$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.mft File: GVL9OFMmo9kd2kXDemIlOWPD9jg.mft (raw, json) Hash identifier: 26abxiQSrbJviNwlzhrY7r2kOtuuNu3xpTh/XvpivPw= Subject key identifier: 0A:34:16:19:F7:8D:BF:D4:DB:28:DC:BB:EA:1C:F6:9F:B1:B5:C1:11 Authority key identifier: 19:52:FD:38:53:26:A3:D9:1D:DA:45:C3:7A:62:25:39:63:C3:F6:38 Certificate issuer: /CN=A91DD00E/serialNumber=1952FD385326A3D91DDA45C37A62253963C3F638 Certificate serial: 157E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVL9OFMmo9kd2kXDemIlOWPD9jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.mft Manifest number: 1574 Signing time: Sat 14 Jun 2025 16:44:47 +0000 Manifest this update: Sat 14 Jun 2025 16:44:46 +0000 Manifest next update: Sat 21 Jun 2025 16:44:46 +0000 Files and hashes: 1: GVL9OFMmo9kd2kXDemIlOWPD9jg.crl (hash: DzjsEGevJ9WBv1vx56n8Dd9bLwJJEGw1TXWx1qhE95M=) 2: 7482AB4A3DC511EB8276EA19C4F9AE02.roa (hash: xdBFNPkazDP5YP2MUntpZBwPWV+oy0u7bSlxk8ZVSa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.crl rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVL9OFMmo9kd2kXDemIlOWPD9jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5502 (0x157e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD00E, serialNumber=1952FD385326A3D91DDA45C37A62253963C3F638 Validity Not Before: Jun 14 16:44:46 2025 GMT Not After : Jun 21 16:44:46 2025 GMT Subject: CN=684da6ff-f2aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c9:9b:34:a1:b3:90:94:7d:65:40:fa:ed:a8: c0:51:09:a8:34:44:8e:55:bb:f0:a0:c7:4d:6d:74: 78:61:aa:47:94:ed:4f:f0:e6:8b:b4:82:68:e8:a1: 6b:77:1e:d2:d3:ad:28:20:82:0d:d2:18:0c:bb:cf: 91:f3:ee:0b:a9:ea:47:04:67:ee:a6:cc:06:68:22: fe:cb:25:77:6a:cc:dd:0a:f2:cc:5f:bd:5d:f7:56: 7c:b0:7c:8f:6f:44:4e:9e:1c:1b:80:72:75:4b:d3: 2f:a2:70:3d:d9:b7:84:fe:26:6d:b8:04:e6:f6:24: 97:25:17:4e:4a:05:1f:55:61:b3:55:0d:83:d0:fe: e5:b1:da:fd:72:d9:27:77:1a:11:30:c3:b6:98:64: e5:b9:d3:de:ee:c8:2d:ca:13:51:80:ef:0a:bc:39: 4e:28:0c:c8:a8:e5:8f:b0:a6:2e:a0:cb:a4:4c:e9: e1:0a:e8:8b:33:6c:cf:c2:86:d9:32:6f:e6:b5:51: 17:ca:ed:49:7c:39:da:e2:1f:53:b4:09:5b:54:84: d7:22:4c:f4:34:ce:a1:12:48:fb:f1:a3:53:6c:be: 92:7d:0f:7d:74:23:f5:c9:f9:56:71:14:cd:d8:4e: f6:c0:36:88:6d:5b:81:2d:9e:9f:b7:1a:d3:a4:e9: 78:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:34:16:19:F7:8D:BF:D4:DB:28:DC:BB:EA:1C:F6:9F:B1:B5:C1:11 X509v3 Authority Key Identifier: keyid:19:52:FD:38:53:26:A3:D9:1D:DA:45:C3:7A:62:25:39:63:C3:F6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVL9OFMmo9kd2kXDemIlOWPD9jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:db:16:1a:ae:d5:9c:7a:57:9f:63:e0:c5:c3:fe:71:0c:cf: c2:00:e6:a0:4d:cd:e5:2c:c4:b9:95:50:d5:a6:06:4e:e3:4c: b2:cd:17:67:fc:73:4b:57:41:79:ef:2f:16:dc:09:9c:0d:71: 8f:df:85:d6:cf:6d:57:74:b2:bd:14:81:e9:17:ec:0a:e1:56: db:a0:e1:bf:08:f0:83:8e:cb:00:c5:71:90:0a:56:a3:0e:03: 73:99:6e:9c:5b:3e:f5:30:d1:f2:fd:96:d0:ca:f5:60:05:e2: ee:42:ab:b3:61:6c:22:ac:00:e5:fc:d1:7a:52:75:78:3b:c0: aa:37:1e:61:fd:38:88:dc:61:c8:1d:1b:06:04:7b:8b:35:05: 38:9c:0d:d4:f5:85:5e:53:83:7b:b1:07:43:7e:df:b3:bb:f6: 25:3f:67:14:14:6b:d0:25:b3:5c:df:06:05:c3:4f:4c:1f:81: 35:e9:21:82:60:4f:e3:da:6c:ca:b6:57:9b:37:a3:b2:ad:2b: 12:56:01:9a:a8:17:18:96:67:15:22:18:34:07:c5:12:32:85: ac:8d:29:9b:5e:8e:64:32:d2:8e:23:48:77:86:06:bc:de:f1: f7:3c:69:ca:27:18:4f:4a:1f:47:b7:90:c0:2c:93:6f:63:38: 7c:7c:60:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwMEUxMTAvBgNVBAUTKDE5NTJGRDM4NTMyNkEzRDkxRERBNDVDMzdBNjIyNTM5 NjNDM0Y2MzgwHhcNMjUwNjE0MTY0NDQ2WhcNMjUwNjIxMTY0NDQ2WjAYMRYwFAYD VQQDEw02ODRkYTZmZi1mMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28mbNKGzkJR9ZUD67ajAUQmoNESOVbvwoMdNbXR4YapHlO1P8OaLtIJo6KFr dx7S060oIIIN0hgMu8+R8+4LqepHBGfupswGaCL+yyV3aszdCvLMX71d91Z8sHyP b0ROnhwbgHJ1S9MvonA92beE/iZtuATm9iSXJRdOSgUfVWGzVQ2D0P7lsdr9ctkn dxoRMMO2mGTludPe7sgtyhNRgO8KvDlOKAzIqOWPsKYuoMukTOnhCuiLM2zPwobZ Mm/mtVEXyu1JfDna4h9TtAlbVITXIkz0NM6hEkj78aNTbL6SfQ99dCP1yflWcRTN 2E72wDaIbVuBLZ6ftxrTpOl4zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAo0Fhn3 jb/U2yjcu+oc9p+xtcERMB8GA1UdIwQYMBaAFBlS/ThTJqPZHdpFw3piJTljw/Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDAwRS84MDBFM0Y3MjM4 RTMxMUU4ODk3N0ZCMEZDNEY5QUUwMi9HVkw5T0ZNbW85a2Qya1hEZW1JbE9XUEQ5 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dWTDlPRk1tbzlrZDJrWERlbUlsT1dQRDlqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDAwRS84MDBFM0Y3MjM4RTMxMUU4ODk3N0ZCMEZDNEY5QUUwMi9HVkw5T0ZNbW85 a2Qya1hEZW1JbE9XUEQ5amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd2xYartWcelefY+DFw/5xDM/CAOagTc3lLMS5lVDVpgZO40yyzRdn /HNLV0F57y8W3AmcDXGP34XWz21XdLK9FIHpF+wK4VbboOG/CPCDjssAxXGQClaj DgNzmW6cWz71MNHy/ZbQyvVgBeLuQquzYWwirADl/NF6UnV4O8CqNx5h/TiI3GHI HRsGBHuLNQU4nA3U9YVeU4N7sQdDft+zu/YlP2cUFGvQJbNc3wYFw09MH4E16SGC YE/j2mzKtlebN6OyrSsSVgGaqBcYlmcVIhg0B8USMoWsjSmbXo5kMtKOI0h3hga8 3vH3PGnKJxhPSh9Ht5DALJNvYzh8fGBx -----END CERTIFICATE-----Generated at Sat Jun 14 18:43:15 2025 by rpki-client