$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft File: gUM6Y8LXXQAyVSxCbENTPsrINRU.mft (raw, json) Hash identifier: dubQz+f+7yfCNf+ARY2AkqAwIQ7OZkZRiQ3DRL3szTY= Subject key identifier: D2:A1:1E:EC:53:7A:90:14:86:1D:39:72:25:52:2B:87:C4:D4:9C:68 Authority key identifier: 81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 Certificate issuer: /CN=A91F1AF5/serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Certificate serial: 0729 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft Manifest number: 0724 Signing time: Sat 14 Jun 2025 21:33:42 +0000 Manifest this update: Sat 14 Jun 2025 21:33:41 +0000 Manifest next update: Sat 21 Jun 2025 21:33:41 +0000 Files and hashes: 1: gUM6Y8LXXQAyVSxCbENTPsrINRU.crl (hash: LWDWBM4fcOs3IAinIiRpcm2iTRYjTUBgJQ5UwW5rXdo=) 2: DDFEB10C385E11EB8E85F467C4F9AE02.roa (hash: vYc0h4qvjuE88FDf7yqk3rmrIjWt9VABoOzgwIDoM5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:33:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1833 (0x729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1AF5, serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Validity Not Before: Jun 14 21:33:41 2025 GMT Not After : Jun 21 21:33:41 2025 GMT Subject: CN=684deab5-2081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:08:e6:1f:e5:50:d7:de:12:f4:54:69:1d:04: b5:1b:92:f8:f1:f8:cb:9f:70:b3:e7:bd:85:39:c3: b9:54:85:92:51:0a:e6:74:e7:ec:68:09:22:29:22: bf:8e:3d:b7:c8:94:e3:bf:53:f8:a8:0e:45:07:0e: 83:c5:b1:91:9c:0d:73:e6:16:4c:9c:4e:5b:6b:81: b5:f7:37:a6:60:10:24:74:e7:2a:eb:be:5a:c8:9e: 2f:f5:6f:43:00:4d:9f:ce:59:e3:ed:5d:97:48:a4: ff:90:ba:db:c9:eb:ed:ee:17:2f:c7:76:47:91:c5: 97:64:e1:18:2c:03:84:1f:01:94:aa:97:ab:77:2b: 8b:7a:6e:e5:07:8b:a6:ab:d0:b9:76:95:35:3c:0a: 5e:8e:21:8b:b6:64:57:f7:20:3b:1e:0a:f0:18:6d: 59:72:8f:7f:0f:77:40:fb:03:20:f3:6f:7d:ee:e6: fd:0d:df:e0:a5:32:a3:6f:ea:45:a4:58:dc:73:77: b0:6c:68:15:3a:81:b7:15:2b:23:0e:d7:f2:6b:9b: f8:84:d4:25:e0:8a:ff:a4:c2:e9:3d:b7:90:c4:61: 55:e7:60:fa:26:33:a9:8b:64:90:92:4e:83:37:08: 97:39:9a:ca:0f:de:49:34:9b:b3:13:e0:06:fc:53: 97:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A1:1E:EC:53:7A:90:14:86:1D:39:72:25:52:2B:87:C4:D4:9C:68 X509v3 Authority Key Identifier: keyid:81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:6c:a0:38:cb:95:50:ca:9b:1d:db:21:65:4a:ea:f0:2d:bd: 90:2c:e0:bf:aa:0d:5f:b4:2b:d3:2d:cc:e2:22:b6:27:f1:4a: 0b:e9:bc:78:bd:22:4f:b2:55:9d:49:53:e6:54:be:71:49:9b: 90:14:e9:6e:1d:e4:d1:42:9f:33:a1:40:65:bb:54:b9:d6:13: cf:81:21:ef:1d:54:d5:f4:2b:a7:76:c9:a8:ab:91:eb:61:08: 06:7c:7d:07:63:c4:c0:03:1f:14:6a:56:66:02:67:7c:dc:eb: 1d:7a:ee:48:14:79:c2:b0:31:5a:04:4d:29:18:8e:2b:10:28: 4a:55:5a:25:b8:d0:0e:e3:fe:7e:98:a2:09:d0:50:12:07:37: 74:e4:2e:bd:e0:e3:f8:c0:1b:c3:7d:dd:fb:a0:c0:c6:de:83: fc:06:27:c1:46:a2:72:20:f1:b9:f1:39:76:bb:7a:f9:83:71: 84:3f:be:1a:0e:d8:df:a8:e6:a2:ed:5f:a9:e3:f2:f8:de:bd: af:09:a1:59:7c:ad:db:16:49:d3:ca:98:b7:36:19:be:33:28: 8a:e3:58:62:9e:57:e7:76:96:5a:35:dc:75:eb:d6:18:8e:65: 1b:48:0b:b0:a1:70:0c:b9:1b:67:7f:2b:13:d9:74:37:d4:5e: 62:0f:fd:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFBRjUxMTAvBgNVBAUTKDgxNDMzQTYzQzJENzVEMDAzMjU1MkM0MjZDNDM1MzNF Q0FDODM1MTUwHhcNMjUwNjE0MjEzMzQxWhcNMjUwNjIxMjEzMzQxWjAYMRYwFAYD VQQDEw02ODRkZWFiNS0yMDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wjmH+VQ194S9FRpHQS1G5L48fjLn3Cz572FOcO5VIWSUQrmdOfsaAkiKSK/ jj23yJTjv1P4qA5FBw6DxbGRnA1z5hZMnE5ba4G19zemYBAkdOcq675ayJ4v9W9D AE2fzlnj7V2XSKT/kLrbyevt7hcvx3ZHkcWXZOEYLAOEHwGUqperdyuLem7lB4um q9C5dpU1PApejiGLtmRX9yA7HgrwGG1Zco9/D3dA+wMg82997ub9Dd/gpTKjb+pF pFjcc3ewbGgVOoG3FSsjDtfya5v4hNQl4Ir/pMLpPbeQxGFV52D6JjOpi2SQkk6D NwiXOZrKD95JNJuzE+AG/FOXhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKhHuxT epAUhh05ciVSK4fE1JxoMB8GA1UdIwQYMBaAFIFDOmPC110AMlUsQmxDUz7KyDUV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUFGNS8xNTEwRkI1QzM4 NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhRQXlWU3hDYkVOVFBzcklO UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dVTTZZOExYWFFBeVZTeENiRU5UUHNySU5SVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUFGNS8xNTEwRkI1QzM4NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhR QXlWU3hDYkVOVFBzcklOUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWbKA4y5VQypsd2yFlSurwLb2QLOC/qg1ftCvTLcziIrYn8UoL6bx4 vSJPslWdSVPmVL5xSZuQFOluHeTRQp8zoUBlu1S51hPPgSHvHVTV9Cundsmoq5Hr YQgGfH0HY8TAAx8UalZmAmd83Osdeu5IFHnCsDFaBE0pGI4rEChKVVoluNAO4/5+ mKIJ0FASBzd05C694OP4wBvDfd37oMDG3oP8BifBRqJyIPG58Tl2u3r5g3GEP74a DtjfqOai7V+p4/L43r2vCaFZfK3bFknTypi3Nhm+MyiK41hinlfndpZaNdx169YY jmUbSAuwoXAMuRtnfysT2XQ31F5iD/2B -----END CERTIFICATE-----Generated at Sun Jun 15 10:00:11 2025 by rpki-client