$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: WJcgFiFC1RcBDvo4HYp8qaaJVrMi2XrYgRIzdmi9bXo= Subject key identifier: 3C:13:4B:2D:DA:36:DD:1F:71:98:A3:A0:1D:6B:B6:93:13:71:E5:9B Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 0149 Signing time: Fri 13 Jun 2025 03:15:13 +0000 Manifest this update: Fri 13 Jun 2025 03:15:12 +0000 Manifest next update: Fri 20 Jun 2025 03:15:12 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: uRtcKHifr4Olo+Pxe952494V5Xd9DohzLe8qm+A/Z9A=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: iKZhrYsqwja6p9Jg0/rXm6hAG4LxSI3ekb53k0lCuBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Jun 13 03:15:12 2025 GMT Not After : Jun 20 03:15:12 2025 GMT Subject: CN=684b97c1-e83f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:59:62:a6:14:80:de:de:1f:68:4f:1c:42:44: 74:cc:75:3d:85:5f:bc:10:d3:db:cd:09:fb:be:51: f0:84:95:4e:3c:2b:cc:18:31:07:c8:89:8b:98:51: 26:4b:fd:89:b5:cd:7d:30:39:0e:5d:e2:ad:ce:62: c8:26:ec:f2:ae:b9:85:ae:88:68:e5:83:67:c4:20: 5b:ca:42:6d:a7:be:a0:70:87:46:f2:93:85:82:b5: cf:dd:50:f1:82:76:d8:09:17:b5:f4:7c:e3:b3:5e: 26:f4:d0:47:d2:8e:72:5f:d3:2f:df:eb:5a:63:c6: 85:3f:68:04:1b:fb:4e:90:4f:28:53:f2:93:a7:c1: e3:f6:53:7f:0f:cf:80:98:b2:ac:69:45:f3:22:31: b0:1f:8c:7a:2b:1d:a6:21:e8:db:00:21:ed:7d:e0: c6:e9:5e:40:a6:7a:93:4a:0a:de:65:30:c1:8e:96: c5:4d:15:35:75:6f:14:60:2e:65:bc:7e:a4:37:f5: df:25:0e:85:80:86:2a:7e:54:f5:31:d5:9d:37:35: 70:a5:5e:08:ab:d0:bc:06:fb:4b:72:9c:dc:f4:11: bb:f2:cd:29:0f:b6:2f:25:43:50:b0:26:a4:2b:93: f2:1f:57:4d:b9:30:58:72:1b:a6:c0:41:b8:8d:56: 3e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:13:4B:2D:DA:36:DD:1F:71:98:A3:A0:1D:6B:B6:93:13:71:E5:9B X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:14:4b:66:83:0e:01:24:c9:d5:6e:52:03:a2:45:35:59:7b: 67:2d:5a:92:f0:a9:97:d1:5d:56:2c:52:2a:c0:6f:a4:0c:4c: ba:f9:9b:8e:92:9d:2c:ed:9f:96:8a:80:70:26:9b:45:53:04: 87:18:13:aa:11:e4:52:9c:28:75:a7:54:11:df:0e:b9:82:86: a1:4f:95:74:d6:6b:8d:66:25:b2:1e:8f:51:ec:ee:d9:60:f9: 6a:46:74:84:24:4a:ca:de:0d:6d:36:a2:fd:0c:db:d2:53:43: 3a:02:7a:01:97:4a:88:68:55:f4:56:85:78:0e:b0:4c:2d:ec: 85:5e:ea:c3:34:d3:7f:ce:6e:00:d6:5f:00:30:97:1a:a0:ff: fd:6e:ed:bd:7d:f8:6a:28:19:db:92:27:59:39:cd:80:d7:cb: 08:c6:9c:8d:78:ff:f5:04:94:12:1a:68:5a:14:b6:ef:4f:64: 7e:9f:93:60:fd:bf:dc:fb:d7:79:66:01:e6:25:6d:e1:af:32: 10:aa:3e:8a:f9:54:59:fc:c0:43:33:a8:05:d0:8f:96:94:c0: 96:6f:e0:f2:5a:fa:f1:8c:c5:5e:72:a3:8e:98:42:ef:c9:19: 95:b1:73:e2:4b:39:64:30:55:e7:49:5a:84:88:ed:3d:1d:04: 38:ef:e5:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjUwNjEzMDMxNTEyWhcNMjUwNjIwMDMxNTEyWjAYMRYwFAYD VQQDEw02ODRiOTdjMS1lODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1liphSA3t4faE8cQkR0zHU9hV+8ENPbzQn7vlHwhJVOPCvMGDEHyImLmFEm S/2Jtc19MDkOXeKtzmLIJuzyrrmFroho5YNnxCBbykJtp76gcIdG8pOFgrXP3VDx gnbYCRe19Hzjs14m9NBH0o5yX9Mv3+taY8aFP2gEG/tOkE8oU/KTp8Hj9lN/D8+A mLKsaUXzIjGwH4x6Kx2mIejbACHtfeDG6V5ApnqTSgreZTDBjpbFTRU1dW8UYC5l vH6kN/XfJQ6FgIYqflT1MdWdNzVwpV4Iq9C8BvtLcpzc9BG78s0pD7YvJUNQsCak K5PyH1dNuTBYchumwEG4jVY+5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwTSy3a Nt0fcZijoB1rtpMTceWbMB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsFEtmgw4BJMnVblIDokU1WXtnLVqS8KmX0V1WLFIqwG+kDEy6+ZuO kp0s7Z+WioBwJptFUwSHGBOqEeRSnCh1p1QR3w65goahT5V01muNZiWyHo9R7O7Z YPlqRnSEJErK3g1tNqL9DNvSU0M6AnoBl0qIaFX0VoV4DrBMLeyFXurDNNN/zm4A 1l8AMJcaoP/9bu29ffhqKBnbkidZOc2A18sIxpyNeP/1BJQSGmhaFLbvT2R+n5Ng /b/c+9d5ZgHmJW3hrzIQqj6K+VRZ/MBDM6gF0I+WlMCWb+DyWvrxjMVecqOOmELv yRmVsXPiSzlkMFXnSVqEiO09HQQ47+UV -----END CERTIFICATE-----Generated at Sun Jun 15 05:10:10 2025 by rpki-client