$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft File: GJZ9zbckqEpxcR5niqsdLnIhXWw.mft (raw, json) Hash identifier: 2ZW/2LGk1vAEiebTR+B/x2035HCw92UBtDDuZguSjbs= Subject key identifier: AA:71:F6:D8:8B:F0:DE:68:A2:73:59:30:9B:E1:83:56:E3:4B:BA:D4 Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft Manifest number: 58 Signing time: Fri 05 Sep 2025 07:51:16 +0000 Manifest this update: Fri 05 Sep 2025 07:51:16 +0000 Manifest next update: Fri 12 Sep 2025 07:51:16 +0000 Files and hashes: 1: GJZ9zbckqEpxcR5niqsdLnIhXWw.crl (hash: dUePrNqQmyeRXAsTcx7mbNfOUe8U6fhwmWiiP58HqMk=) 2: 3408F1BA450811F09650FF5FC4F9AE02.roa (hash: bCkwnolEga96G4fQjLHTSTCqelRgfcxersU3tEYQQXA=) 3: 1808A790318411F0BC1DD041C4F9AE02.roa (hash: flX3irYKlYgZGHT2kvpQWpKKvTykKg+AN7X91kuuF4c=) 4: 37B448241F7811F0AC4FFF82C4F9AE02.roa (hash: rfQkg7k3FOtxE3QH+1b/dgEb3pjSHYuBHOu/Aw1ktps=) 5: 1879BE8A318411F0BC1DD041C4F9AE02.roa (hash: Z2oCf9VHu+Nlt7KaEbBkyqcl7gO+UQwxVS+M1hIhebk=) 6: 17894A68318411F0BC1DD041C4F9AE02.roa (hash: BtSPkMAc6JmUbVgs04DwYummrrWRw2IMsZrBj4wxrVc=) 7: 6896A446318411F0BBC4F91DC4F9AE02.roa (hash: Xrg0tE5OWYBtPUZ5NZncP6ifYaxEX/Vp4aRquzOzr2Y=) 8: 372E72941F7811F0AC4FFF82C4F9AE02.roa (hash: 77gNSThyGJ0AnlBE5SHj9Jhjf0hxCyKERlvCEcqZ/Gg=) 9: 349ACBB2450811F09650FF5FC4F9AE02.roa (hash: yHDrOZAHkb1aNlUdTrbId0x6TGNas51iB5olcDBHB+Q=) 10: 5E6EBAF64D0611F09396603CC4F9AE02.roa (hash: T7YSg4O6XdsHdCRu0Ytt2yzH0YgQZroHBRbYY6Lzb10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: Sep 5 07:51:16 2025 GMT Not After : Sep 12 07:51:16 2025 GMT Subject: CN=68ba9674-afd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:55:76:df:58:98:e9:90:9f:1f:09:ca:03:ef: 40:87:14:1c:88:cd:01:9b:58:0b:02:90:54:9c:33: 46:a9:b8:96:20:b0:6a:c0:a7:e4:b5:eb:fa:3f:5b: 31:bf:84:bd:97:e1:19:95:6d:dd:bb:82:4e:a1:66: f4:d5:47:5e:91:2e:c0:be:4e:45:4e:a6:14:be:38: 7c:56:1c:e6:0c:76:2c:5c:ab:06:64:2e:0e:2f:db: 06:dd:f0:5c:4a:5c:d8:e3:39:20:24:1c:3a:c2:23: d8:c9:61:e5:62:da:8e:fd:c9:df:da:9c:d6:22:f6: c7:07:a6:1e:d5:fa:9f:67:0d:78:e2:58:30:d8:01: 8f:ec:2a:7d:60:ab:94:42:ab:f3:1e:01:84:0f:88: b8:c2:96:78:9e:b8:82:95:c7:1d:3e:39:d7:16:65: 25:50:98:e0:e0:e4:e7:36:b2:03:80:d5:48:fa:f1: 29:07:36:4a:1f:a2:9b:79:2e:fe:42:c8:99:66:4c: 53:55:13:97:16:73:a4:27:45:c3:a1:10:c3:ba:60: 89:c0:97:3c:00:db:87:50:9e:6c:20:62:df:0c:cf: e5:97:64:40:cb:c9:df:a7:e6:2e:00:ed:13:6b:71: cc:7f:cf:23:ff:95:36:0f:e4:a1:ce:e2:2e:36:2e: d0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:71:F6:D8:8B:F0:DE:68:A2:73:59:30:9B:E1:83:56:E3:4B:BA:D4 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:a2:d6:1a:ed:c7:72:f7:fe:72:30:a8:9b:e9:10:87:97:fa: 6a:15:52:78:7c:06:38:3e:7a:22:de:3c:11:d9:90:c6:a5:1b: 98:fe:a0:6b:9d:e4:21:1d:76:34:43:69:59:48:b3:cb:76:d7: 9d:dc:44:35:16:3e:84:a6:05:11:e6:0e:80:4c:8b:dd:43:58: a8:24:d8:02:8c:75:59:9c:86:8c:f7:95:9f:f1:b0:cb:d9:34: ea:9f:a8:d2:3c:04:83:b8:13:06:64:6c:b8:77:7d:04:1c:65: 5f:18:7b:ad:3e:e0:da:35:d8:1b:eb:77:9c:c0:b6:0c:12:c0: 63:bc:b0:29:2e:02:be:d8:ab:de:0d:8d:3f:f3:0f:cf:4e:c5: 76:3c:57:44:30:38:4b:0f:c7:a0:3a:88:07:f8:19:10:14:e3: 12:4b:a0:9f:98:20:7c:25:ca:3f:9c:2e:57:17:51:b1:09:66: a8:5d:70:bf:5f:c5:3f:8f:fd:60:0d:92:51:4a:e0:af:4c:41: 05:65:19:45:9a:a0:2e:d4:72:33:6b:8a:fc:39:4a:0b:87:a0: 37:52:7e:da:b7:a9:07:6c:88:50:2b:6a:f4:f6:60:8b:f8:32: d1:13:00:2f:18:10:a5:65:41:da:1f:15:70:18:e5:78:5b:d9: ab:9a:7c:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA5MDUwNzUxMTZaFw0yNTA5MTIwNzUxMTZaMBgxFjAUBgNV BAMTDTY4YmE5Njc0LWFmZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMVXbfWJjpkJ8fCcoD70CHFByIzQGbWAsCkFScM0apuJYgsGrAp+S16/o/WzG/ hL2X4RmVbd27gk6hZvTVR16RLsC+TkVOphS+OHxWHOYMdixcqwZkLg4v2wbd8FxK XNjjOSAkHDrCI9jJYeVi2o79yd/anNYi9scHph7V+p9nDXjiWDDYAY/sKn1gq5RC q/MeAYQPiLjClnieuIKVxx0+OdcWZSVQmODg5Oc2sgOA1Uj68SkHNkofopt5Lv5C yJlmTFNVE5cWc6QnRcOhEMO6YInAlzwA24dQnmwgYt8Mz+WXZEDLyd+n5i4A7RNr ccx/zyP/lTYP5KHO4i42LtAbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqnH22Ivw 3miic1kwm+GDVuNLutQwHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy NDNGL0Q2ODRGQzJFMUE4QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVw eGNSNW5pcXNkTG5JaFhXdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB2i1hrtx3L3/nIwqJvpEIeX+moVUnh8Bjg+eiLePBHZkMalG5j+oGud 5CEddjRDaVlIs8t2153cRDUWPoSmBRHmDoBMi91DWKgk2AKMdVmchoz3lZ/xsMvZ NOqfqNI8BIO4EwZkbLh3fQQcZV8Ye60+4No12Bvrd5zAtgwSwGO8sCkuAr7Yq94N jT/zD89OxXY8V0QwOEsPx6A6iAf4GRAU4xJLoJ+YIHwlyj+cLlcXUbEJZqhdcL9f xT+P/WANklFK4K9MQQVlGUWaoC7UcjNrivw5SguHoDdSftq3qQdsiFAravT2YIv4 MtETAC8YEKVlQdofFXAY5Xhb2auafH4= -----END CERTIFICATE-----Generated at Fri Sep 5 11:31:46 2025 by rpki-client