$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft File: gCx1H6mENH35yTztuX7ZUalSgoY.mft (raw, json) Hash identifier: J/vVSDRlRYZfZotxulML2Vb2oRV5xO/v+YTGdjUvlpU= Subject key identifier: CC:6F:A1:11:DA:90:E9:99:FE:5F:E7:B8:FD:89:EA:93:D8:6F:53:FB Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0D2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft Manifest number: 0D13 Signing time: Wed 18 Jun 2025 18:00:16 +0000 Manifest this update: Wed 18 Jun 2025 18:00:15 +0000 Manifest next update: Wed 25 Jun 2025 18:00:15 +0000 Files and hashes: 1: gCx1H6mENH35yTztuX7ZUalSgoY.crl (hash: EDzrCxIN+3VJf51gbV5frJ6tmjO1G/2ZktkxtthDerc=) 2: AF2CB5CE101E11ED9FA78415C4F9AE02.roa (hash: VZ24W4uKwM60qRJ5vfKCX9lh+SGHmx0HfVlijTJVzIY=) 3: 677F3316E02711E9AB669750C4F9AE02.roa (hash: 4yWetI8VRw7mXlPSVbHYiXd6wjj+BvrR9fES4qn/WNo=) 4: 9A735F54EBE611EC82C08A11C4F9AE02.roa (hash: DgvkkBXnQUs6910aIZGV/GX1Y7PZj78ZOyie/aItMGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3371 (0xd2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B, serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: Jun 18 18:00:15 2025 GMT Not After : Jun 25 18:00:15 2025 GMT Subject: CN=6852feaf-7a07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8e:62:ce:aa:09:67:53:05:ea:8c:51:7d:6a: 5d:47:48:b4:9f:d8:6c:33:cb:a3:3a:84:d5:57:cf: b4:b8:51:cd:98:a6:b6:d8:1d:3b:d8:80:0e:f1:e7: b5:8a:a6:ee:88:57:40:bb:c3:ae:8d:bf:d3:d9:a0: 12:71:8b:05:43:0b:5d:32:a4:07:b0:69:d9:f8:7c: a8:27:e1:d6:99:e3:46:b9:9b:92:7d:9d:8e:39:26: 3e:e3:26:f7:ce:de:92:cf:8e:62:1c:71:69:4f:e4: ed:95:43:0f:c9:14:44:b9:f1:e0:b5:81:6d:1e:8c: bb:45:a8:8b:7b:e7:02:f2:d6:2c:bc:9c:d9:41:f5: 5a:26:c7:cf:61:fb:27:8e:a7:96:ff:0d:f5:fc:05: 52:ed:07:79:7e:17:54:23:f2:e7:d8:c0:59:b2:a5: 54:a8:8e:57:29:03:c8:67:d1:6c:0c:18:00:db:4d: 32:19:b4:97:79:e5:5c:28:72:2b:bf:b8:2b:e6:af: f9:a5:64:9f:7c:2d:b1:8e:0d:f1:0f:0c:e6:9b:ea: 4f:af:4c:9d:94:aa:e0:41:57:ee:17:73:f0:78:e3: a4:59:6a:a2:5e:dc:d9:6b:29:f2:01:a6:9a:ea:75: ea:1d:76:16:91:39:6d:32:2d:0d:76:27:9f:e7:db: 19:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:6F:A1:11:DA:90:E9:99:FE:5F:E7:B8:FD:89:EA:93:D8:6F:53:FB X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:b8:6d:75:03:9d:28:9d:0f:af:d2:8c:a3:7b:7c:0c:bb:25: 29:7c:a7:c5:07:66:55:2f:d1:33:f2:b6:20:2e:47:fa:8d:22: 11:01:8b:86:9a:09:a8:c7:96:3d:83:4f:ca:f4:5a:f1:dc:39: 7a:fe:98:7f:96:20:ee:6a:15:f5:e9:d5:7e:f3:b4:23:d0:81: 2b:72:63:c5:d1:b9:08:95:af:bf:ea:80:a0:bd:a5:93:55:a8: eb:b3:a6:bd:5f:61:43:78:c9:fb:06:c4:3c:59:fb:e2:74:88: f2:2e:df:a1:16:0d:54:d2:c5:49:17:c8:1f:a2:5b:77:70:ee: d9:1f:1a:8d:f2:c4:6a:71:42:7d:5e:7b:ef:0f:ed:88:cf:72: c0:a4:ee:27:45:64:60:18:11:7e:88:54:3e:13:a5:d9:ac:c2: ea:aa:6e:65:ca:3b:bb:ee:08:f5:24:c0:29:9c:14:ee:2c:85: e4:6a:f0:8f:fd:95:91:18:71:6c:94:21:c0:2a:28:5d:91:f9: 85:2e:df:f6:a0:1d:61:64:81:55:b1:0d:2e:05:a2:b4:86:79: 74:10:44:6f:58:3c:8f:96:94:e6:32:51:86:94:7e:5f:5d:9f: b9:b7:fb:97:38:c1:05:64:e7:25:56:a5:10:db:ef:a7:ad:cb: 8a:c2:21:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjUwNjE4MTgwMDE1WhcNMjUwNjI1MTgwMDE1WjAYMRYwFAYD VQQDEw02ODUyZmVhZi03YTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0I5izqoJZ1MF6oxRfWpdR0i0n9hsM8ujOoTVV8+0uFHNmKa22B072IAO8ee1 iqbuiFdAu8Oujb/T2aAScYsFQwtdMqQHsGnZ+HyoJ+HWmeNGuZuSfZ2OOSY+4yb3 zt6Sz45iHHFpT+TtlUMPyRREufHgtYFtHoy7RaiLe+cC8tYsvJzZQfVaJsfPYfsn jqeW/w31/AVS7Qd5fhdUI/Ln2MBZsqVUqI5XKQPIZ9FsDBgA200yGbSXeeVcKHIr v7gr5q/5pWSffC2xjg3xDwzmm+pPr0ydlKrgQVfuF3PweOOkWWqiXtzZaynyAaaa 6nXqHXYWkTltMi0Ndief59sZtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxvoRHa kOmZ/l/nuP2J6pPYb1P7MB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU4Qi9FQzI1N0NDNkUwMjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5I MzV5VHp0dVg3WlVhbFNnb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1uG11A50onQ+v0oyje3wMuyUpfKfFB2ZVL9Ez8rYgLkf6jSIRAYuG mgmox5Y9g0/K9Frx3Dl6/ph/liDuahX16dV+87Qj0IErcmPF0bkIla+/6oCgvaWT Vajrs6a9X2FDeMn7BsQ8WfvidIjyLt+hFg1U0sVJF8gfolt3cO7ZHxqN8sRqcUJ9 XnvvD+2Iz3LApO4nRWRgGBF+iFQ+E6XZrMLqqm5lyju77gj1JMApnBTuLIXkavCP /ZWRGHFslCHAKihdkfmFLt/2oB1hZIFVsQ0uBaK0hnl0EERvWDyPlpTmMlGGlH5f XZ+5t/uXOMEFZOclVqUQ2++nrcuKwiHE -----END CERTIFICATE-----Generated at Fri Jun 20 19:01:43 2025 by rpki-client