$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft File: gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft (raw, json) Hash identifier: vYLw/gohJuXimvOHv4OYdlr0Yze3OKwEngvbZ+DTrNg= Subject key identifier: 82:F6:1C:27:2A:33:AF:33:77:77:5F:EB:F5:31:83:6D:BC:F6:C8:6D Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft Manifest number: 91 Signing time: Fri 13 Jun 2025 05:27:18 +0000 Manifest this update: Fri 13 Jun 2025 05:27:17 +0000 Manifest next update: Fri 20 Jun 2025 05:27:17 +0000 Files and hashes: 1: gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl (hash: FfdQCTSZSRGuqLw7z3ewWVMAhpzNZg8l1gDTamek4zE=) 2: E1F3085E777E11EFB3F75352C4F9AE02.roa (hash: k8bmIEi5AkEe4xzWalacEnF3qdgyVE7VkZI11nYD+RY=) 3: E3105D04777E11EFB3F75352C4F9AE02.roa (hash: pcx/18jLnM6NqrvyQgLayio0TPjGkJNNnKGVPlHBYO8=) 4: E27B5862777E11EFB3F75352C4F9AE02.roa (hash: rPvzorCtxEUQHBw6HlxY0A29sySWnjRa4667RhmeUc8=) 5: 8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa (hash: FsiT3oYazNjnPtPEe7G6GkJ5HTMUOkycbdZ+8LjujNs=) 6: 752774D616A111F0B2CDBC72C4F9AE02.roa (hash: d+1sX6tY5J0jwkyX1i5fUM/tk/BpB8/UlFulaWgxJOc=) 7: E3C4A4EE777E11EFB3F75352C4F9AE02.roa (hash: L5hcVKih/+nBko6kW7js31KvZiJs+q86I/1/tFKfyVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C, serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Jun 13 05:27:17 2025 GMT Not After : Jun 20 05:27:17 2025 GMT Subject: CN=684bb6b5-b5f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:54:dd:69:fb:33:d4:e0:77:bb:30:7b:e9:fc: 4e:02:e7:25:9a:60:36:e6:3f:79:8c:53:78:43:45: 46:84:4d:45:11:42:d6:6d:2d:bd:76:4c:be:27:f6: 9b:05:17:8f:e6:80:50:74:02:d0:a3:24:cd:fc:77: 99:88:76:15:1d:7c:8a:51:29:6c:55:23:4d:7c:1d: cd:d0:ec:e9:20:78:c0:50:96:6e:fe:aa:7a:b8:3e: 87:e7:51:07:f9:c4:91:dc:40:58:ff:cc:64:1f:8f: 1e:00:a6:d5:2c:dc:c5:54:4b:aa:c3:a6:7d:5e:9f: 55:b4:37:0a:bb:de:35:0e:2c:71:d3:52:49:37:e1: 61:67:bb:6b:87:33:4c:50:a9:19:8a:fd:75:80:12: fd:fa:cc:e6:d1:43:93:6e:fd:5b:b6:10:2b:8b:cc: 4c:8d:ab:43:ad:d8:e7:cc:9a:52:06:18:46:d0:85: 7f:87:d2:0c:66:1d:69:94:43:43:50:68:fd:c9:a5: ca:d9:ec:0a:4e:65:55:4e:db:83:93:a2:e1:07:63: f4:5e:d1:c0:c5:dc:95:e2:d3:a6:91:15:6a:77:9e: 03:d6:0e:e2:93:f8:19:b8:35:73:be:75:22:d4:fb: e0:a1:51:f5:14:1e:0b:ef:55:bd:0b:4b:f2:ae:53: 4c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:F6:1C:27:2A:33:AF:33:77:77:5F:EB:F5:31:83:6D:BC:F6:C8:6D X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:37:0b:1a:1d:3d:93:81:ef:0f:21:2a:e9:db:99:06:ee:d8: dd:53:34:41:41:13:ed:b3:71:46:3f:ab:b2:51:40:da:d3:b3: 4b:38:a8:f0:1e:7b:7e:cc:13:ce:cb:a7:73:2d:5d:3b:83:46: 8c:90:2b:79:d9:f1:38:44:23:c4:bb:9b:53:1d:53:25:0d:fc: ca:41:2f:e9:b5:64:64:41:d9:3f:f2:68:27:ca:2d:72:2d:92: 1c:19:48:2b:c0:8a:39:c1:df:8e:f4:bd:0a:96:54:42:53:c9: 1a:2a:94:2b:e8:e3:d8:61:80:63:28:b7:20:e9:fc:c8:8e:2a: df:7c:64:2f:be:1c:5d:c9:34:e3:6b:83:37:26:69:25:75:c4: a6:02:14:ee:53:de:64:77:70:f8:e9:90:b5:d1:a4:45:e5:06: 6b:c1:df:e8:cd:56:da:f6:14:cc:f2:f6:8f:9b:d2:78:b5:ae: 97:fa:85:dd:48:94:64:5e:6a:4f:f3:f9:a6:f8:77:d3:a8:b4: 9d:79:f2:0f:7b:34:5d:1c:6e:49:59:08:66:85:ef:b2:f0:68: f5:bb:50:b3:1e:cd:25:98:66:39:a8:a4:20:78:c2:f0:89:74: 6a:a4:1c:ec:4f:72:67:cb:46:60:ad:d5:48:1a:98:26:da:6d: c5:24:38:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5MkMxMTAvBgNVBAUTKDgxN0REMzgwMkYyNkU1N0VDRTgyNjVDRTg2MjZGQ0JC OUM2NEU5RDQwHhcNMjUwNjEzMDUyNzE3WhcNMjUwNjIwMDUyNzE3WjAYMRYwFAYD VQQDEw02ODRiYjZiNS1iNWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1Tdafsz1OB3uzB76fxOAuclmmA25j95jFN4Q0VGhE1FEULWbS29dky+J/ab BReP5oBQdALQoyTN/HeZiHYVHXyKUSlsVSNNfB3N0OzpIHjAUJZu/qp6uD6H51EH +cSR3EBY/8xkH48eAKbVLNzFVEuqw6Z9Xp9VtDcKu941Dixx01JJN+FhZ7trhzNM UKkZiv11gBL9+szm0UOTbv1bthAri8xMjatDrdjnzJpSBhhG0IV/h9IMZh1plEND UGj9yaXK2ewKTmVVTtuDk6LhB2P0XtHAxdyV4tOmkRVqd54D1g7ik/gZuDVzvnUi 1PvgoVH1FB4L71W9C0vyrlNMlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIL2HCcq M68zd3df6/Uxg2289shtMB8GA1UdIwQYMBaAFIF904AvJuV+zoJlzoYm/LucZOnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDkyQy9FMkMwNzdERTc3 NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVYN09nbVhPaGliOHU1eGs2 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDkyQy9FMkMwNzdERTc3NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVY N09nbVhPaGliOHU1eGs2ZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFNwsaHT2Tge8PISrp25kG7tjdUzRBQRPts3FGP6uyUUDa07NLOKjw Hnt+zBPOy6dzLV07g0aMkCt52fE4RCPEu5tTHVMlDfzKQS/ptWRkQdk/8mgnyi1y LZIcGUgrwIo5wd+O9L0KllRCU8kaKpQr6OPYYYBjKLcg6fzIjirffGQvvhxdyTTj a4M3JmkldcSmAhTuU95kd3D46ZC10aRF5QZrwd/ozVba9hTM8vaPm9J4ta6X+oXd SJRkXmpP8/mm+HfTqLSdefIPezRdHG5JWQhmhe+y8Gj1u1CzHs0lmGY5qKQgeMLw iXRqpBzsT3Jny0ZgrdVIGpgm2m3FJDjl -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:52 2025 by rpki-client