$ rpki-client -vvf rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft File: gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft (raw, json) Hash identifier: jal1yenUgLgwinz/IEh88etA0Y0uP73di5UDscyGDzk= Subject key identifier: 77:58:CA:79:7A:EC:B1:6B:71:3D:D5:E5:73:59:D4:D0:00:92:0D:AC Authority key identifier: 80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 Certificate issuer: /CN=A9114FD8/serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft Manifest number: 2B Signing time: Sat 31 May 2025 07:18:31 +0000 Manifest this update: Sat 31 May 2025 07:18:31 +0000 Manifest next update: Sat 07 Jun 2025 07:18:31 +0000 Files and hashes: 1: gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl (hash: 3E/rSLAEBjG/yYoqpEE1ovaxzbYsQh3sjaKuX+sFW/U=) 2: 691B3B36FCC611EF8337B652C4F9AE02.roa (hash: 9OScaduExEngNPz5wsuWcHvwLQIw8gltPcbBA5tFHWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114FD8, serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Validity Not Before: May 31 07:18:31 2025 GMT Not After : Jun 7 07:18:31 2025 GMT Subject: CN=683aad47-69ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b3:82:e4:22:e2:b4:9f:e7:c9:f9:05:00:88: 82:0a:a9:c9:5a:95:72:de:8e:10:b0:6e:f7:f3:eb: 58:d6:c9:d7:d9:e8:3c:e4:90:bf:2d:52:d4:ec:d2: 11:ca:bb:93:0f:34:3c:6f:18:39:59:05:e8:18:d0: 62:84:77:4e:ad:35:88:c4:a3:2a:e2:fe:a8:d5:9c: 0e:a9:63:4f:14:cc:1d:2c:85:aa:72:dc:e0:3c:46: c4:77:a9:e4:5a:07:97:23:5a:61:2d:f1:e5:3f:4f: cf:1a:b0:46:5c:b3:5b:c3:9c:39:a3:86:64:4c:d0: f0:c1:af:4d:fd:6f:ff:fe:bb:24:d6:d9:94:68:5b: 1b:46:3c:7d:66:25:dc:28:e1:cc:69:c9:ad:33:ee: 4d:4d:9c:dc:6a:b6:fe:b5:9d:eb:dd:3a:21:98:c0: 17:40:0d:44:76:bd:3e:f9:f4:83:9c:00:95:a4:35: 66:be:4a:eb:fd:b8:f4:e2:01:c3:91:e3:6d:bf:ef: 01:b4:56:cc:95:6c:49:23:9f:94:2e:0e:09:96:de: 91:3b:a2:88:16:39:2a:66:69:fe:4f:09:c3:da:e1: 72:bb:6c:fa:16:8a:f6:d6:6c:27:35:b4:e1:22:0a: 31:53:c9:3e:a6:06:65:c8:54:15:ae:66:aa:93:97: 63:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:58:CA:79:7A:EC:B1:6B:71:3D:D5:E5:73:59:D4:D0:00:92:0D:AC X509v3 Authority Key Identifier: keyid:80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:34:61:3b:3f:c2:83:71:f1:95:5e:50:f1:b7:e5:a9:73:9d: 82:cd:91:1c:93:02:cd:ff:98:2f:7c:9a:0e:a7:0f:7d:e3:86: b8:f8:4f:64:34:d6:03:70:1d:c5:2b:de:6d:2c:e9:a6:e3:8a: b1:fd:9c:ee:e2:f4:bb:31:99:03:1a:ed:ce:bf:da:b3:41:50: db:a6:ae:0c:8b:66:12:d9:fe:fc:d6:34:c9:05:d6:d3:8c:66: 09:f5:34:31:bb:a5:9d:f4:7a:d2:89:03:f4:d7:9d:1c:1c:15: 27:73:73:63:26:fb:bc:01:01:40:43:d0:5c:a3:aa:6d:1a:ed: 67:55:48:9b:e2:17:bb:f4:04:16:e6:8e:3f:ca:72:59:38:44: 8a:41:3c:6e:79:c4:e4:ec:29:65:db:66:4c:ec:cc:dd:02:a9: 23:61:c4:8d:29:ed:d4:8f:f9:45:ce:14:0a:26:cb:50:b3:9a: 74:3a:ef:7d:fa:75:0d:b7:95:e9:81:cd:3c:6b:5f:88:19:f4: de:7a:79:36:ab:33:c0:78:c0:e2:a4:e1:1b:a6:0e:fd:ab:6c: 8a:d6:d8:55:b6:06:d5:65:69:06:50:16:30:48:e5:78:fb:ac: 22:c4:64:9b:f5:2b:35:d1:8b:74:a8:76:05:bc:02:70:c3:d2: 0e:1b:c5:0b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NEZEODExMC8GA1UEBRMoODA0NjMwNzREODNGNUU4MDM1NEQxOTcwNTg2RjU0QTg5 NjVFMThEMjAeFw0yNTA1MzEwNzE4MzFaFw0yNTA2MDcwNzE4MzFaMBgxFjAUBgNV BAMTDTY4M2FhZDQ3LTY5YWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDas4LkIuK0n+fJ+QUAiIIKqclalXLejhCwbvfz61jWydfZ6DzkkL8tUtTs0hHK u5MPNDxvGDlZBegY0GKEd06tNYjEoyri/qjVnA6pY08UzB0shapy3OA8RsR3qeRa B5cjWmEt8eU/T88asEZcs1vDnDmjhmRM0PDBr039b//+uyTW2ZRoWxtGPH1mJdwo 4cxpya0z7k1NnNxqtv61nevdOiGYwBdADUR2vT759IOcAJWkNWa+Suv9uPTiAcOR 422/7wG0VsyVbEkjn5QuDgmW3pE7oogWOSpmaf5PCcPa4XK7bPoWivbWbCc1tOEi CjFTyT6mBmXIVBWuZqqTl2P9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd1jKeXrs sWtxPdXlc1nU0ACSDawwHwYDVR0jBBgwFoAUgEYwdNg/XoA1TRlwWG9UqJZeGNIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0RkQ4L0YzNTEyQTBBRkND NTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9BMVRSbHdXRzlVcUpaZUdO SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0VZd2ROZ19Yb0ExVFJsd1dHOVVxSlplR05JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 RkQ4L0YzNTEyQTBBRkNDNTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9B MVRSbHdXRzlVcUpaZUdOSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJs0YTs/woNx8ZVeUPG35alznYLNkRyTAs3/mC98mg6nD33jhrj4T2Q0 1gNwHcUr3m0s6abjirH9nO7i9LsxmQMa7c6/2rNBUNumrgyLZhLZ/vzWNMkF1tOM Zgn1NDG7pZ30etKJA/TXnRwcFSdzc2Mm+7wBAUBD0Fyjqm0a7WdVSJviF7v0BBbm jj/Kclk4RIpBPG55xOTsKWXbZkzszN0CqSNhxI0p7dSP+UXOFAomy1CzmnQ67336 dQ23lemBzTxrX4gZ9N56eTarM8B4wOKk4RumDv2rbIrW2FW2BtVlaQZQFjBI5Xj7 rCLEZJv1KzXRi3SodgW8AnDD0g4bxQs= -----END CERTIFICATE-----Generated at Sat May 31 17:14:45 2025 by rpki-client