$ rpki-client -vvf rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft File: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft (raw, json) Hash identifier: BGFmreBMLo2HfgO/o3UmiL/4RXMpdufhOH3ENqVpUkY= Subject key identifier: F9:D9:E6:1D:B7:BF:0E:C4:89:41:F6:4E:A8:54:89:93:49:1F:4A:79 Authority key identifier: 80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A Certificate issuer: /CN=A91936BE/serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Certificate serial: 0812 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft Manifest number: 0806 Signing time: Thu 12 Jun 2025 20:38:53 +0000 Manifest this update: Thu 12 Jun 2025 20:38:52 +0000 Manifest next update: Thu 19 Jun 2025 20:38:52 +0000 Files and hashes: 1: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl (hash: AXgXPeo+1M6u9lG1runpsLOTnwuW0dOetEQ2NmEcy1Y=) 2: 538866F6E44B11EAA31DD984C4F9AE02.roa (hash: muRqFTnS2+oQQUYzYuXwP+mAhzn5jlwAwgRQL1uNMII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2066 (0x812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91936BE, serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Validity Not Before: Jun 12 20:38:52 2025 GMT Not After : Jun 19 20:38:52 2025 GMT Subject: CN=684b3add-b8ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:59:cf:5f:23:bf:71:67:2b:9b:de:fc:06:28: dc:66:19:2d:9a:ac:7d:4a:2e:37:66:aa:59:b3:83: b6:2c:63:45:8a:2f:2d:73:d0:72:50:fb:83:18:c4: 58:e9:a4:64:db:9b:28:3a:b2:10:1c:2c:dd:dd:a4: b7:bc:d9:ee:9d:b4:00:04:a7:b9:57:72:2d:1c:83: 7c:ad:21:11:89:65:38:e9:26:e3:74:f5:bf:5d:d9: 40:7a:24:8f:52:cf:4e:22:2c:22:4f:73:ed:8c:b8: 9c:1d:48:a6:9b:6c:6a:a1:de:a1:84:ac:36:2d:6e: 61:08:0c:ca:76:7c:7b:d1:33:e0:ec:4c:e1:53:8a: 69:af:3f:90:10:c5:0e:5f:ea:8a:1c:61:5c:5c:77: dd:b5:0a:46:53:72:8e:d9:fb:26:2f:45:3f:8b:6e: c8:c6:cc:96:cb:73:d7:3d:6b:f5:09:3f:bb:43:a5: 08:a0:9c:4a:6c:2e:fa:8a:ec:70:72:42:5b:ce:4d: b9:b1:d0:ef:fc:1e:a7:ec:0e:24:78:fc:d4:ac:d7: b6:d6:af:0b:3b:b9:2d:d6:f5:a1:bb:61:54:f1:4c: ee:50:70:7d:3d:5f:94:d7:bf:a5:85:e0:07:8c:93: a0:88:7b:75:21:a1:51:bb:87:89:12:2c:b9:52:52: 9a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D9:E6:1D:B7:BF:0E:C4:89:41:F6:4E:A8:54:89:93:49:1F:4A:79 X509v3 Authority Key Identifier: keyid:80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b7:45:0f:06:76:b0:2a:b2:e7:bd:a3:30:f9:4a:8c:54:48: a3:a2:1b:59:c0:11:04:0c:16:88:6e:f6:4f:53:44:db:6f:08: 95:e7:da:98:28:c6:1f:0c:30:a7:94:1a:0e:16:00:26:46:ef: 6f:bd:27:af:18:6c:96:14:b1:34:79:0c:81:1c:3e:46:39:62: ba:5a:c7:35:cb:08:7f:4d:4c:cf:55:fa:1d:04:bb:1f:b8:06: e1:c8:df:23:15:7e:a1:ab:14:aa:17:89:73:77:0c:51:aa:7f: 02:be:64:51:76:e9:ba:14:3b:8e:38:81:5a:25:89:6f:a8:eb: 33:6a:64:58:2f:6d:8d:b1:27:a6:8f:bc:ff:6a:9f:3f:ad:53: 3a:e9:69:22:52:70:8a:89:29:3d:f1:8e:60:76:59:84:c9:b6: 7c:fe:36:d4:4c:8b:40:43:eb:db:77:0a:df:46:9c:88:b8:bf: b7:96:7c:db:f4:b5:2d:c5:5a:2f:3d:8c:57:ba:5f:39:65:d8: 22:b8:94:57:15:3f:36:ab:69:63:29:d8:19:d3:ca:dd:61:45: 1e:2a:59:0c:8e:ed:06:57:2d:0e:bf:7a:ce:86:28:85:6a:0d: d1:34:0b:95:23:9e:66:2f:90:71:5d:d7:34:9e:d9:71:21:5b: 74:ec:a7:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM2QkUxMTAvBgNVBAUTKDgwMjFCMTZCOTI0MjFGNzdCNzI2MEU5N0U2QUQ4QzFE MjRCRDI5OUEwHhcNMjUwNjEyMjAzODUyWhcNMjUwNjE5MjAzODUyWjAYMRYwFAYD VQQDEw02ODRiM2FkZC1iOGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVnPXyO/cWcrm978BijcZhktmqx9Si43ZqpZs4O2LGNFii8tc9ByUPuDGMRY 6aRk25soOrIQHCzd3aS3vNnunbQABKe5V3ItHIN8rSERiWU46SbjdPW/XdlAeiSP Us9OIiwiT3PtjLicHUimm2xqod6hhKw2LW5hCAzKdnx70TPg7EzhU4pprz+QEMUO X+qKHGFcXHfdtQpGU3KO2fsmL0U/i27IxsyWy3PXPWv1CT+7Q6UIoJxKbC76iuxw ckJbzk25sdDv/B6n7A4kePzUrNe21q8LO7kt1vWhu2FU8UzuUHB9PV+U17+lheAH jJOgiHt1IaFRu4eJEiy5UlKaIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnZ5h23 vw7EiUH2TqhUiZNJH0p5MB8GA1UdIwQYMBaAFIAhsWuSQh93tyYOl+atjB0kvSma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzZCRS9DQTA2NjY4Q0U0 NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gzZTNKZzZYNXEyTUhTUzlL Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDR3hhNUpDSDNlM0pnNlg1cTJNSFNTOUtaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzZCRS9DQTA2NjY4Q0U0NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gz ZTNKZzZYNXEyTUhTUzlLWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBat0UPBnawKrLnvaMw+UqMVEijohtZwBEEDBaIbvZPU0TbbwiV59qY KMYfDDCnlBoOFgAmRu9vvSevGGyWFLE0eQyBHD5GOWK6Wsc1ywh/TUzPVfodBLsf uAbhyN8jFX6hqxSqF4lzdwxRqn8CvmRRdum6FDuOOIFaJYlvqOszamRYL22NsSem j7z/ap8/rVM66WkiUnCKiSk98Y5gdlmEybZ8/jbUTItAQ+vbdwrfRpyIuL+3lnzb 9LUtxVovPYxXul85ZdgiuJRXFT82q2ljKdgZ08rdYUUeKlkMju0GVy0Ov3rOhiiF ag3RNAuVI55mL5BxXdc0ntlxIVt07Ke+ -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:25 2025 by rpki-client