$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft File: gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft (raw, json) Hash identifier: O6tj26NVSa7pgB6h9+611X1IROFbj7JR1vgf5eI8c8c= Subject key identifier: CB:74:98:AB:4A:2D:03:4D:41:0E:15:44:B2:E8:FB:68:CD:BE:30:9B Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0B2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft Manifest number: 0B1E Signing time: Mon 16 Jun 2025 19:09:59 +0000 Manifest this update: Mon 16 Jun 2025 19:09:58 +0000 Manifest next update: Mon 23 Jun 2025 19:09:58 +0000 Files and hashes: 1: gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl (hash: TeqKtAyZTAqYe4oJP+p5D4km+ZB/2vB/jnf4kzk+3yo=) 2: 89340B10B5E011EE91DD4D53C4F9AE02.roa (hash: ce8eVhU6m1rxVz2XMIA3QgTRmrpD6cmjmSLDWld45vc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 19:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2862 (0xb2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299, serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Jun 16 19:09:58 2025 GMT Not After : Jun 23 19:09:58 2025 GMT Subject: CN=68506c07-0391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:26:ba:cb:9c:2d:91:1a:4f:ab:46:c2:55:48: f0:37:e1:02:58:ad:83:cb:2c:e1:0d:e8:7c:c9:ad: d0:a4:9f:ba:32:f4:48:0c:7c:84:08:81:71:23:c1: a4:34:94:93:c3:96:7b:4d:88:dc:95:a6:cc:38:52: cf:f4:4f:d3:98:e4:06:2d:be:bf:44:a8:0b:f6:7f: 48:5a:2c:e9:5c:5f:eb:b6:9c:fb:46:20:8e:65:2f: 92:25:1a:6a:de:36:21:50:1c:40:b7:58:78:f7:6c: dd:4c:79:f1:f0:c1:dc:89:e5:14:fd:a3:29:5d:8b: 85:e6:c6:68:12:7f:b7:24:09:ae:c6:03:d8:d8:c6: 56:08:ca:9d:a8:2c:d8:0f:0e:14:dc:f3:d1:5b:01: 6f:c9:4b:88:40:a8:77:e5:42:5a:db:b6:1a:30:6f: d0:49:25:21:ea:c6:cc:db:77:f3:80:1e:e6:52:47: de:4f:ac:5c:3a:10:94:09:0c:de:1c:be:54:30:c1: 6b:8f:1b:ab:3b:ac:24:4f:80:91:ff:7a:71:c0:69: 8c:6d:8e:57:69:68:1d:c7:88:32:30:e9:0b:34:b1: 77:8b:2f:07:35:af:f7:56:40:2e:a2:86:df:41:74: f7:ff:1b:bd:ac:cd:7b:2c:e7:c5:0e:e1:20:6c:aa: e5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:74:98:AB:4A:2D:03:4D:41:0E:15:44:B2:E8:FB:68:CD:BE:30:9B X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:76:86:a3:4a:74:dd:ca:66:ce:4e:aa:ad:b7:2f:87:45:5c: 53:17:44:e7:2b:36:1f:33:d9:13:04:83:cc:c8:fa:e4:df:80: f3:24:0c:e3:35:2f:49:bc:93:c2:12:f0:15:e3:29:07:eb:cc: 5f:b3:9f:eb:2e:fb:e4:7c:17:f2:b8:51:b0:55:b6:b9:56:8b: 3f:df:39:1b:60:f8:1c:7b:c6:a6:4b:9b:09:0f:3a:43:ce:51: 37:2f:06:d4:ed:47:97:21:3f:c9:42:f0:38:5b:54:68:9b:8c: 6f:0c:7c:ef:0a:f0:61:f4:95:36:2c:ab:10:f4:3e:d4:bb:14: d3:59:39:11:ee:73:08:97:c6:72:ff:e5:bd:31:ec:fa:ab:86: d5:13:8f:b8:a9:c8:7e:33:f5:09:b3:d9:c9:42:ec:d5:59:94: 9c:cf:41:ab:fe:c5:53:33:c8:73:12:81:45:1f:6a:d9:3c:ab: f3:23:f7:e4:5d:6a:e6:9a:b6:b4:55:0f:4f:2a:89:9a:66:09: 03:8b:4a:16:a9:97:73:22:75:66:1c:7c:7a:41:9e:d7:76:83: 15:68:87:45:08:fe:e4:42:28:90:e9:16:00:9d:d1:58:21:ef: 89:1b:1f:28:c2:b0:e9:bd:73:04:ec:54:0c:d1:f6:5a:18:c0: ee:67:af:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjUwNjE2MTkwOTU4WhcNMjUwNjIzMTkwOTU4WjAYMRYwFAYD VQQDEw02ODUwNmMwNy0wMzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSa6y5wtkRpPq0bCVUjwN+ECWK2DyyzhDeh8ya3QpJ+6MvRIDHyECIFxI8Gk NJSTw5Z7TYjclabMOFLP9E/TmOQGLb6/RKgL9n9IWizpXF/rtpz7RiCOZS+SJRpq 3jYhUBxAt1h492zdTHnx8MHcieUU/aMpXYuF5sZoEn+3JAmuxgPY2MZWCMqdqCzY Dw4U3PPRWwFvyUuIQKh35UJa27YaMG/QSSUh6sbM23fzgB7mUkfeT6xcOhCUCQze HL5UMMFrjxurO6wkT4CR/3pxwGmMbY5XaWgdx4gyMOkLNLF3iy8HNa/3VkAuoobf QXT3/xu9rM17LOfFDuEgbKrlPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMt0mKtK LQNNQQ4VRLLo+2jNvjCbMB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTI5OS8yNjg5MEVEQTQyQzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2 aG9JN2FmUTNZazZjQUMza0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbdoajSnTdymbOTqqtty+HRVxTF0TnKzYfM9kTBIPMyPrk34DzJAzj NS9JvJPCEvAV4ykH68xfs5/rLvvkfBfyuFGwVba5Vos/3zkbYPgce8amS5sJDzpD zlE3LwbU7UeXIT/JQvA4W1Rom4xvDHzvCvBh9JU2LKsQ9D7UuxTTWTkR7nMIl8Zy /+W9Mez6q4bVE4+4qch+M/UJs9nJQuzVWZScz0Gr/sVTM8hzEoFFH2rZPKvzI/fk XWrmmra0VQ9PKomaZgkDi0oWqZdzInVmHHx6QZ7XdoMVaIdFCP7kQiiQ6RYAndFY Ie+JGx8owrDpvXME7FQM0fZaGMDuZ69g -----END CERTIFICATE-----Generated at Tue Jun 17 13:58:24 2025 by rpki-client