$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: ZCP2tt9y/l3uQzuh5SgslKrpPQE0s8CNgu/HaAoX1GE= Subject key identifier: AD:BB:7E:56:BB:31:F8:9D:AB:E4:0E:AE:B2:3E:AC:ED:BB:7D:48:91 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 0652 Signing time: Thu 12 Jun 2025 23:51:42 +0000 Manifest this update: Thu 12 Jun 2025 23:51:42 +0000 Manifest next update: Thu 19 Jun 2025 23:51:42 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: dmQ4JhmsZ24MYhdutklA2wMjLlGKf6TX2jqHSO8ikT8=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: 6xK46XhJtyZvl0GV6Tg9wg5kNg7cdtZOaQsNEIc5Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Jun 12 23:51:42 2025 GMT Not After : Jun 19 23:51:42 2025 GMT Subject: CN=684b680e-8454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7d:1e:5b:7c:2d:27:1f:ec:18:81:bf:39:33: 8d:b1:3c:46:be:e6:ce:90:0e:8b:6e:c5:94:56:cc: b3:53:de:d2:a6:c7:96:f2:cb:39:85:6e:eb:b0:2c: ff:e4:1b:90:69:0e:21:2a:d4:b7:a5:11:1b:44:53: f5:02:e5:24:fa:a0:99:2f:e6:08:7c:78:d3:ec:2e: 9a:8c:04:7a:49:b4:16:16:11:2f:1b:86:d6:6f:63: 51:e7:32:1a:7d:91:88:e4:08:d6:20:9e:bb:e8:20: 29:a1:a0:d9:08:6f:c2:ce:89:7c:1e:74:8d:c8:2e: ea:da:0a:14:c0:d7:41:b8:fa:70:bb:70:9d:40:19: a5:fb:86:59:3e:70:6b:69:aa:58:22:51:0e:3e:1b: ac:63:eb:61:96:d4:5c:51:a5:13:20:e5:c3:b9:43: 4d:6b:a6:74:bb:92:f3:1e:a7:56:52:46:cc:65:14: 31:ea:ff:0b:cb:6a:c3:76:04:32:53:c7:4e:c9:8e: 52:40:7d:93:bc:bf:13:a7:db:55:5d:2b:d5:8f:29: a8:48:53:fb:74:6c:b8:0e:82:3d:c7:2a:86:d2:93: 0e:53:a1:83:21:13:29:1b:ce:23:1a:97:65:d3:66: c9:2d:7b:55:62:eb:bb:a3:31:bc:d6:53:29:0b:f6: 90:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:BB:7E:56:BB:31:F8:9D:AB:E4:0E:AE:B2:3E:AC:ED:BB:7D:48:91 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:02:22:c1:65:2b:e8:13:08:d2:94:18:e0:42:49:56:16:f3: 18:c7:1b:6f:14:4b:36:a1:19:3e:c1:df:d6:6f:b6:71:84:96: ba:ee:b5:4c:c4:f3:24:b6:f7:e2:20:e0:2d:b6:af:9c:bf:6a: f4:89:e9:ae:32:63:2e:b1:82:46:aa:6a:8f:16:75:e9:3c:c4: 08:15:32:e0:71:a6:dd:e6:91:4e:b1:70:17:cc:f5:41:8f:b1: 71:1e:82:a5:f1:08:53:97:49:70:13:43:5a:eb:62:36:16:a8: 97:8b:25:b2:6b:26:3c:bf:b6:4c:77:e0:af:64:08:d8:05:40: 7a:47:03:b9:e2:de:91:31:b3:18:4b:44:7e:82:f8:f1:69:e4: b0:d2:29:23:d5:c9:55:1f:a3:85:12:f3:d8:d3:60:9d:fa:ad: ee:c2:e9:54:c5:0d:35:d3:a8:23:5e:40:74:75:a4:92:2c:cb: 38:ad:06:96:92:c7:ac:18:90:b2:15:11:c0:94:a1:9f:26:ea: 32:d7:b6:72:61:33:87:64:03:9d:72:35:1d:bf:f9:29:be:94: 9f:cb:37:40:25:16:9e:0c:9b:0d:33:a7:48:b0:a2:94:46:fc: 36:3e:1c:a6:0f:26:eb:c6:f5:a1:1d:66:6f:47:c7:39:06:26: 18:db:35:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUwNjEyMjM1MTQyWhcNMjUwNjE5MjM1MTQyWjAYMRYwFAYD VQQDEw02ODRiNjgwZS04NDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtH0eW3wtJx/sGIG/OTONsTxGvubOkA6LbsWUVsyzU97SpseW8ss5hW7rsCz/ 5BuQaQ4hKtS3pREbRFP1AuUk+qCZL+YIfHjT7C6ajAR6SbQWFhEvG4bWb2NR5zIa fZGI5AjWIJ676CApoaDZCG/Czol8HnSNyC7q2goUwNdBuPpwu3CdQBml+4ZZPnBr aapYIlEOPhusY+thltRcUaUTIOXDuUNNa6Z0u5LzHqdWUkbMZRQx6v8Ly2rDdgQy U8dOyY5SQH2TvL8Tp9tVXSvVjymoSFP7dGy4DoI9xyqG0pMOU6GDIRMpG84jGpdl 02bJLXtVYuu7ozG81lMpC/aQywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK27fla7 Mfidq+QOrrI+rO27fUiRMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFAiLBZSvoEwjSlBjgQklWFvMYxxtvFEs2oRk+wd/Wb7ZxhJa67rVM xPMktvfiIOAttq+cv2r0iemuMmMusYJGqmqPFnXpPMQIFTLgcabd5pFOsXAXzPVB j7FxHoKl8QhTl0lwE0Na62I2FqiXiyWyayY8v7ZMd+CvZAjYBUB6RwO54t6RMbMY S0R+gvjxaeSw0ikj1clVH6OFEvPY02Cd+q3uwulUxQ0106gjXkB0daSSLMs4rQaW ksesGJCyFRHAlKGfJuoy17ZyYTOHZAOdcjUdv/kpvpSfyzdAJRaeDJsNM6dIsKKU Rvw2PhymDybrxvWhHWZvR8c5BiYY2zVW -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:09 2025 by rpki-client