$ rpki-client -vvf rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft File: -_gSoLmqiu1iGHbIkgH_8QQytpc.mft (raw, json) Hash identifier: SssUD3Sc4FdTa1NyTpHFSNSI2xTWhOVsu7o1RWrhHHw= Subject key identifier: ED:40:1E:B6:49:05:C7:44:AD:7B:CB:F7:44:38:1D:F9:EE:A3:A6:F1 Authority key identifier: FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 Certificate issuer: /CN=A915A330/serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft Manifest number: 2D Signing time: Sun 15 Jun 2025 06:48:29 +0000 Manifest this update: Sun 15 Jun 2025 06:48:29 +0000 Manifest next update: Sun 22 Jun 2025 06:48:29 +0000 Files and hashes: 1: -_gSoLmqiu1iGHbIkgH_8QQytpc.crl (hash: G/eYzxMfkZlaf6WPUsEO1VHQM0189159k9pLDSp6qNY=) 2: 5F2F693A061211F0BA5A2029C4F9AE02.roa (hash: ti/+dlDrn7n64hxfzOvr4hnKhT6sYm889q99u/P1yZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A330, serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Validity Not Before: Jun 15 06:48:29 2025 GMT Not After : Jun 22 06:48:29 2025 GMT Subject: CN=684e6cbd-decc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2e:45:aa:a4:4d:13:67:9b:3d:91:cc:25:82: 2b:9f:ca:86:23:ef:6a:c9:19:28:b0:7f:51:5b:27: 86:1b:cd:e6:45:78:47:93:26:ac:27:d9:f4:1a:e7: dc:fa:4f:fb:89:d9:1c:cb:a0:45:ff:04:97:8d:be: ee:74:c6:1f:95:1e:77:e9:28:4a:93:18:cf:94:6d: ca:a2:b4:d0:5a:9a:02:f7:f6:e2:71:6f:26:ab:83: 0b:bf:3b:f5:87:ee:e2:8b:2d:cf:7c:93:8e:71:dd: 1f:7b:b8:db:fb:87:d3:f4:1d:92:c3:85:75:3a:bd: 16:cf:1a:b7:07:21:34:e4:a0:c3:20:0a:26:f9:19: b5:8b:41:9c:96:1f:d7:a8:f5:6c:42:01:d5:b9:04: 30:1d:32:78:1b:c7:06:7e:dd:19:d3:05:de:47:af: 66:cd:3c:dc:05:aa:1d:51:d9:86:ca:5a:28:84:36: 76:f2:96:ae:3d:6b:35:0e:e0:0a:67:70:63:4f:58: 9e:91:88:fb:82:37:30:46:74:5e:b5:e2:a0:81:42: 13:35:22:fb:0d:c2:8e:2b:2c:63:44:a1:19:68:96: d2:fa:e3:94:d1:44:b7:eb:06:15:5c:33:33:fb:cb: db:2a:ce:90:b4:19:13:57:3b:88:91:b0:8f:68:31: 73:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:40:1E:B6:49:05:C7:44:AD:7B:CB:F7:44:38:1D:F9:EE:A3:A6:F1 X509v3 Authority Key Identifier: keyid:FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:64:36:f0:19:84:cb:01:3c:2e:b5:24:87:ee:1e:13:a7:fd: dc:80:93:30:dc:c4:81:d1:5b:e3:5f:0f:3e:4d:59:df:85:0a: cf:67:27:d6:28:d9:b9:e5:3c:a2:30:1d:f3:cc:64:53:cc:ea: 76:2e:a6:38:b3:60:d7:9a:d2:bd:35:f3:51:c6:bd:a8:be:8f: 28:1c:24:70:47:9e:96:c6:ce:f6:71:05:1e:9a:7d:d4:0a:9b: 1e:74:75:75:99:2b:4a:66:3b:ea:7e:b3:9f:ea:3f:2a:0c:b8: 20:a0:39:d7:69:22:a6:d3:78:33:dd:ba:69:3b:fa:d5:a7:c8: 7a:81:ab:d7:b3:c5:e7:a0:a0:65:f4:1e:a7:5e:5f:2a:18:e6: 77:09:4d:36:09:94:29:98:56:1d:ee:25:e1:8b:45:d4:75:66: 71:c6:07:0c:01:16:aa:4b:a0:c9:b5:88:53:46:f8:ce:56:a2: 80:66:04:d4:9c:c6:92:cd:e3:62:57:19:0a:84:bb:0f:90:f5: 83:ca:89:87:4e:bf:c8:4d:f5:03:f3:f3:66:c5:c2:3e:02:21: 2a:c4:b8:15:4c:3a:e2:84:86:8d:2c:40:da:a0:7d:c3:df:00: 80:af:e8:7c:b0:22:e3:22:2a:75:50:dc:44:1a:e3:dd:89:73: 6b:a1:30:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTMzMDExMC8GA1UEBRMoRkJGODEyQTBCOUFBOEFFRDYyMTg3NkM4OTIwMUZGRjEw NDMyQjY5NzAeFw0yNTA2MTUwNjQ4MjlaFw0yNTA2MjIwNjQ4MjlaMBgxFjAUBgNV BAMTDTY4NGU2Y2JkLWRlY2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsLkWqpE0TZ5s9kcwlgiufyoYj72rJGSiwf1FbJ4YbzeZFeEeTJqwn2fQa59z6 T/uJ2RzLoEX/BJeNvu50xh+VHnfpKEqTGM+UbcqitNBamgL39uJxbyargwu/O/WH 7uKLLc98k45x3R97uNv7h9P0HZLDhXU6vRbPGrcHITTkoMMgCib5GbWLQZyWH9eo 9WxCAdW5BDAdMngbxwZ+3RnTBd5Hr2bNPNwFqh1R2YbKWiiENnbylq49azUO4Apn cGNPWJ6RiPuCNzBGdF614qCBQhM1IvsNwo4rLGNEoRloltL645TRRLfrBhVcMzP7 y9sqzpC0GRNXO4iRsI9oMXNhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7UAetkkF x0Ste8v3RDgd+e6jpvEwHwYDVR0jBBgwFoAU+/gSoLmqiu1iGHbIkgH/8QQytpcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBMzMwL0FBRTQ5QTM4MDYw RjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUxaUdIYklrZ0hfOFFReXRw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLV9nU29MbXFpdTFpR0hiSWtnSF84UVF5dHBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB MzMwL0FBRTQ5QTM4MDYwRjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUx aUdIYklrZ0hfOFFReXRwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE1kNvAZhMsBPC61JIfuHhOn/dyAkzDcxIHRW+NfDz5NWd+FCs9nJ9Yo 2bnlPKIwHfPMZFPM6nYupjizYNea0r0181HGvai+jygcJHBHnpbGzvZxBR6afdQK mx50dXWZK0pmO+p+s5/qPyoMuCCgOddpIqbTeDPdumk7+tWnyHqBq9ezxeegoGX0 HqdeXyoY5ncJTTYJlCmYVh3uJeGLRdR1ZnHGBwwBFqpLoMm1iFNG+M5WooBmBNSc xpLN42JXGQqEuw+Q9YPKiYdOv8hN9QPz82bFwj4CISrEuBVMOuKEho0sQNqgfcPf AICv6HywIuMiKnVQ3EQa492Jc2uhMCU= -----END CERTIFICATE-----Generated at Sun Jun 15 09:33:50 2025 by rpki-client