$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: AGFfaPsG3Cs+Z7OGrs4rwlgh2Bbrf1/nUBz7t0UnelM= Subject key identifier: CB:A4:CC:F7:B2:4F:9E:B7:42:4D:7F:42:3B:05:A1:2F:57:D6:6C:CA Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 0394 Signing time: Sun 15 Jun 2025 00:33:22 +0000 Manifest this update: Sun 15 Jun 2025 00:33:21 +0000 Manifest next update: Sun 22 Jun 2025 00:33:21 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: xmgHkvjZ2fih4vMJ9R1UNNWOzifTM7hkWNw0cF4BvhE=) 2: 888790B6CD3A11EF87D85012C4F9AE02.roa (hash: AvFxWnXdXVRW4gSsV2SM184h5qE1FtXhjp3kh4Swn5U=) 3: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: WV0++0ZN/bagS69tHu4GzxXJWra/B4BQBtuEVcU79xQ=) 4: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: CVz2Xf9+JNVQc+OnMj39alF6Xn/77a8odRw6ivgbb84=) 5: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: PSuOk5hKLAcVmpB6whliDPWrfFKAhRcAnnfVLoCffRg=) 6: 8CA353C4EF5E11EF9E61950EC4F9AE02.roa (hash: 5Blz9K5XE6h6oYg/gQUJxXMDOjmAua+CLgWpZB5MaIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A, serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: Jun 15 00:33:21 2025 GMT Not After : Jun 22 00:33:21 2025 GMT Subject: CN=684e14d2-945c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fe:11:c3:62:3a:f1:3d:43:58:b4:e2:63:57: 84:66:e9:09:62:66:17:18:ad:68:19:f5:9b:b9:9e: dc:e9:8e:7b:59:3c:78:0d:7d:3b:7e:82:19:2d:11: 78:21:ec:c4:0a:db:a8:5b:ca:c6:93:3f:45:f8:e4: f7:59:a7:fb:74:87:e0:cf:57:7f:18:bd:0d:a2:0d: bc:c3:99:4c:7a:2b:de:b6:b7:63:39:3b:57:12:90: 4d:97:96:75:d3:dd:65:2d:67:1e:bf:ad:1a:2b:7b: 28:29:8f:10:a7:e4:a7:20:61:b3:0e:79:3b:0a:ec: 0a:6a:c1:9f:a9:62:40:ba:3e:e7:07:d8:47:0a:7c: ec:a4:97:fe:98:25:07:24:aa:5d:8a:fc:a6:f4:1a: 07:30:ea:fd:00:f1:43:85:53:7e:ea:4a:40:56:5c: f8:7d:19:9c:e5:f5:af:58:d9:71:41:87:58:cb:b0: 3c:81:cb:31:0f:83:43:00:c5:c5:5e:8e:e2:41:7c: 93:77:64:c4:5f:52:46:f4:92:d0:ca:c9:ea:dc:ae: 24:96:e7:0a:9c:99:72:37:e2:83:d5:22:92:1c:bd: 6b:29:bf:7b:6b:35:0d:36:0f:cc:ec:39:00:f1:05: 4c:e9:96:a1:63:9f:42:99:d7:34:33:97:91:21:dd: a6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A4:CC:F7:B2:4F:9E:B7:42:4D:7F:42:3B:05:A1:2F:57:D6:6C:CA X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:9c:5c:f1:25:6d:ca:84:19:bf:6e:fb:34:5b:bb:30:42:c7: ca:7a:c2:f4:33:8f:71:6d:21:72:8c:0e:34:9f:ec:64:f5:77: c9:1d:de:09:de:c0:c8:43:34:f6:31:0c:a3:1e:7c:dd:7a:a6: 86:48:6b:be:ad:43:bd:dd:d7:72:f9:fe:48:02:6c:51:74:8b: a5:5d:5b:1a:b1:bd:a6:ec:9b:0a:a4:99:a3:8f:72:66:d7:7e: ab:9e:d4:ba:82:90:8a:26:1b:59:e1:f0:55:7b:37:fe:d3:8e: 5a:ef:70:35:e1:71:47:25:2d:73:8e:2a:8c:a9:3a:3f:4f:fb: cd:ac:4d:64:be:ea:79:c3:71:2e:83:88:01:e6:80:80:34:ed: 54:6c:bd:25:70:fa:3c:c7:a1:c2:41:8e:4c:5b:a0:c0:8c:61: f5:5a:b4:f1:b8:a8:e5:ac:ba:70:b6:18:53:86:45:31:c8:a6: 1b:75:b3:0a:c0:f3:36:ee:fb:04:64:e9:5f:d1:4f:99:16:bd: 0a:97:6e:ba:d1:18:58:34:5c:1f:95:b0:7f:94:96:e3:0b:c7: b3:62:1b:c7:4d:e7:81:ce:13:0c:ff:af:e6:68:79:de:95:e9: 22:44:91:56:d8:fd:9d:1a:44:47:fc:34:0a:04:54:c8:b5:26: 42:c5:b5:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjUwNjE1MDAzMzIxWhcNMjUwNjIyMDAzMzIxWjAYMRYwFAYD VQQDEw02ODRlMTRkMi05NDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwf4Rw2I68T1DWLTiY1eEZukJYmYXGK1oGfWbuZ7c6Y57WTx4DX07foIZLRF4 IezECtuoW8rGkz9F+OT3Waf7dIfgz1d/GL0Nog28w5lMeivetrdjOTtXEpBNl5Z1 091lLWcev60aK3soKY8Qp+SnIGGzDnk7CuwKasGfqWJAuj7nB9hHCnzspJf+mCUH JKpdivym9BoHMOr9APFDhVN+6kpAVlz4fRmc5fWvWNlxQYdYy7A8gcsxD4NDAMXF Xo7iQXyTd2TEX1JG9JLQysnq3K4klucKnJlyN+KD1SKSHL1rKb97azUNNg/M7DkA 8QVM6ZahY59Cmdc0M5eRId2mfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMukzPey T563Qk1/QjsFoS9X1mzKMB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKnFzxJW3KhBm/bvs0W7swQsfKesL0M49xbSFyjA40n+xk9XfJHd4J 3sDIQzT2MQyjHnzdeqaGSGu+rUO93ddy+f5IAmxRdIulXVsasb2m7JsKpJmjj3Jm 136rntS6gpCKJhtZ4fBVezf+045a73A14XFHJS1zjiqMqTo/T/vNrE1kvup5w3Eu g4gB5oCANO1UbL0lcPo8x6HCQY5MW6DAjGH1WrTxuKjlrLpwthhThkUxyKYbdbMK wPM27vsEZOlf0U+ZFr0Kl2660RhYNFwflbB/lJbjC8ezYhvHTeeBzhMM/6/maHne lekiRJFW2P2dGkRH/DQKBFTItSZCxbVi -----END CERTIFICATE-----Generated at Sun Jun 15 08:33:59 2025 by rpki-client