$ rpki-client -vvf rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft File: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft (raw, json) Hash identifier: WPPSCglI3Ra1Z5g4CFcYbUBZeUlP44HqW4O6lRQ6KBA= Subject key identifier: 87:31:0A:49:B7:EA:CD:AC:92:33:7E:53:CF:A2:C1:25:B1:06:89:5A Authority key identifier: 1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A Certificate issuer: /CN=A91518AF/serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Certificate serial: 071A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft Manifest number: 0714 Signing time: Thu 18 Sep 2025 22:09:44 +0000 Manifest this update: Thu 18 Sep 2025 22:09:43 +0000 Manifest next update: Thu 25 Sep 2025 22:09:43 +0000 Files and hashes: 1: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl (hash: +tqXHD1FWTOoMTJAvIL6O/HmOjTTQ6VCum17m6PmXlc=) 2: C1C296F45A7111EBB1700884C4F9AE02.roa (hash: B12a5nmb++1idn982o5fMgF1ev9LOoacLfiyTpfrCoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1818 (0x71a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91518AF, serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Validity Not Before: Sep 18 22:09:43 2025 GMT Not After : Sep 25 22:09:43 2025 GMT Subject: CN=68cc8327-ccda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d1:8e:48:92:79:0f:c9:6c:8f:0d:14:f8:8d: c7:dd:eb:22:85:27:3c:f1:c3:5e:f8:98:29:87:37: af:61:77:27:e3:8e:a6:1e:e6:91:33:3d:f8:04:7c: 1e:06:d0:cf:f7:15:91:c9:b5:c4:3b:3f:a6:2b:88: c1:59:f6:88:fa:59:de:1d:d3:2e:24:f3:bf:ef:d5: 98:4f:13:1a:3b:54:f7:c5:ba:1b:b2:56:d4:bc:e5: fa:11:b3:75:15:b0:14:a3:4c:e3:99:60:c4:67:2e: 0c:33:41:1e:17:0c:2e:33:89:3c:70:d1:92:7b:17: d2:9d:98:b8:cb:ad:84:de:7a:27:3c:25:01:36:ff: 33:44:b2:58:26:79:04:19:87:f7:5e:c6:ff:20:e5: 6a:d6:60:4e:11:1d:7a:26:b8:9d:79:5f:cf:46:ec: 04:72:1b:ea:d0:c5:3f:3c:2d:0f:20:c4:e9:d0:21: b7:72:b5:73:54:9b:d1:fd:c6:6c:77:3b:ec:4a:4d: e4:ff:b2:fc:51:21:48:ba:c6:c9:6e:1f:d5:61:68: 62:da:df:23:1c:bb:0c:b8:a9:c3:86:b3:3f:97:aa: 60:67:39:69:a7:0f:11:a5:0e:24:dd:85:f9:50:18: 7a:f8:20:5d:fa:70:33:85:fd:3b:ae:86:dd:3d:31: 6f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:31:0A:49:B7:EA:CD:AC:92:33:7E:53:CF:A2:C1:25:B1:06:89:5A X509v3 Authority Key Identifier: keyid:1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:92:6e:ba:3f:62:9e:b8:d3:3e:1b:58:78:29:2f:cc:73:52: 66:b1:73:1c:9f:f7:b1:92:fb:fe:86:a8:b8:4a:12:07:9b:52: 98:7c:82:8f:e8:e3:67:de:15:18:b4:82:5a:44:d7:d9:a1:82: 89:3b:c1:79:c0:44:1d:8d:7c:de:5c:b8:88:e3:f2:80:6b:24: ee:ac:c6:12:df:22:01:5f:12:64:2a:64:1b:d9:04:3e:c5:45: bd:0c:a7:0e:69:d5:f2:38:91:22:03:c8:07:af:a2:0c:67:34: 8d:02:a0:6e:21:3c:17:57:e2:7f:a9:67:ff:f4:62:53:b3:ff: a1:a1:b3:18:36:10:99:22:ae:b5:43:26:25:aa:a7:f3:fe:ed: 21:98:dd:11:71:54:28:10:9e:eb:69:9e:99:7f:99:ac:99:fa: b8:cf:22:8e:9b:5b:00:92:a8:1b:dc:97:2c:c6:81:1f:21:87: cd:fe:fe:15:13:da:fd:fa:a2:df:1d:8b:ad:99:4f:dd:97:65: 08:02:fc:0d:8d:8f:ac:c3:f9:da:a0:a2:ce:58:7a:fd:19:52: 42:5f:90:a9:7a:d5:7c:10:10:05:4e:dc:cf:cc:56:55:6a:31: d4:2d:ec:ef:ea:87:3b:40:54:d6:52:2f:d2:d2:28:80:b4:57: 93:04:eb:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4QUYxMTAvBgNVBAUTKDFBNjkzNENBQjUyMTNEOEI0M0ZENTQzNTg5MzhERDFG MzFBMTY5MEEwHhcNMjUwOTE4MjIwOTQzWhcNMjUwOTI1MjIwOTQzWjAYMRYwFAYD VQQDEw02OGNjODMyNy1jY2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dGOSJJ5D8lsjw0U+I3H3esihSc88cNe+JgphzevYXcn446mHuaRMz34BHwe BtDP9xWRybXEOz+mK4jBWfaI+lneHdMuJPO/79WYTxMaO1T3xbobslbUvOX6EbN1 FbAUo0zjmWDEZy4MM0EeFwwuM4k8cNGSexfSnZi4y62E3nonPCUBNv8zRLJYJnkE GYf3Xsb/IOVq1mBOER16JrideV/PRuwEchvq0MU/PC0PIMTp0CG3crVzVJvR/cZs dzvsSk3k/7L8USFIusbJbh/VYWhi2t8jHLsMuKnDhrM/l6pgZzlppw8RpQ4k3YX5 UBh6+CBd+nAzhf07robdPTFvEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcxCkm3 6s2skjN+U8+iwSWxBolaMB8GA1UdIwQYMBaAFBppNMq1IT2LQ/1UNYk43R8xoWkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MThBRi9ENzkyRjQ3NDU2 QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZdERfVlExaVRqZEh6R2hh UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtazB5clVoUFl0RF9WUTFpVGpkSHpHaGFRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MThBRi9ENzkyRjQ3NDU2QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZ dERfVlExaVRqZEh6R2hhUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnkm66P2KeuNM+G1h4KS/Mc1JmsXMcn/exkvv+hqi4ShIHm1KYfIKP 6ONn3hUYtIJaRNfZoYKJO8F5wEQdjXzeXLiI4/KAayTurMYS3yIBXxJkKmQb2QQ+ xUW9DKcOadXyOJEiA8gHr6IMZzSNAqBuITwXV+J/qWf/9GJTs/+hobMYNhCZIq61 QyYlqqfz/u0hmN0RcVQoEJ7raZ6Zf5msmfq4zyKOm1sAkqgb3JcsxoEfIYfN/v4V E9r9+qLfHYutmU/dl2UIAvwNjY+sw/naoKLOWHr9GVJCX5CpetV8EBAFTtzPzFZV ajHULezv6oc7QFTWUi/S0iiAtFeTBOtb -----END CERTIFICATE-----Generated at Fri Sep 19 15:12:28 2025 by rpki-client