$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft File: GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json) Hash identifier: 9W+RKHfUZcJMgvfl28H1C4ZR+D4gnRMXl9htuQICakI= Subject key identifier: 53:3A:17:E5:D6:F7:1D:DC:B2:2A:67:8A:4B:41:69:30:39:01:C0:21 Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft Manifest number: 01C1 Signing time: Thu 24 Jul 2025 17:45:10 +0000 Manifest this update: Thu 24 Jul 2025 17:45:10 +0000 Manifest next update: Thu 31 Jul 2025 17:45:10 +0000 Files and hashes: 1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: oKxmodScTD1VnOOxlfw8lHWd8zxOudvmQfWlDp6e4a4=) 2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: iZmR1FbskCchxXKnxnbe4xzmmTQB2zEX5unoWSw1o+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 17:45:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Jul 24 17:45:10 2025 GMT Not After : Jul 31 17:45:10 2025 GMT Subject: CN=68827126-77a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1a:5d:a3:29:4b:03:f0:7b:bb:56:05:38:69: 32:8a:4c:cf:04:16:0e:04:ee:20:db:25:73:7d:b3: 3e:12:03:3b:42:ba:dd:20:37:f0:a2:0f:c3:90:b2: 9f:da:65:56:9d:27:7b:9d:d0:e4:a4:b9:e3:d8:4d: 58:88:9d:df:9e:37:95:2a:cb:7c:38:9b:ff:1c:29: 9c:0b:a9:49:ad:14:d2:15:53:c5:07:5b:e7:07:33: ad:ea:2f:50:74:73:16:26:5d:27:50:c3:5e:71:3e: 73:22:41:fd:22:e1:2c:45:ba:3d:94:3d:ef:8c:40: f7:30:e1:d4:3f:d8:bf:47:33:7b:65:0a:5a:35:1f: 25:48:79:12:e7:dd:56:32:39:b3:08:df:14:ee:f7: 7b:f5:c7:fc:8f:8f:6f:04:d2:5a:1d:2a:dc:77:80: 7b:a4:48:11:46:5f:fe:88:32:8a:33:cc:4f:93:58: d1:d5:4d:90:52:bd:2e:73:30:e6:5e:cc:7e:48:79: 19:72:4e:63:c3:60:e9:a2:d4:59:e1:ee:f8:0c:69: 07:c4:44:18:7b:c9:f5:79:0c:37:96:8c:93:c6:8f: a6:57:c0:d0:60:6e:b4:0e:35:59:25:a8:8c:b9:1a: 30:96:e5:12:43:1d:0f:73:b0:c7:a3:6c:2b:03:c4: 29:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3A:17:E5:D6:F7:1D:DC:B2:2A:67:8A:4B:41:69:30:39:01:C0:21 X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:25:56:37:2e:ad:58:ad:32:53:0c:b9:40:6b:30:a8:a1:70: dc:25:ab:83:49:36:33:a1:67:11:46:1f:54:83:d9:25:95:8f: e2:88:59:f9:5e:d9:df:7c:6c:fd:04:8f:42:94:ea:e3:10:d4: 47:c1:02:61:41:b0:c6:7c:b7:90:a8:fc:d3:c9:9a:c7:87:db: 67:78:c8:36:88:bf:98:f5:b9:5c:e2:7a:43:c8:29:93:22:6c: c0:83:44:fe:c7:33:e1:09:11:50:92:72:32:28:0d:11:4b:48: bb:cb:8c:07:81:39:bd:d3:55:4c:6a:64:46:d8:ae:bd:c5:eb: 14:57:c3:9b:3c:c3:8e:e0:ad:5e:ac:5d:0c:0c:66:1d:25:27: 63:ab:33:e6:f1:7e:45:0a:93:55:7f:9e:a4:64:1b:50:ce:13: 8f:bd:62:67:c1:ee:0f:68:d6:db:60:c8:d1:b7:9b:8e:44:76: cb:5c:75:45:57:b8:7a:4e:45:cc:50:fe:41:89:dc:76:46:89: e9:f4:6a:9a:1b:55:59:31:ea:4a:7c:92:f0:1f:d0:60:aa:03: 09:d4:a2:fe:46:ce:a5:f5:d1:c4:a3:1a:71:7b:06:07:6e:49: bd:f2:d0:1a:ba:46:85:81:f6:ee:5f:1f:53:8d:2d:b4:b7:42: 8f:29:b7:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjUwNzI0MTc0NTEwWhcNMjUwNzMxMTc0NTEwWjAYMRYwFAYD VQQDEw02ODgyNzEyNi03N2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBpdoylLA/B7u1YFOGkyikzPBBYOBO4g2yVzfbM+EgM7QrrdIDfwog/DkLKf 2mVWnSd7ndDkpLnj2E1YiJ3fnjeVKst8OJv/HCmcC6lJrRTSFVPFB1vnBzOt6i9Q dHMWJl0nUMNecT5zIkH9IuEsRbo9lD3vjED3MOHUP9i/RzN7ZQpaNR8lSHkS591W MjmzCN8U7vd79cf8j49vBNJaHSrcd4B7pEgRRl/+iDKKM8xPk1jR1U2QUr0uczDm Xsx+SHkZck5jw2DpotRZ4e74DGkHxEQYe8n1eQw3loyTxo+mV8DQYG60DjVZJaiM uRowluUSQx0Pc7DHo2wrA8QpTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFM6F+XW 9x3csipniktBaTA5AcAhMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi8yNjFGMzREOEMxRjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJM Y2d4RktveHNrZ3h0Q21HQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQJVY3Lq1YrTJTDLlAazCooXDcJauDSTYzoWcRRh9Ug9kllY/iiFn5 XtnffGz9BI9ClOrjENRHwQJhQbDGfLeQqPzTyZrHh9tneMg2iL+Y9blc4npDyCmT ImzAg0T+xzPhCRFQknIyKA0RS0i7y4wHgTm901VMamRG2K69xesUV8ObPMOO4K1e rF0MDGYdJSdjqzPm8X5FCpNVf56kZBtQzhOPvWJnwe4PaNbbYMjRt5uORHbLXHVF V7h6TkXMUP5Bidx2Ronp9GqaG1VZMepKfJLwH9BgqgMJ1KL+Rs6l9dHEoxpxewYH bkm98tAaukaFgfbuXx9TjS20t0KPKbeI -----END CERTIFICATE-----Generated at Fri Jul 25 07:04:29 2025 by rpki-client