$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft File: g1GgqJRYpHQmpXCgKQH45lQuguI.mft (raw, json) Hash identifier: YVxzLKZf6KZ7+4P4R8/kXh+UjqwJ2f9XILFYYF+PU/Q= Subject key identifier: E8:8F:3E:C6:37:78:15:46:5D:7E:82:7A:77:FF:F6:23:8D:0B:8D:9C Authority key identifier: 83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 Certificate issuer: /CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Certificate serial: 0476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft Manifest number: 0467 Signing time: Tue 09 Sep 2025 00:17:25 +0000 Manifest this update: Tue 09 Sep 2025 00:17:25 +0000 Manifest next update: Tue 16 Sep 2025 00:17:25 +0000 Files and hashes: 1: g1GgqJRYpHQmpXCgKQH45lQuguI.crl (hash: 2JB4cohdxDm3v4NBzlwAQKK8zg+07kWnxbjocrfdtxw=) 2: D516EA2AA1E611EDABFD7D7FC4F9AE02.roa (hash: bFGAY7gHkrvRuSHehHQRzFx9uBqTtWyMVWm0D4E7juI=) 3: D3E15ECEA1E611EDABFD7D7FC4F9AE02.roa (hash: lpjw5BWb1D28FIiM0Q0zwOopAGhOPre90gYeT7boapw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D3D, serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Validity Not Before: Sep 9 00:17:25 2025 GMT Not After : Sep 16 00:17:25 2025 GMT Subject: CN=68bf7215-87df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d5:df:8a:27:c0:00:b1:76:9e:03:2d:9d:1f: a3:65:cc:20:fa:cf:18:26:6b:f5:f8:70:be:9b:88: fb:b0:80:da:de:45:f0:ae:a3:fd:cb:bf:c3:31:7e: 65:5d:18:5f:10:c9:81:88:e4:a2:67:5e:c1:0e:de: 53:07:10:28:7e:a5:fd:05:1f:d1:ed:ba:dc:2f:2c: d1:12:d6:e6:17:cb:0e:43:49:54:da:78:2f:a8:a2: 13:4c:fc:dc:45:cc:6f:28:f2:50:51:11:20:18:59: f6:b5:06:46:71:be:5b:50:89:78:1d:1f:cb:73:79: 5b:9d:25:df:8f:2d:7c:79:00:62:49:99:54:24:e7: 76:4c:d1:35:33:55:5a:83:5c:0b:3c:b3:99:88:1e: 47:e5:b1:c6:22:e2:f8:0e:7a:e0:68:84:77:0e:63: 7d:19:41:0d:b6:05:a4:3a:e0:dc:4d:54:7c:70:2a: c1:8e:f8:9f:0b:03:55:63:f1:f4:82:ef:1b:fe:be: d9:e1:1a:73:46:a9:ae:f1:f7:d2:3d:5a:5f:5a:09: 07:d0:58:5f:01:e3:a5:77:a3:3f:8c:a5:26:93:3a: b4:53:cf:08:f1:ea:49:f6:f6:76:11:dd:62:bb:a4: 41:31:d5:36:b6:0b:1f:d7:30:e8:99:41:cd:3d:f0: 17:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:8F:3E:C6:37:78:15:46:5D:7E:82:7A:77:FF:F6:23:8D:0B:8D:9C X509v3 Authority Key Identifier: keyid:83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c7:fe:0c:d5:90:13:e2:20:fc:55:4f:d2:6f:08:39:a4:42: 02:58:fc:05:b0:3d:f8:e1:9a:f0:ba:4b:71:fc:f2:30:20:00: bf:3f:b6:d5:cb:73:a0:a5:6d:b1:52:3e:74:6a:24:64:52:df: ee:5a:a2:95:fd:7c:b5:10:34:ca:25:48:74:0f:4e:25:4d:5f: c7:3f:b5:2c:c4:a7:da:75:f1:9a:d5:59:94:cb:e9:2b:26:c1: 26:94:0f:f9:ea:b0:f6:bc:e1:40:86:7b:99:e6:be:52:cf:a1: dc:44:2d:d4:bc:61:90:51:41:7f:a6:1d:b2:ce:4b:13:d4:d6: 37:94:d2:04:ff:cd:25:d0:fe:bc:e9:f0:e4:84:13:f0:53:5e: 29:15:16:96:ee:0d:62:e3:4e:1b:b6:20:42:83:30:90:04:44: 00:dd:b6:61:ef:fa:d7:f8:f4:06:5c:44:de:c3:3c:0a:19:66: b3:9b:0e:82:09:b4:ee:4d:d0:76:4d:a4:da:fe:4a:57:c6:57: 14:30:04:2b:ff:1b:93:7c:95:00:f7:fd:ec:3a:22:7c:2b:66: cd:88:83:b8:5e:22:ce:be:44:92:88:6a:23:fb:e9:a2:2f:a9: c0:dc:67:f2:e2:5c:2d:4d:f6:46:66:fa:c8:e7:d6:e1:08:bc: a0:5b:9f:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEM0QxMTAvBgNVBAUTKDgzNTFBMEE4OTQ1OEE0NzQyNkE1NzBBMDI5MDFGOEU2 NTQyRTgyRTIwHhcNMjUwOTA5MDAxNzI1WhcNMjUwOTE2MDAxNzI1WjAYMRYwFAYD VQQDEw02OGJmNzIxNS04N2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49XfiifAALF2ngMtnR+jZcwg+s8YJmv1+HC+m4j7sIDa3kXwrqP9y7/DMX5l XRhfEMmBiOSiZ17BDt5TBxAofqX9BR/R7brcLyzREtbmF8sOQ0lU2ngvqKITTPzc RcxvKPJQUREgGFn2tQZGcb5bUIl4HR/Lc3lbnSXfjy18eQBiSZlUJOd2TNE1M1Va g1wLPLOZiB5H5bHGIuL4DnrgaIR3DmN9GUENtgWkOuDcTVR8cCrBjvifCwNVY/H0 gu8b/r7Z4RpzRqmu8ffSPVpfWgkH0FhfAeOld6M/jKUmkzq0U88I8epJ9vZ2Ed1i u6RBMdU2tgsf1zDomUHNPfAXzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOiPPsY3 eBVGXX6Cenf/9iONC42cMB8GA1UdIwQYMBaAFINRoKiUWKR0JqVwoCkB+OZULoLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QzRC8yMzNDMEI0NjYz QkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBIUW1wWENnS1FINDVsUXVn dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxR2dxSlJZcEhRbXBYQ2dLUUg0NWxRdWd1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QzRC8yMzNDMEI0NjYzQkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBI UW1wWENnS1FINDVsUXVndUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqx/4M1ZAT4iD8VU/Sbwg5pEICWPwFsD344Zrwuktx/PIwIAC/P7bV y3OgpW2xUj50aiRkUt/uWqKV/Xy1EDTKJUh0D04lTV/HP7UsxKfadfGa1VmUy+kr JsEmlA/56rD2vOFAhnuZ5r5Sz6HcRC3UvGGQUUF/ph2yzksT1NY3lNIE/80l0P68 6fDkhBPwU14pFRaW7g1i404btiBCgzCQBEQA3bZh7/rX+PQGXETewzwKGWazmw6C CbTuTdB2TaTa/kpXxlcUMAQr/xuTfJUA9/3sOiJ8K2bNiIO4XiLOvkSSiGoj++mi L6nA3Gfy4lwtTfZGZvrI59bhCLygW590 -----END CERTIFICATE-----Generated at Wed Sep 10 14:19:08 2025 by rpki-client