$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: udFWVDfnVKy+ndJL7mshX0BPqYlKxpZPNFD2lJpesIY= Subject key identifier: BB:6A:BC:2B:5B:19:E6:59:12:1C:1E:30:1F:C6:46:D8:BE:ED:BD:11 Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: D4 Signing time: Fri 05 Sep 2025 06:02:54 +0000 Manifest this update: Fri 05 Sep 2025 06:02:54 +0000 Manifest next update: Fri 12 Sep 2025 06:02:54 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: DLvA0vPes0bIFQT1DNFu1A/lLX9wNikmuT7lA6C5NxQ=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: zLr4joEY+P4VPtuV8/aIjLwuAD3fE/qCh+JRJT72wJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Sep 5 06:02:54 2025 GMT Not After : Sep 12 06:02:54 2025 GMT Subject: CN=68ba7d0e-c4a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a0:96:2a:17:42:83:22:88:a0:84:3a:59:14: 06:dd:6d:47:cd:6f:f0:19:ad:f7:cd:a7:3b:d2:3f: 9c:23:bb:3b:be:5b:c7:34:2d:dc:2c:c3:98:cc:1f: 2e:cd:3a:a2:a2:85:14:60:ab:cd:27:fd:7b:d8:c1: 0c:b1:a8:a0:b4:75:a2:70:46:ab:48:37:58:9a:7f: bc:d2:48:0a:32:23:b0:7e:d0:14:0d:dd:07:6b:7c: d8:8d:cf:26:e3:de:c6:17:ac:64:0b:a4:cd:03:72: 45:af:a8:57:f9:1b:88:f4:5c:f2:75:04:6b:b2:9e: 38:a0:fe:fb:16:f3:1c:14:4e:a8:97:b2:ab:73:a2: a4:82:13:22:69:26:d3:51:10:98:58:8c:fd:97:0e: 18:d4:08:fd:8d:61:92:5c:03:e0:f4:76:e5:85:4e: c6:f0:ec:7c:93:e0:05:1e:b2:3a:54:94:91:58:40: e8:b7:91:fc:74:b7:94:92:e0:d9:ee:bc:b8:4e:f6: 2a:cd:3a:ac:ac:09:cc:ec:c4:52:fe:9b:cb:85:d4: a1:76:f2:57:57:68:b3:a6:13:ca:da:17:93:41:98: c7:47:aa:43:ed:b8:d0:6a:52:ec:fc:da:a8:69:7d: 24:e9:d6:25:50:e7:33:84:d7:51:40:14:5c:7e:90: f4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6A:BC:2B:5B:19:E6:59:12:1C:1E:30:1F:C6:46:D8:BE:ED:BD:11 X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:88:8a:bb:d8:14:4e:c1:5e:20:9b:f9:6a:0f:6e:4c:e3:a2: 88:6b:f8:d3:65:b6:d5:b5:c7:16:82:0d:0b:47:ac:76:29:c0: 61:9b:ff:66:ff:62:1c:ca:cc:a2:04:e6:27:44:ee:ef:4b:10: 03:05:39:10:7e:5a:2a:19:3f:0b:37:41:6a:30:74:89:71:e6: 70:46:8f:6a:35:f9:4b:91:9b:62:44:2b:e5:e5:88:fe:20:da: c3:43:5c:42:2f:0b:d3:bb:3a:9e:3e:29:2c:fe:50:d5:bc:f8: bf:7c:c2:19:65:91:97:b1:5d:05:04:73:6a:53:b9:10:ae:02: 1f:89:00:5b:9c:24:4e:06:12:6f:3c:42:e4:c5:c0:e9:8b:be: ea:10:20:a3:31:7a:84:aa:fa:fb:c2:75:29:29:0f:f5:f4:86: 71:06:8f:da:9b:72:89:cc:2c:38:a5:b5:2a:35:f8:53:06:cb: 13:fe:dc:02:59:d2:70:e7:40:9a:66:0f:b6:4b:05:21:73:2f: 81:9c:57:fa:fa:3b:ce:6a:a8:7d:70:77:c6:87:70:2a:fd:68: 88:04:fd:3c:1e:a7:e0:63:1e:87:f4:10:3b:5e:36:a1:04:dd: a2:fa:e6:44:0d:43:ae:38:7c:d0:e6:6c:c6:f2:85:be:5b:9d: 92:65:06:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjUwOTA1MDYwMjU0WhcNMjUwOTEyMDYwMjU0WjAYMRYwFAYD VQQDEw02OGJhN2QwZS1jNGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaCWKhdCgyKIoIQ6WRQG3W1HzW/wGa33zac70j+cI7s7vlvHNC3cLMOYzB8u zTqiooUUYKvNJ/172MEMsaigtHWicEarSDdYmn+80kgKMiOwftAUDd0Ha3zYjc8m 497GF6xkC6TNA3JFr6hX+RuI9FzydQRrsp44oP77FvMcFE6ol7Krc6KkghMiaSbT URCYWIz9lw4Y1Aj9jWGSXAPg9HblhU7G8Ox8k+AFHrI6VJSRWEDot5H8dLeUkuDZ 7ry4TvYqzTqsrAnM7MRS/pvLhdShdvJXV2izphPK2heTQZjHR6pD7bjQalLs/Nqo aX0k6dYlUOczhNdRQBRcfpD0pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtqvCtb GeZZEhweMB/GRti+7b0RMB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH clhXRjEycjdha0FMVVVMRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZiIq72BROwV4gm/lqD25M46KIa/jTZbbVtccWgg0LR6x2KcBhm/9m /2IcysyiBOYnRO7vSxADBTkQfloqGT8LN0FqMHSJceZwRo9qNflLkZtiRCvl5Yj+ INrDQ1xCLwvTuzqePiks/lDVvPi/fMIZZZGXsV0FBHNqU7kQrgIfiQBbnCROBhJv PELkxcDpi77qECCjMXqEqvr7wnUpKQ/19IZxBo/am3KJzCw4pbUqNfhTBssT/twC WdJw50CaZg+2SwUhcy+BnFf6+jvOaqh9cHfGh3Aq/WiIBP08HqfgYx6H9BA7Xjah BN2i+uZEDUOuOHzQ5mzG8oW+W52SZQYG -----END CERTIFICATE-----Generated at Sat Sep 6 21:13:21 2025 by rpki-client