CsTNan3VftF2yO9JMXkejtUCRAynbtkNBv+USb43M7AEm28CEZcfLmISukMOOJ /e45uNR4tuaSGZoSXoltDsupaB12N1+6 -----END CERTIFICATE-----Generated at Sat Sep 6 02:33:32 2025 by rpki-client