$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: L3So/B8eaPTyfK8uuq0lMpARVmtwZxq+AW3GJu2vp2w= Subject key identifier: 1C:CA:3F:62:82:96:C7:14:E8:17:C8:6B:FF:C8:1C:64:79:89:86:C0 Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B26 Signing time: Thu 12 Jun 2025 19:01:43 +0000 Manifest this update: Thu 12 Jun 2025 19:01:43 +0000 Manifest next update: Thu 19 Jun 2025 19:01:43 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: EIBh+9Jb5lz0YcoDgfNuOClN9VZyZgBg80b+IGUPFyg=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Jun 12 19:01:43 2025 GMT Not After : Jun 19 19:01:43 2025 GMT Subject: CN=684b2417-2c6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d9:0e:14:c9:19:46:0b:2a:33:9d:aa:a5:ee: a4:2b:a5:cd:8c:fb:72:80:c6:b9:fc:27:87:1b:da: fb:bc:0a:50:b7:ee:f1:4f:e0:8a:da:18:c6:05:3b: 27:3f:73:a8:bf:d3:04:db:76:60:9f:2b:d3:09:f6: 85:80:25:eb:bc:5c:a1:c6:c4:1a:f3:df:de:a7:59: 44:cd:35:d8:a7:36:8c:c6:c6:b6:84:73:60:d2:67: 4d:1a:f3:5b:4b:75:22:9c:b0:67:4b:8b:49:23:26: a5:15:1f:46:98:51:48:fa:95:6f:eb:9e:c2:dd:2a: 02:a3:4c:dd:c8:cc:27:90:cd:ea:dd:a5:d5:e4:ed: ba:fb:9b:89:4f:a4:4f:0a:51:4f:0a:9f:b8:4d:29: b2:46:dc:76:5e:55:42:de:47:d2:b3:0d:16:8a:fd: 46:bf:5c:92:42:7b:9a:b2:63:b7:c4:f2:64:19:96: 8a:69:af:52:7d:9b:2e:1b:b7:87:33:87:a7:c8:59: 29:23:7e:f0:29:2d:45:91:6f:ae:97:39:08:ee:eb: ba:4c:8e:7d:90:07:9e:0f:97:08:d5:b1:6e:b2:8a: 3c:a1:05:d0:1a:61:3b:9c:bf:9e:2b:10:9f:d0:41: 43:98:73:59:97:a8:39:3e:98:8f:fb:38:1b:9c:8f: 68:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:CA:3F:62:82:96:C7:14:E8:17:C8:6B:FF:C8:1C:64:79:89:86:C0 X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:19:97:a4:35:d5:89:09:16:ce:07:00:33:ad:eb:50:65:f2: 76:4b:11:bd:ba:4a:e6:0a:e7:46:02:a3:a3:7b:5a:18:0a:18: 84:eb:70:98:c7:dd:7b:e4:d3:69:32:36:fc:c6:45:c9:cb:35: 0c:93:18:2e:a3:87:e0:e4:8f:8c:14:9c:b9:98:24:29:50:08: 1f:6a:b3:09:3d:f2:a0:2e:38:63:ba:23:2f:a0:fa:56:93:d0: 08:3a:07:46:39:01:25:b5:85:61:b5:ef:19:a9:70:87:0d:58: 8b:e8:39:77:a1:58:63:da:ec:a2:4f:49:c8:7d:b0:11:ce:99: 1d:09:7a:64:a9:3b:7b:7b:1f:19:e2:97:84:71:f6:3c:00:0a: 22:c8:f0:ec:2d:0a:7e:1f:05:28:cb:47:14:9b:53:46:88:fa: 45:6f:fe:9f:c6:aa:69:3e:66:fe:f4:71:44:30:eb:9f:01:39: 3f:9b:3e:38:b5:68:49:61:d7:2e:a6:f4:8d:b8:5e:95:e4:84: b7:e1:9e:0e:ef:34:7e:cd:5b:ab:85:bb:92:af:07:49:cf:9f: 89:d8:91:7d:f5:af:bb:63:da:3c:fa:a4:5a:e2:99:b0:68:09: 71:b2:26:1b:49:d7:f3:20:30:3c:2b:a4:68:fd:dd:b3:99:66: 7a:6d:40:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUwNjEyMTkwMTQzWhcNMjUwNjE5MTkwMTQzWjAYMRYwFAYD VQQDEw02ODRiMjQxNy0yYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59kOFMkZRgsqM52qpe6kK6XNjPtygMa5/CeHG9r7vApQt+7xT+CK2hjGBTsn P3Oov9ME23ZgnyvTCfaFgCXrvFyhxsQa89/ep1lEzTXYpzaMxsa2hHNg0mdNGvNb S3UinLBnS4tJIyalFR9GmFFI+pVv657C3SoCo0zdyMwnkM3q3aXV5O26+5uJT6RP ClFPCp+4TSmyRtx2XlVC3kfSsw0Wiv1Gv1ySQnuasmO3xPJkGZaKaa9SfZsuG7eH M4enyFkpI37wKS1FkW+ulzkI7uu6TI59kAeeD5cI1bFusoo8oQXQGmE7nL+eKxCf 0EFDmHNZl6g5PpiP+zgbnI9o4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzKP2KC lscU6BfIa//IHGR5iYbAMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqGZekNdWJCRbOBwAzretQZfJ2SxG9ukrmCudGAqOje1oYChiE63CY x9175NNpMjb8xkXJyzUMkxguo4fg5I+MFJy5mCQpUAgfarMJPfKgLjhjuiMvoPpW k9AIOgdGOQEltYVhte8ZqXCHDViL6Dl3oVhj2uyiT0nIfbARzpkdCXpkqTt7ex8Z 4peEcfY8AAoiyPDsLQp+HwUoy0cUm1NGiPpFb/6fxqppPmb+9HFEMOufATk/mz44 tWhJYdcupvSNuF6V5IS34Z4O7zR+zVurhbuSrwdJz5+J2JF99a+7Y9o8+qRa4pmw aAlxsiYbSdfzIDA8K6Ro/d2zmWZ6bUAR -----END CERTIFICATE-----Generated at Sat Jun 14 17:49:23 2025 by rpki-client