$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: dKq7idx98Gu+or++vz4yoa8Cb3qEuEmMk0YF2frcLaM= Subject key identifier: B8:E0:E1:5C:EF:68:F6:96:4E:8B:B3:F9:BC:E2:55:BF:D3:F4:54:E3 Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 0619 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 0614 Signing time: Sat 14 Jun 2025 22:33:31 +0000 Manifest this update: Sat 14 Jun 2025 22:33:31 +0000 Manifest next update: Sat 21 Jun 2025 22:33:31 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: ypKrEDe/dwNIr7lv8SWWqRKYeaJyn3qo3wsdGFKNh3c=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: ljHjZ6k7MiI2pN3VX1Cgx4pPDWP1h2Cokp04xup/nNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1561 (0x619) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Jun 14 22:33:31 2025 GMT Not After : Jun 21 22:33:31 2025 GMT Subject: CN=684df8bb-f54a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7c:25:9e:0e:61:96:1a:c5:2b:c8:9b:fe:bc: 75:be:c4:13:42:5f:75:60:d6:5a:08:6a:24:bf:dc: 48:73:42:0f:e8:25:65:45:d6:17:d8:ea:30:37:27: eb:f2:12:46:e3:c3:2e:d2:9a:02:f5:92:37:a7:85: b2:e2:1f:d2:93:e9:67:d7:36:35:92:b6:db:37:1e: 81:3c:13:b8:ed:16:77:7a:35:f4:5d:69:44:a2:36: b3:dd:5d:57:a4:43:fb:d4:72:e9:c4:71:e6:c6:85: 8f:71:e8:5a:f4:74:c5:9c:5e:21:d9:6d:4f:93:dd: d8:7e:a3:1a:bb:ea:9f:37:d9:7d:d0:0a:ef:db:37: 62:2b:5c:57:d2:83:74:b9:4c:5f:41:4a:78:d3:d4: b8:23:05:e0:08:d1:9e:d2:74:b3:cc:51:f8:73:eb: a8:5d:7b:f6:f1:a7:fb:34:ff:62:7b:b2:dc:60:27: 63:04:47:b0:e5:40:27:c2:dc:56:8e:2d:ef:08:f8: 1e:dd:d9:8a:7f:ce:fd:b3:2f:db:7f:5a:9a:da:77: da:af:fc:ad:f7:ec:d7:2c:e7:95:f6:f1:d9:fe:46: 2f:1c:e7:43:8d:68:5d:de:27:56:ab:4e:cb:a6:87: 16:2e:45:29:d8:8c:54:3f:ee:fa:e3:06:92:31:fe: d4:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E0:E1:5C:EF:68:F6:96:4E:8B:B3:F9:BC:E2:55:BF:D3:F4:54:E3 X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:12:a5:ee:23:8b:f6:0c:42:b7:29:26:8f:9a:66:e7:4b:2c: 4e:39:70:b5:6c:fa:b8:20:a7:83:69:f7:fc:28:65:b3:4b:e3: 25:64:26:ee:1f:85:e5:32:1d:e9:4f:0b:34:ca:10:92:e6:d7: d1:b3:f1:89:f6:f1:bf:37:ff:77:c9:35:c7:d8:da:5a:70:d2: cf:3e:89:81:49:71:46:19:2e:f3:85:a9:44:34:a8:00:d1:fc: 84:ae:e4:7a:33:17:9d:31:b1:96:71:f7:90:95:63:0b:50:22: 5a:b5:d7:b9:d4:dd:20:b7:d6:a0:69:5f:92:69:6a:2b:4e:c1: 3a:91:db:23:0b:1a:3c:8e:70:fe:f3:c6:0f:64:07:ea:80:84: 87:43:f5:4a:9a:f8:c8:77:b6:d9:b5:e1:5c:59:eb:0e:0b:24: 7e:a5:d6:bb:cc:5a:8c:19:bc:5c:41:2c:18:29:0f:12:d6:e8: 19:95:48:84:dd:d9:c0:ad:0d:d3:de:e5:fd:61:26:77:02:48: 45:c1:e3:eb:a1:c6:06:d0:79:34:60:e1:5e:76:08:e9:b6:7f: 21:08:d4:3a:fe:1e:0e:33:f8:b5:25:bd:25:40:a1:3a:89:81: 75:7b:76:e5:d0:fa:dc:69:2b:b4:93:d9:da:a2:7a:c6:f9:ad: 12:01:9a:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjUwNjE0MjIzMzMxWhcNMjUwNjIxMjIzMzMxWjAYMRYwFAYD VQQDEw02ODRkZjhiYi1mNTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnwlng5hlhrFK8ib/rx1vsQTQl91YNZaCGokv9xIc0IP6CVlRdYX2OowNyfr 8hJG48Mu0poC9ZI3p4Wy4h/Sk+ln1zY1krbbNx6BPBO47RZ3ejX0XWlEojaz3V1X pEP71HLpxHHmxoWPceha9HTFnF4h2W1Pk93YfqMau+qfN9l90Arv2zdiK1xX0oN0 uUxfQUp409S4IwXgCNGe0nSzzFH4c+uoXXv28af7NP9ie7LcYCdjBEew5UAnwtxW ji3vCPge3dmKf879sy/bf1qa2nfar/yt9+zXLOeV9vHZ/kYvHOdDjWhd3idWq07L pocWLkUp2IxUP+764waSMf7UMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjg4Vzv aPaWTouz+bziVb/T9FTjMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqEqXuI4v2DEK3KSaPmmbnSyxOOXC1bPq4IKeDaff8KGWzS+MlZCbu H4XlMh3pTws0yhCS5tfRs/GJ9vG/N/93yTXH2NpacNLPPomBSXFGGS7zhalENKgA 0fyEruR6MxedMbGWcfeQlWMLUCJatde51N0gt9agaV+SaWorTsE6kdsjCxo8jnD+ 88YPZAfqgISHQ/VKmvjId7bZteFcWesOCyR+pda7zFqMGbxcQSwYKQ8S1ugZlUiE 3dnArQ3T3uX9YSZ3AkhFweProcYG0Hk0YOFedgjptn8hCNQ6/h4OM/i1Jb0lQKE6 iYF1e3bl0PrcaSu0k9naonrG+a0SAZrX -----END CERTIFICATE-----Generated at Sun Jun 15 05:52:24 2025 by rpki-client