$ rpki-client -vvf rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft File: gkVvIaH33yOGQR-g7REgZPbrw5o.mft (raw, json) Hash identifier: o+SV2SdumKhY7DB/RcRm+4UzqRnEKJEhKRlbyKGsnOs= Subject key identifier: BF:7C:0B:43:04:62:65:B2:7B:55:91:FC:8C:E1:C0:EA:AE:4D:91:58 Authority key identifier: 82:45:6F:21:A1:F7:DF:23:86:41:1F:A0:ED:11:20:64:F6:EB:C3:9A Certificate issuer: /CN=A91E94F0/serialNumber=82456F21A1F7DF2386411FA0ED112064F6EBC39A Certificate serial: 03DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft Manifest number: 03D5 Signing time: Sun 15 Jun 2025 00:18:43 +0000 Manifest this update: Sun 15 Jun 2025 00:18:42 +0000 Manifest next update: Sun 22 Jun 2025 00:18:42 +0000 Files and hashes: 1: gkVvIaH33yOGQR-g7REgZPbrw5o.crl (hash: H2YQEMYyIrPoFcy1ojFS/RhiaRvWhgCKlZWKkoepjkc=) 2: F15E709A880611ECAF18133AC4F9AE02.roa (hash: r+2gczfolioxdOOu1jOVrEWd+Ns5v4HYtipze2KFuFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.crl rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E94F0, serialNumber=82456F21A1F7DF2386411FA0ED112064F6EBC39A Validity Not Before: Jun 15 00:18:42 2025 GMT Not After : Jun 22 00:18:42 2025 GMT Subject: CN=684e1163-81dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6b:87:c4:73:a8:72:45:69:54:55:09:cd:dc: 1a:30:b0:f7:96:2f:f4:7f:2a:9a:38:22:f0:12:6a: a6:8f:b6:e4:ee:9b:54:c5:bf:e7:b9:37:4a:87:37: e3:97:b1:96:df:57:fa:a6:66:e2:39:fd:f4:00:80: a9:9a:77:bb:a6:e9:47:26:a9:b8:5a:a5:03:e3:d1: 06:48:1f:13:d7:70:66:95:8b:46:b3:e6:25:a4:cd: 5a:b4:7a:cf:25:d6:d5:c1:b3:63:17:ff:db:7a:c5: 1e:0c:22:fe:ce:b3:21:bf:fe:bc:e3:5c:eb:67:4c: 4d:c8:11:e0:1b:32:c4:85:c1:5f:2d:3b:ad:5f:19: 5f:26:d5:47:62:f1:76:2e:58:6d:4a:4b:b0:e2:0b: ae:a4:69:ff:5e:a7:ab:da:61:99:ff:3a:55:ea:01: f5:55:09:08:f6:64:ff:3e:04:63:e1:26:0d:bf:3e: 45:f4:63:e0:6f:ea:e7:43:cf:66:0b:c3:d5:12:cb: ce:c5:e2:30:9d:2c:2f:86:9a:03:1a:00:b9:b2:7e: af:0b:33:94:7f:bb:ed:0d:82:b7:ce:0e:3d:c1:8c: c4:37:c5:c6:f3:8c:af:28:ee:eb:dd:f9:d2:a7:f7: 5c:db:06:e8:39:45:42:a7:d0:c3:1b:12:ff:94:c4: 0e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:7C:0B:43:04:62:65:B2:7B:55:91:FC:8C:E1:C0:EA:AE:4D:91:58 X509v3 Authority Key Identifier: keyid:82:45:6F:21:A1:F7:DF:23:86:41:1F:A0:ED:11:20:64:F6:EB:C3:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:e4:b2:a5:6b:82:e2:1a:00:d5:ea:fe:02:8a:95:02:ea:36: b9:ea:0f:01:76:b9:9d:2a:ba:fd:80:25:28:66:b2:b9:8e:66: f1:ac:ad:d6:0a:8e:fb:87:66:d9:e9:c7:76:e2:1c:13:78:2f: cb:5d:a8:e6:cb:60:b3:06:5e:5e:fe:29:3e:23:c2:eb:0a:a2: bb:8c:20:15:d5:dc:62:17:c2:58:ed:1b:42:f1:b2:44:8b:3c: 3d:59:2f:28:67:53:df:ea:e9:a1:cd:d5:4b:42:4b:5b:7a:c2: 4c:3a:e4:c2:46:3f:d7:34:34:d4:63:63:45:11:ac:1a:af:e9: 33:fa:67:8e:3e:3c:1e:95:51:23:51:c6:a3:fc:7a:3a:3f:41: 00:c2:e4:61:59:88:d2:6c:2e:c7:92:15:cf:7a:af:51:1b:39: e6:3a:93:f4:d4:11:ae:d5:6e:77:12:e7:d9:7b:f5:d2:05:61: 2c:cb:6f:9b:48:d9:bd:b6:e5:f7:60:bd:34:a1:a3:01:72:b8: 75:95:8a:87:8d:83:1a:11:7b:85:34:1e:a8:d8:ac:ba:35:3a: 92:7f:8c:73:1f:6b:6d:c7:f5:e6:06:4a:ff:6b:a9:64:85:04: 23:d2:01:39:61:d1:14:75:da:1d:d1:ab:90:c9:a8:c9:b5:f8: 9b:e6:9f:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0RjAxMTAvBgNVBAUTKDgyNDU2RjIxQTFGN0RGMjM4NjQxMUZBMEVEMTEyMDY0 RjZFQkMzOUEwHhcNMjUwNjE1MDAxODQyWhcNMjUwNjIyMDAxODQyWjAYMRYwFAYD VQQDEw02ODRlMTE2My04MWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmuHxHOockVpVFUJzdwaMLD3li/0fyqaOCLwEmqmj7bk7ptUxb/nuTdKhzfj l7GW31f6pmbiOf30AICpmne7pulHJqm4WqUD49EGSB8T13BmlYtGs+YlpM1atHrP JdbVwbNjF//besUeDCL+zrMhv/6841zrZ0xNyBHgGzLEhcFfLTutXxlfJtVHYvF2 LlhtSkuw4guupGn/Xqer2mGZ/zpV6gH1VQkI9mT/PgRj4SYNvz5F9GPgb+rnQ89m C8PVEsvOxeIwnSwvhpoDGgC5sn6vCzOUf7vtDYK3zg49wYzEN8XG84yvKO7r3fnS p/dc2wboOUVCp9DDGxL/lMQOzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL98C0ME YmWye1WR/IzhwOquTZFYMB8GA1UdIwQYMBaAFIJFbyGh998jhkEfoO0RIGT268Oa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTRGMC9FNEIxQkQzODg4 MDIxMUVDQkYzQzFEMzJDNEY5QUUwMi9na1Z2SWFIMzN5T0dRUi1nN1JFZ1pQYnJ3 NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2drVnZJYUgzM3lPR1FSLWc3UkVnWlBicnc1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTRGMC9FNEIxQkQzODg4MDIxMUVDQkYzQzFEMzJDNEY5QUUwMi9na1Z2SWFIMzN5 T0dRUi1nN1JFZ1pQYnJ3NW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH5LKla4LiGgDV6v4CipUC6ja56g8BdrmdKrr9gCUoZrK5jmbxrK3W Co77h2bZ6cd24hwTeC/LXajmy2CzBl5e/ik+I8LrCqK7jCAV1dxiF8JY7RtC8bJE izw9WS8oZ1Pf6umhzdVLQktbesJMOuTCRj/XNDTUY2NFEawar+kz+meOPjwelVEj Ucaj/Ho6P0EAwuRhWYjSbC7HkhXPeq9RGznmOpP01BGu1W53EufZe/XSBWEsy2+b SNm9tuX3YL00oaMBcrh1lYqHjYMaEXuFNB6o2Ky6NTqSf4xzH2ttx/XmBkr/a6lk hQQj0gE5YdEUddod0auQyajJtfib5p8E -----END CERTIFICATE-----Generated at Sun Jun 15 09:44:17 2025 by rpki-client