$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: oliWpGfTELi3x4iYgFJRjhpf+IWguuaq9ROr7u8ZHr0= Subject key identifier: 17:20:26:14:53:58:D3:61:FB:31:92:9A:1E:E2:1E:7F:CB:41:86:1F Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: BB Signing time: Sat 19 Jul 2025 06:08:23 +0000 Manifest this update: Sat 19 Jul 2025 06:08:23 +0000 Manifest next update: Sat 26 Jul 2025 06:08:23 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: 9EPk+j/oT2VrYpQRtIb0ytmZGmXspMjW3bulDlfdG2w=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: zLr4joEY+P4VPtuV8/aIjLwuAD3fE/qCh+JRJT72wJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Jul 19 06:08:23 2025 GMT Not After : Jul 26 06:08:23 2025 GMT Subject: CN=687b3657-e21d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ee:88:9e:af:c0:71:da:2f:e2:5c:6c:79:f4: 4f:64:58:2e:1f:5d:05:02:4b:d1:7d:01:ca:04:0e: 88:cc:ab:58:f0:cf:51:8e:07:11:97:cc:3a:d6:38: 6b:6f:8f:a6:f8:54:bc:98:1b:89:51:2f:18:a9:5f: d3:16:ae:53:13:14:6f:97:72:87:36:b6:2b:fd:1d: c2:50:6d:54:8e:eb:e5:cc:12:af:40:7c:7a:15:e7: a0:36:1b:08:a9:c7:3c:94:0a:9d:13:c5:9a:df:5a: 47:60:fa:3b:f7:e7:fe:6e:4f:fa:d3:03:4d:8d:c2: 3f:3e:b9:e8:1e:f5:32:08:80:83:62:71:43:69:fa: 8e:05:25:09:ca:3d:54:f0:0d:12:53:44:63:12:4e: 42:1c:d0:4d:fc:b8:88:c5:dd:a4:c6:95:3b:7a:ef: 0a:6b:b4:5a:c3:26:18:1f:d8:c1:ac:e5:b6:42:de: 7e:e3:68:b7:ce:1c:55:a9:c5:42:f9:f0:72:04:df: d1:c1:3b:90:db:27:ee:66:b4:cc:9b:6b:ef:03:15: 50:61:75:4d:0c:c7:69:39:48:c5:db:5b:0d:ac:d2: 27:f8:47:b8:98:13:d6:7d:46:5d:aa:98:54:20:27: 10:8f:be:c6:0d:7a:59:d4:67:e8:e8:a8:7e:ea:90: 3a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:20:26:14:53:58:D3:61:FB:31:92:9A:1E:E2:1E:7F:CB:41:86:1F X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:c9:a9:aa:d8:ca:d2:22:89:c7:25:12:43:e7:b4:b0:e9:78: ab:ea:6d:d3:32:43:e2:e3:5f:91:85:9a:0a:52:45:3a:50:1c: 25:dc:26:1b:66:35:64:db:78:8d:19:91:8c:ce:f0:53:69:a3: 1c:2a:e8:5f:b3:06:21:42:98:38:ff:05:a7:f4:cd:04:37:ca: 2c:af:b1:fb:dc:e7:1c:f7:5a:19:fc:aa:81:4d:a1:0a:71:14: 57:14:64:e2:d0:40:e1:b3:e8:91:f6:b0:db:d7:ec:e6:0e:0c: 5f:10:b9:a5:55:66:e7:36:54:11:2a:75:da:12:3c:dc:60:25: 9c:44:64:1a:a4:80:b2:73:b1:1c:ef:0d:36:34:82:30:53:30: f4:a8:00:d5:ab:d5:8f:47:b6:3c:44:73:d7:17:40:a8:c4:dd: cd:bf:24:47:59:df:ef:3c:4b:2a:1b:00:7a:3f:81:67:60:48: c0:a7:ac:e1:ca:e5:52:73:75:2c:56:6d:53:77:1c:0b:73:1c: a8:4c:40:b2:04:21:ed:f7:6f:48:46:df:2b:11:bf:15:10:db: db:9d:49:b7:43:43:92:cb:60:c6:0e:ad:a5:ac:c0:ad:c7:aa: 22:ac:b6:5c:53:4a:ce:ef:8d:8e:5f:bf:cb:4b:79:b9:af:86: b6:98:78:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjUwNzE5MDYwODIzWhcNMjUwNzI2MDYwODIzWjAYMRYwFAYD VQQDEw02ODdiMzY1Ny1lMjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6e6Inq/Acdov4lxsefRPZFguH10FAkvRfQHKBA6IzKtY8M9RjgcRl8w61jhr b4+m+FS8mBuJUS8YqV/TFq5TExRvl3KHNrYr/R3CUG1UjuvlzBKvQHx6FeegNhsI qcc8lAqdE8Wa31pHYPo79+f+bk/60wNNjcI/PrnoHvUyCICDYnFDafqOBSUJyj1U 8A0SU0RjEk5CHNBN/LiIxd2kxpU7eu8Ka7RawyYYH9jBrOW2Qt5+42i3zhxVqcVC +fByBN/RwTuQ2yfuZrTMm2vvAxVQYXVNDMdpOUjF21sNrNIn+Ee4mBPWfUZdqphU ICcQj77GDXpZ1Gfo6Kh+6pA6BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcgJhRT WNNh+zGSmh7iHn/LQYYfMB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH clhXRjEycjdha0FMVVVMRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgyamq2MrSIonHJRJD57Sw6Xir6m3TMkPi41+RhZoKUkU6UBwl3CYb ZjVk23iNGZGMzvBTaaMcKuhfswYhQpg4/wWn9M0EN8osr7H73Occ91oZ/KqBTaEK cRRXFGTi0EDhs+iR9rDb1+zmDgxfELmlVWbnNlQRKnXaEjzcYCWcRGQapICyc7Ec 7w02NIIwUzD0qADVq9WPR7Y8RHPXF0CoxN3NvyRHWd/vPEsqGwB6P4FnYEjAp6zh yuVSc3UsVm1TdxwLcxyoTECyBCHt929IRt8rEb8VENvbnUm3Q0OSy2DGDq2lrMCt x6oirLZcU0rO742OX7/LS3m5r4a2mHjf -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:59 2025 by rpki-client