$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: 0+bCnx0mPlesT69Ej6Okt2e36Qbr3WIp3Zw7rK/Ohw8= Subject key identifier: 30:AE:9E:98:90:EA:CB:5C:19:61:8F:AF:44:90:4A:5F:CC:95:3E:21 Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 02A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 02A2 Signing time: Tue 09 Sep 2025 01:39:59 +0000 Manifest this update: Tue 09 Sep 2025 01:39:59 +0000 Manifest next update: Tue 16 Sep 2025 01:39:58 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: lW/pTspfffYDkRkdEFsmg4a0UK08Elne8ap7zKMnunA=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: dtuYeScxI0cvK8sz9E/Cl0+96zsD1MptOKpsIJKXrl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E, serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: Sep 9 01:39:59 2025 GMT Not After : Sep 16 01:39:58 2025 GMT Subject: CN=68bf856f-8fc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f0:d8:de:b1:88:06:cd:a7:96:4d:63:82:f6: c1:a4:44:b9:26:ed:31:e8:eb:17:86:6d:2a:0d:d8: bd:40:e2:a6:8f:51:34:c2:b5:5f:2a:4c:03:db:8a: 13:a9:6a:a9:13:b0:75:91:04:53:cb:92:64:f1:83: 79:45:7c:32:7e:f1:ec:86:73:e0:e2:7c:45:24:79: 05:df:f8:20:d2:59:85:b7:d4:ed:a5:f0:09:f0:0e: 4b:54:97:db:9d:6f:9c:bf:f3:87:f8:88:35:c6:0b: 40:d2:fa:56:bd:96:3d:10:5d:d9:5b:8f:a6:93:91: b8:c6:66:cd:26:0a:be:96:01:61:af:17:b6:d2:c8: da:10:f1:0d:bb:64:ad:04:ed:e5:bc:46:8f:1f:df: 83:d6:d4:3f:20:d6:45:d9:f5:53:b0:69:5e:fa:73: 0e:c2:9a:48:4c:22:58:8b:d9:ec:db:03:5c:20:e4: 4d:96:3a:ef:da:b9:f1:d5:c2:f5:c9:a1:fd:41:21: c3:3b:e1:ee:f3:95:c6:a6:fa:30:65:b6:b5:84:ef: b1:eb:89:6b:ee:3b:fd:27:a4:af:e6:fe:fb:c5:8b: 47:b9:f4:9d:30:2e:9a:15:8c:bb:29:35:df:31:f3: 51:5a:2a:81:f5:cc:25:3c:cb:fb:20:45:e7:e0:2c: 21:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:AE:9E:98:90:EA:CB:5C:19:61:8F:AF:44:90:4A:5F:CC:95:3E:21 X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:1d:d3:be:15:c6:70:d0:3e:5d:6b:fe:56:f3:96:75:e6:9b: 35:6b:17:4e:70:87:1f:14:46:af:d9:b7:c3:cb:6e:2c:cc:65: a4:68:b5:23:5d:4d:00:e9:8a:ac:d2:02:36:fa:dd:51:ef:73: be:e2:9f:3f:24:9b:4f:12:9c:cf:7c:a6:4f:76:59:2f:38:3b: a7:ec:69:9f:f4:97:bc:d3:d1:7f:fe:e9:f9:c1:a3:46:21:3d: 2c:96:f3:af:0a:be:11:38:4f:95:6e:d7:8c:5c:66:dd:75:20: 3d:0f:df:13:c7:46:ff:c5:db:e8:8b:6a:ce:3a:ac:57:94:2e: c0:d4:44:9c:6a:34:c7:02:7e:ae:4d:dd:05:9f:e1:c2:c5:40: a8:28:0a:c3:67:d9:2e:13:ec:39:7c:c7:34:df:4a:23:7c:30: 8d:41:24:74:12:28:f0:e5:77:45:a5:b4:88:b1:34:8d:c4:8d: b5:8c:f0:e2:fc:0a:b7:bd:83:ed:b4:34:40:48:df:85:58:b2: 1e:9b:a5:01:e9:7c:a5:b5:b7:df:5d:aa:48:8b:72:b1:98:f0: cd:7d:60:93:39:fe:6a:29:ed:1f:df:bb:f1:46:17:fd:09:ee: 3e:e4:e8:67:1a:99:8e:a4:10:00:c1:cd:00:1f:32:76:81:9f: b6:f7:ab:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjUwOTA5MDEzOTU5WhcNMjUwOTE2MDEzOTU4WjAYMRYwFAYD VQQDEw02OGJmODU2Zi04ZmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5vDY3rGIBs2nlk1jgvbBpES5Ju0x6OsXhm0qDdi9QOKmj1E0wrVfKkwD24oT qWqpE7B1kQRTy5Jk8YN5RXwyfvHshnPg4nxFJHkF3/gg0lmFt9TtpfAJ8A5LVJfb nW+cv/OH+Ig1xgtA0vpWvZY9EF3ZW4+mk5G4xmbNJgq+lgFhrxe20sjaEPENu2St BO3lvEaPH9+D1tQ/INZF2fVTsGle+nMOwppITCJYi9ns2wNcIORNljrv2rnx1cL1 yaH9QSHDO+Hu85XGpvowZba1hO+x64lr7jv9J6Sv5v77xYtHufSdMC6aFYy7KTXf MfNRWiqB9cwlPMv7IEXn4CwhDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCunpiQ 6stcGWGPr0SQSl/MlT4hMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMHdO+FcZw0D5da/5W85Z15ps1axdOcIcfFEav2bfDy24szGWkaLUj XU0A6Yqs0gI2+t1R73O+4p8/JJtPEpzPfKZPdlkvODun7Gmf9Je809F//un5waNG IT0slvOvCr4ROE+VbteMXGbddSA9D98Tx0b/xdvoi2rOOqxXlC7A1EScajTHAn6u Td0Fn+HCxUCoKArDZ9kuE+w5fMc030ojfDCNQSR0Eijw5XdFpbSIsTSNxI21jPDi /Aq3vYPttDRASN+FWLIem6UB6XyltbffXapIi3KxmPDNfWCTOf5qKe0f37vxRhf9 Ce4+5OhnGpmOpBAAwc0AHzJ2gZ+296uN -----END CERTIFICATE-----Generated at Tue Sep 9 13:34:00 2025 by rpki-client