$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft File: G7spe8goFmqkl9N8cmW_tgGuA2A.mft (raw, json) Hash identifier: 1c2nrY5A0NnR1Stfz1YXyQJICJzPnU87C/LgjxZ423o= Subject key identifier: FE:EE:4F:62:60:0B:F1:2F:0A:01:8D:BF:71:52:A4:CC:9C:14:8B:AD Authority key identifier: 1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 Certificate issuer: /CN=A91B49F2/serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Certificate serial: 0E3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft Manifest number: 0E30 Signing time: Wed 18 Jun 2025 17:43:44 +0000 Manifest this update: Wed 18 Jun 2025 17:43:43 +0000 Manifest next update: Wed 25 Jun 2025 17:43:43 +0000 Files and hashes: 1: G7spe8goFmqkl9N8cmW_tgGuA2A.crl (hash: oXWTnPndJiM06fstLdO3ofx7w+xDbEzxqYg/rJGZ2Ro=) 2: BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa (hash: XB0QLbbknxQIRTO38MXkPwNFVVbVpdhvXqbqZxANpFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3642 (0xe3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2, serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Validity Not Before: Jun 18 17:43:43 2025 GMT Not After : Jun 25 17:43:43 2025 GMT Subject: CN=6852fad0-2b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:9f:ce:9e:6f:61:d7:b7:7b:64:f7:81:c3:9b: de:bb:ef:85:d6:ff:79:db:4a:87:7e:5c:66:46:d4: cd:24:4b:08:aa:70:6f:1b:86:bf:fe:ff:ec:1c:90: 96:10:13:94:a6:0c:51:29:b4:e5:8f:ad:0a:9d:86: cc:53:a8:be:5f:f5:24:40:ac:48:24:ce:ab:63:90: a9:61:23:aa:56:9a:a1:0f:0a:ae:32:fe:0e:4b:95: d2:be:2d:c7:de:a9:5e:3c:d0:30:b7:c8:2a:d9:14: 69:6b:2e:dd:b7:d7:dd:af:78:66:77:1a:a8:cd:56: 89:5a:1b:db:88:b8:cb:0f:36:19:eb:66:92:8b:1a: 8c:35:55:76:65:fc:67:bb:b2:7e:cb:1e:e8:5e:52: 60:5b:f8:c4:24:aa:19:d2:45:7b:1a:8b:12:51:05: f2:fe:1f:5c:8f:dd:f6:11:4f:15:db:76:79:22:39: 91:07:f1:58:fb:16:4e:d6:c6:c9:a0:4b:20:e5:a9: 31:40:6d:50:cd:d9:47:91:45:d4:7d:60:0a:29:76: 36:4a:e2:e2:44:39:b4:56:83:f2:b3:f6:76:de:c2: 35:37:52:44:39:dd:42:5e:e4:fc:9c:42:8b:90:78: 2d:34:c9:8a:c7:b0:c7:9e:8b:a7:67:88:d8:4b:c0: 87:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:EE:4F:62:60:0B:F1:2F:0A:01:8D:BF:71:52:A4:CC:9C:14:8B:AD X509v3 Authority Key Identifier: keyid:1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:4c:54:5d:db:97:e8:e0:1b:90:f5:d1:93:b6:6a:96:cc:ac: 9d:05:dd:28:83:6b:2c:30:d5:f6:d8:1d:0a:c8:dd:12:77:fb: 84:c5:90:a8:bb:a6:b4:a0:8d:e1:74:9d:26:f4:f4:fc:5f:79: f3:74:dd:54:f2:a1:55:47:b0:96:fc:7b:b8:b3:ae:52:28:02: 8c:3d:6f:cf:e7:cb:9b:9a:e1:c5:8f:7c:54:2a:ef:d8:71:33: f6:8d:48:55:ef:d3:aa:81:5b:96:ae:8f:2f:10:ca:0c:94:f8: 75:4f:73:19:91:4c:0d:cc:7d:54:f4:54:37:9f:92:ae:f5:91: 58:05:3a:8e:22:ea:bc:ef:04:9b:99:be:ff:36:43:f3:7f:67: 3e:f8:75:c1:88:f3:4d:08:69:30:2a:1b:cf:af:0c:e2:09:c1: ad:31:c3:28:a0:6b:fe:4e:b0:45:4a:8b:34:8f:a8:84:8a:5a: a7:20:55:c8:59:f7:0e:98:0c:b0:d0:0b:24:2e:ac:7b:22:26: 83:2f:f0:c3:09:b7:5e:02:0a:f6:70:35:66:6d:b4:67:62:ce: 9b:e9:3d:e0:2c:15:95:ed:c1:ac:74:28:2c:92:26:a1:82:b8: e6:3e:72:df:21:46:8c:f4:4c:b7:75:76:d4:a7:e0:11:f5:af: 25:89:5a:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKDFCQkIyOTdCQzgyODE2NkFBNDk3RDM3QzcyNjVCRkI2 MDFBRTAzNjAwHhcNMjUwNjE4MTc0MzQzWhcNMjUwNjI1MTc0MzQzWjAYMRYwFAYD VQQDEw02ODUyZmFkMC0yYjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8p/Onm9h17d7ZPeBw5veu++F1v9520qHflxmRtTNJEsIqnBvG4a//v/sHJCW EBOUpgxRKbTlj60KnYbMU6i+X/UkQKxIJM6rY5CpYSOqVpqhDwquMv4OS5XSvi3H 3qlePNAwt8gq2RRpay7dt9fdr3hmdxqozVaJWhvbiLjLDzYZ62aSixqMNVV2Zfxn u7J+yx7oXlJgW/jEJKoZ0kV7GosSUQXy/h9cj932EU8V23Z5IjmRB/FY+xZO1sbJ oEsg5akxQG1QzdlHkUXUfWAKKXY2SuLiRDm0VoPys/Z23sI1N1JEOd1CXuT8nEKL kHgtNMmKx7DHnounZ4jYS8CHEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7uT2Jg C/EvCgGNv3FSpMycFIutMB8GA1UdIwQYMBaAFBu7KXvIKBZqpJfTfHJlv7YBrgNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi83QzA2RTc5Q0E2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0ZtcWtsOU44Y21XX3RnR3VB MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0c3c3BlOGdvRm1xa2w5TjhjbVdfdGdHdUEyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi83QzA2RTc5Q0E2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0Zt cWtsOU44Y21XX3RnR3VBMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkTFRd25fo4BuQ9dGTtmqWzKydBd0og2ssMNX22B0KyN0Sd/uExZCo u6a0oI3hdJ0m9PT8X3nzdN1U8qFVR7CW/Hu4s65SKAKMPW/P58ubmuHFj3xUKu/Y cTP2jUhV79OqgVuWro8vEMoMlPh1T3MZkUwNzH1U9FQ3n5Ku9ZFYBTqOIuq87wSb mb7/NkPzf2c++HXBiPNNCGkwKhvPrwziCcGtMcMooGv+TrBFSos0j6iEilqnIFXI WfcOmAyw0AskLqx7IiaDL/DDCbdeAgr2cDVmbbRnYs6b6T3gLBWV7cGsdCgskiah grjmPnLfIUaM9Ey3dXbUp+AR9a8liVrW -----END CERTIFICATE-----Generated at Fri Jun 20 01:12:00 2025 by rpki-client