$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft File: gTpuT37cWLx6SLbR_XwZ39go8fE.mft (raw, json) Hash identifier: 2qypBy79KROrg2ou0cQSYeBPeJArKA1VtnyWNv9OpKY= Subject key identifier: 39:28:1A:BB:30:68:84:D9:DB:5C:B8:F2:7D:AA:D7:24:95:B7:83:64 Authority key identifier: 81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 Certificate issuer: /CN=A91E0CF5/serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft Manifest number: B9 Signing time: Mon 21 Jul 2025 06:04:48 +0000 Manifest this update: Mon 21 Jul 2025 06:04:47 +0000 Manifest next update: Mon 28 Jul 2025 06:04:47 +0000 Files and hashes: 1: gTpuT37cWLx6SLbR_XwZ39go8fE.crl (hash: zdltdcvJyPexbvCSd1vbOmkKj2kK9FO0y2A9yWbHDk0=) 2: C0F3F504492B11EF8EF0D04FC4F9AE02.roa (hash: 9XdOr8ci0XxQ25MZorUAalomR3Uhklj1yk5ZzWVz3NQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5, serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Validity Not Before: Jul 21 06:04:47 2025 GMT Not After : Jul 28 06:04:47 2025 GMT Subject: CN=687dd880-8548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2b:7e:02:09:aa:a9:d4:9c:3b:2e:dd:75:02: b7:80:3b:57:c3:36:69:60:ff:9a:b7:b6:da:de:9c: 76:9b:bd:c8:c8:90:3c:d3:96:01:f7:dd:99:48:87: 39:97:7f:f2:69:dd:d8:70:e5:ec:a7:3d:e3:12:fd: 51:e6:fc:a8:e4:bf:b3:8b:d4:ce:83:11:09:09:11: 42:28:b2:03:bf:a1:be:e2:a2:61:90:6e:db:47:80: d3:ab:e3:ad:fc:6e:9a:51:05:67:18:c3:4a:b5:21: e3:28:90:3d:e1:69:70:30:d8:f7:ef:41:41:40:63: b4:a0:63:ca:13:05:43:2e:1e:32:e1:72:51:b9:32: d6:98:4d:51:04:5e:e9:0c:b2:10:0e:f1:97:bb:f4: 99:a9:d8:f5:aa:9f:b5:de:6f:d6:c8:4b:26:47:34: 75:3c:ea:6f:7b:97:ab:a6:f1:fc:0e:54:67:50:c7: 16:2c:a8:a0:0f:2a:eb:f0:0d:48:05:72:be:e8:82: de:c6:02:5a:04:e1:da:c3:7a:c4:f3:52:c9:a7:1a: 5e:56:f5:22:d1:a6:07:1a:b9:cb:03:87:9f:d1:7a: 24:76:1f:18:4f:8a:46:3e:34:5f:0d:61:a4:08:32: f9:21:13:31:c4:c8:21:75:0f:84:9c:87:aa:a5:4a: 20:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:28:1A:BB:30:68:84:D9:DB:5C:B8:F2:7D:AA:D7:24:95:B7:83:64 X509v3 Authority Key Identifier: keyid:81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:1b:74:54:68:49:de:4f:13:67:09:75:05:d1:d7:13:cf:cd: 75:c9:72:1b:82:9b:65:5d:24:69:28:b5:04:4a:c3:6f:96:50: 46:2c:18:70:83:41:c9:90:f3:46:59:ce:26:c0:6d:9a:2f:cf: 84:61:ff:98:85:47:9f:48:b5:34:3f:76:43:1d:ef:d7:a3:b9: 6e:53:b6:5f:12:28:35:a1:f7:b9:f2:a0:fd:76:96:73:c7:6e: 9e:7b:c5:87:d6:05:64:b9:68:aa:40:ee:cd:3f:e2:5c:30:e2: ed:8e:4c:b4:b0:30:8e:03:29:ff:ca:20:6f:8c:09:cf:2d:df: b6:68:3d:1e:5b:53:fb:f7:aa:9b:84:41:b9:cc:4c:bb:b2:6e: f4:2f:c3:aa:3b:4a:4d:27:78:60:41:8b:76:b8:3f:f5:48:3e: 80:5d:30:06:ae:ff:b2:b9:fc:24:f0:bc:f5:b1:82:b0:ed:99: d4:59:be:74:12:2a:1a:33:c4:7f:6a:03:3f:dc:03:f3:86:d7: e4:08:f8:cd:c9:fb:94:99:9c:18:1a:fd:0a:07:17:95:df:1f: 37:ac:da:98:fc:dd:a7:f8:1b:d4:7e:be:1a:96:5d:8c:13:74: a5:68:49:4a:a1:df:36:eb:b1:d7:55:d2:c2:65:45:41:5f:65: 92:5c:69:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRjUxMTAvBgNVBAUTKDgxM0E2RTRGN0VEQzU4QkM3QTQ4QjZEMUZEN0MxOURG RDgyOEYxRjEwHhcNMjUwNzIxMDYwNDQ3WhcNMjUwNzI4MDYwNDQ3WjAYMRYwFAYD VQQDEw02ODdkZDg4MC04NTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCt+AgmqqdScOy7ddQK3gDtXwzZpYP+at7ba3px2m73IyJA805YB992ZSIc5 l3/yad3YcOXspz3jEv1R5vyo5L+zi9TOgxEJCRFCKLIDv6G+4qJhkG7bR4DTq+Ot /G6aUQVnGMNKtSHjKJA94WlwMNj370FBQGO0oGPKEwVDLh4y4XJRuTLWmE1RBF7p DLIQDvGXu/SZqdj1qp+13m/WyEsmRzR1POpve5erpvH8DlRnUMcWLKigDyrr8A1I BXK+6ILexgJaBOHaw3rE81LJpxpeVvUi0aYHGrnLA4ef0Xokdh8YT4pGPjRfDWGk CDL5IRMxxMghdQ+EnIeqpUogdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkoGrsw aITZ21y48n2q1ySVt4NkMB8GA1UdIwQYMBaAFIE6bk9+3Fi8eki20f18Gd/YKPHx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENGNS80QkI3QzY0NDQ5 MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi9nVHB1VDM3Y1dMeDZTTGJSX1h3WjM5Z284 ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dUcHVUMzdjV0x4NlNMYlJfWHdaMzlnbzhmRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENGNS80QkI3QzY0NDQ5MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi9nVHB1VDM3Y1dM eDZTTGJSX1h3WjM5Z284ZkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQG3RUaEneTxNnCXUF0dcTz811yXIbgptlXSRpKLUESsNvllBGLBhw g0HJkPNGWc4mwG2aL8+EYf+YhUefSLU0P3ZDHe/Xo7luU7ZfEig1ofe58qD9dpZz x26ee8WH1gVkuWiqQO7NP+JcMOLtjky0sDCOAyn/yiBvjAnPLd+2aD0eW1P796qb hEG5zEy7sm70L8OqO0pNJ3hgQYt2uD/1SD6AXTAGrv+yufwk8Lz1sYKw7ZnUWb50 EioaM8R/agM/3APzhtfkCPjNyfuUmZwYGv0KBxeV3x83rNqY/N2n+BvUfr4all2M E3SlaElKod8267HXVdLCZUVBX2WSXGkW -----END CERTIFICATE-----Generated at Mon Jul 21 12:57:01 2025 by rpki-client