$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft File: gH5oiqUL0-OL4xtdTE4GCATrFdw.mft (raw, json) Hash identifier: TpoOnkX5z6AtrvGX31OzaXSgdErpjpj+OJttsd2tJ8s= Subject key identifier: F9:31:06:8E:00:8E:91:C3:FC:EE:86:AE:E8:BA:7F:98:19:D9:6D:42 Authority key identifier: 80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC Certificate issuer: /CN=A918F0E2/serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft Manifest number: 99 Signing time: Wed 03 Sep 2025 07:02:20 +0000 Manifest this update: Wed 03 Sep 2025 07:02:20 +0000 Manifest next update: Wed 10 Sep 2025 07:02:20 +0000 Files and hashes: 1: gH5oiqUL0-OL4xtdTE4GCATrFdw.crl (hash: snQ6IHu1kTock3lNIIaA19jAvijbC45760xYEO8CuQU=) 2: EF63DB0EA26B11EF8F077C3FC4F9AE02.roa (hash: etgfr2FMXbKAdL4ONMDhHdEqlj7eq8Os+Vy9Aq6JfHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 07:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0E2, serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Validity Not Before: Sep 3 07:02:20 2025 GMT Not After : Sep 10 07:02:20 2025 GMT Subject: CN=68b7e7fc-ef17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7d:1b:3a:83:cf:7b:1c:e6:03:2b:4e:3b:e9: 99:6d:4a:b4:7c:a5:15:dc:d5:1c:95:e1:31:6b:9c: af:22:9f:76:d5:71:86:a4:d3:fd:53:90:bb:ee:bf: d4:62:d8:38:5b:cc:b8:f7:ba:6a:65:80:f4:9a:32: bb:d9:7c:d9:99:dc:88:f6:84:57:a4:3a:14:8e:be: 67:50:c4:25:dd:ab:5a:78:9a:39:f0:5e:b8:e1:5b: 9f:04:1a:7e:cf:30:e9:9b:28:9e:bf:98:79:63:7f: 44:c0:35:e9:bc:0d:ee:99:2e:79:5b:a3:5d:af:5f: 66:04:01:77:61:6c:40:d2:96:ed:be:8a:e3:38:ef: cd:ce:83:e8:20:f9:c5:e3:8d:ce:09:16:8c:18:8d: dd:54:fc:58:ef:d7:ce:d7:64:15:97:39:ae:ba:73: 7d:e1:16:c3:78:3c:d5:3c:5f:c9:30:8b:0c:2e:0d: 22:03:13:59:84:24:57:b7:0c:dc:69:58:78:81:09: 16:89:2d:d2:c7:e7:54:4b:57:3d:50:06:84:84:25: 52:37:a1:33:3b:a1:6d:50:ed:e4:fd:75:1e:54:a1: 27:0f:c8:1a:5f:a3:37:61:d5:7e:a9:b3:33:37:5a: a7:bc:b7:43:10:49:e3:9d:6e:26:90:9d:da:d4:50: fe:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:31:06:8E:00:8E:91:C3:FC:EE:86:AE:E8:BA:7F:98:19:D9:6D:42 X509v3 Authority Key Identifier: keyid:80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:23:6b:6e:c9:40:81:de:c5:22:4b:87:91:59:ea:87:0a:6d: 68:18:e9:b0:a5:68:9e:f5:ab:5f:55:41:a7:a6:d2:81:a4:64: cb:c8:c1:bb:f6:7d:f7:69:80:da:fc:84:af:c3:2b:0f:2b:1c: 1a:f8:d3:87:26:e0:9b:e5:68:ac:b2:7a:1a:35:90:3c:34:68: fe:08:f0:9f:23:8d:ba:33:c7:9f:8b:b0:ad:f2:28:0e:df:b9: e5:81:b6:c1:08:5e:25:9e:47:91:d3:f1:41:62:ca:5a:f3:a9: 0b:57:46:d3:dc:1f:8d:f9:8f:30:44:1e:3f:e5:0b:82:a3:d7: da:90:09:8a:1a:97:d9:80:59:96:d0:24:4e:56:e8:da:f6:39: 38:01:e3:07:e7:69:16:c7:ab:41:f3:18:9f:e4:f3:d7:75:65: 39:9a:7f:98:d4:8b:21:17:f9:28:50:81:01:bc:26:2d:47:88: 02:06:c9:d1:b3:2c:64:18:b5:80:a5:92:c8:dc:dc:89:fb:74: f9:f1:e5:de:9d:da:4b:23:c9:af:e5:8e:5d:2e:2d:18:ab:3a: 03:5e:ce:4c:e8:79:84:91:ae:79:9a:b3:ba:ee:83:fd:82:dc: f1:ef:75:ad:cf:43:b0:c9:d2:ea:cb:52:c3:58:03:51:33:4f: 84:34:d3:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwRTIxMTAvBgNVBAUTKDgwN0U2ODhBQTUwQkQzRTM4QkUzMUI1RDRDNEUwNjA4 MDRFQjE1REMwHhcNMjUwOTAzMDcwMjIwWhcNMjUwOTEwMDcwMjIwWjAYMRYwFAYD VQQDEw02OGI3ZTdmYy1lZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuH0bOoPPexzmAytOO+mZbUq0fKUV3NUcleExa5yvIp921XGGpNP9U5C77r/U Ytg4W8y497pqZYD0mjK72XzZmdyI9oRXpDoUjr5nUMQl3ataeJo58F644VufBBp+ zzDpmyiev5h5Y39EwDXpvA3umS55W6Ndr19mBAF3YWxA0pbtvorjOO/NzoPoIPnF 443OCRaMGI3dVPxY79fO12QVlzmuunN94RbDeDzVPF/JMIsMLg0iAxNZhCRXtwzc aVh4gQkWiS3Sx+dUS1c9UAaEhCVSN6EzO6FtUO3k/XUeVKEnD8gaX6M3YdV+qbMz N1qnvLdDEEnjnW4mkJ3a1FD+0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkxBo4A jpHD/O6Grui6f5gZ2W1CMB8GA1UdIwQYMBaAFIB+aIqlC9Pji+MbXUxOBggE6xXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjBFMi8yQjRCQjQyRUEy NUUxMUVGQTM4RDkzNzVDNEY5QUUwMi9nSDVvaXFVTDAtT0w0eHRkVEU0R0NBVHJG ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dINW9pcVVMMC1PTDR4dGRURTRHQ0FUckZkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjBFMi8yQjRCQjQyRUEyNUUxMUVGQTM4RDkzNzVDNEY5QUUwMi9nSDVvaXFVTDAt T0w0eHRkVEU0R0NBVHJGZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNI2tuyUCB3sUiS4eRWeqHCm1oGOmwpWie9atfVUGnptKBpGTLyMG7 9n33aYDa/ISvwysPKxwa+NOHJuCb5WissnoaNZA8NGj+CPCfI426M8efi7Ct8igO 37nlgbbBCF4lnkeR0/FBYspa86kLV0bT3B+N+Y8wRB4/5QuCo9fakAmKGpfZgFmW 0CROVuja9jk4AeMH52kWx6tB8xif5PPXdWU5mn+Y1IshF/koUIEBvCYtR4gCBsnR syxkGLWApZLI3NyJ+3T58eXendpLI8mv5Y5dLi0YqzoDXs5M6HmEka55mrO67oP9 gtzx73Wtz0OwydLqy1LDWANRM0+ENNOA -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:35 2025 by rpki-client