$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: 0BmszQE4aKCw/NKDewY5OmGLhTUaF7MB68jonYkCbPU= Subject key identifier: F5:14:48:3B:61:AE:C4:2A:25:28:DE:36:29:15:6B:4F:96:E3:97:E0 Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 0508 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 0503 Signing time: Mon 08 Sep 2025 23:41:57 +0000 Manifest this update: Mon 08 Sep 2025 23:41:57 +0000 Manifest next update: Mon 15 Sep 2025 23:41:57 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: c7KDjsyT/pEg6oJlOqbSvw5KR5ceJm4iIb/bvz54Q/I=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: 40Tp9vYlwNjlXHzULzghK25QKYAH3IMjVH7JAvH5N/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8, serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: Sep 8 23:41:57 2025 GMT Not After : Sep 15 23:41:57 2025 GMT Subject: CN=68bf69c5-97e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:2e:1f:b3:bc:83:d5:0a:c3:a5:22:a8:41: 74:02:01:e7:76:5b:d4:30:4d:2a:36:53:0d:9e:8f: b6:f1:4b:0f:43:92:e8:41:7b:f6:dc:6b:5d:6e:73: 69:df:96:f8:83:cd:2f:b1:13:db:ce:2e:77:9b:ca: e6:25:ed:8a:33:4a:87:50:bd:b3:bf:a6:46:a3:0b: c3:06:9e:f0:75:5f:e1:5b:aa:e4:bd:0a:41:a5:9c: d9:7e:8e:06:72:22:4e:17:1f:29:56:63:bd:9c:78: e0:7a:d1:9c:26:09:9b:3f:38:97:cc:43:b3:29:d3: 8b:f0:e5:30:28:12:83:b3:a7:d2:76:49:36:b5:a8: 46:a2:0b:c0:26:65:ca:5f:5f:d9:b5:73:a1:6a:d6: f6:13:8f:88:7c:6f:da:d7:01:1c:92:fb:b7:10:a7: 61:02:98:3b:ec:6d:e2:18:c6:0a:cd:f6:7a:c8:89: de:30:9c:6f:b5:6e:90:f9:df:cf:5f:2c:a8:8f:54: 74:76:e3:ab:7c:e7:27:11:67:12:ca:d1:c3:1a:a1: 0c:b4:84:38:30:fd:3b:c0:ce:bb:44:36:29:cc:e8: 8b:c4:08:ca:81:cd:44:fe:c1:76:21:c3:5d:ae:ba: 95:ef:b7:2a:ce:69:f8:45:29:a3:a6:cc:90:8e:ee: 8c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:14:48:3B:61:AE:C4:2A:25:28:DE:36:29:15:6B:4F:96:E3:97:E0 X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e8:5a:2d:49:c5:84:d0:e4:42:74:10:b5:14:5b:89:71:ca: c7:ef:fd:be:0e:20:05:78:30:28:7a:f6:4b:02:8c:5a:fb:f6: 9b:ae:04:57:0d:e4:a5:57:01:3d:b8:77:2c:9d:40:69:c1:4c: b0:03:30:43:23:61:7b:20:6f:f0:90:58:4d:41:8b:fb:a0:34: 6d:56:eb:8c:00:ea:15:f5:67:c1:7b:bd:50:4a:c2:9c:64:a3: 17:a7:c4:55:de:9a:1a:fa:94:7e:b6:59:01:94:c7:c0:72:92: 84:88:61:c1:20:1d:69:5d:98:95:55:6b:14:e3:ae:65:9a:b2: a8:63:b3:ea:bc:e4:ac:89:55:1b:e2:b2:ad:1a:f4:11:76:4c: 78:68:c1:9e:b2:14:a1:bb:85:ad:d9:eb:2b:d1:fe:82:a6:ed: 20:4f:ca:fc:95:c7:d2:4c:6f:c9:66:04:47:27:30:6a:e4:36: 8b:83:9b:fd:4c:9e:40:f4:9e:80:9a:07:19:43:0c:e8:52:d8: fd:49:72:d7:3d:1d:97:aa:8f:f8:6b:f7:aa:3a:07:f4:c5:43: 64:5f:74:7c:39:98:08:1a:f9:0f:c9:74:37:0d:4a:24:7a:c9: d2:dc:8f:87:21:46:8c:df:ad:39:dc:4c:5b:47:a1:33:84:d3: ee:27:c9:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjUwOTA4MjM0MTU3WhcNMjUwOTE1MjM0MTU3WjAYMRYwFAYD VQQDEw02OGJmNjljNS05N2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQ0uH7O8g9UKw6UiqEF0AgHndlvUME0qNlMNno+28UsPQ5LoQXv23GtdbnNp 35b4g80vsRPbzi53m8rmJe2KM0qHUL2zv6ZGowvDBp7wdV/hW6rkvQpBpZzZfo4G ciJOFx8pVmO9nHjgetGcJgmbPziXzEOzKdOL8OUwKBKDs6fSdkk2tahGogvAJmXK X1/ZtXOhatb2E4+IfG/a1wEckvu3EKdhApg77G3iGMYKzfZ6yIneMJxvtW6Q+d/P Xyyoj1R0duOrfOcnEWcSytHDGqEMtIQ4MP07wM67RDYpzOiLxAjKgc1E/sF2IcNd rrqV77cqzmn4RSmjpsyQju6MdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUUSDth rsQqJSjeNikVa0+W45fgMB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM6FotScWE0ORCdBC1FFuJccrH7/2+DiAFeDAoevZLAoxa+/abrgRX DeSlVwE9uHcsnUBpwUywAzBDI2F7IG/wkFhNQYv7oDRtVuuMAOoV9WfBe71QSsKc ZKMXp8RV3poa+pR+tlkBlMfAcpKEiGHBIB1pXZiVVWsU465lmrKoY7PqvOSsiVUb 4rKtGvQRdkx4aMGeshShu4Wt2esr0f6Cpu0gT8r8lcfSTG/JZgRHJzBq5DaLg5v9 TJ5A9J6AmgcZQwzoUtj9SXLXPR2Xqo/4a/eqOgf0xUNkX3R8OZgIGvkPyXQ3DUok esnS3I+HIUaM36053ExbR6EzhNPuJ8k2 -----END CERTIFICATE-----Generated at Tue Sep 9 19:27:40 2025 by rpki-client