$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft File: GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json) Hash identifier: GYgLa0ve9GP9ymHKT8i76/68mQFyoesxpN6kwbP6tRQ= Subject key identifier: FC:B6:6D:26:1B:7E:AA:96:D6:6B:C1:6F:EE:1A:BD:F4:56:DB:8D:F4 Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft Manifest number: 01DE Signing time: Thu 18 Sep 2025 17:45:12 +0000 Manifest this update: Thu 18 Sep 2025 17:45:11 +0000 Manifest next update: Thu 25 Sep 2025 17:45:11 +0000 Files and hashes: 1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: XxiZDexz7+iLnY6nRLQW/HNJYeCmq4klUhh9xXpQpDE=) 2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: iZmR1FbskCchxXKnxnbe4xzmmTQB2zEX5unoWSw1o+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Sep 18 17:45:11 2025 GMT Not After : Sep 25 17:45:11 2025 GMT Subject: CN=68cc4527-af6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:c1:ca:53:f5:00:55:8a:61:38:0e:06:f8:21: 19:4c:4d:fe:9b:3c:72:8b:2b:79:26:f2:94:24:14: 5a:bf:b6:bd:90:78:dc:3a:6c:92:59:76:4a:31:74: 79:46:da:c3:cd:59:cb:f9:eb:3d:2c:b6:da:44:ff: dd:66:f0:3a:f3:36:48:1d:1b:34:0e:79:8d:c8:b3: 51:f0:f8:37:0f:be:54:e5:5d:9a:e0:69:f5:05:9b: 3d:d9:77:cc:30:a6:2c:86:f9:9c:84:54:5e:ee:09: ca:9b:47:05:81:57:69:de:03:f6:d5:d3:77:dc:4a: 80:85:24:0a:a1:ea:d8:88:4f:3c:d7:97:16:59:36: 29:36:29:4e:ea:88:7c:62:9d:ad:e3:37:4a:9f:11: 85:83:91:34:cf:1c:ce:1b:ea:41:24:29:f4:5a:e9: 10:02:e4:0e:2f:de:82:28:1c:bf:4d:e9:da:26:1a: 9d:3e:75:4a:04:23:c3:19:61:c1:5a:a9:a5:c4:62: 32:21:4c:26:06:1d:57:fd:7c:ed:c1:7b:6a:1e:51: a2:76:34:51:e3:80:59:39:29:d0:17:92:a4:d3:80: b3:dd:55:e2:90:e4:05:b3:4e:cf:b4:23:69:62:36: 73:b4:8b:38:46:ad:5e:79:90:fc:99:64:e2:fd:90: 7d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B6:6D:26:1B:7E:AA:96:D6:6B:C1:6F:EE:1A:BD:F4:56:DB:8D:F4 X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:01:9a:d1:8f:02:96:ea:50:d2:a0:20:40:4e:19:62:56:5d: 56:86:be:c6:17:a8:1b:86:c6:a5:6b:5b:60:6c:9d:4e:3f:a2: 4c:36:9b:85:24:27:59:58:4a:57:6d:4f:f5:f0:03:fd:2b:60: 1f:ec:47:d2:1f:ea:ca:af:65:14:43:bf:85:da:0f:37:da:17: d3:48:a1:5b:4e:e9:08:4b:27:1e:dc:b0:29:55:55:83:e4:d4: 88:14:3a:b1:e1:c0:b6:0a:64:aa:59:d1:a0:ab:71:dd:c8:59: 08:0e:ff:0c:cc:8d:ca:04:25:23:15:86:e5:41:80:a8:4b:9a: a7:0d:67:8e:31:4c:f2:2c:98:c7:bd:43:b2:3f:42:23:66:47: 2e:a9:d0:fb:89:0a:93:7d:ca:4c:6a:5a:21:bf:b8:c1:33:1c: 79:f0:b9:39:d8:de:2c:d0:23:a8:b3:33:54:d3:95:85:7e:04: 99:fd:e1:f5:a9:49:78:63:d9:9f:76:0a:86:fa:d3:62:57:af: d8:ad:c6:db:91:83:1b:5c:5d:e5:d3:c4:76:09:a3:de:b8:05: 6b:b5:a9:71:af:b9:02:2b:f0:39:7a:29:51:5a:2d:e6:e4:6c: aa:9f:c9:85:1f:c6:15:43:22:54:8c:5e:d1:ea:85:fd:32:3e: c7:ef:e0:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjUwOTE4MTc0NTExWhcNMjUwOTI1MTc0NTExWjAYMRYwFAYD VQQDEw02OGNjNDUyNy1hZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/sHKU/UAVYphOA4G+CEZTE3+mzxyiyt5JvKUJBRav7a9kHjcOmySWXZKMXR5 RtrDzVnL+es9LLbaRP/dZvA68zZIHRs0DnmNyLNR8Pg3D75U5V2a4Gn1BZs92XfM MKYshvmchFRe7gnKm0cFgVdp3gP21dN33EqAhSQKoerYiE8815cWWTYpNilO6oh8 Yp2t4zdKnxGFg5E0zxzOG+pBJCn0WukQAuQOL96CKBy/TenaJhqdPnVKBCPDGWHB WqmlxGIyIUwmBh1X/XztwXtqHlGidjRR44BZOSnQF5Kk04Cz3VXikOQFs07PtCNp YjZztIs4Rq1eeZD8mWTi/ZB9uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPy2bSYb fqqW1mvBb+4avfRW2430MB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi8yNjFGMzREOEMxRjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJM Y2d4RktveHNrZ3h0Q21HQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuAZrRjwKW6lDSoCBAThliVl1Whr7GF6gbhsala1tgbJ1OP6JMNpuF JCdZWEpXbU/18AP9K2Af7EfSH+rKr2UUQ7+F2g832hfTSKFbTukISyce3LApVVWD 5NSIFDqx4cC2CmSqWdGgq3HdyFkIDv8MzI3KBCUjFYblQYCoS5qnDWeOMUzyLJjH vUOyP0IjZkcuqdD7iQqTfcpMalohv7jBMxx58Lk52N4s0COoszNU05WFfgSZ/eH1 qUl4Y9mfdgqG+tNiV6/YrcbbkYMbXF3l08R2CaPeuAVrtalxr7kCK/A5eilRWi3m 5Gyqn8mFH8YVQyJUjF7R6oX9Mj7H7+Cu -----END CERTIFICATE-----Generated at Fri Sep 19 18:54:54 2025 by rpki-client