$ rpki-client -vvf rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft File: G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft (raw, json) Hash identifier: 9LKlha1Rsvz3E80UYXpWEORMA/bKS+j9fRMCHG4gBXc= Subject key identifier: C5:26:6B:C4:10:60:74:E0:63:0C:82:A2:1C:5F:EB:6B:CA:35:3C:15 Authority key identifier: 1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E Certificate issuer: /CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft Manifest number: 023C Signing time: Sun 15 Jun 2025 01:34:52 +0000 Manifest this update: Sun 15 Jun 2025 01:34:52 +0000 Manifest next update: Sun 22 Jun 2025 01:34:52 +0000 Files and hashes: 1: G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl (hash: GV2lsp0G+8DfwovSiMLI7g/O+DWs9FDAWLBL4ZVuuzU=) 2: BE608B1833DC11EF82BB2E27C4F9AE02.roa (hash: EWoN0iNcfOe+G9uyesPgbS2htYj/a8iGQkySadopce0=) 3: F2257AC0289011ED8AEEB43CC4F9AE02.roa (hash: Eg0ppNj4Rfn9XDDO2a6sOjdWSFXYTHKi+qKN2PGRgYA=) 4: BDDB04B633DC11EF82BB2E27C4F9AE02.roa (hash: 5c/qR2mpD5OqrfddW7wi4YgOjtRseskty4kGshoVWVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91340D8, serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Validity Not Before: Jun 15 01:34:52 2025 GMT Not After : Jun 22 01:34:52 2025 GMT Subject: CN=684e233c-bdd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9b:44:15:e2:ea:06:86:a5:19:ae:37:5f:5f: 52:56:8a:30:9f:fe:a0:e1:b3:e4:66:11:50:c3:14: 27:4d:93:f6:66:e3:b0:63:52:90:d4:36:aa:77:51: 4e:c6:b6:4e:97:46:d7:db:91:ce:59:40:85:19:93: 80:5a:f0:7a:a5:43:a3:11:54:c1:3a:a9:5e:87:c1: 10:03:b7:d5:f0:67:be:8e:cc:e3:e8:cd:99:39:2b: 36:c2:2b:8f:2c:4e:70:e4:fd:03:4c:d1:e0:62:37: c9:05:52:c3:bf:fb:78:09:db:07:31:e5:a1:ff:be: 11:08:f6:0a:c4:de:83:d2:c3:90:b1:17:13:b8:4c: b1:0e:d1:f9:91:ee:0f:99:db:96:dc:0b:64:8c:1d: 55:a5:9a:9e:0d:76:fa:3d:45:b9:79:a0:ce:8f:f7: 34:73:6a:fc:47:91:f5:81:e5:85:57:5f:b2:1f:67: 34:cd:68:70:7e:e4:4f:c2:66:9e:ff:02:81:e4:bf: 3b:0e:b6:3e:75:69:25:a8:b9:79:de:76:c8:f2:12: 9a:2f:25:0c:06:6f:92:d7:2d:70:c6:7d:d4:91:5c: f5:22:5d:58:2d:40:3f:e7:f3:06:84:dd:1b:61:9f: 50:41:67:ae:9b:c5:4c:cd:a1:65:c3:75:c5:9b:54: 8c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:26:6B:C4:10:60:74:E0:63:0C:82:A2:1C:5F:EB:6B:CA:35:3C:15 X509v3 Authority Key Identifier: keyid:1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:b6:ca:d1:be:0d:e5:54:fe:86:aa:d9:79:3c:1a:d4:ef:3b: 23:fe:0e:8a:3b:a5:15:9e:42:c8:c3:0d:7d:83:a1:ab:e2:6e: 05:b5:85:45:59:6c:59:c8:0d:35:ec:d0:1f:7d:e5:2f:d8:45: 1c:f4:df:e0:5f:ec:0f:ae:5b:fd:3c:b9:02:e5:ac:41:e6:de: 05:8c:a2:5b:bc:7f:91:45:e2:10:5c:56:58:75:48:18:f9:d0: 2d:08:34:c8:af:a9:86:3f:a1:2e:2f:df:9d:2e:d1:f5:fd:f0: aa:24:ff:ec:33:23:d4:eb:4e:41:43:f8:ad:e5:74:98:d4:78: cf:5e:eb:c5:be:49:5d:ca:ec:db:5b:4e:40:c7:94:3a:5b:43: 51:77:60:e4:44:c7:f1:66:fe:07:fb:d5:ea:a5:73:46:bc:e3: 4b:01:9c:c8:b5:ce:4c:38:4b:7f:b6:77:3e:9a:f4:9a:90:3e: 8f:48:f7:91:1a:26:e1:07:ce:d9:82:e6:83:68:a7:62:20:8e: b3:05:81:27:43:d0:2f:07:4a:fd:62:7b:f5:ce:b0:4f:17:01: 9b:d4:bb:6d:6b:3c:56:7e:fb:2b:76:58:ce:94:4f:44:1a:28: 94:80:b2:c4:27:c4:4a:cf:44:88:23:cd:32:85:0c:8b:31:aa: f3:44:26:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQwRDgxMTAvBgNVBAUTKDFCOEFFN0M3NDMwMTcyOUQ4NUMzMTU5NTI0OUMzQjQ4 RjFCOTE1MUUwHhcNMjUwNjE1MDEzNDUyWhcNMjUwNjIyMDEzNDUyWjAYMRYwFAYD VQQDEw02ODRlMjMzYy1iZGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZtEFeLqBoalGa43X19SVoown/6g4bPkZhFQwxQnTZP2ZuOwY1KQ1Daqd1FO xrZOl0bX25HOWUCFGZOAWvB6pUOjEVTBOqleh8EQA7fV8Ge+jszj6M2ZOSs2wiuP LE5w5P0DTNHgYjfJBVLDv/t4CdsHMeWh/74RCPYKxN6D0sOQsRcTuEyxDtH5ke4P mduW3AtkjB1VpZqeDXb6PUW5eaDOj/c0c2r8R5H1geWFV1+yH2c0zWhwfuRPwmae /wKB5L87DrY+dWklqLl53nbI8hKaLyUMBm+S1y1wxn3UkVz1Il1YLUA/5/MGhN0b YZ9QQWeum8VMzaFlw3XFm1SM2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUma8QQ YHTgYwyCohxf62vKNTwVMB8GA1UdIwQYMBaAFBuK58dDAXKdhcMVlSScO0jxuRUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDBEOC9CM0RFNUNFNDI4 OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNwMkZ3eFdWSkp3N1NQRzVG UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0cm54ME1CY3AyRnd4V1ZKSnc3U1BHNUZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDBEOC9CM0RFNUNFNDI4OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNw MkZ3eFdWSkp3N1NQRzVGUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXtsrRvg3lVP6Gqtl5PBrU7zsj/g6KO6UVnkLIww19g6Gr4m4FtYVF WWxZyA017NAffeUv2EUc9N/gX+wPrlv9PLkC5axB5t4FjKJbvH+RReIQXFZYdUgY +dAtCDTIr6mGP6EuL9+dLtH1/fCqJP/sMyPU605BQ/it5XSY1HjPXuvFvkldyuzb W05Ax5Q6W0NRd2DkRMfxZv4H+9XqpXNGvONLAZzItc5MOEt/tnc+mvSakD6PSPeR GibhB87ZguaDaKdiII6zBYEnQ9AvB0r9Ynv1zrBPFwGb1LttazxWfvsrdljOlE9E GiiUgLLEJ8RKz0SII80yhQyLMarzRCY0 -----END CERTIFICATE-----Generated at Sun Jun 15 10:03:40 2025 by rpki-client