$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft File: gja7zXAtSCL93VuwVmDPEDjsjH4.mft (raw, json) Hash identifier: K3QVkJxMA+bT6d6PvA8dEzSk0dh+AWz2qJmgvqOxqLU= Subject key identifier: 70:E5:1A:CD:7F:B3:F1:C7:C7:95:E9:E0:26:4E:1E:39:6F:90:DF:41 Authority key identifier: 82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E Certificate issuer: /CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Certificate serial: 0836 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft Manifest number: 082D Signing time: Fri 30 May 2025 21:02:35 +0000 Manifest this update: Fri 30 May 2025 21:02:34 +0000 Manifest next update: Fri 06 Jun 2025 21:02:34 +0000 Files and hashes: 1: gja7zXAtSCL93VuwVmDPEDjsjH4.crl (hash: UZExFB49ymmbFtT5eqAtZZcovxyJXLwMN9BaqsLYfHA=) 2: 3ABFAC2231E211EFA341983CC4F9AE02.roa (hash: UaoBno6EmWaBFcw5TBVRPYFiWGMBoSDzhu3pQGtDygg=) 3: 63B7CB76D0E511EA9916E053C4F9AE02.roa (hash: 4fGi9gJaC/oEbDcGBoBEInsd7LIWjlkoV1ytai5f/QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:02:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4B, serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Validity Not Before: May 30 21:02:34 2025 GMT Not After : Jun 6 21:02:34 2025 GMT Subject: CN=683a1ceb-a76c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:67:4e:1a:51:63:d3:8e:31:2b:57:a5:1c:ed: 9e:39:bc:fb:21:77:7e:76:c6:bf:2f:57:72:81:47: bf:25:22:f7:b0:e1:77:e4:09:d5:e1:d5:01:06:5c: ec:df:8c:ad:e0:42:a2:0f:c8:86:9d:71:a5:e7:81: e9:fc:82:a9:41:d4:35:9c:47:25:94:50:22:94:08: 68:3b:21:65:05:0e:66:26:90:2b:5f:1a:fd:f9:81: 7e:ed:11:34:e8:df:e3:69:7d:d1:d5:56:ba:82:5f: 60:aa:bb:3f:fa:87:51:15:95:1c:07:ec:ff:55:a0: 0c:47:9c:d9:6d:8d:25:fb:c1:51:29:d4:33:a2:4e: 7f:e0:eb:58:2f:98:fd:ec:d3:f7:f0:5c:ba:c6:b9: fe:81:c8:cf:7a:8e:a3:4b:1c:70:9c:c3:c2:6b:ba: 0e:0a:1f:09:7a:8d:12:40:95:16:ad:1d:c9:b8:f9: 91:e6:7d:1b:85:b4:b6:0f:92:00:aa:76:d4:f5:16: 88:4c:ff:33:5c:49:7d:18:f2:48:49:ff:57:6e:56: 52:12:cc:e7:4b:5b:c6:46:10:e4:b3:d4:0e:85:0d: 2c:3b:26:ba:ee:8d:54:6c:da:86:85:38:44:5a:e3: c0:3e:84:9f:93:b9:03:0d:7d:37:25:4e:e3:9b:94: d4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E5:1A:CD:7F:B3:F1:C7:C7:95:E9:E0:26:4E:1E:39:6F:90:DF:41 X509v3 Authority Key Identifier: keyid:82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:9e:a9:db:c3:ad:e6:66:0d:03:41:52:a3:89:89:07:ad:73: 71:d3:90:7d:2a:fe:bd:be:3e:5f:6e:df:2c:06:5d:76:34:2f: f8:75:3c:46:b2:f4:81:51:d7:91:23:37:72:b0:cd:2e:4e:92: 43:6d:4f:24:b4:8c:12:64:c1:cf:3c:ba:16:54:c4:40:68:6e: 3f:ae:92:b2:f2:08:42:34:52:a9:9b:85:ee:b6:2a:1a:3c:ef: 04:b3:19:59:13:36:03:0c:5d:8a:88:76:70:ed:53:2e:40:50: bf:9a:01:2e:cd:2b:f7:ef:cb:62:d9:1a:ba:6b:42:43:b1:ac: e0:01:c2:94:75:19:5c:d1:20:0f:20:18:5b:e6:dc:da:75:9f: ab:2d:47:88:85:79:bc:42:69:50:9e:5e:76:df:49:f9:eb:f0: 8d:66:69:77:d5:a5:9b:b8:1f:bf:cc:4e:f3:54:f7:59:c3:c1: 65:1b:c2:ef:d0:31:47:bc:01:3c:6c:19:97:1d:5c:63:7a:f2: bd:e1:c4:d6:42:b4:d1:5e:e2:6e:12:e1:9f:7e:23:39:cf:35: 62:89:38:9c:6c:3f:d0:dc:2f:04:cf:5f:8e:08:2f:2d:90:4f: 34:81:d3:c4:40:65:a9:ff:6e:22:89:28:ae:81:96:79:ee:cc: 92:f4:34:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEIxMTAvBgNVBAUTKDgyMzZCQkNENzAyRDQ4MjJGRERENUJCMDU2NjBDRjEw MzhFQzhDN0UwHhcNMjUwNTMwMjEwMjM0WhcNMjUwNjA2MjEwMjM0WjAYMRYwFAYD VQQDEw02ODNhMWNlYi1hNzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GdOGlFj044xK1elHO2eObz7IXd+dsa/L1dygUe/JSL3sOF35AnV4dUBBlzs 34yt4EKiD8iGnXGl54Hp/IKpQdQ1nEcllFAilAhoOyFlBQ5mJpArXxr9+YF+7RE0 6N/jaX3R1Va6gl9gqrs/+odRFZUcB+z/VaAMR5zZbY0l+8FRKdQzok5/4OtYL5j9 7NP38Fy6xrn+gcjPeo6jSxxwnMPCa7oOCh8Jeo0SQJUWrR3JuPmR5n0bhbS2D5IA qnbU9RaITP8zXEl9GPJISf9XblZSEsznS1vGRhDks9QOhQ0sOya67o1UbNqGhThE WuPAPoSfk7kDDX03JU7jm5TUKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDlGs1/ s/HHx5Xp4CZOHjlvkN9BMB8GA1UdIwQYMBaAFII2u81wLUgi/d1bsFZgzxA47Ix+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0Qi8yNEE2OEU5Q0Qw RTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFNDTDkzVnV3Vm1EUEVEanNq SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqYTd6WEF0U0NMOTNWdXdWbURQRURqc2pINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU0Qi8yNEE2OEU5Q0QwRTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFND TDkzVnV3Vm1EUEVEanNqSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxnqnbw63mZg0DQVKjiYkHrXNx05B9Kv69vj5fbt8sBl12NC/4dTxG svSBUdeRIzdysM0uTpJDbU8ktIwSZMHPPLoWVMRAaG4/rpKy8ghCNFKpm4Xutioa PO8EsxlZEzYDDF2KiHZw7VMuQFC/mgEuzSv378ti2Rq6a0JDsazgAcKUdRlc0SAP IBhb5tzadZ+rLUeIhXm8QmlQnl5230n56/CNZml31aWbuB+/zE7zVPdZw8FlG8Lv 0DFHvAE8bBmXHVxjevK94cTWQrTRXuJuEuGffiM5zzViiTicbD/Q3C8Ez1+OCC8t kE80gdPEQGWp/24iiSiugZZ57syS9DQR -----END CERTIFICATE-----Generated at Sat May 31 16:43:06 2025 by rpki-client