$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: 1JzpjX7mkqR/kJ2B96IGs4QTDTDsn41cJMbJQUqLRS0= Subject key identifier: E6:A9:BD:C9:D8:C4:63:90:D7:C0:DD:B5:46:E8:72:74:AF:AC:D0:E7 Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 02C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 02C0 Signing time: Tue 17 Jun 2025 01:01:51 +0000 Manifest this update: Tue 17 Jun 2025 01:01:50 +0000 Manifest next update: Tue 24 Jun 2025 01:01:50 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: bp81cSxSziu/UWETAZPKFrxO0D3JFtN1/VI2H4e6aqo=) 2: 3785A958EF4711EF906AD167C4F9AE02.roa (hash: Xop4pF7LmPiWj4qFmNK9jXxRuc+SVOdI5Rsywj/dhPQ=) 3: 464B4494F7D911EF8EA69265C4F9AE02.roa (hash: kw7ZHY1axLvj55a+YPxHpHPEy1diN3j6tF6SRdvVlY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 713 (0x2c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F, serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: Jun 17 01:01:50 2025 GMT Not After : Jun 24 01:01:50 2025 GMT Subject: CN=6850be7e-1b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:53:81:ed:fb:21:52:cc:7d:56:76:39:40:d3: 8a:53:56:bc:76:38:9e:9b:31:2c:b1:c2:bb:5e:27: 6c:a0:3d:6b:21:3d:23:c1:f1:7f:72:b9:d1:32:23: 9a:fb:a8:e9:bd:2c:e3:49:f5:a3:cf:b8:64:4e:f1: 70:e9:d4:b6:77:b1:81:e7:20:24:5d:1e:05:a3:7c: 43:f8:4b:d5:fd:c0:c7:5d:d1:cc:c6:20:43:be:21: c2:c1:cc:0c:09:84:2b:63:08:9c:6e:7f:74:7e:e6: 35:3f:a9:e9:d4:c5:8b:04:41:70:e3:30:78:a7:b5: 2b:68:c1:45:43:af:dc:86:a5:cf:72:6b:26:a2:ad: 12:bc:94:91:80:e9:ea:f6:76:2c:86:df:6d:01:ae: e6:4e:94:56:45:ec:08:58:3e:36:ab:2b:2e:4a:ec: 55:6e:ce:e4:bd:4a:73:7b:c8:f2:47:15:a9:d6:e4: 48:d5:b7:61:62:34:a4:32:94:85:10:b9:ee:21:20: 1d:17:e2:7e:91:d6:4c:90:95:a8:a5:ef:ed:96:53: 17:c0:03:5a:58:9b:f1:44:0e:4f:59:66:1e:7f:7c: 7b:d6:86:cc:48:d9:e1:06:f7:0c:85:83:a1:8d:dc: a1:ba:68:80:2c:bf:d9:17:a9:93:e4:f9:b7:e6:d9: 3c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A9:BD:C9:D8:C4:63:90:D7:C0:DD:B5:46:E8:72:74:AF:AC:D0:E7 X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:ea:c2:d5:74:a2:f0:be:fd:54:e3:4b:48:8a:dd:47:20:27: e9:94:0f:d0:c8:0a:20:47:24:9e:5b:b2:ac:c6:ee:30:0e:4f: 6c:a8:cd:dc:5e:7c:44:e3:86:ae:dc:f7:d2:26:52:4c:54:26: 1c:96:da:d0:55:ec:7e:5d:7c:38:70:5b:37:0c:cc:71:1a:88: 48:06:8b:0a:ce:85:d9:f6:d9:ad:f5:46:78:72:4d:6e:be:16: f0:5e:7b:bc:9f:14:41:8b:56:ff:81:3c:04:7a:a0:a9:2e:5d: 5d:5c:08:c8:d1:e6:93:65:75:34:85:95:01:00:7e:4d:0c:5e: bb:6d:e3:e5:6e:ea:d6:09:fe:96:27:e7:f5:62:7b:0b:57:93: 8a:32:de:4f:c9:28:7b:71:4e:9f:8d:9c:51:8e:f7:16:60:28: 3f:f8:69:46:25:85:3b:11:fd:0d:67:dc:4a:5e:fa:15:e3:f4: c8:57:19:33:49:ad:29:a2:a0:b4:cd:01:74:ec:4f:db:81:4c: aa:d2:73:14:e1:f9:07:b3:46:5c:66:4c:6e:df:e9:60:85:8d: 9c:39:c3:cf:72:5d:52:9b:3f:cf:c7:58:cf:a7:46:14:48:7a: 90:3d:5e:74:4d:f7:2a:1b:e8:56:d0:8b:23:18:de:b9:22:0f: 15:97:85:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUwNjE3MDEwMTUwWhcNMjUwNjI0MDEwMTUwWjAYMRYwFAYD VQQDEw02ODUwYmU3ZS0xYjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FOB7fshUsx9VnY5QNOKU1a8djiemzEsscK7XidsoD1rIT0jwfF/crnRMiOa +6jpvSzjSfWjz7hkTvFw6dS2d7GB5yAkXR4Fo3xD+EvV/cDHXdHMxiBDviHCwcwM CYQrYwicbn90fuY1P6np1MWLBEFw4zB4p7UraMFFQ6/chqXPcmsmoq0SvJSRgOnq 9nYsht9tAa7mTpRWRewIWD42qysuSuxVbs7kvUpze8jyRxWp1uRI1bdhYjSkMpSF ELnuISAdF+J+kdZMkJWope/tllMXwANaWJvxRA5PWWYef3x71obMSNnhBvcMhYOh jdyhumiALL/ZF6mT5Pm35tk8WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOapvcnY xGOQ18DdtUbocnSvrNDnMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf6sLVdKLwvv1U40tIit1HICfplA/QyAogRySeW7Ksxu4wDk9sqM3c XnxE44au3PfSJlJMVCYcltrQVex+XXw4cFs3DMxxGohIBosKzoXZ9tmt9UZ4ck1u vhbwXnu8nxRBi1b/gTwEeqCpLl1dXAjI0eaTZXU0hZUBAH5NDF67bePlburWCf6W J+f1YnsLV5OKMt5PySh7cU6fjZxRjvcWYCg/+GlGJYU7Ef0NZ9xKXvoV4/TIVxkz Sa0poqC0zQF07E/bgUyq0nMU4fkHs0ZcZkxu3+lghY2cOcPPcl1Smz/Px1jPp0YU SHqQPV50TfcqG+hW0IsjGN65Ig8Vl4UU -----END CERTIFICATE-----Generated at Tue Jun 17 09:10:28 2025 by rpki-client