$ rpki-client -vvf rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft File: GhajkdMlFwt7hcS_x4VaF300e24.mft (raw, json) Hash identifier: 8N2Qrk+msqYD7/0sRTBn2Nrx9Xt44ZAwvjTPDUjfGxA= Subject key identifier: 1E:EE:0C:AA:2F:04:6E:67:47:28:FC:E0:74:BF:3E:4F:CC:50:D0:44 Authority key identifier: 1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E Certificate issuer: /CN=A913B510/serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft Manifest number: 20 Signing time: Fri 05 Sep 2025 08:21:57 +0000 Manifest this update: Fri 05 Sep 2025 08:21:57 +0000 Manifest next update: Fri 12 Sep 2025 08:21:57 +0000 Files and hashes: 1: GhajkdMlFwt7hcS_x4VaF300e24.crl (hash: mOrHagyCef6sYxCJbDljIMH0o+gwMeDl1hI5nw9Lsso=) 2: 9CAF31CA5D8111F0A04DD550C4F9AE02.roa (hash: 92wZUBl6JW7t9Lz6VY8NqyCC30dn+5kR/99dMirbOek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 08:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B510, serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Validity Not Before: Sep 5 08:21:57 2025 GMT Not After : Sep 12 08:21:57 2025 GMT Subject: CN=68ba9da5-5b97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:23:de:af:c1:ca:16:90:49:98:67:38:88:14: 95:d0:5a:1d:38:68:3c:52:81:13:55:17:ff:ae:8f: 03:7f:fd:57:2d:81:19:b2:c9:e0:ce:b0:91:41:8f: 3c:a5:92:ba:12:7b:7d:90:75:dd:75:9d:09:29:98: 8f:3d:ea:a4:3d:7f:43:0d:59:93:32:dc:e6:7d:c3: 6c:44:b5:86:47:f2:41:a5:91:4c:c1:69:39:08:9a: bb:b8:1a:69:21:83:56:94:e8:7a:5a:5c:95:cf:20: 33:6f:b4:5f:4a:72:cc:48:9c:35:cf:de:c9:e7:a7: 6f:ec:c4:47:9f:71:29:ae:43:c0:12:10:95:28:ab: 28:79:44:6e:63:8f:ec:d3:04:cc:de:22:0f:a7:9c: 22:15:fc:cc:d0:20:fe:4f:bc:fb:c5:cc:18:29:b6: eb:80:d0:17:49:74:c0:84:29:75:d8:b5:28:14:90: a6:94:bb:1f:67:84:ce:72:08:13:be:e5:a0:c5:81: 8e:a7:2e:e2:36:ae:a2:c7:57:19:9c:5a:cf:bd:63: ad:ea:f1:12:6f:78:76:68:43:dd:da:75:cf:66:0b: 2f:d4:41:43:83:aa:4e:f6:e7:f6:b9:86:e0:6a:2b: 62:72:58:4e:06:ae:a9:ee:92:7b:19:09:6f:c1:73: fa:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:EE:0C:AA:2F:04:6E:67:47:28:FC:E0:74:BF:3E:4F:CC:50:D0:44 X509v3 Authority Key Identifier: keyid:1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:9c:13:dc:ca:d3:b6:96:48:16:6c:ee:ac:f2:ca:4d:0b:f0: 09:ac:6c:52:0d:c2:71:b5:7c:bd:fc:1e:95:57:64:eb:a3:41: 5a:e0:0d:33:c1:01:a2:3c:28:01:d5:17:c8:38:8e:ac:a6:5e: a2:32:4e:6a:35:9a:48:cf:4b:ec:98:57:2f:dd:42:75:0b:dd: 9e:e0:d6:de:e4:b0:41:37:e4:8c:2e:36:5a:6f:ee:62:87:11: 26:d4:45:6b:2b:13:c2:37:03:3d:91:b5:56:07:d3:a4:73:71: a2:16:92:31:64:4e:18:02:cc:cb:df:3c:f0:ce:a3:cc:87:49: a3:c2:fd:2c:0f:ee:25:c5:af:85:f2:73:da:ae:49:0c:07:46: f1:b4:3a:19:fe:57:7e:05:15:65:b3:a9:f2:9b:ed:ec:77:b3: 75:e1:a1:bf:6a:4d:b4:1a:84:88:19:52:9c:57:33:97:f8:42: 4d:27:1e:b3:0d:71:ea:40:67:44:9a:71:fb:56:38:66:0c:93: 3b:57:c9:eb:3e:c1:e5:79:6f:b1:f1:fb:5b:69:4d:1a:60:5a: 16:52:17:c8:ea:0e:b7:3c:24:df:49:3a:d4:55:74:c7:b2:7c: 28:3e:6c:bf:eb:14:6f:c1:c8:2f:b6:ac:d5:1d:c1:5d:9b:e9: 4a:7b:2c:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjUxMDExMC8GA1UEBRMoMUExNkEzOTFEMzI1MTcwQjdCODVDNEJGQzc4NTVBMTc3 RDM0N0I2RTAeFw0yNTA5MDUwODIxNTdaFw0yNTA5MTIwODIxNTdaMBgxFjAUBgNV BAMTDTY4YmE5ZGE1LTViOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7I96vwcoWkEmYZziIFJXQWh04aDxSgRNVF/+ujwN//VctgRmyyeDOsJFBjzyl kroSe32Qdd11nQkpmI896qQ9f0MNWZMy3OZ9w2xEtYZH8kGlkUzBaTkImru4Gmkh g1aU6HpaXJXPIDNvtF9KcsxInDXP3snnp2/sxEefcSmuQ8ASEJUoqyh5RG5jj+zT BMzeIg+nnCIV/MzQIP5PvPvFzBgptuuA0BdJdMCEKXXYtSgUkKaUux9nhM5yCBO+ 5aDFgY6nLuI2rqLHVxmcWs+9Y63q8RJveHZoQ93adc9mCy/UQUODqk725/a5huBq K2JyWE4GrqnuknsZCW/Bc/q5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHu4Mqi8E bmdHKPzgdL8+T8xQ0EQwHwYDVR0jBBgwFoAUGhajkdMlFwt7hcS/x4VaF300e24w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCNTEwLzE4ODJEMEU2NUQ4 MTExRjA5MTIyNkUzMUM0RjlBRTAyL0doYWprZE1sRnd0N2hjU194NFZhRjMwMGUy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2hhamtkTWxGd3Q3aGNTX3g0VmFGMzAwZTI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC NTEwLzE4ODJEMEU2NUQ4MTExRjA5MTIyNkUzMUM0RjlBRTAyL0doYWprZE1sRnd0 N2hjU194NFZhRjMwMGUyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALKcE9zK07aWSBZs7qzyyk0L8AmsbFINwnG1fL38HpVXZOujQVrgDTPB AaI8KAHVF8g4jqymXqIyTmo1mkjPS+yYVy/dQnUL3Z7g1t7ksEE35IwuNlpv7mKH ESbURWsrE8I3Az2RtVYH06RzcaIWkjFkThgCzMvfPPDOo8yHSaPC/SwP7iXFr4Xy c9quSQwHRvG0Ohn+V34FFWWzqfKb7ex3s3Xhob9qTbQahIgZUpxXM5f4Qk0nHrMN cepAZ0SacftWOGYMkztXyes+weV5b7Hx+1tpTRpgWhZSF8jqDrc8JN9JOtRVdMey fCg+bL/rFG/ByC+2rNUdwV2b6Up7LFI= -----END CERTIFICATE-----Generated at Sat Sep 6 15:17:33 2025 by rpki-client