$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: qltwRhE0tkwSHd79XtJUHfE2hXXtWtMZCZ88q5U/bUU= Subject key identifier: 38:38:18:3F:10:2D:AB:CE:DE:6A:37:40:8B:2B:6F:00:64:FF:39:4F Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 048A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 0486 Signing time: Thu 12 Jun 2025 23:36:59 +0000 Manifest this update: Thu 12 Jun 2025 23:36:59 +0000 Manifest next update: Thu 19 Jun 2025 23:36:59 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: b05iCCWNs/yf8TjtOvFS2LeMIjZR0DSeFFaikbJJUYY=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Jun 12 23:36:59 2025 GMT Not After : Jun 19 23:36:59 2025 GMT Subject: CN=684b649b-e5d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:48:8b:8e:54:da:28:da:e6:f2:0c:bc:e8:cb: 67:5c:be:93:e1:00:1d:ca:37:d8:bf:be:48:63:78: d1:ba:cf:f5:fd:13:93:2b:91:08:d7:fd:a2:fa:53: e2:69:20:f0:63:84:86:65:6c:e4:5e:f3:5b:ed:0e: 08:b6:85:ec:e3:50:9f:e4:0c:74:64:18:17:48:77: 97:84:73:f7:e2:74:cb:46:96:b0:81:70:fd:79:9d: 97:ad:fd:5e:77:30:1f:c1:61:52:ae:d2:68:e3:29: 12:34:36:a2:bf:02:cf:54:8e:2b:8d:80:2e:fa:0c: a5:d4:0d:d2:35:d8:4b:02:82:df:91:3b:d0:3f:64: 6d:72:9c:d5:c0:ee:29:f1:be:bc:c0:53:08:f5:c5: ea:3c:30:17:68:81:dc:0b:ad:77:5d:e3:7e:b1:87: 8b:02:fc:fa:6b:e1:15:dd:8c:06:6d:8f:1d:26:ca: b9:b6:06:a7:ed:04:82:60:61:ce:ed:a2:ed:50:82: 4b:2d:34:ad:7c:94:63:dd:23:f0:21:b0:7e:33:99: bc:37:14:94:10:09:7b:82:7b:c1:24:27:5d:8d:40: ab:b1:b5:35:c2:a9:69:3a:03:b2:80:6a:80:7c:e9: f6:95:1a:52:de:ea:6b:31:3b:39:7c:28:a7:71:ec: 02:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:38:18:3F:10:2D:AB:CE:DE:6A:37:40:8B:2B:6F:00:64:FF:39:4F X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:8e:7c:d5:c2:99:70:2e:a4:38:ac:e9:3a:a0:55:47:5b:fd: 8b:e4:82:e2:b7:38:27:a3:b4:71:0b:6e:18:00:a8:01:20:a2: d6:7f:3b:ac:ec:5b:34:9a:eb:ef:de:6c:f8:9b:e1:1b:54:b7: 7a:b6:4f:d0:38:2e:c6:b7:bb:c3:7b:2c:f3:95:07:59:3e:06: 57:49:66:54:61:cb:65:14:f8:ab:1e:f5:2a:54:dc:85:8f:8d: 28:26:14:40:39:1d:e4:46:8c:c8:a8:ab:cf:45:96:35:87:b2: 79:6d:ce:8a:70:f6:b2:cf:ca:89:df:91:21:39:a6:5a:a6:67: c9:07:19:0a:5a:6f:fb:78:02:8e:1b:1b:67:48:36:a7:ed:d4: 51:ff:8a:67:80:60:14:cf:18:56:5c:c3:c6:03:95:5b:d8:46: a7:ab:08:3f:f9:b2:66:18:9b:7b:73:9f:1b:c1:af:36:e8:79: d2:72:85:08:04:86:50:46:2c:a0:e9:1d:ff:62:69:9b:fb:25: 28:31:9f:84:1e:66:d0:a3:b5:2a:29:f8:7d:db:5f:4f:26:3d: 3c:36:db:46:d1:d3:85:f5:a5:24:ce:17:f0:81:71:ea:3f:62: 3e:1c:13:dd:24:6b:e0:e1:fe:29:ad:2c:59:ca:46:5a:7e:58: 20:2a:7e:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUwNjEyMjMzNjU5WhcNMjUwNjE5MjMzNjU5WjAYMRYwFAYD VQQDEw02ODRiNjQ5Yi1lNWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEiLjlTaKNrm8gy86MtnXL6T4QAdyjfYv75IY3jRus/1/ROTK5EI1/2i+lPi aSDwY4SGZWzkXvNb7Q4ItoXs41Cf5Ax0ZBgXSHeXhHP34nTLRpawgXD9eZ2Xrf1e dzAfwWFSrtJo4ykSNDaivwLPVI4rjYAu+gyl1A3SNdhLAoLfkTvQP2RtcpzVwO4p 8b68wFMI9cXqPDAXaIHcC613XeN+sYeLAvz6a+EV3YwGbY8dJsq5tgan7QSCYGHO 7aLtUIJLLTStfJRj3SPwIbB+M5m8NxSUEAl7gnvBJCddjUCrsbU1wqlpOgOygGqA fOn2lRpS3uprMTs5fCincewCFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDg4GD8Q LavO3mo3QIsrbwBk/zlPMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFjnzVwplwLqQ4rOk6oFVHW/2L5ILitzgno7RxC24YAKgBIKLWfzus 7Fs0muvv3mz4m+EbVLd6tk/QOC7Gt7vDeyzzlQdZPgZXSWZUYctlFPirHvUqVNyF j40oJhRAOR3kRozIqKvPRZY1h7J5bc6KcPayz8qJ35EhOaZapmfJBxkKWm/7eAKO GxtnSDan7dRR/4pngGAUzxhWXMPGA5Vb2Eanqwg/+bJmGJt7c58bwa826HnScoUI BIZQRiyg6R3/Ymmb+yUoMZ+EHmbQo7UqKfh9219PJj08NttG0dOF9aUkzhfwgXHq P2I+HBPdJGvg4f4prSxZykZaflggKn7t -----END CERTIFICATE-----Generated at Sat Jun 14 18:35:51 2025 by rpki-client