$ rpki-client -vvf rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.mft File: gOPDrlGaTxg3WsakP1N6hf96KoI.mft (raw, json) Hash identifier: VTKGm4LXWaNSDY9vpNXnkD7LORuHWPwKlmf1BdRLF2g= Subject key identifier: 2D:64:DB:74:61:6F:85:B6:E5:70:7B:8F:67:DB:A2:33:1D:FE:D5:C9 Authority key identifier: 80:E3:C3:AE:51:9A:4F:18:37:5A:C6:A4:3F:53:7A:85:FF:7A:2A:82 Certificate issuer: /CN=A9177358/serialNumber=80E3C3AE519A4F18375AC6A43F537A85FF7A2A82 Certificate serial: 1245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOPDrlGaTxg3WsakP1N6hf96KoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.mft Manifest number: 1237 Signing time: Sat 14 Jun 2025 17:04:36 +0000 Manifest this update: Sat 14 Jun 2025 17:04:35 +0000 Manifest next update: Sat 21 Jun 2025 17:04:35 +0000 Files and hashes: 1: gOPDrlGaTxg3WsakP1N6hf96KoI.crl (hash: nhOTZHWlvNpJWWKPCymXqzxTe4de0obXVy2IYsWJT4k=) 2: 98281C68C74D11EFBDEB795AC4F9AE02.roa (hash: AIVNJI4ml2hm0sk+tjU7ezgPrM6ruoUwi1BLVLUi/kc=) 3: 54EA0F76D36B11EBADF6AD2CC4F9AE02.roa (hash: X4hHa40ZZCMFGclLrNNhBeu3iaLFdaY3QcG/fAUp5DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.crl rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOPDrlGaTxg3WsakP1N6hf96KoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4677 (0x1245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177358, serialNumber=80E3C3AE519A4F18375AC6A43F537A85FF7A2A82 Validity Not Before: Jun 14 17:04:35 2025 GMT Not After : Jun 21 17:04:35 2025 GMT Subject: CN=684daba4-e170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bd:9a:af:0d:e9:88:56:71:70:d4:a7:1a:73: 95:8e:53:f3:d8:3c:08:3a:8b:6a:66:d0:60:e4:ab: 04:38:02:13:ad:3e:e8:84:44:1a:ba:7f:24:12:97: 30:ae:8b:47:7e:63:6f:64:ba:fa:46:fe:7a:b6:e2: b3:ac:45:df:a6:fe:8c:4a:1d:2d:55:24:cd:f8:14: 99:18:37:86:6d:96:2f:54:29:d3:e0:84:d6:11:1d: 8c:08:b0:29:0d:bd:41:2e:54:a7:1b:09:45:d7:62: 2c:d7:f7:f5:6e:e1:6d:ee:7b:43:81:9a:0b:c1:d4: 83:06:a1:0c:32:39:bf:a4:40:ad:61:92:5b:eb:51: 9d:07:eb:44:9a:b8:8d:0c:eb:3d:3b:0c:18:db:50: c1:af:ae:fe:e7:e1:1a:4c:cd:5f:ea:77:ca:1a:09: ed:6c:c7:b2:3f:7e:91:36:c6:87:18:ab:f1:8a:be: 6a:e8:22:0e:3c:be:8f:d3:dc:0d:d7:71:69:cf:37: bc:33:0b:7b:ec:1f:24:da:cc:bc:3f:61:17:aa:ad: 30:b1:80:49:e9:36:d5:2f:8d:ab:a5:85:ac:46:aa: b2:e0:31:d3:0b:f9:1a:d3:26:39:0b:45:aa:d4:02: 82:a6:c1:8d:9e:be:cc:97:e9:f4:b3:06:b4:34:0b: 15:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:64:DB:74:61:6F:85:B6:E5:70:7B:8F:67:DB:A2:33:1D:FE:D5:C9 X509v3 Authority Key Identifier: keyid:80:E3:C3:AE:51:9A:4F:18:37:5A:C6:A4:3F:53:7A:85:FF:7A:2A:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOPDrlGaTxg3WsakP1N6hf96KoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177358/BE84F094DD0B11E885449A40C4F9AE02/gOPDrlGaTxg3WsakP1N6hf96KoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:2e:11:2a:d5:eb:d0:93:03:ca:6a:4a:b7:06:3c:fb:a8:66: e9:67:1d:dd:9a:d1:b5:bb:0a:99:24:fb:08:8c:b4:38:a4:fb: f9:52:de:5c:17:a2:67:9b:c1:8f:1a:d6:c6:f9:bb:c8:7e:10: 64:f1:6e:d7:83:73:ef:4a:79:7b:db:ff:11:8c:76:ac:d2:4c: 66:63:d7:c3:10:bc:8e:9d:eb:ae:97:5d:e7:5f:b3:5a:28:59: 6d:fe:31:99:07:84:b2:92:dd:86:f7:23:a5:c6:39:1f:34:a7: 7b:aa:29:f2:1b:d6:7b:16:84:0d:98:0f:a7:ff:15:b8:7d:df: f2:ba:c2:78:be:f3:71:36:66:81:38:06:ba:6e:20:51:47:3f: ef:15:40:0b:5c:9f:64:99:6f:7a:f0:44:c1:a9:02:ff:f9:d7: 79:20:19:77:8e:57:1e:5f:a4:10:cb:4d:d6:73:8f:a2:93:1f: c5:ab:02:0c:0f:53:d4:95:a8:e4:16:3b:8d:07:70:40:e7:4e: 39:7b:4e:65:3d:02:e2:69:7b:e3:01:f9:c5:00:07:23:57:98: 86:bc:c3:82:b7:5d:a7:a1:5a:f8:18:1c:cd:bd:27:e4:ba:0d: ec:bf:9a:66:43:4c:ba:c5:c8:64:e5:fa:1d:c6:59:ce:b6:38: 2e:55:0d:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzczNTgxMTAvBgNVBAUTKDgwRTNDM0FFNTE5QTRGMTgzNzVBQzZBNDNGNTM3QTg1 RkY3QTJBODIwHhcNMjUwNjE0MTcwNDM1WhcNMjUwNjIxMTcwNDM1WjAYMRYwFAYD VQQDEw02ODRkYWJhNC1lMTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp72arw3piFZxcNSnGnOVjlPz2DwIOotqZtBg5KsEOAITrT7ohEQaun8kEpcw rotHfmNvZLr6Rv56tuKzrEXfpv6MSh0tVSTN+BSZGDeGbZYvVCnT4ITWER2MCLAp Db1BLlSnGwlF12Is1/f1buFt7ntDgZoLwdSDBqEMMjm/pECtYZJb61GdB+tEmriN DOs9OwwY21DBr67+5+EaTM1f6nfKGgntbMeyP36RNsaHGKvxir5q6CIOPL6P09wN 13Fpzze8Mwt77B8k2sy8P2EXqq0wsYBJ6TbVL42rpYWsRqqy4DHTC/ka0yY5C0Wq 1AKCpsGNnr7Ml+n0swa0NAsVAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1k23Rh b4W25XB7j2fbojMd/tXJMB8GA1UdIwQYMBaAFIDjw65Rmk8YN1rGpD9TeoX/eiqC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzM1OC9CRTg0RjA5NERE MEIxMUU4ODU0NDlBNDBDNEY5QUUwMi9nT1BEcmxHYVR4ZzNXc2FrUDFONmhmOTZL b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPUERybEdhVHhnM1dzYWtQMU42aGY5NktvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzM1OC9CRTg0RjA5NEREMEIxMUU4ODU0NDlBNDBDNEY5QUUwMi9nT1BEcmxHYVR4 ZzNXc2FrUDFONmhmOTZLb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfLhEq1evQkwPKakq3Bjz7qGbpZx3dmtG1uwqZJPsIjLQ4pPv5Ut5c F6Jnm8GPGtbG+bvIfhBk8W7Xg3PvSnl72/8RjHas0kxmY9fDELyOneuul13nX7Na KFlt/jGZB4Sykt2G9yOlxjkfNKd7qinyG9Z7FoQNmA+n/xW4fd/yusJ4vvNxNmaB OAa6biBRRz/vFUALXJ9kmW968ETBqQL/+dd5IBl3jlceX6QQy03Wc4+ikx/FqwIM D1PUlajkFjuNB3BA5045e05lPQLiaXvjAfnFAAcjV5iGvMOCt12noVr4GBzNvSfk ug3sv5pmQ0y6xchk5fodxlnOtjguVQ1e -----END CERTIFICATE-----Generated at Sun Jun 15 09:33:05 2025 by rpki-client