$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft File: GkhD6J8kRLLN24EYqoovRBgOhJg.mft (raw, json) Hash identifier: izU+KHo+O8bOffrJ2Cg8k/jMbCX8vUDZZ+LGywWkuBI= Subject key identifier: CC:5F:A3:D1:DC:29:DF:74:EA:8F:70:55:E2:6E:5B:3C:59:E2:76:1B Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft Manifest number: 017A Signing time: Sun 15 Jun 2025 02:56:17 +0000 Manifest this update: Sun 15 Jun 2025 02:56:17 +0000 Manifest next update: Sun 22 Jun 2025 02:56:17 +0000 Files and hashes: 1: GkhD6J8kRLLN24EYqoovRBgOhJg.crl (hash: eK2uC2KeUOh1edGMuABiEAxPqCgBLc4YUccHb1fjnGE=) 2: B5569B88096311EE9ECB644DC4F9AE02.roa (hash: r69ry07FlZRyxMcGSskusquMKld1QByFguUcoWDQa3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280, serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Jun 15 02:56:17 2025 GMT Not After : Jun 22 02:56:17 2025 GMT Subject: CN=684e3651-8144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0c:db:71:b3:8f:47:9f:d2:a9:79:a3:8e:80: 66:b9:3a:b7:47:54:c7:3c:35:e1:27:42:bb:43:ac: 25:78:f7:5d:b2:1f:c2:c3:d2:b4:10:e7:8b:24:90: 1f:7a:f3:a0:ee:12:03:a4:89:8f:29:ab:7b:26:3d: 43:99:5c:7c:55:ef:27:5d:10:cf:32:78:88:8a:a2: bc:7b:9f:a9:42:c2:19:44:53:fb:c3:f9:76:fe:1d: ca:ae:6d:aa:e2:66:bd:94:10:be:b5:fc:10:1e:4f: 54:bc:49:02:bb:58:8a:77:ca:45:f9:a3:fe:72:de: 86:8f:17:bd:93:55:66:38:2e:50:5d:af:1c:04:53: c8:f5:94:e4:90:8c:07:13:ea:a5:48:9b:ed:73:45: 59:d9:e6:fa:84:ed:4f:e4:55:b0:eb:0f:aa:a7:04: 6c:43:9e:2e:26:38:21:9e:df:0f:c8:bd:02:a8:a3: 9a:f7:92:73:35:d5:d2:49:8e:4d:3d:c9:de:09:8a: c6:3c:1e:4f:32:59:ce:32:c1:ee:34:7d:0d:40:e2: bc:08:c5:10:b6:ce:ef:fb:5e:c9:1f:81:83:7b:39: 06:40:7f:2d:ec:98:ce:bb:c5:22:f9:f5:b5:a6:d6: e5:a0:f8:cb:b6:35:f8:19:41:05:26:13:ef:79:1d: cf:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:5F:A3:D1:DC:29:DF:74:EA:8F:70:55:E2:6E:5B:3C:59:E2:76:1B X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:cb:72:ab:bf:2b:8d:40:20:56:ae:4b:32:91:ea:ea:26:06: 19:c1:d6:9a:be:5a:60:ca:2b:8a:2f:98:c5:07:8f:6c:23:db: 0f:4c:18:c0:88:5c:38:28:a1:86:60:1b:fe:00:52:97:4a:ef: 03:8f:e0:28:fb:96:43:dc:49:b5:fc:c9:f7:18:c2:b3:be:cb: c2:c1:da:f8:e4:65:2b:2b:71:31:7d:ef:dc:5b:6b:e7:d4:27: ef:0f:d2:d7:b2:80:b3:5b:55:21:4d:f5:35:db:f6:0d:9e:bb: 9b:f1:d4:1f:72:8c:74:b7:cb:90:56:a0:77:56:e4:01:85:35: 9d:37:10:ab:39:7d:b8:1c:bb:a1:71:a8:38:cf:ae:c0:94:44: 16:b9:4d:6f:bf:d0:0f:12:13:0e:9c:17:12:cd:c9:ed:a1:f5: c1:0f:38:e2:75:4f:20:9f:2c:10:e9:d1:38:42:37:5d:4e:92: ac:09:d3:ff:7f:28:7d:4f:5d:33:1d:dc:80:fb:69:75:d2:c9: 3e:bc:5c:38:e5:ab:db:fa:c7:56:1a:15:39:e3:f8:eb:9f:27: ae:46:26:fc:1c:6b:b2:d6:c1:66:a9:66:fc:dd:a7:70:22:c9: 66:08:29:68:02:09:8e:92:90:dc:a8:72:89:16:13:5c:0e:bf: fe:db:97:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjUwNjE1MDI1NjE3WhcNMjUwNjIyMDI1NjE3WjAYMRYwFAYD VQQDEw02ODRlMzY1MS04MTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgzbcbOPR5/SqXmjjoBmuTq3R1THPDXhJ0K7Q6wlePddsh/Cw9K0EOeLJJAf evOg7hIDpImPKat7Jj1DmVx8Ve8nXRDPMniIiqK8e5+pQsIZRFP7w/l2/h3Krm2q 4ma9lBC+tfwQHk9UvEkCu1iKd8pF+aP+ct6Gjxe9k1VmOC5QXa8cBFPI9ZTkkIwH E+qlSJvtc0VZ2eb6hO1P5FWw6w+qpwRsQ54uJjghnt8PyL0CqKOa95JzNdXSSY5N PcneCYrGPB5PMlnOMsHuNH0NQOK8CMUQts7v+17JH4GDezkGQH8t7JjOu8Ui+fW1 ptbloPjLtjX4GUEFJhPveR3PXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxfo9Hc Kd906o9wVeJuWzxZ4nYbMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JM TE4yNEVZcW9vdlJCZ09oSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMy3KrvyuNQCBWrksykerqJgYZwdaavlpgyiuKL5jFB49sI9sPTBjA iFw4KKGGYBv+AFKXSu8Dj+Ao+5ZD3Em1/Mn3GMKzvsvCwdr45GUrK3Exfe/cW2vn 1CfvD9LXsoCzW1UhTfU12/YNnrub8dQfcox0t8uQVqB3VuQBhTWdNxCrOX24HLuh cag4z67AlEQWuU1vv9APEhMOnBcSzcntofXBDzjidU8gnywQ6dE4QjddTpKsCdP/ fyh9T10zHdyA+2l10sk+vFw45avb+sdWGhU54/jrnyeuRib8HGuy1sFmqWb83adw IslmCCloAgmOkpDcqHKJFhNcDr/+25dc -----END CERTIFICATE-----Generated at Mon Jun 16 15:59:26 2025 by rpki-client