$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft File: gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft (raw, json) Hash identifier: AxD6yxKJv8PdUAqPtV3yVqTAaw4+N1zbfchHDc0IK3M= Subject key identifier: 15:1A:8C:28:86:13:8D:B2:26:FD:A5:7E:7F:B2:4F:15:78:FF:2E:B4 Authority key identifier: 81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B Certificate issuer: /CN=A91CDC32/serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft Manifest number: 9E Signing time: Sun 15 Jun 2025 05:21:08 +0000 Manifest this update: Sun 15 Jun 2025 05:21:08 +0000 Manifest next update: Sun 22 Jun 2025 05:21:08 +0000 Files and hashes: 1: gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl (hash: iMvbBioxhO3fc12ktA61wqsFtZtCiKqvX+FvOapfP6A=) 2: 5221650C5ADE11EFBE0B0841C4F9AE02.roa (hash: DfXJNnGu5R78q4knIp+T6nbwy/V4l/65/i/LBotIC/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDC32, serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Validity Not Before: Jun 15 05:21:08 2025 GMT Not After : Jun 22 05:21:08 2025 GMT Subject: CN=684e5844-6573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:53:a0:ca:cc:a1:d5:d6:d9:08:2f:17:02:f1: b9:ae:86:e5:5a:e1:ea:6b:2c:48:45:38:64:98:8b: bd:30:13:76:56:a1:67:e4:f2:88:33:65:32:cd:b3: ab:00:e8:81:0b:79:0c:4c:98:8d:94:50:e2:e0:85: 3c:5a:ac:e4:64:cc:da:56:90:d5:e9:64:84:b4:95: 39:57:ef:48:38:df:33:7a:5b:84:2e:1c:36:bd:cc: 47:43:95:18:b6:97:06:ce:e2:78:2d:ff:fe:4e:dc: c6:de:12:99:6c:a5:45:e8:c2:95:56:f1:18:c2:29: 8b:b6:89:45:73:03:cb:9f:71:6d:f1:72:ee:68:5d: ab:7e:32:ae:98:cc:71:db:22:91:41:95:4c:df:8c: 4b:25:e7:a5:66:a4:81:49:dd:cb:28:ce:8b:5f:d2: a7:3f:75:51:5e:8c:c5:cc:e0:68:2b:07:46:79:50: 76:ed:92:5a:d5:78:8d:65:65:24:f4:b7:d0:ca:d2: e4:ba:5e:c6:48:cf:dd:f0:1c:92:1f:8d:73:e6:ff: 2b:df:a3:81:52:29:f8:c3:6f:58:c0:63:4f:60:10: 35:42:cc:7f:52:17:0d:8b:25:c6:41:f3:1d:07:4a: c7:62:66:50:83:4c:43:aa:62:2e:73:4b:9f:83:2b: 79:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:1A:8C:28:86:13:8D:B2:26:FD:A5:7E:7F:B2:4F:15:78:FF:2E:B4 X509v3 Authority Key Identifier: keyid:81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:a3:18:0b:81:1c:37:59:dc:fa:d1:82:a4:50:91:3c:7a:01: ff:34:5c:4f:4f:11:25:c3:42:0f:f8:1f:46:72:11:e0:67:18: 66:ae:16:48:10:a7:8d:33:d7:a3:e7:7f:2f:fb:72:00:b4:94: 88:65:bd:a4:c3:4a:89:6a:77:a4:31:3b:8e:68:ec:a9:ec:14: 45:02:5e:7d:46:da:26:3f:9a:b8:9a:28:97:67:a5:5c:1d:35: 72:3a:1b:12:9a:16:30:9d:50:3c:52:b0:8d:33:7e:03:3f:49: 58:a1:63:71:d4:b8:5e:cf:99:c0:2e:b9:ce:32:6b:c2:a4:bc: 35:6a:32:0b:15:73:23:8b:2f:8f:f7:68:6b:ad:f5:8c:b2:dc: 3f:03:f8:ee:e3:8c:93:70:bb:77:cb:db:69:3d:1f:e2:06:76: 52:a0:25:92:fc:3a:72:19:f7:f8:e7:e3:44:48:58:0d:b1:a0: 1d:35:25:1d:0e:f6:56:7b:63:21:01:1a:fe:e4:e2:f4:a4:22: 52:35:71:ad:6f:0e:c5:5c:29:80:08:7f:1f:6f:4e:de:d1:72: 69:6a:7f:2d:c5:fc:5b:43:7e:a2:9c:4f:bb:82:e8:35:ac:f7: 73:04:a1:ed:c0:8d:29:d1:a7:fa:5e:c6:8d:20:93:11:51:da: eb:54:f2:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RDMzIxMTAvBgNVBAUTKDgxOTk0OTNBRDI2NUFEMkRDNzMzOTZGNkJBMEI2RUQ2 Q0M0MUUxMEIwHhcNMjUwNjE1MDUyMTA4WhcNMjUwNjIyMDUyMTA4WjAYMRYwFAYD VQQDEw02ODRlNTg0NC02NTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1Ogysyh1dbZCC8XAvG5roblWuHqayxIRThkmIu9MBN2VqFn5PKIM2UyzbOr AOiBC3kMTJiNlFDi4IU8WqzkZMzaVpDV6WSEtJU5V+9ION8zeluELhw2vcxHQ5UY tpcGzuJ4Lf/+TtzG3hKZbKVF6MKVVvEYwimLtolFcwPLn3Ft8XLuaF2rfjKumMxx 2yKRQZVM34xLJeelZqSBSd3LKM6LX9KnP3VRXozFzOBoKwdGeVB27ZJa1XiNZWUk 9LfQytLkul7GSM/d8BySH41z5v8r36OBUin4w29YwGNPYBA1Qsx/UhcNiyXGQfMd B0rHYmZQg0xDqmIuc0ufgyt5/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUajCiG E42yJv2lfn+yTxV4/y60MB8GA1UdIwQYMBaAFIGZSTrSZa0txzOW9roLbtbMQeEL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREMzMi8wRjA5Mjg1NDVB REUxMUVGQTVDOUEyNDBDNEY5QUUwMi9nWmxKT3RKbHJTM0hNNWIydWd0dTFzeEI0 UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dabEpPdEpsclMzSE01YjJ1Z3R1MXN4QjRRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REMzMi8wRjA5Mjg1NDVBREUxMUVGQTVDOUEyNDBDNEY5QUUwMi9nWmxKT3RKbHJT M0hNNWIydWd0dTFzeEI0UXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeoxgLgRw3Wdz60YKkUJE8egH/NFxPTxElw0IP+B9GchHgZxhmrhZI EKeNM9ej538v+3IAtJSIZb2kw0qJanekMTuOaOyp7BRFAl59RtomP5q4miiXZ6Vc HTVyOhsSmhYwnVA8UrCNM34DP0lYoWNx1Lhez5nALrnOMmvCpLw1ajILFXMjiy+P 92hrrfWMstw/A/ju44yTcLt3y9tpPR/iBnZSoCWS/DpyGff45+NESFgNsaAdNSUd DvZWe2MhARr+5OL0pCJSNXGtbw7FXCmACH8fb07e0XJpan8txfxbQ36inE+7gug1 rPdzBKHtwI0p0af6XsaNIJMRUdrrVPLp -----END CERTIFICATE-----Generated at Sun Jun 15 09:41:53 2025 by rpki-client