$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft File: gJ7_H3gZuBdR8XerWv7YK8wypWk.mft (raw, json) Hash identifier: i2BBvp5brNkmM+HRKWABF88klpecHFpJA0L/qq52nY8= Subject key identifier: 70:F3:5E:8F:23:4E:A2:6F:26:32:65:F0:86:F1:88:CB:11:AD:58:02 Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft Manifest number: 0644 Signing time: Thu 04 Sep 2025 22:56:55 +0000 Manifest this update: Thu 04 Sep 2025 22:56:54 +0000 Manifest next update: Thu 11 Sep 2025 22:56:54 +0000 Files and hashes: 1: gJ7_H3gZuBdR8XerWv7YK8wypWk.crl (hash: zfxL+WU6xFvNYIJUbS8X9VYWp34COXSlQEPcg80Q24A=) 2: 687D7178B85D11EBB2E17F26C4F9AE02.roa (hash: IMdjByBIYJm1pushgtHVRf7baWnF2aGGxcZRsZb6Kqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028, serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Validity Not Before: Sep 4 22:56:54 2025 GMT Not After : Sep 11 22:56:54 2025 GMT Subject: CN=68ba1936-69d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b0:0d:cc:2c:ac:40:75:e4:8d:51:56:2f:00: c0:aa:67:57:92:64:a3:f4:10:a3:d7:b1:cc:11:9e: ba:cb:77:51:41:66:a3:ac:3c:d2:35:3c:bd:08:52: f4:c3:17:34:f8:c1:35:87:a0:07:bf:1b:02:a7:cd: 74:ef:a0:9c:93:af:64:85:13:7b:a1:31:b4:eb:e5: 1f:01:e1:0e:5d:89:79:8d:6c:6a:8b:06:d1:da:18: b1:22:0d:0f:08:ea:07:fb:b5:91:16:31:d3:b9:ed: 8a:08:a0:b3:59:ed:71:2c:30:fd:a8:6e:ba:5b:d9: 90:d3:cf:85:e6:3c:6f:11:8c:e0:1d:88:48:83:ef: 13:e6:22:b3:d6:f3:1b:f8:0e:03:7b:53:21:c8:70: 6d:e1:67:57:49:29:a1:2b:c3:0c:49:1c:e7:01:0f: 8d:86:d5:ec:37:af:bb:17:40:3a:94:0d:72:f9:52: d0:5a:e0:47:91:91:ca:ba:df:de:af:f9:2e:bc:53: 0c:c5:5c:7f:fe:1e:62:dd:13:10:4f:aa:b0:cf:28: fc:b9:71:d3:11:c8:cc:9f:51:ed:41:a3:7f:92:73: ae:97:d7:37:42:a7:f1:3d:17:0d:f1:05:42:f3:3b: a9:48:02:58:77:00:77:2f:4a:92:fe:c8:66:f3:87: 47:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F3:5E:8F:23:4E:A2:6F:26:32:65:F0:86:F1:88:CB:11:AD:58:02 X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:95:29:f5:06:82:25:bd:e1:f0:e1:4b:3d:d4:10:9b:da:64: c9:b0:20:c0:d1:8f:51:05:f2:14:a5:2d:02:1a:41:df:25:0b: 95:a4:8d:b8:b6:7c:29:49:35:94:01:10:5a:eb:2a:c9:86:30: 8b:08:2a:fe:a0:e5:c4:11:76:98:9c:0b:52:5d:50:70:b5:83: 44:db:ad:d6:8a:f5:85:6a:40:60:18:a6:5d:83:ba:87:97:bb: a1:f6:04:d9:9c:de:d0:21:a4:12:1b:cd:e8:2f:e4:f9:bc:0a: 4d:9d:52:08:9a:0b:a5:9a:81:e3:8d:10:a3:33:e3:85:43:f5: f3:22:51:ca:0d:d1:22:63:92:08:b1:da:77:9b:ab:76:76:ba: 58:96:4d:db:6f:fd:a4:9d:fb:2c:d5:a1:78:64:82:b4:a8:92: 6a:f6:29:2a:b5:5b:6a:12:fb:28:fa:0a:2e:d8:97:23:ca:50: b8:1e:c8:92:fc:bf:05:ca:28:f8:ea:ab:8d:3c:5d:71:d7:75: 19:da:df:23:cc:a9:36:e4:73:39:21:4b:86:05:6c:64:df:ba: 77:0e:4e:f1:c6:48:8a:bb:6e:68:bb:4e:2d:d5:9f:ae:cc:a9: 4c:54:40:e0:17:cd:18:92:c1:bd:66:22:17:af:d2:47:c7:b1: 07:83:1e:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjUwOTA0MjI1NjU0WhcNMjUwOTExMjI1NjU0WjAYMRYwFAYD VQQDEw02OGJhMTkzNi02OWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbANzCysQHXkjVFWLwDAqmdXkmSj9BCj17HMEZ66y3dRQWajrDzSNTy9CFL0 wxc0+ME1h6AHvxsCp81076Cck69khRN7oTG06+UfAeEOXYl5jWxqiwbR2hixIg0P COoH+7WRFjHTue2KCKCzWe1xLDD9qG66W9mQ08+F5jxvEYzgHYhIg+8T5iKz1vMb +A4De1MhyHBt4WdXSSmhK8MMSRznAQ+NhtXsN6+7F0A6lA1y+VLQWuBHkZHKut/e r/kuvFMMxVx//h5i3RMQT6qwzyj8uXHTEcjMn1HtQaN/knOul9c3QqfxPRcN8QVC 8zupSAJYdwB3L0qS/shm84dH0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDzXo8j TqJvJjJl8IbxiMsRrVgCMB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyOC84QTRBREVFNEExMUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVC ZFI4WGVyV3Y3WUs4d3lwV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnlSn1BoIlveHw4Us91BCb2mTJsCDA0Y9RBfIUpS0CGkHfJQuVpI24 tnwpSTWUARBa6yrJhjCLCCr+oOXEEXaYnAtSXVBwtYNE263WivWFakBgGKZdg7qH l7uh9gTZnN7QIaQSG83oL+T5vApNnVIImgulmoHjjRCjM+OFQ/XzIlHKDdEiY5II sdp3m6t2drpYlk3bb/2knfss1aF4ZIK0qJJq9ikqtVtqEvso+gou2JcjylC4HsiS /L8Fyij46quNPF1x13UZ2t8jzKk25HM5IUuGBWxk37p3Dk7xxkiKu25ou04t1Z+u zKlMVEDgF80YksG9ZiIXr9JHx7EHgx69 -----END CERTIFICATE-----Generated at Sat Sep 6 16:06:11 2025 by rpki-client