$ rpki-client -vvf rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft File: gprYV1claHsfCkxV-UIq8zsA_LE.mft (raw, json) Hash identifier: CCB1z1oOOcgk7SQk11Dgr02jxTPp5mhaYzB27VgS9Tg= Subject key identifier: C7:B6:94:6B:0F:33:9D:4D:1F:C3:93:ED:B5:C4:95:29:6E:3E:35:89 Authority key identifier: 82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 Certificate issuer: /CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft Manifest number: CA Signing time: Tue 09 Sep 2025 05:51:07 +0000 Manifest this update: Tue 09 Sep 2025 05:51:07 +0000 Manifest next update: Tue 16 Sep 2025 05:51:07 +0000 Files and hashes: 1: gprYV1claHsfCkxV-UIq8zsA_LE.crl (hash: yvyVRnZ4jBKJpJ+S0OdPKlZ2MjOZ4bm4fsVPaGLo9ZA=) 2: 833934745B9E11EFA7D10E5BC4F9AE02.roa (hash: Z7ymI4gwgufBDRVS5UuVZ13UBlK2Svt1pgBpOJn+u0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A511, serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Validity Not Before: Sep 9 05:51:07 2025 GMT Not After : Sep 16 05:51:07 2025 GMT Subject: CN=68bfc04b-735e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bc:eb:ac:fd:04:2c:8c:7f:98:83:b4:ab:52: f6:32:85:5d:92:c7:67:41:be:4c:e4:29:3c:a6:f1: 6c:cf:47:98:fb:21:9d:a1:bd:0f:da:95:9c:45:b1: 30:4e:f5:e0:4f:95:1c:86:91:ba:c4:90:23:3e:89: 58:da:ce:f4:90:21:1f:70:3d:5a:a4:73:b8:43:f6: 87:06:d2:a7:d5:6d:80:72:d0:c9:b4:42:b5:a4:be: 3f:8c:6b:75:59:98:9a:5d:d9:24:d5:a2:d4:58:bb: 9a:bf:ad:81:b2:4d:2a:fc:ce:cf:a5:1d:a0:75:d4: c0:9c:0e:11:dc:cf:a4:78:18:5a:5c:f5:9b:6a:3d: 3c:ac:57:a1:be:52:15:59:d0:d2:19:b1:33:85:4e: 42:d8:75:6c:2f:23:1a:39:f4:40:05:92:d2:67:c0: af:d2:5b:15:2e:36:07:f7:40:42:cd:79:21:45:77: c6:15:b6:0e:36:df:9f:e7:81:8a:ed:fe:43:ed:99: 85:37:84:89:65:36:40:77:4f:8d:ed:b1:e3:a8:0a: f1:b9:99:26:c5:09:80:46:10:d9:21:35:60:e8:9e: 79:19:9f:6c:b0:68:86:84:27:ad:bb:50:2a:1c:72: 56:91:e1:30:e0:0d:7b:ec:54:a2:16:02:05:05:cc: a9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B6:94:6B:0F:33:9D:4D:1F:C3:93:ED:B5:C4:95:29:6E:3E:35:89 X509v3 Authority Key Identifier: keyid:82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c6:f2:ad:5d:96:fb:1e:cb:8c:b4:c7:c7:ff:1c:35:61:1f: fa:b7:b8:d8:62:ab:ae:d0:99:dd:d1:87:f9:c9:82:f7:b9:40: 2d:8f:b7:2b:84:e4:58:a1:e8:17:6c:68:f9:60:0e:35:0b:8e: b3:69:f4:2b:8d:5b:29:da:f3:6b:86:08:a4:30:c3:0b:79:c4: 86:8f:32:95:1b:14:6e:f7:c1:3a:40:51:e1:16:6f:b7:56:99: 59:59:9d:95:ce:e2:e9:00:59:31:d5:68:b9:d2:04:6e:8b:c8: ef:8b:67:48:ff:27:ef:76:66:f4:11:b5:1d:6e:e1:9d:c5:f4: 58:c1:11:ad:b0:76:13:ed:55:7d:11:07:6d:27:c3:ed:9e:6b: 73:a6:57:f2:53:5b:59:ec:89:e3:9b:81:11:64:d5:0c:18:03: 64:36:0f:6b:a8:1f:6f:12:5b:99:79:a8:f9:aa:9f:39:78:88: 1d:9b:03:60:10:c5:02:38:47:6c:98:ff:fc:fb:0b:46:f8:08: 40:62:1f:0c:15:05:c0:87:b5:2d:d5:d3:85:70:c6:a0:00:9b: 5f:83:9b:7d:c4:1b:f1:f6:83:e1:1b:82:2d:b4:c0:b1:62:ea: e7:f1:0a:2d:a7:67:f5:ad:b9:a4:2f:44:25:93:3b:30:a5:91: 87:fc:34:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1MTExMTAvBgNVBAUTKDgyOUFEODU3NTcyNTY4N0IxRjBBNEM1NUY5NDIyQUYz M0IwMEZDQjEwHhcNMjUwOTA5MDU1MTA3WhcNMjUwOTE2MDU1MTA3WjAYMRYwFAYD VQQDEw02OGJmYzA0Yi03MzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrzrrP0ELIx/mIO0q1L2MoVdksdnQb5M5Ck8pvFsz0eY+yGdob0P2pWcRbEw TvXgT5UchpG6xJAjPolY2s70kCEfcD1apHO4Q/aHBtKn1W2ActDJtEK1pL4/jGt1 WZiaXdkk1aLUWLuav62Bsk0q/M7PpR2gddTAnA4R3M+keBhaXPWbaj08rFehvlIV WdDSGbEzhU5C2HVsLyMaOfRABZLSZ8Cv0lsVLjYH90BCzXkhRXfGFbYONt+f54GK 7f5D7ZmFN4SJZTZAd0+N7bHjqArxuZkmxQmARhDZITVg6J55GZ9ssGiGhCetu1Aq HHJWkeEw4A177FSiFgIFBcypswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMe2lGsP M51NH8OT7bXElSluPjWJMB8GA1UdIwQYMBaAFIKa2FdXJWh7HwpMVflCKvM7APyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTUxMS8yRENGRjYxMjVC OUUxMUVGOTQ4NDYzNUFDNEY5QUUwMi9ncHJZVjFjbGFIc2ZDa3hWLVVJcTh6c0Ff TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dwcllWMWNsYUhzZkNreFYtVUlxOHpzQV9MRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTUxMS8yRENGRjYxMjVCOUUxMUVGOTQ4NDYzNUFDNEY5QUUwMi9ncHJZVjFjbGFI c2ZDa3hWLVVJcTh6c0FfTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0xvKtXZb7HsuMtMfH/xw1YR/6t7jYYquu0Jnd0Yf5yYL3uUAtj7cr hORYoegXbGj5YA41C46zafQrjVsp2vNrhgikMMMLecSGjzKVGxRu98E6QFHhFm+3 VplZWZ2VzuLpAFkx1Wi50gRui8jvi2dI/yfvdmb0EbUdbuGdxfRYwRGtsHYT7VV9 EQdtJ8PtnmtzplfyU1tZ7Injm4ERZNUMGANkNg9rqB9vEluZeaj5qp85eIgdmwNg EMUCOEdsmP/8+wtG+AhAYh8MFQXAh7Ut1dOFcMagAJtfg5t9xBvx9oPhG4IttMCx Yurn8Qotp2f1rbmkL0QlkzswpZGH/DT0 -----END CERTIFICATE-----Generated at Tue Sep 9 14:07:23 2025 by rpki-client