$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft File: -gRcYwK4c-iDZfqaAhSZtPPFhog.mft (raw, json) Hash identifier: p1p0t0HDkEEeOtkibU29vOCRAitpodY5PoqYAgAkKlI= Subject key identifier: 8F:3D:E6:62:DC:D0:4E:FC:AA:99:30:E5:B2:A4:AE:92:7C:AB:D3:C1 Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 0579 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft Manifest number: 0567 Signing time: Thu 04 Sep 2025 23:41:32 +0000 Manifest this update: Thu 04 Sep 2025 23:41:31 +0000 Manifest next update: Thu 11 Sep 2025 23:41:31 +0000 Files and hashes: 1: -gRcYwK4c-iDZfqaAhSZtPPFhog.crl (hash: ERijfdNU3FHs8wmaKwT+SiyHcswyF8GnTchjkAMhhxA=) 2: 52A1A77A6ECF11F0B2785815C4F9AE02.roa (hash: ZDRfk70st2kL6l3vbu2GItPWm8/EuvkzaT+2ep7EeqM=) 3: 533744C46ECF11F0B2785815C4F9AE02.roa (hash: uUR+Mj6HGg21UkWJm4BYFdMGN66Z7qsc9O4hlsYytz4=) 4: 14A59A26E15B11ECA05C9236C4F9AE02.roa (hash: Qt+ZMJoprDK28LqGcHvKCLmc3Omlf+abplideksk7Gc=) 5: D62399042D1E11EE8C614E3EC4F9AE02.roa (hash: dy7HlTozJjIKYVnOC7Ac5E0oRz65i8VQkjJrYKePISw=) 6: 36C4FAAAA9FC11EEBEF3E64AC4F9AE02.roa (hash: RH9GugeUqxFAlpVwNYGHYX1wxhyc5gJGTmNYoQjg2Ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3, serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: Sep 4 23:41:31 2025 GMT Not After : Sep 11 23:41:31 2025 GMT Subject: CN=68ba23ab-f833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7a:3d:81:5f:80:53:25:5c:81:7a:0c:dd:62: e7:6b:e0:bf:5c:aa:88:22:57:1e:5a:22:63:b2:cc: c8:43:f0:ed:9a:c5:2c:64:cb:32:5c:c3:f5:7e:a0: e5:2a:62:92:25:61:2a:db:61:f8:27:d2:d9:c6:31: 18:05:0c:08:6b:6a:e6:8f:1d:32:01:45:32:87:d9: 62:7c:fc:61:12:96:5a:bc:12:e4:15:4c:e6:f2:02: 7e:43:cf:de:8b:87:0b:b7:c1:58:ba:46:0c:a2:18: 79:a6:2c:91:4e:8a:ac:8c:4a:f3:dc:1f:1a:26:93: 3c:92:58:ec:4a:88:37:1a:d0:2c:6b:c8:09:99:05: 91:3f:ba:e0:5f:f2:b6:21:76:7b:69:db:70:6c:da: 9b:62:27:b3:37:12:ca:a3:64:7c:11:50:7c:f2:b5: c2:8d:9c:66:22:a6:20:6f:82:a1:a5:60:90:d7:a0: 4f:ac:9b:c2:6d:e5:0b:9b:3a:00:23:68:4d:ff:b1: f7:aa:eb:06:50:88:01:b6:e4:67:d6:85:05:a5:38: 97:1d:6b:11:3a:99:64:a8:ce:4b:1e:87:44:72:19: 30:f8:26:28:42:33:ad:30:8f:98:60:34:cb:36:24: 62:26:0c:24:14:94:f7:68:b4:01:f8:fb:f7:69:8b: 54:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3D:E6:62:DC:D0:4E:FC:AA:99:30:E5:B2:A4:AE:92:7C:AB:D3:C1 X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:85:81:b3:36:83:54:65:6c:74:ed:bc:5d:23:5d:bc:34:0a: 87:0b:4b:cf:51:c3:9d:c0:84:cc:0d:d5:f4:e0:27:23:0e:28: 17:cd:2c:fb:f8:cf:50:8e:c0:c4:d9:99:26:ab:dc:53:89:dc: 34:aa:99:64:b2:32:22:18:e2:ad:d6:2d:1b:7e:03:1a:43:48: b7:f7:1c:75:66:ca:8f:f2:f0:ba:32:13:7d:54:7d:14:81:81: 47:42:dd:45:2a:ff:10:4c:95:aa:28:b4:13:a4:0f:a4:c4:8e: 3e:29:c6:af:d5:8d:5d:ae:09:9e:13:a1:dc:ca:e1:75:60:4c: 7d:01:3a:77:8c:56:f6:5e:4b:4b:46:af:8e:8b:71:8d:e5:0f: 1a:22:34:4c:9a:42:5a:53:df:90:99:0e:58:56:10:6c:88:41: bc:c6:58:08:3f:51:b7:55:2d:2e:39:60:4e:01:a7:65:f2:1f: 60:51:37:f4:ee:a7:34:1f:f2:aa:f4:48:e7:22:9d:cb:15:af: e4:81:47:c9:91:a4:84:11:36:48:7a:60:4c:16:53:05:46:e6: 13:b0:72:ae:94:89:7d:7a:42:96:12:2c:a9:34:8a:5e:e1:85: 7e:2f:89:18:a7:15:70:02:ee:6c:5e:5c:34:65:ef:68:0a:20: f7:04:44:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjUwOTA0MjM0MTMxWhcNMjUwOTExMjM0MTMxWjAYMRYwFAYD VQQDEw02OGJhMjNhYi1mODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApno9gV+AUyVcgXoM3WLna+C/XKqIIlceWiJjsszIQ/DtmsUsZMsyXMP1fqDl KmKSJWEq22H4J9LZxjEYBQwIa2rmjx0yAUUyh9lifPxhEpZavBLkFUzm8gJ+Q8/e i4cLt8FYukYMohh5piyRToqsjErz3B8aJpM8kljsSog3GtAsa8gJmQWRP7rgX/K2 IXZ7adtwbNqbYiezNxLKo2R8EVB88rXCjZxmIqYgb4KhpWCQ16BPrJvCbeULmzoA I2hN/7H3qusGUIgBtuRn1oUFpTiXHWsROplkqM5LHodEchkw+CYoQjOtMI+YYDTL NiRiJgwkFJT3aLQB+Pv3aYtUywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI895mLc 0E78qpkw5bKkrpJ8q9PBMB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTNEMy82RUMwRTM2ODAwMEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMt aURaZnFhQWhTWnRQUEZob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDhYGzNoNUZWx07bxdI128NAqHC0vPUcOdwITMDdX04CcjDigXzSz7 +M9QjsDE2Zkmq9xTidw0qplksjIiGOKt1i0bfgMaQ0i39xx1ZsqP8vC6MhN9VH0U gYFHQt1FKv8QTJWqKLQTpA+kxI4+Kcav1Y1drgmeE6HcyuF1YEx9ATp3jFb2XktL Rq+Oi3GN5Q8aIjRMmkJaU9+QmQ5YVhBsiEG8xlgIP1G3VS0uOWBOAadl8h9gUTf0 7qc0H/Kq9EjnIp3LFa/kgUfJkaSEETZIemBMFlMFRuYTsHKulIl9ekKWEiypNIpe 4YV+L4kYpxVwAu5sXlw0Ze9oCiD3BEQa -----END CERTIFICATE-----Generated at Sat Sep 6 16:31:45 2025 by rpki-client