$ rpki-client -vvf rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft File: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft (raw, json) Hash identifier: 0rn5zC/1FDD5TTM1krQwjVa+u1VGYGxd/NjvBi3OvmE= Subject key identifier: 7D:64:A3:9E:31:1A:4B:1E:74:35:66:36:24:B9:5B:29:67:50:4C:89 Authority key identifier: 19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D Certificate issuer: /CN=A913E0D7/serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Certificate serial: 0203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft Manifest number: 0200 Signing time: Fri 13 Jun 2025 01:30:47 +0000 Manifest this update: Fri 13 Jun 2025 01:30:47 +0000 Manifest next update: Fri 20 Jun 2025 01:30:47 +0000 Files and hashes: 1: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl (hash: wmRWAlr1ptEyaTfWjpRI8HNKJtqSiZ7PYrfnHnQYhN4=) 2: 12326B1E3ED211EDAE00DB18C4F9AE02.roa (hash: zW5H6X8uqPfx0Xsy4TR9o3a+IpV9YO9mu4z+ktesoLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E0D7, serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Validity Not Before: Jun 13 01:30:47 2025 GMT Not After : Jun 20 01:30:47 2025 GMT Subject: CN=684b7f47-4501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:93:c7:dd:35:7e:ed:ba:5b:02:30:4f:ce:6f: fa:de:9c:d2:92:e4:a1:b1:3a:dd:15:44:9d:58:f7: 63:f1:5e:28:fe:9e:6d:6b:44:4a:a1:ac:3a:39:47: 95:c2:87:18:a7:bd:84:32:b1:1e:cc:2e:49:51:36: 18:0e:fa:0c:cf:54:15:82:d3:19:8f:4b:98:5f:d7: 71:95:bf:2d:d6:43:39:c9:16:d3:be:15:0c:ef:75: 86:37:91:66:4e:56:b5:32:3a:e4:c4:f9:17:82:e2: d0:09:95:3b:ce:8c:91:30:76:ba:c1:82:e2:15:f7: cb:5b:06:ce:90:4e:05:31:c9:db:57:29:bf:37:bc: f5:d6:5b:82:70:b4:fd:75:82:fe:f8:67:0e:79:d7: a3:22:1c:cb:d6:21:ca:b2:e7:f5:fb:00:89:a6:a7: 85:a1:ea:e3:16:df:b7:f1:8b:cb:3c:00:4d:90:79: 18:f8:cc:97:f1:93:60:95:86:59:e2:a9:5a:a2:4c: c5:d0:a1:09:57:f3:f2:9a:ca:d6:2b:fe:29:90:59: 08:c4:a4:46:7e:06:2a:90:8b:78:92:6f:1e:d0:87: 49:91:0a:2b:af:a4:23:1d:27:59:7e:65:e6:21:49: 53:29:78:e4:35:01:f7:cf:a5:a9:3f:fc:31:24:d8: de:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:64:A3:9E:31:1A:4B:1E:74:35:66:36:24:B9:5B:29:67:50:4C:89 X509v3 Authority Key Identifier: keyid:19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ac:bb:d6:e1:38:2e:64:e0:51:be:2d:7d:72:a6:56:ce:df: a8:fa:95:43:02:65:03:b5:8e:b9:a5:4d:ee:26:1b:82:ab:78: 99:66:14:73:f1:f7:b9:45:54:0a:58:1e:9a:92:a3:38:87:88: 49:67:06:6a:d7:5c:57:b1:7c:f4:99:7c:30:fd:85:5c:f5:d6: 92:f7:5b:76:72:98:f1:a2:1a:86:e7:f6:f3:b3:f0:db:3e:87: 0f:4a:38:bf:52:f0:4f:13:0e:b3:99:9f:8d:e0:18:fe:f9:28: 21:3b:39:53:15:e5:f1:bb:8a:ef:d4:66:38:3b:e0:3d:2b:fc: 79:a4:56:b3:d6:75:8a:59:ca:69:e2:bb:e3:59:6e:e1:d7:d5: 70:f2:7b:6a:7d:43:ae:7a:9c:96:cf:04:d9:b6:db:27:ef:cb: 1a:65:78:31:d6:1a:05:b7:23:c2:52:cc:4f:7c:b1:23:a4:c3: 18:f8:94:45:54:dc:1e:c8:5d:c2:d9:f0:45:b7:7c:9e:15:f2: 85:0f:5d:86:b6:b7:ff:5e:ea:bd:23:fb:57:f1:68:37:57:3b: 24:c2:2f:00:4c:27:16:94:d4:14:6e:d3:3c:0f:73:54:c1:66: ca:92:df:98:65:19:68:24:79:db:36:74:76:e4:44:dd:20:b0: 37:1a:78:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwRDcxMTAvBgNVBAUTKDE5QkFCQkNGNEM5OTk5MzAwQUMwNTlDNjUzQzI5MDg0 MkY2QTY2MEQwHhcNMjUwNjEzMDEzMDQ3WhcNMjUwNjIwMDEzMDQ3WjAYMRYwFAYD VQQDEw02ODRiN2Y0Ny00NTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5PH3TV+7bpbAjBPzm/63pzSkuShsTrdFUSdWPdj8V4o/p5ta0RKoaw6OUeV wocYp72EMrEezC5JUTYYDvoMz1QVgtMZj0uYX9dxlb8t1kM5yRbTvhUM73WGN5Fm Tla1MjrkxPkXguLQCZU7zoyRMHa6wYLiFffLWwbOkE4FMcnbVym/N7z11luCcLT9 dYL++GcOedejIhzL1iHKsuf1+wCJpqeFoerjFt+38YvLPABNkHkY+MyX8ZNglYZZ 4qlaokzF0KEJV/PymsrWK/4pkFkIxKRGfgYqkIt4km8e0IdJkQorr6QjHSdZfmXm IUlTKXjkNQH3z6WpP/wxJNjeHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1ko54x GksedDVmNiS5WylnUEyJMB8GA1UdIwQYMBaAFBm6u89MmZkwCsBZxlPCkIQvamYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTBENy84RkVGODQwNDNF Q0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1UQUt3Rm5HVThLUWhDOXFa ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dicTd6MHlabVRBS3dGbkdVOEtRaEM5cVpnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTBENy84RkVGODQwNDNFQ0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1U QUt3Rm5HVThLUWhDOXFaZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPrLvW4TguZOBRvi19cqZWzt+o+pVDAmUDtY65pU3uJhuCq3iZZhRz 8fe5RVQKWB6akqM4h4hJZwZq11xXsXz0mXww/YVc9daS91t2cpjxohqG5/bzs/Db PocPSji/UvBPEw6zmZ+N4Bj++SghOzlTFeXxu4rv1GY4O+A9K/x5pFaz1nWKWcpp 4rvjWW7h19Vw8ntqfUOuepyWzwTZttsn78saZXgx1hoFtyPCUsxPfLEjpMMY+JRF VNweyF3C2fBFt3yeFfKFD12Gtrf/Xuq9I/tX8Wg3Vzskwi8ATCcWlNQUbtM8D3NU wWbKkt+YZRloJHnbNnR25ETdILA3GnjI -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:07 2025 by rpki-client