$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft File: gTpuT37cWLx6SLbR_XwZ39go8fE.mft (raw, json) Hash identifier: +CAfw1DE9D1d/69W0QjLjV1me0VsMSEVkEltWXax8Qo= Subject key identifier: 4E:33:5B:E5:86:03:91:E1:B5:C9:11:36:48:98:7E:0F:43:75:DF:24 Authority key identifier: 81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 Certificate issuer: /CN=A91E0CF5/serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft Manifest number: D3 Signing time: Fri 05 Sep 2025 06:03:26 +0000 Manifest this update: Fri 05 Sep 2025 06:03:26 +0000 Manifest next update: Fri 12 Sep 2025 06:03:26 +0000 Files and hashes: 1: gTpuT37cWLx6SLbR_XwZ39go8fE.crl (hash: hwhvh6rKIwG2rI5ZdKGHeZXmOpKAzNaFXhtRyL3+Gqg=) 2: C0F3F504492B11EF8EF0D04FC4F9AE02.roa (hash: 0zbBkZ62dr/yZQO3asP9YyQ8MW3j8nW078S8WtIQO9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5, serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Validity Not Before: Sep 5 06:03:26 2025 GMT Not After : Sep 12 06:03:26 2025 GMT Subject: CN=68ba7d2e-8014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6e:e6:b4:a0:65:26:f0:ff:fa:0c:ae:c3:22: bc:0a:82:c9:7e:59:9a:ee:83:30:9e:ba:88:9e:01: 62:8b:56:4c:c1:71:74:ce:84:81:36:86:5e:6f:58: 38:5b:24:5c:8e:65:44:50:26:21:75:07:0e:78:0a: bd:2c:06:ce:39:42:c0:25:09:7f:62:ef:c5:44:3b: 4c:cb:7a:4f:87:b3:b7:26:84:bf:8b:fc:ae:21:7d: 62:e6:3e:5d:43:8c:f5:c7:fc:56:70:fc:23:11:d6: 0e:b9:ec:f9:cd:2c:b2:af:f0:d5:c8:fa:12:93:fe: ca:57:fa:c4:67:98:a7:17:d0:9f:c5:94:ae:3a:98: 43:c7:10:4f:0c:a7:c5:1e:1e:3d:af:1f:ec:d8:37: 1f:e4:4b:0b:59:ef:8c:fb:16:68:1e:06:40:65:37: ab:06:14:dd:05:71:4b:cf:b8:2a:b7:b6:2e:64:7e: de:1d:ac:dc:92:f4:c1:50:ad:c9:a6:77:99:6d:a9: e9:69:5e:5a:b8:aa:b4:b6:40:bb:fa:b0:e4:91:8e: 6a:c5:9c:d0:6a:b2:9e:dd:1d:06:a0:31:4d:77:00: f0:15:89:48:98:bc:33:8f:40:2f:17:eb:b3:34:9b: 80:52:29:dd:e5:68:fa:a1:65:82:82:87:50:c1:a1: 3e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:33:5B:E5:86:03:91:E1:B5:C9:11:36:48:98:7E:0F:43:75:DF:24 X509v3 Authority Key Identifier: keyid:81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:73:74:b3:8a:d9:ba:f1:07:c6:b4:81:fe:6e:18:32:4e:89: 05:77:49:4b:68:2a:78:8f:83:89:ec:40:43:20:ad:8a:b2:c4: 32:99:38:aa:13:af:ef:a6:c1:3b:bb:39:62:24:81:87:d3:4a: 6f:1f:bd:8a:06:56:7d:df:ee:99:92:38:1e:07:8c:13:0d:9f: 18:21:fe:71:74:7d:cb:63:a0:69:be:90:63:f0:ac:df:39:be: c2:b8:57:29:26:88:f0:31:c0:9b:85:80:0a:67:55:8d:ea:4a: fe:9f:0d:5f:67:a1:1e:5e:e1:df:71:2d:56:54:52:e5:bc:a7: 56:96:9c:5f:35:e5:f2:cd:18:d0:ae:b1:62:74:6e:b8:85:4b: 6f:d4:a6:94:c1:dd:c0:60:77:43:8b:0a:98:e2:52:01:94:77: 68:2e:ee:43:26:c1:f0:77:1d:49:4b:56:0d:6c:03:2c:b7:d2: 7f:3f:a4:80:21:e2:c3:64:a2:8c:89:05:90:2e:80:bf:70:33: ef:39:d2:98:c8:0a:5f:4f:9e:da:e5:a9:1e:81:ec:bf:33:87: e5:08:de:16:53:84:c7:37:ff:4d:9e:25:13:75:78:1b:6e:e3: 20:32:d7:65:c0:86:40:ee:0c:ee:5e:09:c1:78:0b:96:86:83: 66:72:a4:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRjUxMTAvBgNVBAUTKDgxM0E2RTRGN0VEQzU4QkM3QTQ4QjZEMUZEN0MxOURG RDgyOEYxRjEwHhcNMjUwOTA1MDYwMzI2WhcNMjUwOTEyMDYwMzI2WjAYMRYwFAYD VQQDEw02OGJhN2QyZS04MDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxG7mtKBlJvD/+gyuwyK8CoLJflma7oMwnrqIngFii1ZMwXF0zoSBNoZeb1g4 WyRcjmVEUCYhdQcOeAq9LAbOOULAJQl/Yu/FRDtMy3pPh7O3JoS/i/yuIX1i5j5d Q4z1x/xWcPwjEdYOuez5zSyyr/DVyPoSk/7KV/rEZ5inF9CfxZSuOphDxxBPDKfF Hh49rx/s2Dcf5EsLWe+M+xZoHgZAZTerBhTdBXFLz7gqt7YuZH7eHazckvTBUK3J pneZbanpaV5auKq0tkC7+rDkkY5qxZzQarKe3R0GoDFNdwDwFYlImLwzj0AvF+uz NJuAUind5Wj6oWWCgodQwaE+/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4zW+WG A5HhtckRNkiYfg9Ddd8kMB8GA1UdIwQYMBaAFIE6bk9+3Fi8eki20f18Gd/YKPHx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENGNS80QkI3QzY0NDQ5 MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi9nVHB1VDM3Y1dMeDZTTGJSX1h3WjM5Z284 ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dUcHVUMzdjV0x4NlNMYlJfWHdaMzlnbzhmRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENGNS80QkI3QzY0NDQ5MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi9nVHB1VDM3Y1dM eDZTTGJSX1h3WjM5Z284ZkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBc3Szitm68QfGtIH+bhgyTokFd0lLaCp4j4OJ7EBDIK2KssQymTiq E6/vpsE7uzliJIGH00pvH72KBlZ93+6ZkjgeB4wTDZ8YIf5xdH3LY6BpvpBj8Kzf Ob7CuFcpJojwMcCbhYAKZ1WN6kr+nw1fZ6EeXuHfcS1WVFLlvKdWlpxfNeXyzRjQ rrFidG64hUtv1KaUwd3AYHdDiwqY4lIBlHdoLu5DJsHwdx1JS1YNbAMst9J/P6SA IeLDZKKMiQWQLoC/cDPvOdKYyApfT57a5akegey/M4flCN4WU4THN/9NniUTdXgb buMgMtdlwIZA7gzuXgnBeAuWhoNmcqSE -----END CERTIFICATE-----Generated at Sat Sep 6 20:53:00 2025 by rpki-client