$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft File: GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json) Hash identifier: YoJAHQueVXyZ3kOgcZQrmXXLx1/rOXdJ9neN88pxbAA= Subject key identifier: 6A:1A:69:2C:F9:70:99:C4:97:58:D7:7D:1E:46:48:12:16:77:AA:5D Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft Manifest number: 01C0 Signing time: Tue 22 Jul 2025 17:45:43 +0000 Manifest this update: Tue 22 Jul 2025 17:45:43 +0000 Manifest next update: Tue 29 Jul 2025 17:45:43 +0000 Files and hashes: 1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: Q8gcw5td3l5bHtqbT5jaEOPIS2837mA4N83S1232G48=) 2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: iZmR1FbskCchxXKnxnbe4xzmmTQB2zEX5unoWSw1o+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 17:45:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Jul 22 17:45:43 2025 GMT Not After : Jul 29 17:45:43 2025 GMT Subject: CN=687fce47-ddf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:18:42:5e:78:a1:4b:23:5d:65:e9:8f:a4:40: da:30:6a:89:da:80:df:61:31:ed:dc:29:b3:74:61: 45:a9:97:4f:af:9f:8e:07:22:da:f4:54:2a:0d:b1: f2:09:43:79:c2:90:66:8a:99:04:1b:97:0e:41:e7: 7d:fa:99:98:75:86:d4:72:95:3c:10:74:b3:99:43: 38:f9:4f:25:e8:1d:64:15:7a:90:b9:22:b1:22:67: 0d:7f:a8:9c:30:1f:1f:3b:9b:9d:27:0d:10:56:54: 6d:27:fc:a4:74:fb:9b:8e:90:22:a2:95:f4:26:75: af:21:68:98:a5:63:da:43:23:ed:01:74:a9:53:c9: 90:35:09:d0:41:13:e2:1b:73:4d:d4:03:03:ef:c1: 1c:70:cc:76:25:dc:31:f7:6b:76:d8:79:b8:92:2e: 04:82:d6:27:07:7d:d2:02:39:c9:44:cd:8b:b2:b3: 68:48:fb:d2:3d:29:cc:6a:1e:ef:7e:b3:74:03:50: f6:d0:6b:8a:54:5e:42:3c:62:3b:1f:77:8f:48:d7: 15:df:22:4c:e7:b5:6e:ef:ff:c2:53:e4:86:39:83: 84:c9:f2:55:1b:ab:c9:9f:ff:fb:7f:83:0a:e2:c8: 6d:32:d5:cd:2d:12:56:70:6c:24:b1:53:6d:6a:2f: 55:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:1A:69:2C:F9:70:99:C4:97:58:D7:7D:1E:46:48:12:16:77:AA:5D X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:42:38:e6:cd:6d:58:ed:01:d4:36:10:0f:b6:f4:36:29:0d: a5:93:cd:3e:e8:17:35:83:b6:7f:29:79:14:1b:3d:bc:2a:4e: fe:83:8b:84:99:89:bb:85:b5:dd:c4:01:77:ac:25:17:6a:48: 0f:bf:d0:ce:49:be:71:a8:b8:54:1b:8c:b2:c7:0e:6b:3c:d9: c9:3c:c7:78:1e:ad:d9:0a:00:19:04:e6:f2:be:da:a2:80:87: 6f:de:16:f6:f0:4f:92:70:17:da:68:a9:57:8c:bb:93:2b:64: 88:5b:3d:07:21:56:45:6a:11:eb:01:a9:56:de:54:ec:54:1c: cb:13:6d:7d:b2:7f:b3:78:f7:2a:e5:05:77:aa:60:95:06:29: f4:99:90:44:88:b5:23:59:73:2b:3c:28:0f:cc:8e:87:09:07: ba:27:6f:43:1d:73:76:ac:67:0b:e6:32:97:05:92:03:88:a5: 38:7b:40:31:a4:2e:22:af:67:d2:07:f7:ab:9e:3a:07:b1:0b: 2b:04:81:9c:6b:83:f9:c5:88:aa:26:4f:90:c0:44:db:47:39: 75:17:71:46:94:60:2b:ea:e3:f3:31:26:ef:10:94:cc:4d:5b: 66:81:ea:22:d4:55:88:2a:ec:3d:fb:16:b8:fc:de:ae:6e:6e: 35:73:3c:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjUwNzIyMTc0NTQzWhcNMjUwNzI5MTc0NTQzWjAYMRYwFAYD VQQDEw02ODdmY2U0Ny1kZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BhCXnihSyNdZemPpEDaMGqJ2oDfYTHt3CmzdGFFqZdPr5+OByLa9FQqDbHy CUN5wpBmipkEG5cOQed9+pmYdYbUcpU8EHSzmUM4+U8l6B1kFXqQuSKxImcNf6ic MB8fO5udJw0QVlRtJ/ykdPubjpAiopX0JnWvIWiYpWPaQyPtAXSpU8mQNQnQQRPi G3NN1AMD78EccMx2Jdwx92t22Hm4ki4EgtYnB33SAjnJRM2LsrNoSPvSPSnMah7v frN0A1D20GuKVF5CPGI7H3ePSNcV3yJM57Vu7//CU+SGOYOEyfJVG6vJn//7f4MK 4shtMtXNLRJWcGwksVNtai9VzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoaaSz5 cJnEl1jXfR5GSBIWd6pdMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi8yNjFGMzREOEMxRjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJM Y2d4RktveHNrZ3h0Q21HQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWQjjmzW1Y7QHUNhAPtvQ2KQ2lk80+6Bc1g7Z/KXkUGz28Kk7+g4uE mYm7hbXdxAF3rCUXakgPv9DOSb5xqLhUG4yyxw5rPNnJPMd4Hq3ZCgAZBObyvtqi gIdv3hb28E+ScBfaaKlXjLuTK2SIWz0HIVZFahHrAalW3lTsVBzLE219sn+zePcq 5QV3qmCVBin0mZBEiLUjWXMrPCgPzI6HCQe6J29DHXN2rGcL5jKXBZIDiKU4e0Ax pC4ir2fSB/ernjoHsQsrBIGca4P5xYiqJk+QwETbRzl1F3FGlGAr6uPzMSbvEJTM TVtmgeoi1FWIKuw9+xa4/N6ubm41czz4 -----END CERTIFICATE-----Generated at Thu Jul 24 12:13:21 2025 by rpki-client