$ rpki-client -vvf rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft File: gmtVkqw4sBK358JzDdBgfhDbgQI.mft (raw, json) Hash identifier: kM3d6sLQRv43UcK6XyWKqqiKdbi7+iJlANDbqhnnyow= Subject key identifier: E0:A4:11:36:FD:F6:0F:8B:2F:D4:31:B0:97:9B:93:9E:BA:E8:FB:E2 Authority key identifier: 82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 Certificate issuer: /CN=A91D23C7/serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Certificate serial: 0535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft Manifest number: 052F Signing time: Thu 12 Jun 2025 23:06:55 +0000 Manifest this update: Thu 12 Jun 2025 23:06:55 +0000 Manifest next update: Thu 19 Jun 2025 23:06:55 +0000 Files and hashes: 1: gmtVkqw4sBK358JzDdBgfhDbgQI.crl (hash: uOt+VDgwtpmnd1HW6zVk6172AmecbHbUSVjyFe9Q/0I=) 2: 25B713A4FE6B11EBB5DD176BC4F9AE02.roa (hash: DeWvXrtTOlNASLEtVwCRq5xJVs2BWXsb8zrs6Aq/kZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D23C7, serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Validity Not Before: Jun 12 23:06:55 2025 GMT Not After : Jun 19 23:06:55 2025 GMT Subject: CN=684b5d8f-e25d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:dc:ee:fa:ae:8e:5c:eb:66:e5:13:7b:9d:fd: ee:b0:61:70:be:61:0c:59:6f:02:41:7c:d4:81:08: 24:60:d1:4b:dc:88:bc:94:49:4a:68:24:13:8c:12: 65:9d:c1:5d:a8:b2:b8:b7:56:64:d7:84:79:f3:6a: df:2f:8c:6f:b7:5d:8f:ad:9e:61:b6:7f:47:f7:c3: d2:27:c7:92:8d:14:fa:bc:56:05:f2:69:43:3e:6c: 5f:a7:8a:ad:f8:1a:3c:be:0b:8b:e7:7a:6b:d0:b7: 7b:19:cc:11:b6:1a:ae:e5:05:78:10:44:b9:37:cd: ba:09:6e:17:59:e4:bf:48:97:9f:dd:d8:15:1a:57: d4:48:eb:c7:25:e2:b7:7b:71:5f:d9:27:fa:72:1b: ed:ac:77:d7:b6:d4:ee:fc:0a:88:85:4e:55:5b:0e: 69:6d:51:70:42:a8:35:04:17:8e:1f:fa:5b:db:31: 4d:19:84:c5:5e:94:17:3f:52:f3:73:54:9e:cf:3a: d3:9b:00:19:7d:ba:e9:09:e1:4d:12:91:8c:f7:21: e8:ca:69:88:02:d9:9b:74:78:46:13:4a:f2:46:ee: 1c:57:2b:bf:5d:91:d3:b9:f5:0f:e9:21:14:c9:09: 18:44:98:71:e4:61:c2:e3:1a:6b:04:34:61:67:b1: 63:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A4:11:36:FD:F6:0F:8B:2F:D4:31:B0:97:9B:93:9E:BA:E8:FB:E2 X509v3 Authority Key Identifier: keyid:82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b5:a3:53:1c:52:00:67:76:3b:79:39:84:7c:35:12:a6:b4: 83:a8:ed:9f:45:b3:25:67:c7:44:48:31:b7:96:b8:d5:59:ca: d4:72:b2:7e:5c:f0:2d:a2:ca:04:25:22:2a:41:86:ef:2a:f1: a2:29:7d:14:48:a9:10:f3:7b:6a:44:be:19:fb:9d:8b:f9:3a: b7:4d:b2:74:f2:31:72:aa:20:b2:0b:b1:bf:d9:1f:82:4d:cf: ff:2a:f7:8b:38:cf:6e:e3:a2:21:28:d0:f3:a1:c5:c2:ff:ac: 18:62:01:c1:e7:b9:69:36:03:03:6b:6c:7f:e2:2f:9c:bc:4f: f9:e8:ea:56:9c:ae:46:a6:c0:3e:9a:cf:92:64:2c:4e:b3:20: ac:2b:eb:2b:bf:f5:7b:d3:f5:3e:00:f9:ed:48:2b:ce:7c:8a: aa:ce:cc:e5:2a:88:c2:d9:92:e3:23:53:7c:31:0c:27:07:9a: 1c:43:59:7f:f1:db:02:f7:89:50:f6:87:0e:a9:dc:d6:db:80: 60:0b:ba:0d:d7:8a:fe:a4:bb:1d:83:c0:68:cd:76:78:11:cc: ca:1b:92:b5:d9:48:56:36:12:28:1b:c3:4a:b5:0d:4d:2f:e8: 7d:c9:67:0d:52:6a:59:c4:05:cb:34:40:ac:f4:ed:79:f9:64: 73:98:fd:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIzQzcxMTAvBgNVBAUTKDgyNkI1NTkyQUMzOEIwMTJCN0U3QzI3MzBERDA2MDdF MTBEQjgxMDIwHhcNMjUwNjEyMjMwNjU1WhcNMjUwNjE5MjMwNjU1WjAYMRYwFAYD VQQDEw02ODRiNWQ4Zi1lMjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNzu+q6OXOtm5RN7nf3usGFwvmEMWW8CQXzUgQgkYNFL3Ii8lElKaCQTjBJl ncFdqLK4t1Zk14R582rfL4xvt12PrZ5htn9H98PSJ8eSjRT6vFYF8mlDPmxfp4qt +Bo8vguL53pr0Ld7GcwRthqu5QV4EES5N826CW4XWeS/SJef3dgVGlfUSOvHJeK3 e3Ff2Sf6chvtrHfXttTu/AqIhU5VWw5pbVFwQqg1BBeOH/pb2zFNGYTFXpQXP1Lz c1SezzrTmwAZfbrpCeFNEpGM9yHoymmIAtmbdHhGE0ryRu4cVyu/XZHTufUP6SEU yQkYRJhx5GHC4xprBDRhZ7FjUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCkETb9 9g+LL9QxsJebk5666PviMB8GA1UdIwQYMBaAFIJrVZKsOLASt+fCcw3QYH4Q24EC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjNDNy83QjJGNTM4QUZF NjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNCSzM1OEp6RGRCZ2ZoRGJn UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtdFZrcXc0c0JLMzU4SnpEZEJnZmhEYmdRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjNDNy83QjJGNTM4QUZFNjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNC SzM1OEp6RGRCZ2ZoRGJnUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6taNTHFIAZ3Y7eTmEfDUSprSDqO2fRbMlZ8dESDG3lrjVWcrUcrJ+ XPAtosoEJSIqQYbvKvGiKX0USKkQ83tqRL4Z+52L+Tq3TbJ08jFyqiCyC7G/2R+C Tc//KveLOM9u46IhKNDzocXC/6wYYgHB57lpNgMDa2x/4i+cvE/56OpWnK5GpsA+ ms+SZCxOsyCsK+srv/V70/U+APntSCvOfIqqzszlKojC2ZLjI1N8MQwnB5ocQ1l/ 8dsC94lQ9ocOqdzW24BgC7oN14r+pLsdg8BozXZ4EczKG5K12UhWNhIoG8NKtQ1N L+h9yWcNUmpZxAXLNECs9O15+WRzmP1B -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:10 2025 by rpki-client