$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft File: GJHVTO9qkMIy_KiR45n5eDhnEe4.mft (raw, json) Hash identifier: LaM3OAVeCElL8jfGPpOi2JBLYAk2snzjWWJsT2xlKAg= Subject key identifier: CD:34:01:C0:25:15:18:1C:00:1E:23:8D:31:81:1D:48:A0:CB:40:B8 Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft Manifest number: 4A Signing time: Fri 13 Jun 2025 06:14:43 +0000 Manifest this update: Fri 13 Jun 2025 06:14:43 +0000 Manifest next update: Fri 20 Jun 2025 06:14:43 +0000 Files and hashes: 1: GJHVTO9qkMIy_KiR45n5eDhnEe4.crl (hash: oAkhi3MBTZGrNrDLR+blRvG6KgVt6og0xVNWH8Ljxzo=) 2: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (hash: Fo5VkT431J+zLy9igbQ3SFfIsb+FgMetIU9BycrAICA=) 3: C9B06ECCD7A411EF9AB81933C4F9AE02.roa (hash: ftkSUsDxtIg6s2jX13CXTFZ0keaCV5YjPDUyQbqNBxE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: Jun 13 06:14:43 2025 GMT Not After : Jun 20 06:14:43 2025 GMT Subject: CN=684bc1d3-e418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bd:ea:43:1e:97:4c:4e:22:14:3e:c9:5b:19: 2d:ec:b3:d4:65:bb:f4:0f:e4:33:ca:2b:87:2e:ba: 9e:f0:ec:74:c7:21:a1:5a:f0:4c:79:0e:89:15:2e: da:2f:84:a2:7b:30:11:f4:f0:8e:03:5c:85:f0:28: 8e:63:64:22:9b:84:d0:aa:d2:c2:7c:3b:f8:ed:d2: 79:08:75:fe:ca:9b:ed:95:d7:bc:d4:2d:db:2a:89: 68:8e:f4:3f:bb:b1:9d:b5:88:74:5d:9a:f6:11:5b: 15:09:a4:8e:26:36:6f:62:98:e6:53:96:e8:23:98: 80:3e:47:5d:c2:71:d9:1b:5a:05:35:23:8b:5e:3e: 0c:49:0a:b9:3e:1d:92:9e:b8:64:8e:93:ea:d8:83: 3f:72:b4:ca:78:9f:5a:26:46:53:28:45:49:2f:f2: 4a:2a:8c:08:81:04:0c:c5:09:d0:27:bd:52:47:45: 0d:19:35:24:6b:9d:ce:18:ec:ab:ff:96:b4:1f:81: c4:a5:fd:6f:11:d3:b1:7a:29:ab:dd:5f:9d:2f:9f: 73:3a:4c:9f:21:3d:db:b3:0f:c5:e8:8a:69:90:79: 64:b3:30:e7:fa:5b:cd:1d:04:e0:1d:c6:c8:e1:2c: f9:87:40:fb:50:4d:23:61:01:d1:2d:51:09:fd:76: 88:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:34:01:C0:25:15:18:1C:00:1E:23:8D:31:81:1D:48:A0:CB:40:B8 X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:98:cb:16:d3:d1:4b:c1:8f:3c:94:75:a6:4c:9c:2c:ee:29: 1f:3e:e3:22:7d:2a:d2:53:26:eb:19:a4:cd:a8:94:25:65:3d: 3e:bc:4c:35:a8:07:88:73:5b:4a:5e:ed:45:74:eb:68:b4:7b: 79:44:e2:70:a2:3f:87:a5:b9:60:f2:4d:62:50:9c:6f:d0:07: a8:00:bf:70:51:74:9b:d4:69:c3:02:ab:34:80:d7:99:bb:12: 5b:8e:21:76:a0:d9:e6:3f:d1:2b:1a:4c:1b:3b:d6:2e:f0:9b: 0b:8a:cd:95:2c:b1:fe:be:6f:30:27:7f:58:49:ec:1d:a9:04: 4b:d3:4b:64:1a:6a:59:39:10:63:35:fe:b0:84:3b:23:ac:6b: 8c:cf:3d:49:d3:da:6c:f2:4b:08:37:8f:7e:ed:21:3c:14:0f: 34:d9:d9:d5:fe:14:18:7a:c3:54:36:3a:4c:b5:2b:7a:ce:96: 6d:76:9f:84:0f:a7:5f:43:7d:ef:2b:54:73:06:e8:28:bb:b7: 7b:b1:b3:a8:a5:30:05:17:7b:2c:74:91:1d:f8:a1:98:96:d6: 34:ba:5d:c5:fa:31:6d:27:22:f3:e5:06:19:4e:a5:66:ef:e0: 13:5e:a7:dc:fe:94:f8:11:86:01:89:7f:c9:9d:db:29:b5:a8: f3:10:80:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy ODU3NjExMC8GA1UEBRMoMTg5MUQ1NENFRjZBOTBDMjMyRkNBODkxRTM5OUY5Nzgz ODY3MTFFRTAeFw0yNTA2MTMwNjE0NDNaFw0yNTA2MjAwNjE0NDNaMBgxFjAUBgNV BAMTDTY4NGJjMWQzLWU0MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpvepDHpdMTiIUPslbGS3ss9Rlu/QP5DPKK4cuup7w7HTHIaFa8Ex5DokVLtov hKJ7MBH08I4DXIXwKI5jZCKbhNCq0sJ8O/jt0nkIdf7Km+2V17zULdsqiWiO9D+7 sZ21iHRdmvYRWxUJpI4mNm9imOZTlugjmIA+R13CcdkbWgU1I4tePgxJCrk+HZKe uGSOk+rYgz9ytMp4n1omRlMoRUkv8koqjAiBBAzFCdAnvVJHRQ0ZNSRrnc4Y7Kv/ lrQfgcSl/W8R07F6KavdX50vn3M6TJ8hPduzD8XoimmQeWSzMOf6W80dBOAdxsjh LPmHQPtQTSNhAdEtUQn9dojXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzTQBwCUV GBwAHiONMYEdSKDLQLgwHwYDVR0jBBgwFoAUGJHVTO9qkMIy/KiR45n5eDhnEe4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4NTc2LzJERTk0QTlBRDdB NDExRUY5NjRENkQ3Q0M0RjlBRTAyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVl NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0pIVlRPOXFrTUl5X0tpUjQ1bjVlRGhuRWU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4 NTc2LzJERTk0QTlBRDdBNDExRUY5NjRENkQ3Q0M0RjlBRTAyL0dKSFZUTzlxa01J eV9LaVI0NW41ZURobkVlNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqYyxbT0UvBjzyUdaZMnCzuKR8+4yJ9KtJTJusZpM2olCVlPT68TDWo B4hzW0pe7UV062i0e3lE4nCiP4eluWDyTWJQnG/QB6gAv3BRdJvUacMCqzSA15m7 EluOIXag2eY/0SsaTBs71i7wmwuKzZUssf6+bzAnf1hJ7B2pBEvTS2Qaalk5EGM1 /rCEOyOsa4zPPUnT2mzySwg3j37tITwUDzTZ2dX+FBh6w1Q2Oky1K3rOlm12n4QP p19Dfe8rVHMG6Ci7t3uxs6ilMAUXeyx0kR34oZiW1jS6XcX6MW0nIvPlBhlOpWbv 4BNep9z+lPgRhgGJf8md2ym1qPMQgJQ= -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:55 2025 by rpki-client