$ rpki-client -vvf rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft File: gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft (raw, json) Hash identifier: vfqjfTD/oC0LTMoB4ajpKbCgfGAd+UnTG7aHgZL5d9A= Subject key identifier: BC:F6:8A:20:59:4C:8E:DC:61:F6:BD:C1:06:AD:FD:AA:5D:5B:E4:54 Authority key identifier: 80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 Certificate issuer: /CN=A9114FD8/serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft Manifest number: 33 Signing time: Sun 15 Jun 2025 06:43:59 +0000 Manifest this update: Sun 15 Jun 2025 06:43:58 +0000 Manifest next update: Sun 22 Jun 2025 06:43:58 +0000 Files and hashes: 1: gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl (hash: w5Au59GqK1/C/TWRLcLFl7Ux+XF5oyVB5iAnAGq2zLY=) 2: 691B3B36FCC611EF8337B652C4F9AE02.roa (hash: 9OScaduExEngNPz5wsuWcHvwLQIw8gltPcbBA5tFHWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114FD8, serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Validity Not Before: Jun 15 06:43:58 2025 GMT Not After : Jun 22 06:43:58 2025 GMT Subject: CN=684e6baf-4b94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:88:9a:54:a9:ca:a3:b1:1c:da:d0:23:5f:5c: 01:8c:57:bf:06:19:eb:0f:42:e7:1b:8a:11:12:10: fd:fb:5d:d9:66:e3:3c:d2:69:c6:84:6d:f8:5d:bb: 97:8d:25:d5:95:90:bc:f0:86:fb:e1:19:84:84:a0: 5b:7c:9c:45:3d:46:7f:69:df:99:7f:00:29:12:e8: af:02:ca:a3:1b:23:5e:8d:1d:ed:09:fd:69:e4:dd: f8:cf:be:57:5b:dc:2c:2a:81:7f:8e:48:db:c3:a4: fd:f4:fe:24:32:1a:2c:d0:05:37:b2:6f:26:09:54: b0:a5:22:4c:46:95:9e:55:74:8f:cf:ac:80:d4:b3: 80:b0:20:08:24:1b:11:2a:40:c3:a6:ae:56:fe:ba: 7f:51:77:fd:c5:90:0a:6c:5f:bc:b7:1d:95:83:4a: 25:0a:e5:fa:3e:e7:b9:6c:fd:3d:ca:99:91:10:0d: d2:a5:74:49:f6:17:77:77:bd:35:a3:71:e8:b1:52: 72:02:e5:05:98:1c:d5:95:f1:e5:56:2d:52:26:9d: 1a:6b:3b:a1:50:49:a1:04:fb:9a:8d:6f:04:15:6e: e1:33:e7:d6:cd:ea:6d:cb:68:9f:f9:6f:03:31:a4: 18:4a:55:48:0b:f7:e9:8d:c9:14:eb:d5:ea:6b:ec: 20:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F6:8A:20:59:4C:8E:DC:61:F6:BD:C1:06:AD:FD:AA:5D:5B:E4:54 X509v3 Authority Key Identifier: keyid:80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:f8:38:35:41:e4:ff:80:83:7f:22:27:58:ac:31:d0:7a:1d: 91:ea:be:c3:4f:9d:d6:a1:b3:dc:bf:a6:1d:0b:09:c9:46:db: d2:15:68:16:28:fa:31:9d:52:61:7f:ad:49:46:5d:83:03:db: ce:5a:0c:66:c0:67:66:89:2c:2a:cf:20:7d:2c:49:09:28:2b: a0:9a:35:00:50:ad:f1:3b:59:c6:a5:be:4a:5e:8a:af:12:4e: e2:b0:af:7d:dc:59:b6:78:19:08:87:68:5c:57:84:9b:3d:9b: 7b:7c:cf:5e:82:81:31:38:bc:44:6c:fb:19:48:f1:b4:e5:93: 6d:44:e6:33:63:27:f7:ec:d0:40:4a:a2:d0:06:8f:c8:a4:7b: f9:23:fb:73:3e:ab:0d:11:ca:51:4a:ca:60:68:c6:92:cb:ef: 01:0d:15:37:21:2a:0a:b8:6c:80:3e:c5:ff:9b:18:25:ae:9b: 76:e0:bd:12:93:e2:53:aa:6c:2b:40:71:2d:f3:5d:8f:cb:f1: cb:00:33:0c:c8:30:56:0b:ef:e0:a5:da:46:3c:db:af:01:1b: de:d0:a6:67:08:a4:91:ac:e5:47:44:43:3a:b1:94:6c:a9:c7: d1:37:3b:7c:56:ef:96:c9:0a:98:29:f2:85:d6:26:da:50:4a: 92:56:bb:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NEZEODExMC8GA1UEBRMoODA0NjMwNzREODNGNUU4MDM1NEQxOTcwNTg2RjU0QTg5 NjVFMThEMjAeFw0yNTA2MTUwNjQzNThaFw0yNTA2MjIwNjQzNThaMBgxFjAUBgNV BAMTDTY4NGU2YmFmLTRiOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkiJpUqcqjsRza0CNfXAGMV78GGesPQucbihESEP37Xdlm4zzSacaEbfhdu5eN JdWVkLzwhvvhGYSEoFt8nEU9Rn9p35l/ACkS6K8CyqMbI16NHe0J/Wnk3fjPvldb 3CwqgX+OSNvDpP30/iQyGizQBTeybyYJVLClIkxGlZ5VdI/PrIDUs4CwIAgkGxEq QMOmrlb+un9Rd/3FkApsX7y3HZWDSiUK5fo+57ls/T3KmZEQDdKldEn2F3d3vTWj ceixUnIC5QWYHNWV8eVWLVImnRprO6FQSaEE+5qNbwQVbuEz59bN6m3LaJ/5bwMx pBhKVUgL9+mNyRTr1epr7CAdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvPaKIFlM jtxh9r3BBq39ql1b5FQwHwYDVR0jBBgwFoAUgEYwdNg/XoA1TRlwWG9UqJZeGNIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0RkQ4L0YzNTEyQTBBRkND NTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9BMVRSbHdXRzlVcUpaZUdO SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0VZd2ROZ19Yb0ExVFJsd1dHOVVxSlplR05JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 RkQ4L0YzNTEyQTBBRkNDNTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9B MVRSbHdXRzlVcUpaZUdOSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHv4ODVB5P+Ag38iJ1isMdB6HZHqvsNPndahs9y/ph0LCclG29IVaBYo +jGdUmF/rUlGXYMD285aDGbAZ2aJLCrPIH0sSQkoK6CaNQBQrfE7Wcalvkpeiq8S TuKwr33cWbZ4GQiHaFxXhJs9m3t8z16CgTE4vERs+xlI8bTlk21E5jNjJ/fs0EBK otAGj8ike/kj+3M+qw0RylFKymBoxpLL7wENFTchKgq4bIA+xf+bGCWum3bgvRKT 4lOqbCtAcS3zXY/L8csAMwzIMFYL7+Cl2kY8268BG97QpmcIpJGs5UdEQzqxlGyp x9E3O3xW75bJCpgp8oXWJtpQSpJWuxE= -----END CERTIFICATE-----Generated at Sun Jun 15 09:29:47 2025 by rpki-client