$ rpki-client -vvf rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft File: guQjhs0B-IaA3TAN-_-ittLn5OY.mft (raw, json) Hash identifier: BhUkBIC8ccIS2tKHxjoHBCyMs/LW9CGbjEk+iS2LIvE= Subject key identifier: A9:1D:98:DD:B2:75:39:D9:8F:A2:49:59:1B:3A:CF:F6:9D:8A:99:CE Authority key identifier: 82:E4:23:86:CD:01:F8:86:80:DD:30:0D:FB:FF:A2:B6:D2:E7:E4:E6 Certificate issuer: /CN=A919D530/serialNumber=82E42386CD01F88680DD300DFBFFA2B6D2E7E4E6 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft Manifest number: E0 Signing time: Wed 17 Sep 2025 06:07:01 +0000 Manifest this update: Wed 17 Sep 2025 06:07:01 +0000 Manifest next update: Wed 24 Sep 2025 06:07:01 +0000 Files and hashes: 1: guQjhs0B-IaA3TAN-_-ittLn5OY.crl (hash: e7tjdUGgF+2bh/+uZa30DXwcNmrwIAaGNbsrHzNSPzU=) 2: A48F17F6406411EF96445E28C4F9AE02.roa (hash: dU6ZhGBTE9jsEZ9VkhD8M1OiGZ+Y8waNKYfclqDZAjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.crl rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D530, serialNumber=82E42386CD01F88680DD300DFBFFA2B6D2E7E4E6 Validity Not Before: Sep 17 06:07:01 2025 GMT Not After : Sep 24 06:07:01 2025 GMT Subject: CN=68ca5005-d450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:22:5b:9f:6a:7c:e4:3a:98:82:ad:e7:2c:9a: 75:9a:36:d9:94:5d:d6:a6:c5:6a:14:49:4a:8f:e4: 67:ec:ea:0c:e9:24:cd:a4:5c:cd:be:18:d2:e3:de: ab:60:d0:57:8d:f7:d2:cb:0f:a6:47:d8:77:b3:fd: dd:96:16:10:1a:c9:fb:ac:3d:d8:86:20:1d:cb:0c: ff:f8:96:d9:33:53:02:10:ee:38:65:59:87:4c:81: 00:7a:bc:7f:6b:37:94:4a:1a:38:6c:8d:2e:d1:07: f4:34:57:85:84:a7:4d:9c:79:e0:78:09:91:59:94: 33:97:3e:4e:2a:38:74:c9:51:5c:00:70:77:5c:a9: c0:39:db:ec:df:3a:bb:7b:1c:67:98:13:b1:14:27: bf:6b:b2:d0:c6:2c:8c:69:0e:b7:da:39:ad:76:cf: 45:28:bc:31:d5:b6:5f:bd:c2:a4:a4:bc:de:1d:e0: 40:a7:8e:df:6b:26:1b:c5:05:a4:b7:82:a5:de:9a: c7:e7:9a:bf:99:65:ec:b3:50:57:41:a2:38:d3:0c: 1b:df:b1:a1:22:16:9a:71:a1:7a:5b:fc:7a:37:8c: af:ab:af:28:45:11:20:f5:26:6e:e4:72:cb:fe:5a: 01:3e:8c:ea:da:bb:7e:f2:3a:e3:c4:8b:7c:91:2b: 72:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:1D:98:DD:B2:75:39:D9:8F:A2:49:59:1B:3A:CF:F6:9D:8A:99:CE X509v3 Authority Key Identifier: keyid:82:E4:23:86:CD:01:F8:86:80:DD:30:0D:FB:FF:A2:B6:D2:E7:E4:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:af:40:b5:fa:09:ed:0d:04:36:1c:0c:56:c0:87:1c:85:d1: 01:6b:23:91:34:7d:27:11:e5:10:ff:c8:80:b3:27:07:89:63: d7:16:95:6d:5a:a1:42:9c:84:5a:6b:7c:7d:c0:7e:0c:48:d3: ea:d8:a4:73:bd:3b:5a:16:29:26:34:b2:77:e1:96:e4:41:92: f6:e5:8e:df:58:f3:3c:e3:54:31:29:ee:e0:f5:56:d0:b9:14: b2:70:66:da:15:2c:c0:85:c3:90:50:eb:43:e0:09:6e:96:9e: 55:f9:a4:b2:2c:29:6e:d9:f8:2e:fb:29:2a:2f:0a:11:12:8d: bb:a9:e1:03:b1:8c:39:b5:be:55:35:17:41:08:7e:81:94:fe: f7:16:b8:72:b7:c7:97:83:74:c7:27:46:a6:10:8c:57:d0:9a: 52:e6:d4:65:fa:e3:08:65:77:e3:84:da:b6:a2:d8:3b:93:9c: 1f:40:6b:70:63:2f:2d:62:ad:f7:a7:de:62:70:6f:c1:46:8d: 32:07:74:47:45:25:0f:fe:89:ca:09:e0:32:01:85:58:e3:aa: d3:a4:de:90:bb:c9:25:40:84:99:a8:c0:3d:47:b3:04:ed:1c: 64:85:63:a5:6d:db:60:1d:c2:15:93:fa:f0:e6:07:40:d0:be: 68:b4:22:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1MzAxMTAvBgNVBAUTKDgyRTQyMzg2Q0QwMUY4ODY4MEREMzAwREZCRkZBMkI2 RDJFN0U0RTYwHhcNMjUwOTE3MDYwNzAxWhcNMjUwOTI0MDYwNzAxWjAYMRYwFAYD VQQDEw02OGNhNTAwNS1kNDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSJbn2p85DqYgq3nLJp1mjbZlF3WpsVqFElKj+Rn7OoM6STNpFzNvhjS496r YNBXjffSyw+mR9h3s/3dlhYQGsn7rD3YhiAdywz/+JbZM1MCEO44ZVmHTIEAerx/ azeUSho4bI0u0Qf0NFeFhKdNnHngeAmRWZQzlz5OKjh0yVFcAHB3XKnAOdvs3zq7 exxnmBOxFCe/a7LQxiyMaQ632jmtds9FKLwx1bZfvcKkpLzeHeBAp47fayYbxQWk t4Kl3prH55q/mWXss1BXQaI40wwb37GhIhaacaF6W/x6N4yvq68oRREg9SZu5HLL /loBPozq2rt+8jrjxIt8kSty0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkdmN2y dTnZj6JJWRs6z/adipnOMB8GA1UdIwQYMBaAFILkI4bNAfiGgN0wDfv/orbS5+Tm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDUzMC81RTU1RjY1NjQw NjQxMUVGQTNDNUI4MjdDNEY5QUUwMi9ndVFqaHMwQi1JYUEzVEFOLV8taXR0TG41 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d1UWpoczBCLUlhQTNUQU4tXy1pdHRMbjVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDUzMC81RTU1RjY1NjQwNjQxMUVGQTNDNUI4MjdDNEY5QUUwMi9ndVFqaHMwQi1J YUEzVEFOLV8taXR0TG41T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGr0C1+gntDQQ2HAxWwIcchdEBayORNH0nEeUQ/8iAsycHiWPXFpVt WqFCnIRaa3x9wH4MSNPq2KRzvTtaFikmNLJ34ZbkQZL25Y7fWPM841QxKe7g9VbQ uRSycGbaFSzAhcOQUOtD4Alulp5V+aSyLClu2fgu+ykqLwoREo27qeEDsYw5tb5V NRdBCH6BlP73Frhyt8eXg3THJ0amEIxX0JpS5tRl+uMIZXfjhNq2otg7k5wfQGtw Yy8tYq33p95icG/BRo0yB3RHRSUP/onKCeAyAYVY46rTpN6Qu8klQISZqMA9R7ME 7RxkhWOlbdtgHcIVk/rw5gdA0L5otCKp -----END CERTIFICATE-----Generated at Thu Sep 18 23:26:58 2025 by rpki-client