$ rpki-client -vvf rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft File: GhajkdMlFwt7hcS_x4VaF300e24.mft (raw, json) Hash identifier: wdNXFjvMHZ2bfl1g0qgFgJlKe9qK81JV+H6riH3FKic= Subject key identifier: 2A:58:95:3C:2A:AF:0E:AA:E8:99:1D:ED:68:4F:C4:16:E9:42:E0:E5 Authority key identifier: 1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E Certificate issuer: /CN=A913B510/serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft Manifest number: 08 Signing time: Mon 21 Jul 2025 08:20:40 +0000 Manifest this update: Mon 21 Jul 2025 08:20:40 +0000 Manifest next update: Mon 28 Jul 2025 08:20:40 +0000 Files and hashes: 1: GhajkdMlFwt7hcS_x4VaF300e24.crl (hash: BW+R35fZ3EqVL+AWms8T4MrkoGo/Qks5xktd0wKiZuM=) 2: 9CAF31CA5D8111F0A04DD550C4F9AE02.roa (hash: 92wZUBl6JW7t9Lz6VY8NqyCC30dn+5kR/99dMirbOek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 08:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B510, serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E Validity Not Before: Jul 21 08:20:40 2025 GMT Not After : Jul 28 08:20:40 2025 GMT Subject: CN=687df858-a74e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c3:80:40:f0:f6:6d:4b:e3:de:bc:27:cf:58: 64:7a:be:ce:f4:12:0f:dc:96:90:57:87:40:f6:dd: 57:50:b7:9a:79:72:b9:fa:0c:2c:9c:82:20:71:1c: 0d:0c:9e:86:a6:4a:3b:c5:f2:57:f5:44:1e:d0:8e: a5:e8:fd:1d:96:ff:0d:bd:1a:16:91:9e:3c:4d:da: ce:b6:f4:6a:d8:fd:49:27:b9:49:52:92:a2:8c:27: 3b:2d:45:33:72:31:3c:f0:23:2f:84:cb:0b:72:ae: 15:fc:60:80:e6:4d:1f:83:28:25:cb:66:a7:c8:a5: da:a5:2c:aa:11:0d:08:46:35:66:fb:68:e8:40:90: 41:64:0f:05:c1:e0:1e:82:09:81:c5:8a:9c:30:d7: a6:5b:0c:8b:b2:ff:72:37:a0:97:86:7d:34:f4:ca: 44:fd:ba:f0:04:8e:84:48:46:53:9d:2a:3f:f0:2f: 04:41:06:83:94:5a:66:8a:b8:a8:c1:56:5d:37:e7: 47:54:e8:2a:b4:f6:7b:c4:6e:48:47:e5:bd:d0:b7: e4:1b:21:67:2b:8f:fb:a3:3e:11:bf:be:c4:d2:aa: 47:2f:8f:d8:85:b8:a0:55:86:55:a8:7e:a9:5e:38: e4:a8:3e:78:1f:5a:35:32:fe:54:63:a3:b1:7f:96: 2a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:58:95:3C:2A:AF:0E:AA:E8:99:1D:ED:68:4F:C4:16:E9:42:E0:E5 X509v3 Authority Key Identifier: keyid:1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:d3:f5:0f:86:c0:13:08:32:e9:fa:b9:07:27:00:d6:26:a2: 6d:2f:fc:74:1a:d5:62:1d:97:db:ca:d8:f2:a8:80:07:5d:7a: ea:db:43:97:fe:1d:1e:be:c7:87:e3:04:14:c8:a0:7a:1e:ff: c9:09:ee:24:b3:aa:78:81:6b:80:ca:86:c1:19:88:02:36:60: 18:b6:df:f6:8d:43:3c:d0:91:ff:01:7c:cd:05:5d:e4:27:4c: 77:e9:c1:0d:01:cb:bb:70:7b:73:db:c2:fa:ba:77:5f:ae:d9: 46:50:2b:8d:67:81:ac:a0:d4:2a:0d:0b:50:4d:06:8c:20:f0: 06:f3:48:6d:72:73:6d:bc:13:95:c4:2e:70:19:95:e6:18:50: 07:e8:22:e4:44:3e:c6:a4:87:e0:e9:19:58:05:b1:cc:77:42: b1:f1:e0:b4:34:0d:74:9b:8c:37:3f:54:54:44:89:a4:3f:0f: 92:0a:23:12:2e:7b:76:4e:c9:56:60:61:a7:5a:2a:ab:0b:57: 15:2a:7e:37:87:ae:0f:8f:fc:8d:52:52:83:5f:78:84:65:76: 54:18:e6:52:ae:00:77:c8:aa:81:fa:fb:28:55:d2:a8:29:df: 5e:02:ba:16:58:4d:33:96:a7:74:31:b4:3d:0f:4f:fe:94:6e: 8f:5d:23:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QjUxMDExMC8GA1UEBRMoMUExNkEzOTFEMzI1MTcwQjdCODVDNEJGQzc4NTVBMTc3 RDM0N0I2RTAeFw0yNTA3MjEwODIwNDBaFw0yNTA3MjgwODIwNDBaMBgxFjAUBgNV BAMTDTY4N2RmODU4LWE3NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTw4BA8PZtS+PevCfPWGR6vs70Eg/clpBXh0D23VdQt5p5crn6DCycgiBxHA0M noamSjvF8lf1RB7QjqXo/R2W/w29GhaRnjxN2s629GrY/UknuUlSkqKMJzstRTNy MTzwIy+EywtyrhX8YIDmTR+DKCXLZqfIpdqlLKoRDQhGNWb7aOhAkEFkDwXB4B6C CYHFipww16ZbDIuy/3I3oJeGfTT0ykT9uvAEjoRIRlOdKj/wLwRBBoOUWmaKuKjB Vl0350dU6Cq09nvEbkhH5b3Qt+QbIWcrj/ujPhG/vsTSqkcvj9iFuKBVhlWofqle OOSoPngfWjUy/lRjo7F/liplAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKliVPCqv DqromR3taE/EFulC4OUwHwYDVR0jBBgwFoAUGhajkdMlFwt7hcS/x4VaF300e24w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCNTEwLzE4ODJEMEU2NUQ4 MTExRjA5MTIyNkUzMUM0RjlBRTAyL0doYWprZE1sRnd0N2hjU194NFZhRjMwMGUy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2hhamtkTWxGd3Q3aGNTX3g0VmFGMzAwZTI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC NTEwLzE4ODJEMEU2NUQ4MTExRjA5MTIyNkUzMUM0RjlBRTAyL0doYWprZE1sRnd0 N2hjU194NFZhRjMwMGUyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALTT9Q+GwBMIMun6uQcnANYmom0v/HQa1WIdl9vK2PKogAddeurbQ5f+ HR6+x4fjBBTIoHoe/8kJ7iSzqniBa4DKhsEZiAI2YBi23/aNQzzQkf8BfM0FXeQn THfpwQ0By7twe3Pbwvq6d1+u2UZQK41ngayg1CoNC1BNBowg8AbzSG1yc228E5XE LnAZleYYUAfoIuREPsakh+DpGVgFscx3QrHx4LQ0DXSbjDc/VFREiaQ/D5IKIxIu e3ZOyVZgYadaKqsLVxUqfjeHrg+P/I1SUoNfeIRldlQY5lKuAHfIqoH6+yhV0qgp 314CuhZYTTOWp3QxtD0PT/6Ubo9dI2o= -----END CERTIFICATE-----Generated at Mon Jul 21 13:17:31 2025 by rpki-client