$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: E5vjL5xGWHkuYBUCsCoMSpZ4xR8wecegHjreuPg7SSA= Subject key identifier: 57:E5:C2:14:F4:D6:CA:1D:B9:E7:5A:F2:C7:BC:CE:9B:3F:A6:B4:ED Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 04DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 04DA Signing time: Fri 20 Jun 2025 23:30:47 +0000 Manifest this update: Fri 20 Jun 2025 23:30:47 +0000 Manifest next update: Fri 27 Jun 2025 23:30:47 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: p9OSyfPpB7OzL+BIlJDZRGQTKWcvdgTGnLfMI9XsLxE=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: 40Tp9vYlwNjlXHzULzghK25QKYAH3IMjVH7JAvH5N/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 21:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1247 (0x4df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8, serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: Jun 20 23:30:47 2025 GMT Not After : Jun 27 23:30:47 2025 GMT Subject: CN=6855ef27-5e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e8:82:eb:13:96:bc:df:6b:af:08:d4:73:d6: 49:06:61:53:db:13:21:bd:b9:ed:89:24:e1:b0:00: 5a:b6:03:dc:c1:f6:50:95:65:39:d6:7e:29:d5:fa: 1e:e1:fa:ce:f5:0b:b2:28:1b:4f:1d:7e:a8:c8:48: 67:d4:91:7c:00:78:50:cf:26:1e:1e:ea:47:c9:48: c1:a5:ff:77:7d:f9:59:e0:5e:c6:bd:69:d1:f5:ad: 5f:4e:74:a4:cc:b0:40:d4:48:fd:69:55:95:6f:a6: de:73:c6:65:0c:04:2e:21:a1:9d:d0:82:24:42:de: b1:6a:39:5d:52:d9:80:a2:df:e4:a4:bf:fd:94:61: f0:85:14:1b:6e:8f:b4:fb:7d:0c:43:90:c8:13:74: 26:d4:43:ac:b2:d4:43:4a:53:2d:1f:18:e7:57:8b: ea:48:e5:76:7d:98:50:b7:ab:77:56:81:82:95:ac: 4c:85:77:f7:5b:2d:9b:97:e1:4c:a2:9c:2f:2c:4c: 9f:1e:59:88:cf:3d:68:4b:89:79:c3:50:dd:4e:09: 45:3a:bc:61:47:d1:21:09:26:3c:2c:0a:92:98:a4: 8c:a7:eb:fa:d1:05:06:08:ec:00:1d:88:aa:9a:c2: be:f6:70:2a:6a:a0:e4:98:63:8f:34:c9:aa:ab:5f: 14:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E5:C2:14:F4:D6:CA:1D:B9:E7:5A:F2:C7:BC:CE:9B:3F:A6:B4:ED X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:a4:e8:4c:4d:59:ec:ab:38:1a:20:06:9e:92:2b:1f:05:b0: ca:7b:37:12:af:50:45:a8:b1:88:bc:3e:f6:86:0a:fa:b3:a9: 38:e6:7b:12:80:88:90:2f:01:9f:26:90:d9:a6:f2:b6:cc:10: 9d:27:0f:eb:60:5b:fe:9c:b1:b2:67:88:a6:08:3e:28:fa:a8: f6:06:cb:08:3f:63:d0:d0:74:ec:1b:05:f6:60:f2:cd:71:81: 4c:0a:87:2e:03:0c:19:ef:62:5d:21:0b:a4:3d:e0:2c:46:89: 4d:71:59:4b:e4:a5:93:d6:a8:85:0b:ae:68:29:da:84:64:4f: 36:28:5a:68:82:ea:bc:33:1a:d8:c3:d5:c8:66:b6:6a:df:6a: 49:87:3a:cb:50:f4:10:f2:e0:7d:84:a1:43:f8:0c:39:31:6f: 3c:aa:37:6f:28:b5:32:c7:fd:32:ad:3f:8c:57:15:ba:4c:bb: eb:97:ae:a3:8a:2a:5f:7c:13:2f:03:92:0c:61:54:61:b4:21: c7:ea:01:31:7a:16:ad:7d:18:cf:04:03:7b:12:c6:4c:b2:90: 46:10:1a:61:76:3e:8d:fc:eb:41:62:70:f7:86:e7:e1:24:85: 1b:95:53:f2:97:a6:94:8b:bc:eb:28:9c:4d:13:3f:fe:47:e3: a8:77:19:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjUwNjIwMjMzMDQ3WhcNMjUwNjI3MjMzMDQ3WjAYMRYwFAYD VQQDEw02ODU1ZWYyNy01ZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuiC6xOWvN9rrwjUc9ZJBmFT2xMhvbntiSThsABatgPcwfZQlWU51n4p1foe 4frO9QuyKBtPHX6oyEhn1JF8AHhQzyYeHupHyUjBpf93fflZ4F7GvWnR9a1fTnSk zLBA1Ej9aVWVb6bec8ZlDAQuIaGd0IIkQt6xajldUtmAot/kpL/9lGHwhRQbbo+0 +30MQ5DIE3Qm1EOsstRDSlMtHxjnV4vqSOV2fZhQt6t3VoGClaxMhXf3Wy2bl+FM opwvLEyfHlmIzz1oS4l5w1DdTglFOrxhR9EhCSY8LAqSmKSMp+v60QUGCOwAHYiq msK+9nAqaqDkmGOPNMmqq18UzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFflwhT0 1sodueda8se8zps/prTtMB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBipOhMTVnsqzgaIAaekisfBbDKezcSr1BFqLGIvD72hgr6s6k45nsS gIiQLwGfJpDZpvK2zBCdJw/rYFv+nLGyZ4imCD4o+qj2BssIP2PQ0HTsGwX2YPLN cYFMCocuAwwZ72JdIQukPeAsRolNcVlL5KWT1qiFC65oKdqEZE82KFpoguq8MxrY w9XIZrZq32pJhzrLUPQQ8uB9hKFD+Aw5MW88qjdvKLUyx/0yrT+MVxW6TLvrl66j iipffBMvA5IMYVRhtCHH6gExehatfRjPBAN7EsZMspBGEBphdj6N/OtBYnD3hufh JIUblVPyl6aUi7zrKJxNEz/+R+Oodxl0 -----END CERTIFICATE-----Generated at Sat Jun 21 03:07:56 2025 by rpki-client