$ rpki-client -vvf rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft File: gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft (raw, json) Hash identifier: RnL14A9sVAxfCWTXMJv955P6e9OcAUteJ0irfDn9h2E= Subject key identifier: B2:BC:2A:FA:B1:5A:94:0D:4E:11:4F:FA:37:81:8A:9C:37:5A:82:6D Authority key identifier: 80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB Certificate issuer: /CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Certificate serial: 07B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft Manifest number: 07AD Signing time: Sat 06 Sep 2025 21:34:35 +0000 Manifest this update: Sat 06 Sep 2025 21:34:35 +0000 Manifest next update: Sat 13 Sep 2025 21:34:35 +0000 Files and hashes: 1: gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl (hash: 3N/tAX1ieQuN4tmrwKDOP97YtUUCAsEXBxeIuY8mIi4=) 2: F75AEA8A13F111EB950DBC4EC4F9AE02.roa (hash: +QmSQmsTCCd4yyTjh5mf70wyqAWPCaGTrX6lQ4meIO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:34:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1971 (0x7b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D959F, serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Validity Not Before: Sep 6 21:34:35 2025 GMT Not After : Sep 13 21:34:35 2025 GMT Subject: CN=68bca8eb-8aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5a:18:27:19:34:f8:8d:94:b4:10:ae:27:2d: 9b:ea:37:a2:8c:e8:0c:ba:e7:84:5a:40:89:2e:73: 8e:8e:e3:e6:8b:bd:00:b4:d3:bd:21:86:4e:37:f9: 7f:37:71:07:98:0b:f4:a5:31:fc:b0:b6:17:49:82: 66:48:af:e7:cb:70:e4:9d:a0:05:1c:99:72:ba:67: 7a:53:32:7f:4c:57:b7:37:cc:6f:49:87:38:b5:6a: 1a:25:c8:c7:4f:4b:04:ce:30:04:e4:93:36:86:77: 60:c8:4f:36:f4:13:57:c1:40:b1:e5:0a:09:e1:dd: b0:c9:c1:b3:fb:0e:e9:d1:6a:fa:da:ce:1b:52:af: 80:c4:d7:b8:c1:66:48:5f:3a:45:04:b4:92:5c:74: 54:10:36:1f:15:d9:02:e6:67:f8:56:02:97:fb:04: e5:f7:51:3c:9c:2a:00:e6:fd:45:a4:58:04:fe:fc: 97:70:07:9c:39:bb:b6:d3:ae:b6:c6:8f:58:92:38: e0:ee:81:2a:b9:f4:d8:a9:d8:a1:b0:2d:4a:21:ca: 34:30:27:b6:28:87:8a:37:f1:51:63:98:14:e1:76: 1c:63:e4:e5:eb:0b:cc:b4:9d:d3:36:ce:df:69:26: 8d:7f:71:78:99:85:b6:c3:a2:fe:40:dc:80:9c:1b: 98:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:BC:2A:FA:B1:5A:94:0D:4E:11:4F:FA:37:81:8A:9C:37:5A:82:6D X509v3 Authority Key Identifier: keyid:80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:79:a0:9c:e1:ea:28:30:33:54:1d:b5:46:e9:b6:c9:4d:58: 0c:01:9d:79:a4:c4:d3:89:56:90:22:d4:4c:e7:5f:11:b9:2f: 56:de:f9:11:55:26:5d:eb:fd:a6:ac:4c:d0:79:81:2c:7a:5d: e0:21:f1:e9:59:e7:7c:77:05:98:a4:db:dc:ea:57:e2:18:2e: 34:22:87:1a:ea:ff:06:3e:3f:57:70:fa:8d:9b:0d:cd:6c:2b: ab:84:2c:e0:61:4c:f5:1a:e1:96:e2:4a:d6:16:9c:db:b3:2d: b8:7a:e7:10:53:db:8e:45:85:e3:39:0c:78:3a:90:1f:6f:af: 44:3c:8f:4f:4b:c2:66:72:5e:fe:1a:4a:53:9f:65:89:c2:1f: 3b:f7:31:4b:13:42:be:54:f3:5b:0c:26:39:db:58:e2:cb:8c: ba:d3:c9:c2:90:bb:71:05:18:71:0c:54:bc:12:15:73:e5:b4: 95:9c:26:af:de:f1:71:9f:56:78:0a:54:0b:e7:b8:8a:c3:15: d8:e8:46:3a:28:0e:fb:21:7b:02:db:99:80:dc:7e:c1:bf:f9: 10:ad:7c:31:7d:86:c1:b0:56:6a:4f:ab:0d:50:f4:27:76:1a: 33:04:db:bf:e6:72:f0:6a:61:fe:5e:a8:0b:93:06:81:b4:71: d5:b2:7d:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk1OUYxMTAvBgNVBAUTKDgwODQwMTcyM0MyRTQxODQ1NkFGOUEwRkIyNUY4QzMy MUM0OTcwQ0IwHhcNMjUwOTA2MjEzNDM1WhcNMjUwOTEzMjEzNDM1WjAYMRYwFAYD VQQDEw02OGJjYThlYi04YWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzloYJxk0+I2UtBCuJy2b6jeijOgMuueEWkCJLnOOjuPmi70AtNO9IYZON/l/ N3EHmAv0pTH8sLYXSYJmSK/ny3DknaAFHJlyumd6UzJ/TFe3N8xvSYc4tWoaJcjH T0sEzjAE5JM2hndgyE829BNXwUCx5QoJ4d2wycGz+w7p0Wr62s4bUq+AxNe4wWZI XzpFBLSSXHRUEDYfFdkC5mf4VgKX+wTl91E8nCoA5v1FpFgE/vyXcAecObu20662 xo9Ykjjg7oEqufTYqdihsC1KIco0MCe2KIeKN/FRY5gU4XYcY+Tl6wvMtJ3TNs7f aSaNf3F4mYW2w6L+QNyAnBuYBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLK8Kvqx WpQNThFP+jeBipw3WoJtMB8GA1UdIwQYMBaAFICEAXI8LkGEVq+aD7JfjDIcSXDL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTU5Ri8wNjgxMDBFQTEz RjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZUldyNW9Qc2wtTU1oeEpj TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dJUUJjand1UVlSV3I1b1BzbC1NTWh4SmNNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTU5Ri8wNjgxMDBFQTEzRjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZ UldyNW9Qc2wtTU1oeEpjTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHeaCc4eooMDNUHbVG6bbJTVgMAZ15pMTTiVaQItRM518RuS9W3vkR VSZd6/2mrEzQeYEsel3gIfHpWed8dwWYpNvc6lfiGC40Ioca6v8GPj9XcPqNmw3N bCurhCzgYUz1GuGW4krWFpzbsy24eucQU9uORYXjOQx4OpAfb69EPI9PS8Jmcl7+ GkpTn2WJwh879zFLE0K+VPNbDCY521jiy4y608nCkLtxBRhxDFS8EhVz5bSVnCav 3vFxn1Z4ClQL57iKwxXY6EY6KA77IXsC25mA3H7Bv/kQrXwxfYbBsFZqT6sNUPQn dhozBNu/5nLwamH+XqgLkwaBtHHVsn06 -----END CERTIFICATE-----Generated at Sun Sep 7 14:18:35 2025 by rpki-client