$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: s4842wFa3SZrRCwtzIq3M/pdDKlCOTKF453LS1cGoCo= Subject key identifier: A0:74:C4:74:2F:E0:95:A6:3C:AA:EC:D3:01:FD:19:16:16:C6:89:92 Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 02F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 02EB Signing time: Tue 09 Sep 2025 01:24:36 +0000 Manifest this update: Tue 09 Sep 2025 01:24:36 +0000 Manifest next update: Tue 16 Sep 2025 01:24:36 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: 9qBUr4F7zgjYk1tCU0O3kPElkTfZOXMby/kBHszo1SE=) 2: 3785A958EF4711EF906AD167C4F9AE02.roa (hash: Xop4pF7LmPiWj4qFmNK9jXxRuc+SVOdI5Rsywj/dhPQ=) 3: 464B4494F7D911EF8EA69265C4F9AE02.roa (hash: kw7ZHY1axLvj55a+YPxHpHPEy1diN3j6tF6SRdvVlY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 756 (0x2f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F, serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: Sep 9 01:24:36 2025 GMT Not After : Sep 16 01:24:36 2025 GMT Subject: CN=68bf81d4-fbec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:74:19:0b:28:2d:f2:fc:76:88:35:8b:1b:1d: 71:53:73:1f:d7:8d:29:f9:f0:9d:3f:ad:4b:61:51: 9d:94:4b:2e:85:7a:d8:f5:7b:42:bc:27:ab:ed:ae: f9:e3:47:72:f8:c9:9f:ea:32:fb:a8:c6:45:fa:a6: 7f:96:e2:5e:16:28:62:bc:87:88:b7:2a:32:c4:7d: c3:73:67:1d:d9:f9:0b:cd:86:c6:c8:5a:9c:be:54: 78:0f:53:ca:61:f6:f9:cc:1a:fc:61:98:64:bf:b0: 03:88:5c:e5:82:88:4c:06:6b:e5:8d:1b:2c:47:b2: bf:6c:7a:a9:fb:10:36:70:6e:77:ac:a2:67:d9:ac: 80:a2:2f:38:8a:a5:04:44:5d:47:c2:99:86:09:53: 2f:1b:55:f0:2a:e1:b0:11:6a:90:86:b9:59:bb:cd: f0:4c:0b:ee:a0:0b:10:85:c8:ca:dd:95:f4:a5:b6: 18:6e:13:71:00:57:00:d2:d8:e7:1b:a1:d8:25:46: ef:51:37:9a:15:8a:35:01:15:ba:5f:4a:7b:e0:da: ce:a0:68:2e:ea:ad:b4:90:01:44:77:19:8a:86:98: e4:90:39:94:41:47:2a:4f:82:69:74:61:25:ed:c9: 9b:bd:0c:10:68:c1:a5:59:e9:65:4a:ed:24:88:4c: be:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:74:C4:74:2F:E0:95:A6:3C:AA:EC:D3:01:FD:19:16:16:C6:89:92 X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:39:6b:00:54:a8:54:eb:dc:52:38:ee:13:02:76:22:df:34: ca:e7:46:da:68:74:0c:38:77:95:a3:06:ea:c4:69:df:a9:4c: 5f:f5:4f:bd:1b:f1:fd:98:49:1e:ae:06:85:84:d9:d6:62:f9: 1f:7d:0a:6f:75:73:d2:7e:af:1d:9c:d9:af:6f:d3:40:86:f9: de:16:fd:54:4a:7f:e0:fd:4c:a3:4e:ee:2c:24:a6:81:03:d2: 14:4b:a0:45:d6:19:04:34:2e:5e:7b:8b:2d:0f:52:73:81:4b: 02:1c:8d:68:1b:d4:a7:8a:bf:4e:7c:b9:1a:d4:67:4c:ed:81: f0:e7:1a:1c:c9:5f:ba:8a:07:69:f7:60:3d:2e:4a:a1:52:9c: 29:5b:39:6f:31:26:56:4a:f0:0c:7c:d8:32:ac:43:3f:45:c6: 77:09:8e:0a:a1:4e:aa:fe:37:6a:70:2a:2e:83:8a:99:0c:7c: 57:f9:01:8c:92:c6:29:6d:62:84:9d:89:c3:d0:35:4d:5e:91: 44:af:fd:52:0b:ad:95:81:b7:48:6a:18:de:aa:90:1c:f6:5e: 84:3a:cd:18:19:d8:3a:86:85:83:c3:71:9b:68:44:5a:63:01: 14:ab:6f:3c:c2:a7:b1:cb:d1:83:70:0f:35:a5:ff:9f:70:45: 6b:3e:75:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUwOTA5MDEyNDM2WhcNMjUwOTE2MDEyNDM2WjAYMRYwFAYD VQQDEw02OGJmODFkNC1mYmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XQZCygt8vx2iDWLGx1xU3Mf140p+fCdP61LYVGdlEsuhXrY9XtCvCer7a75 40dy+Mmf6jL7qMZF+qZ/luJeFihivIeItyoyxH3Dc2cd2fkLzYbGyFqcvlR4D1PK Yfb5zBr8YZhkv7ADiFzlgohMBmvljRssR7K/bHqp+xA2cG53rKJn2ayAoi84iqUE RF1HwpmGCVMvG1XwKuGwEWqQhrlZu83wTAvuoAsQhcjK3ZX0pbYYbhNxAFcA0tjn G6HYJUbvUTeaFYo1ARW6X0p74NrOoGgu6q20kAFEdxmKhpjkkDmUQUcqT4JpdGEl 7cmbvQwQaMGlWellSu0kiEy+fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKB0xHQv 4JWmPKrs0wH9GRYWxomSMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXOWsAVKhU69xSOO4TAnYi3zTK50baaHQMOHeVowbqxGnfqUxf9U+9 G/H9mEkergaFhNnWYvkffQpvdXPSfq8dnNmvb9NAhvneFv1USn/g/UyjTu4sJKaB A9IUS6BF1hkENC5ee4stD1JzgUsCHI1oG9Snir9OfLka1GdM7YHw5xocyV+6igdp 92A9LkqhUpwpWzlvMSZWSvAMfNgyrEM/RcZ3CY4KoU6q/jdqcCoug4qZDHxX+QGM ksYpbWKEnYnD0DVNXpFEr/1SC62VgbdIahjeqpAc9l6EOs0YGdg6hoWDw3GbaERa YwEUq288wqexy9GDcA81pf+fcEVrPnUM -----END CERTIFICATE-----Generated at Wed Sep 10 07:04:32 2025 by rpki-client