$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft File: gjEAt15d1BoefDKBw1cT9EvobJg.mft (raw, json) Hash identifier: ScbQwptNg51T6VpE1kpTXpoxjYBZj8+Mc3GRubMaVvI= Subject key identifier: C7:FB:EF:09:7D:12:92:E4:FB:BC:62:11:46:61:70:40:30:2C:F0:D3 Authority key identifier: 82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 Certificate issuer: /CN=A91A2E6A/serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft Manifest number: B9 Signing time: Fri 13 Jun 2025 04:53:18 +0000 Manifest this update: Fri 13 Jun 2025 04:53:18 +0000 Manifest next update: Fri 20 Jun 2025 04:53:18 +0000 Files and hashes: 1: gjEAt15d1BoefDKBw1cT9EvobJg.crl (hash: tOKkyJRQFG44xYdLfAhVX6A84O57pLw1ZptJVtvju30=) 2: BF466AE8325611EFA462C323C4F9AE02.roa (hash: KhqMoTs+Qi/II5aRP9wPpcsu1xRmCyMAj25hDB2Fy0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2E6A, serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Validity Not Before: Jun 13 04:53:18 2025 GMT Not After : Jun 20 04:53:18 2025 GMT Subject: CN=684baebe-5ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5d:84:04:95:2a:23:b9:62:91:c4:fe:fb:ea: fa:08:85:a8:a2:72:fd:bc:43:7a:d1:33:8a:30:c4: 66:ba:2d:cd:b3:09:db:60:80:0e:88:35:ce:d3:03: 8d:1f:34:c8:58:35:41:1f:2b:09:10:62:97:76:d2: 98:23:3f:9d:f9:46:52:79:26:b7:91:cd:a3:1a:d1: e8:bc:8d:c6:19:e3:86:77:39:8c:03:64:3b:88:6e: 38:b5:8f:ff:81:41:ad:52:28:70:d4:e4:81:8d:22: d3:5d:93:1c:54:c4:ae:5b:e3:88:2e:a2:7c:e4:47: 8c:f8:53:28:64:1c:7c:73:82:a4:59:d4:b2:7d:80: f0:9d:66:a3:c0:04:ab:70:dd:59:f1:27:c5:17:10: 18:0f:57:f9:bb:63:38:66:f7:7f:2c:16:4d:8f:24: 3f:ce:75:82:41:03:60:c1:94:08:23:b1:73:04:2e: ef:56:7b:56:6e:d7:c8:6e:bf:20:a5:77:a3:3b:5c: 3a:3f:03:8c:8b:97:c1:01:da:15:9d:c2:e2:72:7e: 63:89:49:6d:e6:3b:1f:60:00:53:f8:a9:ec:42:fc: 0a:87:1b:28:bd:f6:f7:3b:8c:50:cb:a4:9b:76:2f: 04:fe:04:34:21:1b:dd:e8:71:18:cd:7c:9b:9e:a9: 53:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:FB:EF:09:7D:12:92:E4:FB:BC:62:11:46:61:70:40:30:2C:F0:D3 X509v3 Authority Key Identifier: keyid:82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:cb:44:c6:89:26:7b:c6:eb:67:55:fe:0b:45:aa:c3:5d:5c: 4a:01:38:6a:8c:22:49:ac:ce:25:6b:42:cc:ec:8d:69:0b:13: 86:a8:95:c2:5a:63:c8:4a:f1:07:39:29:8a:22:d2:99:78:a0: 18:ba:b0:a2:56:ef:5b:26:3b:29:2c:c7:f1:0b:1e:5b:b1:3e: 89:8c:83:02:21:1a:5e:26:08:8c:94:23:9f:2d:88:80:2c:e4: 3a:ee:91:c5:3d:e2:85:21:d8:33:3d:c9:03:0f:c4:b3:00:6c: e4:f4:b5:56:87:db:66:f8:bb:85:1a:8e:c7:00:04:01:26:07: b9:ca:87:40:29:95:3e:03:af:11:33:00:e4:61:c7:6e:49:cf: 9c:2a:f3:d2:94:92:a2:4e:66:f6:8e:78:dd:1a:ea:9e:38:5b: 2d:83:9a:60:e0:41:70:9c:7d:ec:da:fb:eb:17:cf:aa:2b:a2: 30:dc:63:4a:1d:d1:4c:ae:94:86:fc:d5:55:d3:07:0c:90:74: 49:4e:ae:84:0c:15:a6:45:79:d3:a6:88:c9:01:2c:e9:a6:3a: ed:de:80:a1:16:91:ff:93:2b:18:25:ae:0b:0d:92:52:4e:83: c0:f3:ab:0b:a9:5d:71:3e:23:c4:ea:e6:4a:3e:e9:25:33:af: 02:b8:c9:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJFNkExMTAvBgNVBAUTKDgyMzEwMEI3NUU1REQ0MUExRTdDMzI4MUMzNTcxM0Y0 NEJFODZDOTgwHhcNMjUwNjEzMDQ1MzE4WhcNMjUwNjIwMDQ1MzE4WjAYMRYwFAYD VQQDEw02ODRiYWViZS01YWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy12EBJUqI7likcT+++r6CIWoonL9vEN60TOKMMRmui3NswnbYIAOiDXO0wON HzTIWDVBHysJEGKXdtKYIz+d+UZSeSa3kc2jGtHovI3GGeOGdzmMA2Q7iG44tY// gUGtUihw1OSBjSLTXZMcVMSuW+OILqJ85EeM+FMoZBx8c4KkWdSyfYDwnWajwASr cN1Z8SfFFxAYD1f5u2M4Zvd/LBZNjyQ/znWCQQNgwZQII7FzBC7vVntWbtfIbr8g pXejO1w6PwOMi5fBAdoVncLicn5jiUlt5jsfYABT+KnsQvwKhxsovfb3O4xQy6Sb di8E/gQ0IRvd6HEYzXybnqlTtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMf77wl9 EpLk+7xiEUZhcEAwLPDTMB8GA1UdIwQYMBaAFIIxALdeXdQaHnwygcNXE/RL6GyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkU2QS9BRTM3M0Q4NDMy MzAxMUVGOUU1MzIxNTZDNEY5QUUwMi9nakVBdDE1ZDFCb2VmREtCdzFjVDlFdm9i SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqRUF0MTVkMUJvZWZES0J3MWNUOUV2b2JKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkU2QS9BRTM3M0Q4NDMyMzAxMUVGOUU1MzIxNTZDNEY5QUUwMi9nakVBdDE1ZDFC b2VmREtCdzFjVDlFdm9iSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIy0TGiSZ7xutnVf4LRarDXVxKAThqjCJJrM4la0LM7I1pCxOGqJXC WmPISvEHOSmKItKZeKAYurCiVu9bJjspLMfxCx5bsT6JjIMCIRpeJgiMlCOfLYiA LOQ67pHFPeKFIdgzPckDD8SzAGzk9LVWh9tm+LuFGo7HAAQBJge5yodAKZU+A68R MwDkYcduSc+cKvPSlJKiTmb2jnjdGuqeOFstg5pg4EFwnH3s2vvrF8+qK6Iw3GNK HdFMrpSG/NVV0wcMkHRJTq6EDBWmRXnTpojJASzppjrt3oChFpH/kysYJa4LDZJS ToPA86sLqV1xPiPE6uZKPuklM68CuMmF -----END CERTIFICATE-----Generated at Sun Jun 15 07:17:18 2025 by rpki-client