$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft File: Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft (raw, json) Hash identifier: Y7bN3iM8VCCtg47lvOTk5h3CgpR5O0TebhrDIwId6mc= Subject key identifier: 6D:ED:B9:8B:6A:BB:AC:D4:43:3E:10:7E:B1:B1:91:3B:78:44:EB:AA Authority key identifier: 1A:4D:31:4C:1F:D0:10:62:2E:87:49:1C:E4:82:7B:62:39:66:70:9C Certificate issuer: /CN=A917B4EE/serialNumber=1A4D314C1FD010622E87491CE4827B623966709C Certificate serial: 065A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft Manifest number: 0655 Signing time: Wed 20 Aug 2025 22:40:48 +0000 Manifest this update: Wed 20 Aug 2025 22:40:48 +0000 Manifest next update: Wed 27 Aug 2025 22:40:48 +0000 Files and hashes: 1: Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl (hash: 2JXJOmhpyV7M3vfzDT68vIV7hxImA+Lk29ZYxkZ6lnI=) 2: 851D827C977511EBA99DCE72C4F9AE02.roa (hash: hQ/sXLdGqM267Zz0nlBpIRPhMJ+xIknpNjyonr+GXWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 22:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1626 (0x65a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4EE, serialNumber=1A4D314C1FD010622E87491CE4827B623966709C Validity Not Before: Aug 20 22:40:48 2025 GMT Not After : Aug 27 22:40:48 2025 GMT Subject: CN=68a64ef0-f2fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:87:94:db:3b:03:2c:cf:15:84:01:f3:8b:16: f9:84:e9:71:18:7a:1c:5a:c8:12:3a:d5:99:f3:14: 33:93:33:97:56:d2:59:8c:2b:f4:c4:b2:58:ca:9a: db:56:64:e4:e9:e0:d5:37:39:7e:24:64:3c:85:c2: 93:3d:a0:1a:a0:36:f4:d3:8a:23:7c:8e:ed:ca:da: 20:f7:6b:94:dd:c4:82:95:30:6e:72:f1:c7:36:14: 77:55:12:41:c7:ec:26:92:89:47:52:0d:da:99:85: 22:44:79:28:3b:b7:39:f6:ff:ac:45:3e:ba:c5:35: 69:7b:73:6f:aa:56:26:f8:46:af:80:f8:46:b8:d1: cc:4d:0d:8f:9c:15:9d:b9:c2:32:a1:e8:df:b6:24: 96:ca:ee:7a:b1:75:a5:66:dd:ac:a9:93:45:54:ba: 10:d7:81:62:62:99:e3:fd:fc:2b:c9:5e:ab:74:af: 96:c7:7c:16:ff:cb:b6:22:93:fe:da:b2:35:bd:1a: 7c:09:51:85:65:66:ef:65:a0:ea:f7:95:cf:b4:ed: 47:15:f7:77:3c:9f:35:e6:32:81:e5:79:d1:f9:ae: c1:57:df:87:d8:85:fb:da:79:c1:a6:29:06:1e:5f: a9:c2:1d:6e:e3:d0:bb:f1:00:d3:ee:df:67:75:f5: 73:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:ED:B9:8B:6A:BB:AC:D4:43:3E:10:7E:B1:B1:91:3B:78:44:EB:AA X509v3 Authority Key Identifier: keyid:1A:4D:31:4C:1F:D0:10:62:2E:87:49:1C:E4:82:7B:62:39:66:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:fb:42:ba:31:df:64:71:d4:4f:af:15:7d:73:55:58:ef:37: 54:70:fe:b7:11:e2:eb:d5:95:ff:48:80:e4:63:f0:86:95:b8: 6d:bc:44:96:16:1b:b8:66:20:01:ac:36:43:5e:ef:37:5a:66: b0:83:66:79:11:37:91:13:7e:25:6d:52:cf:26:ba:d9:79:49: 1d:2b:2c:93:73:10:a8:d8:f0:92:c8:cd:7f:6a:09:46:b5:e2: c8:5f:6c:ae:54:38:09:ec:4c:02:1f:a3:4a:46:c4:70:92:e5: e8:8d:35:ed:6a:0c:11:56:37:86:ff:6f:b0:73:f6:53:98:bf: e1:5b:03:88:01:98:20:e3:27:9a:c2:17:ce:85:94:56:76:e3: 8b:23:b9:0e:76:4f:c9:52:38:12:78:c0:27:17:0b:fa:1a:32: 19:f3:eb:47:d8:e2:9a:6a:c7:55:4d:c5:7f:9f:c3:88:43:d1: 1f:9b:b2:20:eb:70:a4:5b:a5:c6:b8:d8:01:d9:46:ad:ad:d5: 74:77:b0:1f:af:41:84:fc:1b:f9:16:ec:ce:1c:11:8a:1c:a7: 1e:9d:9d:c5:3c:04:db:e7:02:17:b0:3c:14:8e:b6:b5:6b:33: 26:29:8f:3c:56:4f:51:fe:fa:94:28:b8:8f:5e:50:c5:69:52: 90:6f:53:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0RUUxMTAvBgNVBAUTKDFBNEQzMTRDMUZEMDEwNjIyRTg3NDkxQ0U0ODI3QjYy Mzk2NjcwOUMwHhcNMjUwODIwMjI0MDQ4WhcNMjUwODI3MjI0MDQ4WjAYMRYwFAYD VQQDEw02OGE2NGVmMC1mMmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YeU2zsDLM8VhAHzixb5hOlxGHocWsgSOtWZ8xQzkzOXVtJZjCv0xLJYyprb VmTk6eDVNzl+JGQ8hcKTPaAaoDb004ojfI7tytog92uU3cSClTBucvHHNhR3VRJB x+wmkolHUg3amYUiRHkoO7c59v+sRT66xTVpe3NvqlYm+EavgPhGuNHMTQ2PnBWd ucIyoejftiSWyu56sXWlZt2sqZNFVLoQ14FiYpnj/fwryV6rdK+Wx3wW/8u2IpP+ 2rI1vRp8CVGFZWbvZaDq95XPtO1HFfd3PJ815jKB5XnR+a7BV9+H2IX72nnBpikG Hl+pwh1u49C78QDT7t9ndfVz4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3tuYtq u6zUQz4QfrGxkTt4ROuqMB8GA1UdIwQYMBaAFBpNMUwf0BBiLodJHOSCe2I5ZnCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRFRS8zQTcyN0M3RTk3 NzQxMUVCQUU4M0ZENzFDNEY5QUUwMi9HazB4VEJfUUVHSXVoMGtjNUlKN1lqbG1j SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0drMHhUQl9RRUdJdWgwa2M1SUo3WWpsbWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRFRS8zQTcyN0M3RTk3NzQxMUVCQUU4M0ZENzFDNEY5QUUwMi9HazB4VEJfUUVH SXVoMGtjNUlKN1lqbG1jSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE+0K6Md9kcdRPrxV9c1VY7zdUcP63EeLr1ZX/SIDkY/CGlbhtvESW Fhu4ZiABrDZDXu83Wmawg2Z5ETeRE34lbVLPJrrZeUkdKyyTcxCo2PCSyM1/aglG teLIX2yuVDgJ7EwCH6NKRsRwkuXojTXtagwRVjeG/2+wc/ZTmL/hWwOIAZgg4yea whfOhZRWduOLI7kOdk/JUjgSeMAnFwv6GjIZ8+tH2OKaasdVTcV/n8OIQ9Efm7Ig 63CkW6XGuNgB2UatrdV0d7Afr0GE/Bv5FuzOHBGKHKcenZ3FPATb5wIXsDwUjra1 azMmKY88Vk9R/vqUKLiPXlDFaVKQb1P2 -----END CERTIFICATE-----Generated at Fri Aug 22 16:16:42 2025 by rpki-client