$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft File: gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json) Hash identifier: GXkXjZynTr9D8WVdhkQEx/x/UtymEavUlj9DG13FNtc= Subject key identifier: 90:65:B8:7B:E3:0C:EA:B8:9A:3C:90:B8:53:9B:70:70:CF:59:4C:07 Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F Certificate issuer: /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft Manifest number: 01A7 Signing time: Fri 13 Jun 2025 02:17:45 +0000 Manifest this update: Fri 13 Jun 2025 02:17:45 +0000 Manifest next update: Fri 20 Jun 2025 02:17:45 +0000 Files and hashes: 1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: ckC516ESpNqAHLKqw/LQN4arhIeKLKC0XjbrVFGOk+M=) 2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: dWU1gPzZFM9Cw+SS2wudvR0l02XzByvndbpoX+ljoqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146DAA, serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Validity Not Before: Jun 13 02:17:45 2025 GMT Not After : Jun 20 02:17:45 2025 GMT Subject: CN=684b8a49-bbab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:70:1c:49:7c:ea:79:ca:9b:ef:31:f0:71:b8: 75:b3:74:21:ab:5c:70:d9:ab:f5:d8:6f:81:35:da: dc:28:e7:38:d2:89:42:ef:f2:a4:c6:2c:55:75:be: ff:50:28:37:91:f3:fa:72:99:91:96:f0:45:2e:db: 15:26:4b:ac:36:59:fd:5a:20:de:68:20:38:39:b2: 2c:d5:3b:46:d1:db:61:37:cc:6d:83:b8:33:ab:2b: 30:92:54:e2:5c:c7:0a:9d:4e:99:16:e2:f8:07:9e: a7:68:6a:72:94:44:6b:67:a8:fa:e9:8b:c2:35:57: 24:05:e3:f0:27:9d:bf:3b:b8:2a:6a:a4:f7:d8:25: 02:08:e7:bc:65:40:fe:dc:37:db:70:74:7d:e9:c8: aa:c4:40:6c:d3:6f:80:bb:d7:4b:87:35:0b:03:bc: 67:0d:c5:b4:18:d3:52:79:dc:78:be:8e:e4:ae:4b: 8a:8b:01:cf:6a:21:67:7d:ed:4c:e5:da:40:69:a4: b3:23:be:c8:c1:42:1d:e7:d5:45:89:d0:ab:28:ed: 11:60:cc:92:bb:94:28:47:2a:e4:c3:27:2e:06:a5: f2:a5:fc:c5:5b:f6:ae:a6:2f:94:4b:31:99:78:7e: fb:ce:d7:d8:74:d5:88:e7:c6:1a:5b:08:a8:ed:89: ac:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:65:B8:7B:E3:0C:EA:B8:9A:3C:90:B8:53:9B:70:70:CF:59:4C:07 X509v3 Authority Key Identifier: keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:4a:5f:ac:2d:2e:d3:a6:f3:38:f3:59:45:d5:4c:17:d2:9b: 40:e3:17:07:d3:9b:a2:c5:c0:9e:36:ce:56:55:0a:f4:c5:92: 48:48:82:bd:a5:6a:b9:ae:df:c4:db:9b:52:4e:0c:de:78:ec: 77:b8:a9:dc:51:5b:b1:9c:d8:e8:41:d2:86:0e:0d:43:77:48: 55:c1:0f:76:a2:02:77:9d:24:62:b0:92:9c:84:3b:eb:08:0e: 01:98:3f:41:35:aa:e1:e7:1e:89:18:c8:5b:91:9d:81:f1:1c: bb:82:0b:d4:3a:87:34:e8:f8:54:05:5d:76:4e:b5:0e:d8:8e: ea:0e:c2:68:91:c1:e8:76:14:fa:bc:3d:12:be:2c:52:0e:b4: ef:f8:17:9b:5e:66:87:c9:d8:d5:6c:c9:e0:40:75:89:79:11: e7:d2:1c:04:de:18:e5:d1:fa:dc:2c:61:3e:7e:58:02:28:0a: 31:63:b6:fd:9f:9f:3b:a4:16:83:6e:19:59:3e:a2:ea:38:a7: 1a:60:e2:18:31:36:d8:ee:14:2d:46:91:7f:49:47:fc:df:f2: 9a:b1:14:be:cf:cf:03:3e:14:e0:7f:e8:bf:28:16:58:38:9a: 13:12:07:4e:e8:41:96:d8:3e:73:cb:20:83:a6:d2:cc:7e:39: d0:f2:28:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEQUExMTAvBgNVBAUTKDgyMEY3MDMwQkVBQzZENDlGMTA5QkE4RUMyNUE2NUJG MjM2OUFEMkYwHhcNMjUwNjEzMDIxNzQ1WhcNMjUwNjIwMDIxNzQ1WjAYMRYwFAYD VQQDEw02ODRiOGE0OS1iYmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXAcSXzqecqb7zHwcbh1s3Qhq1xw2av12G+BNdrcKOc40olC7/KkxixVdb7/ UCg3kfP6cpmRlvBFLtsVJkusNln9WiDeaCA4ObIs1TtG0dthN8xtg7gzqyswklTi XMcKnU6ZFuL4B56naGpylERrZ6j66YvCNVckBePwJ52/O7gqaqT32CUCCOe8ZUD+ 3DfbcHR96ciqxEBs02+Au9dLhzULA7xnDcW0GNNSedx4vo7krkuKiwHPaiFnfe1M 5dpAaaSzI77IwUId59VFidCrKO0RYMySu5QoRyrkwycuBqXypfzFW/aupi+USzGZ eH77ztfYdNWI58YaWwio7YmscwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBluHvj DOq4mjyQuFObcHDPWUwHMB8GA1UdIwQYMBaAFIIPcDC+rG1J8Qm6jsJaZb8jaa0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkRBQS83MUVCN0M1QUMx OTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JVbnhDYnFPd2xwbHZ5TnBy UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnOXdNTDZzYlVueENicU93bHBsdnlOcHJTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkRBQS83MUVCN0M1QUMxOTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JV bnhDYnFPd2xwbHZ5TnByUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSSl+sLS7TpvM481lF1UwX0ptA4xcH05uixcCeNs5WVQr0xZJISIK9 pWq5rt/E25tSTgzeeOx3uKncUVuxnNjoQdKGDg1Dd0hVwQ92ogJ3nSRisJKchDvr CA4BmD9BNarh5x6JGMhbkZ2B8Ry7ggvUOoc06PhUBV12TrUO2I7qDsJokcHodhT6 vD0SvixSDrTv+BebXmaHydjVbMngQHWJeRHn0hwE3hjl0frcLGE+flgCKAoxY7b9 n587pBaDbhlZPqLqOKcaYOIYMTbY7hQtRpF/SUf83/KasRS+z88DPhTgf+i/KBZY OJoTEgdO6EGW2D5zyyCDptLMfjnQ8ig/ -----END CERTIFICATE-----Generated at Sat Jun 14 19:21:56 2025 by rpki-client