$ rpki-client -vvf rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft File: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft (raw, json) Hash identifier: ulN/yG6nJ2068VMUnZmukJX7SxxsV/0hWPcbmWpOo68= Subject key identifier: 80:3F:29:9E:36:3E:ED:41:69:E8:6E:5F:03:D9:57:85:27:09:4F:10 Authority key identifier: 80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A Certificate issuer: /CN=A9143A67/serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Certificate serial: 0283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft Manifest number: 027F Signing time: Sun 15 Jun 2025 01:22:22 +0000 Manifest this update: Sun 15 Jun 2025 01:22:22 +0000 Manifest next update: Sun 22 Jun 2025 01:22:22 +0000 Files and hashes: 1: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl (hash: CRKsIvBaLl6U0axdU8MS72pPO/v7ccDJgQA83pJKoaA=) 2: EE62A36A0D9F11EDB7631D1BC4F9AE02.roa (hash: 79mqc7tZF4tbIphjhbOXUthxD6els9a6zfI1+s7nFSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143A67, serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Validity Not Before: Jun 15 01:22:22 2025 GMT Not After : Jun 22 01:22:22 2025 GMT Subject: CN=684e204e-4c69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:76:df:48:28:be:dc:82:6a:be:92:86:a7:5c: a2:84:40:2f:12:bd:ef:3f:35:a5:8c:76:40:9d:f5: 1d:5f:b5:3b:08:2d:ad:9e:94:2f:b3:1f:2c:a5:85: 0f:00:ac:51:8c:68:99:1c:09:ee:df:ad:31:98:91: 22:db:2f:65:c0:81:79:47:fa:ee:d1:bc:e2:52:e8: fe:59:60:f4:0e:c6:7c:72:45:1f:e4:b4:8c:2c:d7: 82:24:c4:aa:78:92:c2:6d:13:db:5c:3a:a7:64:6a: a4:e8:7c:98:e0:ed:19:c3:ee:60:c9:e3:a3:f4:f7: 2c:51:10:08:65:45:13:f7:5c:d2:35:18:22:0b:7f: 20:31:3a:82:99:db:67:22:b6:43:eb:d8:19:27:2c: a3:c4:01:5f:23:b0:28:eb:29:4f:96:ee:ea:b2:4f: 29:0b:35:9a:32:b2:47:a1:b6:e8:07:a5:42:9f:0f: 3e:9b:29:57:52:b3:47:0a:d4:ac:a7:e1:7e:a9:fb: 89:39:ea:1f:83:bb:11:ec:12:34:19:7b:91:09:a6: ce:13:a2:98:bd:f1:8d:3f:8b:c2:1e:cf:13:94:97: 1b:2f:f1:d8:c7:12:f9:5f:b4:38:f1:99:78:3a:18: b4:11:15:36:ea:7a:05:64:87:5c:f2:50:96:62:eb: a7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3F:29:9E:36:3E:ED:41:69:E8:6E:5F:03:D9:57:85:27:09:4F:10 X509v3 Authority Key Identifier: keyid:80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:5a:42:93:d4:3c:51:f1:73:8c:33:07:db:b0:23:6f:71:b4: 0b:28:97:f8:66:ee:9a:2f:e9:55:0e:3c:ec:b9:b6:93:78:6b: d4:0b:0a:94:e4:d8:b8:33:8c:50:6a:7d:ab:ff:7e:cb:be:1c: de:ca:cd:bf:c4:1b:29:8b:1b:5a:45:b8:f3:b3:89:8a:5c:f4: 6e:de:44:0e:de:9e:69:78:f0:21:f9:48:b9:f3:cd:38:06:51: 94:4b:16:aa:e1:34:78:86:a7:2a:c6:f3:96:14:34:9d:bd:9a: 25:9b:8c:61:fc:77:67:5e:33:7b:2a:90:d2:8e:27:d1:b7:2e: f5:5f:08:a8:7e:25:24:c1:ac:b5:e3:8c:87:d1:65:15:83:5c: dc:3a:37:69:5c:97:aa:3b:ad:45:81:a6:f5:77:a7:53:be:0f: bf:bd:cc:4a:c6:e2:64:05:06:83:4c:0a:f2:93:01:97:a5:29: 3e:30:e7:2f:75:d6:d4:bc:ef:f2:dc:0b:30:79:e5:af:29:55: da:19:1a:51:19:65:96:09:91:cb:82:a9:13:f1:00:c6:52:0e: 58:8d:a9:66:0a:0a:d3:d3:4f:b0:39:0b:8c:16:65:44:4a:02: de:f2:12:15:b3:19:6a:5b:31:31:03:72:21:ed:0b:f1:9c:78: 00:30:cc:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNBNjcxMTAvBgNVBAUTKDgwRTBBQjE4OUZDRDcwMUVFRTQyQzkyQjkzQzE1QjZG NzQyNDgyNkEwHhcNMjUwNjE1MDEyMjIyWhcNMjUwNjIyMDEyMjIyWjAYMRYwFAYD VQQDEw02ODRlMjA0ZS00YzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnbfSCi+3IJqvpKGp1yihEAvEr3vPzWljHZAnfUdX7U7CC2tnpQvsx8spYUP AKxRjGiZHAnu360xmJEi2y9lwIF5R/ru0bziUuj+WWD0DsZ8ckUf5LSMLNeCJMSq eJLCbRPbXDqnZGqk6HyY4O0Zw+5gyeOj9PcsURAIZUUT91zSNRgiC38gMTqCmdtn IrZD69gZJyyjxAFfI7Ao6ylPlu7qsk8pCzWaMrJHobboB6VCnw8+mylXUrNHCtSs p+F+qfuJOeofg7sR7BI0GXuRCabOE6KYvfGNP4vCHs8TlJcbL/HYxxL5X7Q48Zl4 Ohi0ERU26noFZIdc8lCWYuunnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIA/KZ42 Pu1BaehuXwPZV4UnCU8QMB8GA1UdIwQYMBaAFIDgqxifzXAe7kLJK5PBW290JIJq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0E2Ny9DODA2OTc5MjBE OUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNCN3VRc2tyazhGYmIzUWtn bW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPQ3JHSl9OY0I3dVFza3JrOEZiYjNRa2dtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0E2Ny9DODA2OTc5MjBEOUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNC N3VRc2tyazhGYmIzUWtnbW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAWkKT1DxR8XOMMwfbsCNvcbQLKJf4Zu6aL+lVDjzsubaTeGvUCwqU 5Ni4M4xQan2r/37Lvhzeys2/xBspixtaRbjzs4mKXPRu3kQO3p5pePAh+Ui58804 BlGUSxaq4TR4hqcqxvOWFDSdvZolm4xh/HdnXjN7KpDSjifRty71XwiofiUkway1 44yH0WUVg1zcOjdpXJeqO61Fgab1d6dTvg+/vcxKxuJkBQaDTArykwGXpSk+MOcv ddbUvO/y3AsweeWvKVXaGRpRGWWWCZHLgqkT8QDGUg5YjalmCgrT00+wOQuMFmVE SgLe8hIVsxlqWzExA3Ih7QvxnHgAMMyo -----END CERTIFICATE-----Generated at Mon Jun 16 14:53:04 2025 by rpki-client