$ rpki-client -vvf rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft File: gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft (raw, json) Hash identifier: fi425/011bjzlm4IzBFRxB7zNJR55HYxKARYkdKcZhk= Subject key identifier: BF:22:ED:CA:D5:B9:A1:05:FB:00:15:0B:E5:2A:E2:85:F6:EF:57:DC Authority key identifier: 83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 Certificate issuer: /CN=A911C005/serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Certificate serial: 090F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft Manifest number: 0904 Signing time: Mon 16 Jun 2025 20:10:53 +0000 Manifest this update: Mon 16 Jun 2025 20:10:52 +0000 Manifest next update: Mon 23 Jun 2025 20:10:52 +0000 Files and hashes: 1: gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl (hash: FGsv7TQOVrJSf1okYhLccvXM2xbOnkViBDlzjimYkgA=) 2: B0071914AAE811EA8412810FC4F9AE02.roa (hash: cT6sVy2cPkGv5IyoVyqlT1wpNogGAW7RrVuiP5uIBJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2319 (0x90f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C005, serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Validity Not Before: Jun 16 20:10:52 2025 GMT Not After : Jun 23 20:10:52 2025 GMT Subject: CN=68507a4d-a50b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f4:4a:8c:8d:50:74:d4:7f:35:c8:25:61:0a: 07:26:65:80:05:ef:96:e6:b0:8f:de:f1:f4:9c:7a: 5c:00:d3:32:30:13:fb:58:e7:84:a5:2e:cb:83:66: bb:37:09:1f:78:ae:53:1b:9a:90:a9:dc:89:f5:76: 95:c8:cb:71:16:e8:7e:77:3b:da:5f:c9:09:f3:32: 59:d9:c7:70:26:03:22:be:5b:18:61:a4:ab:93:a1: 1b:0f:f3:18:1d:67:c6:3d:c0:a9:d8:c1:b6:9f:73: 93:ea:8d:82:da:62:92:9f:82:57:55:4e:37:ec:1f: 08:f8:b9:73:7f:73:6e:40:31:dd:34:88:09:a6:b7: f4:14:49:6c:4c:4a:e8:8a:56:e7:87:1c:01:af:7e: 0c:23:22:81:c0:73:24:6c:0c:0c:7a:2a:6b:9d:fb: c8:71:b3:1b:be:3d:a7:6f:8c:bd:e9:b2:41:d2:de: 8e:3f:54:27:54:16:5c:cf:28:72:70:2e:f1:b0:7b: de:77:f0:ef:22:85:8c:79:02:97:ed:b9:df:ea:d7: 62:2e:8e:4f:5e:fc:b2:5f:b3:e6:6a:4d:36:9d:9c: e6:06:25:8c:15:95:6c:cc:35:16:2d:a4:0f:84:72: b9:92:be:38:45:3c:a2:82:9f:bb:1e:15:3e:72:95: ff:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:22:ED:CA:D5:B9:A1:05:FB:00:15:0B:E5:2A:E2:85:F6:EF:57:DC X509v3 Authority Key Identifier: keyid:83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:4e:44:d0:b7:49:62:12:83:b4:0f:ff:fa:5a:6f:9d:d6:2e: ae:8e:04:8d:ba:70:ff:23:7e:2e:4e:2a:52:15:8b:5f:4e:79: 93:1f:d1:00:49:7f:23:f0:4e:23:0c:02:f4:6b:8d:c2:c0:0a: 7d:d4:40:fe:27:09:e1:6d:fb:26:35:8b:17:c7:46:6c:04:3f: c4:0c:f2:48:72:68:fb:5f:90:85:53:6c:6e:a0:6c:84:41:25: 1c:0c:53:7c:09:60:13:e2:59:8b:40:a6:0a:81:29:f7:9f:8a: 1a:83:93:fa:f5:4b:6d:f5:f2:b9:bc:9e:d3:18:88:95:fd:b1: 38:41:51:6c:14:8c:85:92:c7:35:1f:b4:86:1e:9b:ee:91:62: 88:18:d5:e1:e4:70:7e:8e:69:5b:fc:8b:a0:56:de:c3:dd:dd: df:d9:71:57:60:92:72:2d:e6:b4:82:1b:bd:df:a6:5a:8b:8e: e2:e4:1d:01:84:34:22:be:bd:4b:32:0b:9e:54:4f:d2:93:41: 60:ea:53:eb:26:9e:6b:35:e5:6c:67:35:55:9b:e3:90:b5:13: ca:c9:2a:4b:26:fe:c0:ab:09:7a:8e:64:5a:13:4a:35:6a:49: ff:d5:c7:4e:52:eb:ba:da:01:b9:d3:1b:fd:c7:4e:63:cc:f6: 6c:4d:a6:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMwMDUxMTAvBgNVBAUTKDgzMERDRkNCNUE5QUEwQzdGQTdEN0FCOTk4OURBMjM0 M0RFRDJDMjIwHhcNMjUwNjE2MjAxMDUyWhcNMjUwNjIzMjAxMDUyWjAYMRYwFAYD VQQDEw02ODUwN2E0ZC1hNTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfRKjI1QdNR/NcglYQoHJmWABe+W5rCP3vH0nHpcANMyMBP7WOeEpS7Lg2a7 NwkfeK5TG5qQqdyJ9XaVyMtxFuh+dzvaX8kJ8zJZ2cdwJgMivlsYYaSrk6EbD/MY HWfGPcCp2MG2n3OT6o2C2mKSn4JXVU437B8I+Llzf3NuQDHdNIgJprf0FElsTEro ilbnhxwBr34MIyKBwHMkbAwMeiprnfvIcbMbvj2nb4y96bJB0t6OP1QnVBZczyhy cC7xsHved/DvIoWMeQKX7bnf6tdiLo5PXvyyX7Pmak02nZzmBiWMFZVszDUWLaQP hHK5kr44RTyigp+7HhU+cpX/RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8i7crV uaEF+wAVC+Uq4oX271fcMB8GA1UdIwQYMBaAFIMNz8tamqDH+n16uZidojQ97Swi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzAwNS84Q0E2ODI3NkFB RTcxMUVBQTkxMjJCMEVDNEY5QUUwMi9ndzNQeTFxYW9NZjZmWHE1bUoyaU5EM3RM Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3M1B5MXFhb01mNmZYcTVtSjJpTkQzdExDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzAwNS84Q0E2ODI3NkFBRTcxMUVBQTkxMjJCMEVDNEY5QUUwMi9ndzNQeTFxYW9N ZjZmWHE1bUoyaU5EM3RMQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjTkTQt0liEoO0D//6Wm+d1i6ujgSNunD/I34uTipSFYtfTnmTH9EA SX8j8E4jDAL0a43CwAp91ED+JwnhbfsmNYsXx0ZsBD/EDPJIcmj7X5CFU2xuoGyE QSUcDFN8CWAT4lmLQKYKgSn3n4oag5P69Utt9fK5vJ7TGIiV/bE4QVFsFIyFksc1 H7SGHpvukWKIGNXh5HB+jmlb/IugVt7D3d3f2XFXYJJyLea0ghu936Zai47i5B0B hDQivr1LMgueVE/Sk0Fg6lPrJp5rNeVsZzVVm+OQtRPKySpLJv7Aqwl6jmRaE0o1 akn/1cdOUuu62gG50xv9x05jzPZsTaaY -----END CERTIFICATE-----Generated at Tue Jun 17 20:13:45 2025 by rpki-client