$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: 3q7SFSSoKlUfbXG4RHQQZZXt17gP4C0QDv8dBO9A0dY= Subject key identifier: F0:E6:91:33:07:06:A8:51:AA:65:E1:63:EE:B6:B1:AF:A5:6F:CF:C7 Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 027B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 0277 Signing time: Tue 17 Jun 2025 01:16:21 +0000 Manifest this update: Tue 17 Jun 2025 01:16:21 +0000 Manifest next update: Tue 24 Jun 2025 01:16:21 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: c2COsTReM55CYNyOqQu1JK7tN3MAbbmsNWnBYmJSlWw=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: dtuYeScxI0cvK8sz9E/Cl0+96zsD1MptOKpsIJKXrl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E, serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: Jun 17 01:16:21 2025 GMT Not After : Jun 24 01:16:21 2025 GMT Subject: CN=6850c1e5-bfae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:56:eb:ac:63:3d:b1:94:57:fe:fe:84:ef:f3: e1:5d:3b:ac:47:ec:c4:92:fe:d2:17:4f:d3:00:eb: 6f:3b:bb:69:37:1d:91:5d:70:1e:77:dc:26:ff:ba: ff:68:ac:02:ad:36:38:4e:26:24:f2:80:99:fc:46: 1a:c3:9b:ef:99:23:31:49:8c:5f:5a:8a:6c:34:6f: 0c:bf:f0:33:f9:a9:f6:53:05:69:3c:27:9a:6c:b1: fc:5d:b3:b4:3f:22:6e:48:38:c9:54:fe:c2:25:be: 84:fe:a0:3c:50:ab:41:aa:bf:3a:ad:f3:e7:6b:71: c2:42:e6:f3:f0:f8:e4:98:b7:29:a5:30:dd:b6:c4: d1:a9:8e:e5:a6:7b:04:3e:8c:14:86:9b:90:e9:37: 8c:aa:66:11:c8:6d:9d:b2:57:80:88:57:6a:a1:b5: fb:82:89:c3:e8:e8:71:6a:81:e8:fb:16:4f:f2:2a: 29:b7:93:e9:33:49:ad:6b:14:70:c8:b4:93:c3:d3: 50:42:6e:3f:f1:bb:ed:53:96:f4:65:f5:11:c0:7c: e0:1a:71:d3:89:dd:0a:15:99:66:3a:9c:05:74:af: 45:53:e0:af:68:c5:ce:44:59:d5:26:c3:59:be:ea: b8:37:f7:66:17:0d:4a:36:f5:53:e9:2b:12:f8:e2: 5e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E6:91:33:07:06:A8:51:AA:65:E1:63:EE:B6:B1:AF:A5:6F:CF:C7 X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:f2:16:1e:b6:a8:61:a6:6c:d0:b2:3f:b4:52:12:2d:f8:e5: d1:61:12:32:a9:ad:0b:2e:d3:28:fe:7e:88:fc:37:46:d7:13: 92:67:44:a1:17:37:c6:b1:46:cb:21:e7:aa:59:bb:e7:0a:34: c4:3f:18:18:4d:1c:35:98:16:e8:5c:75:09:ba:be:5e:80:b6: 1f:77:d2:b0:60:57:9e:8f:ac:58:96:50:a9:ee:3c:ea:a0:38: 07:0b:6a:0d:77:bb:3f:fe:5d:bf:41:03:96:a6:e2:3e:79:0a: c2:24:e5:02:f6:77:6d:38:8c:76:b1:14:d5:cb:e9:68:23:fa: c6:22:ec:d0:cb:76:f2:50:d9:fb:ea:6d:da:91:90:fa:6c:7e: b6:91:99:c8:a8:0e:f8:88:c5:a6:eb:42:68:19:7d:31:a5:6a: a2:62:d2:13:0c:f5:0b:dd:50:32:67:00:1c:f0:5c:4e:8f:d7: ec:e7:36:c1:cc:22:d1:fd:ca:f4:ff:80:7a:16:a5:22:bb:b8: 43:52:dd:fd:20:17:fd:36:d4:c5:90:21:c3:ed:d7:0d:0f:01: fe:b7:e2:ab:ac:17:68:27:28:67:3f:1c:98:47:13:0d:35:65: 98:84:64:78:0e:d1:6d:a5:f3:27:63:b9:14:e5:9f:88:cd:37: 6f:a5:74:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjUwNjE3MDExNjIxWhcNMjUwNjI0MDExNjIxWjAYMRYwFAYD VQQDEw02ODUwYzFlNS1iZmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11brrGM9sZRX/v6E7/PhXTusR+zEkv7SF0/TAOtvO7tpNx2RXXAed9wm/7r/ aKwCrTY4TiYk8oCZ/EYaw5vvmSMxSYxfWopsNG8Mv/Az+an2UwVpPCeabLH8XbO0 PyJuSDjJVP7CJb6E/qA8UKtBqr86rfPna3HCQubz8PjkmLcppTDdtsTRqY7lpnsE PowUhpuQ6TeMqmYRyG2dsleAiFdqobX7gonD6OhxaoHo+xZP8iopt5PpM0mtaxRw yLSTw9NQQm4/8bvtU5b0ZfURwHzgGnHTid0KFZlmOpwFdK9FU+CvaMXORFnVJsNZ vuq4N/dmFw1KNvVT6SsS+OJeWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDmkTMH BqhRqmXhY+62sa+lb8/HMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB8hYetqhhpmzQsj+0UhIt+OXRYRIyqa0LLtMo/n6I/DdG1xOSZ0Sh FzfGsUbLIeeqWbvnCjTEPxgYTRw1mBboXHUJur5egLYfd9KwYFeej6xYllCp7jzq oDgHC2oNd7s//l2/QQOWpuI+eQrCJOUC9ndtOIx2sRTVy+loI/rGIuzQy3byUNn7 6m3akZD6bH62kZnIqA74iMWm60JoGX0xpWqiYtITDPUL3VAyZwAc8FxOj9fs5zbB zCLR/cr0/4B6FqUiu7hDUt39IBf9NtTFkCHD7dcNDwH+t+KrrBdoJyhnPxyYRxMN NWWYhGR4DtFtpfMnY7kU5Z+IzTdvpXQT -----END CERTIFICATE-----Generated at Thu Jun 19 03:44:33 2025 by rpki-client