$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft File: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft (raw, json) Hash identifier: P3+j9rK4KFHFHCIwgSqldhSmybK3STPdyRU2Fl//0Sw= Subject key identifier: DD:1F:50:EA:30:77:CE:69:23:99:CE:C9:B3:6C:D6:A1:D2:62:60:28 Authority key identifier: 82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD Certificate issuer: /CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Certificate serial: 34B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft Manifest number: 40F2 Signing time: Sun 24 Aug 2025 15:02:22 +0000 Manifest this update: Sun 24 Aug 2025 15:02:22 +0000 Manifest next update: Sun 31 Aug 2025 15:02:22 +0000 Files and hashes: 1: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl (hash: XN9av8nhLN5E8QoQU/+NDckzKPZ6vjmwIMeWNg4pvXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13495 (0x34b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49, serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Validity Not Before: Aug 24 15:02:22 2025 GMT Not After : Aug 31 15:02:22 2025 GMT Subject: CN=68ab297e-bc2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:22:0c:d4:ce:7b:08:15:52:87:d4:32:f7:7d: 07:5a:96:ad:1a:37:7c:fd:59:7d:5c:f4:12:b0:0f: 2e:27:03:19:40:c4:e7:17:07:8f:7e:e3:8b:26:f5: d8:95:4d:9f:83:91:0d:c2:e9:d1:18:c2:5a:54:3f: a7:a5:11:72:39:a1:91:81:3a:9d:65:c7:06:23:89: 11:47:dc:dd:59:48:f3:fe:3a:8d:aa:9e:c7:f4:76: ff:e9:b1:5e:1b:dd:6b:e0:54:24:56:1f:62:5b:9d: 8e:89:a7:25:26:5c:2e:af:eb:de:75:50:d0:f3:25: 25:f8:6f:c8:45:cd:20:fd:bd:12:ed:73:da:e2:e9: c3:a0:ea:6f:32:7b:89:e8:c3:d1:a0:3b:33:24:14: 83:bb:9a:12:00:f3:a5:21:64:d3:50:06:b2:07:5d: 6f:8d:86:a4:7c:8c:3a:20:7a:61:c3:cf:7a:e4:81: 72:57:cb:1b:80:2a:7d:ef:5a:29:66:71:3b:dc:69: b4:2c:e3:60:69:93:35:75:f6:8d:d6:48:ab:3f:72: fb:a6:55:fd:b7:51:ab:e6:33:f7:ed:c9:c6:95:00: 85:8b:48:aa:90:66:53:41:a3:53:62:37:33:d4:fd: 10:bf:95:06:e6:51:1f:70:8b:62:85:1f:67:0d:3d: 0a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1F:50:EA:30:77:CE:69:23:99:CE:C9:B3:6C:D6:A1:D2:62:60:28 X509v3 Authority Key Identifier: keyid:82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:91:cf:a2:2e:f5:cd:69:a9:3a:4b:40:4e:31:20:f6:fd:d6: 4a:35:01:d0:fc:68:83:11:44:0d:d3:5e:0f:84:c0:5e:39:ea: de:07:0d:9e:0d:ec:87:bd:17:c3:0e:2a:9c:66:a8:24:80:4f: 7c:ec:0c:19:9a:24:4f:22:c8:ff:d0:ec:d1:6c:f4:dc:b6:45: 18:b3:0a:6a:de:f1:27:b1:b8:85:4c:f7:22:2c:62:8a:65:7d: 4d:da:45:9f:6d:4f:41:76:5d:81:73:cf:0b:c9:9b:67:02:31: 98:ab:cb:6b:d5:e2:3e:1b:85:b3:f4:88:6d:84:b7:82:89:14: 3e:65:61:ef:dc:5c:32:2f:55:68:e1:9e:c5:da:1d:a6:e5:a4: e0:1d:07:3f:5c:c4:27:da:d9:12:15:91:a1:dd:1d:6c:68:c2: 78:32:c2:03:80:76:78:c7:80:2a:65:a0:51:1b:c7:91:6b:af: 00:85:ec:20:ac:c0:cc:af:41:da:14:76:cc:2b:d7:c1:7d:68: 76:65:0c:d4:fd:d5:e5:a1:23:fb:e2:f0:70:a4:67:c1:ab:8b: c9:90:e2:4e:14:8b:1d:ed:21:32:03:74:d6:b4:de:b5:2d:e1: 0d:59:86:fd:7d:ea:0c:3c:ef:c0:8b:d3:fc:a4:d9:f8:db:ef: 26:31:a8:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDgyMUY0REIyMkVFNTlBRkQ1OTNBN0U2ODlFREE5RkM5 NEJFNTg1REQwHhcNMjUwODI0MTUwMjIyWhcNMjUwODMxMTUwMjIyWjAYMRYwFAYD VQQDEw02OGFiMjk3ZS1iYzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iIM1M57CBVSh9Qy930HWpatGjd8/Vl9XPQSsA8uJwMZQMTnFwePfuOLJvXY lU2fg5ENwunRGMJaVD+npRFyOaGRgTqdZccGI4kRR9zdWUjz/jqNqp7H9Hb/6bFe G91r4FQkVh9iW52OiaclJlwur+vedVDQ8yUl+G/IRc0g/b0S7XPa4unDoOpvMnuJ 6MPRoDszJBSDu5oSAPOlIWTTUAayB11vjYakfIw6IHphw8965IFyV8sbgCp971op ZnE73Gm0LONgaZM1dfaN1kirP3L7plX9t1Gr5jP37cnGlQCFi0iqkGZTQaNTYjcz 1P0Qv5UG5lEfcItihR9nDT0K2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0fUOow d85pI5nOybNs1qHSYmAoMB8GA1UdIwQYMBaAFIIfTbIu5Zr9WTp+aJ7an8lL5YXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12MVpPbjVvbnRxZnlVdmxo ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doOU5zaTdsbXYxWk9uNW9udHFmeVV2bGhkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12 MVpPbjVvbnRxZnlVdmxoZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApkc+iLvXNaak6S0BOMSD2/dZKNQHQ/GiDEUQN014PhMBeOereBw2e DeyHvRfDDiqcZqgkgE987AwZmiRPIsj/0OzRbPTctkUYswpq3vEnsbiFTPciLGKK ZX1N2kWfbU9Bdl2Bc88LyZtnAjGYq8tr1eI+G4Wz9IhthLeCiRQ+ZWHv3FwyL1Vo 4Z7F2h2m5aTgHQc/XMQn2tkSFZGh3R1saMJ4MsIDgHZ4x4AqZaBRG8eRa68Ahewg rMDMr0HaFHbMK9fBfWh2ZQzU/dXloSP74vBwpGfBq4vJkOJOFIsd7SEyA3TWtN61 LeENWYb9feoMPO/Ai9P8pNn42+8mMagq -----END CERTIFICATE-----Generated at Sun Aug 24 21:31:15 2025 by rpki-client