$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft File: gcJvPY9BNuUZDMehfWr3IkIutm8.mft (raw, json) Hash identifier: zzBuCi4kr2zXP2M+5trbk9DSpxoC4VVwb6lDo9HZ7lE= Subject key identifier: 37:9E:39:E3:B1:80:DC:46:0D:5A:96:0D:79:BD:5C:FC:87:EC:2D:35 Authority key identifier: 81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F Certificate issuer: /CN=A91B8E70/serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft Manifest number: 7B Signing time: Thu 19 Jun 2025 06:06:43 +0000 Manifest this update: Thu 19 Jun 2025 06:06:42 +0000 Manifest next update: Thu 26 Jun 2025 06:06:42 +0000 Files and hashes: 1: gcJvPY9BNuUZDMehfWr3IkIutm8.crl (hash: 6e2srqgBp4n6ivewaQ58V9u7Dhf+SW7/jMidGfNxb0g=) 2: 20B2721A955B11EFBF0F5669C4F9AE02.roa (hash: llWki8GcmgjT7J8EXf4LrHE2T0htuGvxurz/78InPoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Validity Not Before: Jun 19 06:06:42 2025 GMT Not After : Jun 26 06:06:42 2025 GMT Subject: CN=6853a8f3-ad43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:81:83:60:b4:e8:3a:98:82:58:bf:2f:9f:0f: 50:2b:69:82:5e:ce:0b:4c:58:03:44:8a:d0:8d:9f: 05:73:7e:a2:ec:d8:c4:9c:a8:a9:2e:ad:b5:76:b4: 68:6d:94:b1:65:7a:8a:76:ff:bd:a4:90:db:89:5e: d7:eb:4c:9e:f5:98:e9:02:99:0c:25:a0:73:3f:6b: ae:c7:ab:fc:e4:50:4f:15:10:b4:de:8a:17:1b:59: 70:d3:8f:43:41:27:0b:a5:4b:0b:ef:6a:ae:66:78: 5e:aa:93:49:b0:b5:9e:8e:d5:44:27:9f:5f:d0:d7: c2:35:62:8d:af:ac:f2:72:38:2c:45:31:4a:36:f5: ae:b1:ca:fe:35:a9:a7:f6:7c:fd:65:e6:84:24:b7: 84:40:9d:61:4f:57:97:e3:f3:42:1c:27:67:c9:1a: 73:de:fa:1c:4d:9a:3b:f2:17:05:05:10:dd:68:7c: 13:bf:c4:59:b4:17:d4:bc:a3:8b:a6:f9:13:72:b6: 97:b4:ae:ac:4c:43:6f:15:cf:11:5d:29:e9:8f:d1: 36:f8:d9:c8:91:18:45:e7:65:75:bd:22:bf:cc:39: ba:3e:c2:30:45:da:96:76:fd:11:64:99:c8:e1:ee: 49:5e:1d:34:2e:76:85:03:9a:aa:3a:98:e8:79:f7: 42:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9E:39:E3:B1:80:DC:46:0D:5A:96:0D:79:BD:5C:FC:87:EC:2D:35 X509v3 Authority Key Identifier: keyid:81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:b8:90:d8:5d:e8:db:48:4e:e0:cf:d3:29:87:47:42:fa:88: 49:c0:3c:80:8c:c0:69:49:6a:41:91:c4:f5:c6:ee:aa:b1:57: 65:e2:67:af:3c:19:2f:1d:33:23:7c:2f:b5:4e:4c:cc:10:de: ea:62:49:5e:24:59:7e:56:16:d0:86:94:d4:eb:3a:31:37:e4: de:54:80:da:32:0d:98:b9:2b:fa:d0:f4:d0:f4:fe:f1:6c:5b: c0:55:f8:bc:aa:9f:88:c1:e3:40:51:77:af:45:a9:6b:9f:54: 47:69:58:df:79:60:a1:ae:c6:98:63:21:f3:fe:51:6a:a4:51: aa:4d:79:a0:2a:49:ae:5b:22:81:e0:a9:5a:96:77:d6:90:c0: 2d:54:5b:07:c4:e3:8c:ae:c9:6e:7a:14:54:6b:ee:e8:c0:a0: 2d:0e:8c:02:e1:12:82:5d:71:26:25:f1:98:d4:80:c4:67:e3: 84:a9:8a:4b:dc:07:65:2e:64:72:fc:fc:73:47:91:64:83:03: bf:a8:ab:70:99:84:0b:41:68:76:fb:1f:62:a0:de:19:59:0c: 3c:6e:13:11:f7:3e:e5:bd:da:e0:b2:b1:b5:69:08:01:54:5f: ff:c2:28:eb:cb:46:9c:0a:ad:2b:41:72:30:2e:3a:79:27:30: 36:d7:a7:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoODFDMjZGM0Q4RjQxMzZFNTE5MENDN0ExN0Q2QUY3MjI0 MjJFQjY2RjAeFw0yNTA2MTkwNjA2NDJaFw0yNTA2MjYwNjA2NDJaMBgxFjAUBgNV BAMTDTY4NTNhOGYzLWFkNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcgYNgtOg6mIJYvy+fD1AraYJezgtMWANEitCNnwVzfqLs2MScqKkurbV2tGht lLFleop2/72kkNuJXtfrTJ71mOkCmQwloHM/a67Hq/zkUE8VELTeihcbWXDTj0NB JwulSwvvaq5meF6qk0mwtZ6O1UQnn1/Q18I1Yo2vrPJyOCxFMUo29a6xyv41qaf2 fP1l5oQkt4RAnWFPV5fj80IcJ2fJGnPe+hxNmjvyFwUFEN1ofBO/xFm0F9S8o4um +RNytpe0rqxMQ28VzxFdKemP0Tb42ciRGEXnZXW9Ir/MObo+wjBF2pZ2/RFkmcjh 7kleHTQudoUDmqo6mOh590K5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUN54547GA 3EYNWpYNeb1c/IfsLTUwHwYDVR0jBBgwFoAUgcJvPY9BNuUZDMehfWr3IkIutm8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzJEOTk3MEQ4OTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL2djSnZQWTlCTnVVWkRNZWhmV3IzSWtJdXRt OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ2NKdlBZOUJOdVVaRE1laGZXcjNJa0l1dG04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzJEOTk3MEQ4OTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL2djSnZQWTlCTnVV WkRNZWhmV3IzSWtJdXRtOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ+4kNhd6NtITuDP0ymHR0L6iEnAPICMwGlJakGRxPXG7qqxV2XiZ688 GS8dMyN8L7VOTMwQ3upiSV4kWX5WFtCGlNTrOjE35N5UgNoyDZi5K/rQ9ND0/vFs W8BV+Lyqn4jB40BRd69FqWufVEdpWN95YKGuxphjIfP+UWqkUapNeaAqSa5bIoHg qVqWd9aQwC1UWwfE44yuyW56FFRr7ujAoC0OjALhEoJdcSYl8ZjUgMRn44Spikvc B2UuZHL8/HNHkWSDA7+oq3CZhAtBaHb7H2Kg3hlZDDxuExH3PuW92uCysbVpCAFU X//CKOvLRpwKrStBcjAuOnknMDbXp8I= -----END CERTIFICATE-----Generated at Fri Jun 20 17:07:25 2025 by rpki-client