$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: JFIw4PzwyNAOn5JZtj1BADf4w6UEy/Hc2dPTs/NWlqs= Subject key identifier: 8B:67:37:E8:C2:2D:AE:A5:AF:BE:9F:D4:73:84:BF:04:BB:B2:27:8A Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 0119 Signing time: Fri 05 Sep 2025 05:12:21 +0000 Manifest this update: Fri 05 Sep 2025 05:12:21 +0000 Manifest next update: Fri 12 Sep 2025 05:12:20 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: VLjs5w7y/ZnTsvIKiB8/wfqzZxqoouXNI0GWK+alDk4=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Sep 5 05:12:21 2025 GMT Not After : Sep 12 05:12:20 2025 GMT Subject: CN=68ba7135-10f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:83:81:1f:e6:2b:d5:11:22:a8:ac:c9:64:00: a0:0e:9d:f1:b5:e8:36:a4:27:9b:fc:9b:b4:db:2a: db:61:09:a8:81:43:70:60:17:43:62:93:ca:09:1d: 55:5f:97:b0:1f:e0:18:9d:e7:61:17:51:bc:42:24: 6e:d3:23:1a:07:05:4f:92:06:1f:6f:60:fe:61:4d: d5:af:05:5f:61:62:4a:92:2f:cd:87:f7:ea:14:4a: ea:39:4f:6d:05:ac:30:6d:11:dc:58:cd:6e:2d:b1: a5:59:15:30:89:15:02:ab:99:3f:9a:c9:9e:48:49: d3:cd:b5:bf:74:ea:9e:04:81:a5:ee:87:38:95:21: 2d:83:d9:cb:d4:6e:45:bf:26:a4:70:9f:04:11:8e: bf:5f:12:f1:da:49:09:eb:93:cb:5c:f2:dd:55:ce: 6f:96:a8:d2:fd:18:19:2b:9f:f6:b9:d7:c6:06:53: 42:6a:84:07:3c:a3:dd:b6:1e:0a:9a:e2:c0:ff:28: a5:7e:d3:bc:ac:d8:59:ed:59:d0:2f:ee:4e:25:60: b4:05:82:33:54:8e:ce:81:e2:9d:3a:41:65:cc:53: d3:25:b0:0e:04:94:bb:0f:82:71:29:9d:a1:fa:b0: a1:2c:1d:98:0a:ac:f2:e9:87:bb:1e:e5:cd:26:3b: b7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:67:37:E8:C2:2D:AE:A5:AF:BE:9F:D4:73:84:BF:04:BB:B2:27:8A X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:df:1f:ab:d9:27:d7:3d:51:c8:b0:9f:fd:ca:90:80:1c:b1: 41:45:f3:67:3d:a5:cc:cc:a3:f4:a3:2a:06:c8:c1:44:f9:58: a6:1c:14:ae:4e:03:12:1f:8c:22:23:70:fe:26:19:48:97:12: 6e:0e:09:cb:48:b6:6f:0e:92:6f:14:72:2a:17:82:b6:e9:50: 41:61:79:03:d3:dd:dd:67:83:28:bd:01:5e:f3:3e:cf:78:37: b1:fb:ca:bd:6c:2a:39:de:11:be:3d:1b:62:78:96:ca:b5:bc: 02:b9:e0:ba:6a:af:db:b9:ca:59:fb:ee:97:3d:f3:9b:5a:c6: 0c:16:5c:72:c6:4b:47:98:fb:39:a9:a1:88:41:97:08:43:25: 9f:69:5a:e1:2b:e0:c2:d4:39:bf:5e:a0:bb:d4:53:6b:6c:17: 40:3d:c6:74:8a:2a:46:1e:44:d3:4b:40:c9:bd:f9:bf:9b:09: 90:a9:1c:73:f2:dd:a9:33:80:82:e7:36:36:5c:81:b2:e5:c5: ee:84:4d:e2:be:e9:39:9c:d8:71:f3:1e:21:3f:91:fa:cc:36: 33:12:91:86:2d:de:3d:10:be:af:d1:2c:75:3a:21:8c:03:5a: 9c:a7:ff:e9:3a:25:29:d7:57:de:8c:9b:e9:ec:b6:26:99:94: fa:08:4c:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjUwOTA1MDUxMjIxWhcNMjUwOTEyMDUxMjIwWjAYMRYwFAYD VQQDEw02OGJhNzEzNS0xMGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYOBH+Yr1REiqKzJZACgDp3xteg2pCeb/Ju02yrbYQmogUNwYBdDYpPKCR1V X5ewH+AYnedhF1G8QiRu0yMaBwVPkgYfb2D+YU3VrwVfYWJKki/Nh/fqFErqOU9t BawwbRHcWM1uLbGlWRUwiRUCq5k/msmeSEnTzbW/dOqeBIGl7oc4lSEtg9nL1G5F vyakcJ8EEY6/XxLx2kkJ65PLXPLdVc5vlqjS/RgZK5/2udfGBlNCaoQHPKPdth4K muLA/yilftO8rNhZ7VnQL+5OJWC0BYIzVI7OgeKdOkFlzFPTJbAOBJS7D4JxKZ2h +rChLB2YCqzy6Ye7HuXNJju3fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItnN+jC La6lr76f1HOEvwS7sieKMB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC53x+r2SfXPVHIsJ/9ypCAHLFBRfNnPaXMzKP0oyoGyMFE+VimHBSu TgMSH4wiI3D+JhlIlxJuDgnLSLZvDpJvFHIqF4K26VBBYXkD093dZ4MovQFe8z7P eDex+8q9bCo53hG+PRtieJbKtbwCueC6aq/bucpZ++6XPfObWsYMFlxyxktHmPs5 qaGIQZcIQyWfaVrhK+DC1Dm/XqC71FNrbBdAPcZ0iipGHkTTS0DJvfm/mwmQqRxz 8t2pM4CC5zY2XIGy5cXuhE3ivuk5nNhx8x4hP5H6zDYzEpGGLd49EL6v0Sx1OiGM A1qcp//pOiUp11fejJvp7LYmmZT6CEz+ -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:12 2025 by rpki-client