$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: +c7qRw0ZL4kGBT0BJ7r/Awmr5yPv0z6C7046g3uKULI= Subject key identifier: 43:16:63:A6:20:4B:DE:E1:97:72:B0:96:CF:60:D1:89:6E:BF:BF:DA Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 0772 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 075F Signing time: Tue 16 Sep 2025 21:58:29 +0000 Manifest this update: Tue 16 Sep 2025 21:58:29 +0000 Manifest next update: Tue 23 Sep 2025 21:58:29 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: aiidqaVi8LNkyS49hd0Y023Ba9v3lGpOODTn/q9Kq+Q=) 2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 21:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1906 (0x772) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834, serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Validity Not Before: Sep 16 21:58:29 2025 GMT Not After : Sep 23 21:58:29 2025 GMT Subject: CN=68c9dd85-c24b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b6:2a:6f:54:b6:14:cf:71:97:b5:3c:0d:0d: 33:13:09:d1:f5:aa:20:90:3a:80:14:a7:88:50:45: 7e:09:89:64:4a:80:8a:76:83:d2:ef:0f:12:37:ff: 31:e0:5e:1d:b8:af:1e:7c:8a:eb:48:57:99:c2:d8: 20:51:67:26:8f:f8:a9:3a:05:bc:3b:4e:50:b7:82: ee:ea:4e:3e:e7:51:26:49:a3:bf:6a:b7:c1:07:7d: 2f:60:7e:9c:aa:ac:2d:a6:65:f2:c0:69:a6:24:50: 7a:6c:5a:e0:9b:1f:b2:d0:58:3b:3c:75:e5:7d:c8: e2:1c:a8:ec:6b:df:e6:e3:98:cf:ea:9d:27:f8:12: cf:fb:22:df:40:9e:16:57:5b:30:63:45:1e:df:b4: 3a:72:57:1e:04:b3:cd:ea:0a:9b:66:31:78:6c:e4: f7:62:db:8a:b6:1f:8e:a9:39:ff:1b:e5:8e:7c:00: a8:35:d6:7c:f4:3c:05:e5:94:02:48:92:51:0f:23: 07:ff:e8:7c:06:83:b7:48:06:f3:50:1a:23:59:08: 18:53:c3:bf:e6:33:ae:d2:d8:0e:5a:99:2a:3a:6d: 23:45:76:a6:9d:af:c9:1d:dd:36:91:71:5f:23:aa: 48:8b:db:94:5c:f8:e8:9a:f7:91:84:67:27:94:d3: 06:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:16:63:A6:20:4B:DE:E1:97:72:B0:96:CF:60:D1:89:6E:BF:BF:DA X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:52:ef:c4:02:5e:ff:f5:17:c8:27:44:44:22:d0:cf:cf:9f: fc:8d:fa:d0:25:dc:ac:f1:d2:b7:65:39:bc:bf:0b:59:fc:0f: 6a:30:ad:d0:a5:f8:5a:30:4f:56:48:c1:5c:ae:07:f5:cd:12: 64:bc:a9:c8:42:3e:3e:39:59:ee:9d:e3:90:cd:65:cc:3f:57: 5f:7c:ad:5f:a9:25:db:25:30:97:46:b3:60:ee:e6:73:a4:96: 8f:b9:22:8b:bf:a0:67:0b:bf:01:76:a0:f2:53:d3:41:f3:3e: c7:97:d7:3b:53:61:80:46:d1:38:dd:82:6d:38:40:b4:23:c6: 58:e1:65:c2:1a:8f:8e:37:35:e3:50:d1:15:dc:07:f7:f6:0a: ef:e7:4e:5f:56:d5:8c:41:4c:92:40:14:1b:0d:33:19:b8:49: 2d:52:da:d6:bc:2b:a3:50:f2:ea:17:7d:86:fd:29:f6:43:75: df:b2:c3:ee:7d:00:2c:4e:c2:a6:1f:f0:50:5d:03:6e:f8:d0: 3a:c4:44:01:10:a4:a4:ec:2b:be:c5:21:3c:29:32:e3:ac:28: a1:30:f6:87:b4:1c:8a:7c:c8:da:90:af:b8:1d:ca:bb:47:6f: 31:34:18:17:6c:6e:dd:4c:b8:11:57:d0:5f:b3:f5:24:a4:6c: 9d:25:21:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjUwOTE2MjE1ODI5WhcNMjUwOTIzMjE1ODI5WjAYMRYwFAYD VQQDEw02OGM5ZGQ4NS1jMjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLYqb1S2FM9xl7U8DQ0zEwnR9aogkDqAFKeIUEV+CYlkSoCKdoPS7w8SN/8x 4F4duK8efIrrSFeZwtggUWcmj/ipOgW8O05Qt4Lu6k4+51EmSaO/arfBB30vYH6c qqwtpmXywGmmJFB6bFrgmx+y0Fg7PHXlfcjiHKjsa9/m45jP6p0n+BLP+yLfQJ4W V1swY0Ue37Q6clceBLPN6gqbZjF4bOT3YtuKth+OqTn/G+WOfACoNdZ89DwF5ZQC SJJRDyMH/+h8BoO3SAbzUBojWQgYU8O/5jOu0tgOWpkqOm0jRXamna/JHd02kXFf I6pIi9uUXPjomveRhGcnlNMGkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMWY6Yg S97hl3Kwls9g0Yluv7/aMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSUu/EAl7/9RfIJ0REItDPz5/8jfrQJdys8dK3ZTm8vwtZ/A9qMK3Q pfhaME9WSMFcrgf1zRJkvKnIQj4+OVnuneOQzWXMP1dffK1fqSXbJTCXRrNg7uZz pJaPuSKLv6BnC78BdqDyU9NB8z7Hl9c7U2GARtE43YJtOEC0I8ZY4WXCGo+ONzXj UNEV3Af39grv505fVtWMQUySQBQbDTMZuEktUtrWvCujUPLqF32G/Sn2Q3XfssPu fQAsTsKmH/BQXQNu+NA6xEQBEKSk7Cu+xSE8KTLjrCihMPaHtByKfMjakK+4Hcq7 R28xNBgXbG7dTLgRV9Bfs/UkpGydJSG9 -----END CERTIFICATE-----Generated at Thu Sep 18 23:10:37 2025 by rpki-client