$ rpki-client -vvf rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft File: g7x91dFCfoM0DS32wztiPUPX7KQ.mft (raw, json) Hash identifier: enn68fhEDm6H+27swo7Ndko/eyOw2KfDJIdf5b1O4fI= Subject key identifier: 69:62:5E:6F:F5:4E:14:5B:6A:A5:82:A9:7A:06:68:85:DA:B8:2F:A0 Authority key identifier: 83:BC:7D:D5:D1:42:7E:83:34:0D:2D:F6:C3:3B:62:3D:43:D7:EC:A4 Certificate issuer: /CN=A911B468/serialNumber=83BC7DD5D1427E83340D2DF6C33B623D43D7ECA4 Certificate serial: 0EA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft Manifest number: 0E95 Signing time: Fri 30 May 2025 17:52:36 +0000 Manifest this update: Fri 30 May 2025 17:52:36 +0000 Manifest next update: Fri 06 Jun 2025 17:52:36 +0000 Files and hashes: 1: g7x91dFCfoM0DS32wztiPUPX7KQ.crl (hash: enH3IZjA3Qq4yXLo+4RZTrejKmWHiSWy5h2FUqs9lXQ=) 2: E1769D329EF711EABE23195AC4F9AE02.roa (hash: bnxide7jSDy0H4+26/GRiKEkbVdX6Jj48LQNDvhocz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.crl rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3744 (0xea0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B468, serialNumber=83BC7DD5D1427E83340D2DF6C33B623D43D7ECA4 Validity Not Before: May 30 17:52:36 2025 GMT Not After : Jun 6 17:52:36 2025 GMT Subject: CN=6839f064-9ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:91:38:80:b1:c1:09:d7:b6:59:2f:fb:23:bf: 94:38:bf:47:e2:b0:12:95:4b:60:3e:50:e5:71:f2: dd:27:7f:f3:d0:7f:b5:2d:2e:dd:8d:6e:f5:a4:ed: 9a:7c:40:70:26:7c:46:d1:e1:a5:49:ec:43:12:e1: 7a:82:86:54:d3:8c:93:eb:60:e9:7e:90:43:1b:4d: 87:36:39:f8:44:df:38:af:3e:d1:0c:6e:c4:05:86: be:fb:1d:62:ce:41:c5:d7:c9:8e:7f:62:f5:81:30: 15:8f:fc:ee:f5:19:74:d3:5c:d1:95:9b:28:88:c2: eb:59:76:c4:72:95:54:65:b2:88:ca:bf:d2:bb:01: 1f:1e:13:27:2e:c1:e3:1b:39:82:e2:1f:2b:ca:a1: 4e:0b:9f:50:3b:20:b4:e9:62:50:70:c6:b1:96:9c: 02:d6:ad:76:b3:12:d3:41:50:d5:92:10:9a:6e:6f: f0:01:e1:58:d0:94:a7:22:4d:46:31:f1:3e:56:63: f1:f8:b0:df:15:cd:b8:88:e3:a5:0a:02:49:68:ba: f4:c6:35:86:26:90:3e:8f:01:2e:6d:8e:a4:c0:b5: e5:d3:98:b5:c8:ac:48:90:b5:8a:ce:c4:af:08:30: a4:53:ee:af:fc:e9:31:aa:49:ae:05:0e:00:0f:66: 5d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:62:5E:6F:F5:4E:14:5B:6A:A5:82:A9:7A:06:68:85:DA:B8:2F:A0 X509v3 Authority Key Identifier: keyid:83:BC:7D:D5:D1:42:7E:83:34:0D:2D:F6:C3:3B:62:3D:43:D7:EC:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7x91dFCfoM0DS32wztiPUPX7KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B468/81226028911B11E99300FE57C4F9AE02/g7x91dFCfoM0DS32wztiPUPX7KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:8c:80:8c:89:c8:bc:6b:aa:98:d2:35:af:89:df:9f:fa:a8: 5c:0d:33:59:00:33:4c:6e:ec:2d:85:c6:eb:6c:2c:9a:aa:98: e9:81:5a:8a:27:de:b6:c5:2a:33:3a:27:75:c5:a8:29:88:1f: 6f:52:04:0a:3f:83:e3:db:ae:45:30:61:d4:f4:1d:a7:86:08: 43:1f:3e:09:11:d5:13:79:38:69:b0:93:61:f7:7d:c8:0d:f7: 93:26:61:fb:3e:79:8b:05:41:84:2d:ad:d9:86:25:52:bf:4b: 37:9d:7b:be:c3:e8:82:81:c5:21:c3:47:ad:54:81:b7:c5:b0: bb:3e:22:2d:e4:7a:ff:79:cf:57:99:41:8d:e0:11:24:4d:6b: eb:13:23:7c:e2:d8:29:2b:90:fe:78:ed:b0:cb:95:1a:7f:91: 2e:66:c9:7b:da:b4:1f:ff:cc:13:34:52:6e:f1:ba:3d:fd:b1: 4e:ce:28:c2:44:76:a6:13:c8:40:ab:56:b7:0c:bd:34:23:04: a5:99:3a:20:86:bf:e6:59:17:82:3c:db:2d:9a:dd:c2:0b:c6: 6d:ac:89:3a:b3:72:1e:71:a9:ac:72:b4:2b:0f:00:e5:62:ff: 33:53:9b:c7:e6:3a:63:c2:03:81:69:28:1a:37:cb:48:60:b6: ee:cc:2d:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0NjgxMTAvBgNVBAUTKDgzQkM3REQ1RDE0MjdFODMzNDBEMkRGNkMzM0I2MjNE NDNEN0VDQTQwHhcNMjUwNTMwMTc1MjM2WhcNMjUwNjA2MTc1MjM2WjAYMRYwFAYD VQQDEw02ODM5ZjA2NC05YWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZE4gLHBCde2WS/7I7+UOL9H4rASlUtgPlDlcfLdJ3/z0H+1LS7djW71pO2a fEBwJnxG0eGlSexDEuF6goZU04yT62DpfpBDG02HNjn4RN84rz7RDG7EBYa++x1i zkHF18mOf2L1gTAVj/zu9Rl001zRlZsoiMLrWXbEcpVUZbKIyr/SuwEfHhMnLsHj GzmC4h8ryqFOC59QOyC06WJQcMaxlpwC1q12sxLTQVDVkhCabm/wAeFY0JSnIk1G MfE+VmPx+LDfFc24iOOlCgJJaLr0xjWGJpA+jwEubY6kwLXl05i1yKxIkLWKzsSv CDCkU+6v/OkxqkmuBQ4AD2ZdYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGliXm/1 ThRbaqWCqXoGaIXauC+gMB8GA1UdIwQYMBaAFIO8fdXRQn6DNA0t9sM7Yj1D1+yk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQ2OC84MTIyNjAyODkx MUIxMUU5OTMwMEZFNTdDNEY5QUUwMi9nN3g5MWRGQ2ZvTTBEUzMyd3p0aVBVUFg3 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3eDkxZEZDZm9NMERTMzJ3enRpUFVQWDdLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjQ2OC84MTIyNjAyODkxMUIxMUU5OTMwMEZFNTdDNEY5QUUwMi9nN3g5MWRGQ2Zv TTBEUzMyd3p0aVBVUFg3S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCojICMici8a6qY0jWvid+f+qhcDTNZADNMbuwthcbrbCyaqpjpgVqK J962xSozOid1xagpiB9vUgQKP4Pj265FMGHU9B2nhghDHz4JEdUTeThpsJNh933I DfeTJmH7PnmLBUGELa3ZhiVSv0s3nXu+w+iCgcUhw0etVIG3xbC7PiIt5Hr/ec9X mUGN4BEkTWvrEyN84tgpK5D+eO2wy5Uaf5EuZsl72rQf/8wTNFJu8bo9/bFOzijC RHamE8hAq1a3DL00IwSlmToghr/mWReCPNstmt3CC8ZtrIk6s3IecamscrQrDwDl Yv8zU5vH5jpjwgOBaSgaN8tIYLbuzC2q -----END CERTIFICATE-----Generated at Sat May 31 15:40:35 2025 by rpki-client