$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft File: GhpArZOkpDB-1yZNR9JSyvYt7_0.mft (raw, json) Hash identifier: UPS46oAKZiJslH5uUjPJso1g585egW7kjxjDe0JIM9A= Subject key identifier: 72:2D:50:07:F0:F4:82:5A:BF:99:B5:C7:3D:F6:8F:C7:6C:E3:E0:57 Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Certificate serial: 0C6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft Manifest number: 0C57 Signing time: Fri 30 May 2025 18:40:39 +0000 Manifest this update: Fri 30 May 2025 18:40:39 +0000 Manifest next update: Fri 06 Jun 2025 18:40:39 +0000 Files and hashes: 1: GhpArZOkpDB-1yZNR9JSyvYt7_0.crl (hash: tqC2A2eQJ3qxJHEPKY6cW6cJKCPatPybU+oHTRdqpNs=) 2: 702BA35A1D4311F09AE68E7FC4F9AE02.roa (hash: 6Wms1LVBEeVGK9PkBmUevbXKIAzZzizcfxFDC5+BJ7U=) 3: 566800AE193C11F094773636C4F9AE02.roa (hash: MoTDqIen8yVbDTTL7Vu855UIt3dnaCbMiK4gvMYWMk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:40:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3183 (0xc6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD Validity Not Before: May 30 18:40:39 2025 GMT Not After : Jun 6 18:40:39 2025 GMT Subject: CN=6839fba7-06ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:57:7b:2b:d0:ca:07:a0:ef:42:bb:fe:7b:9d: 22:ca:fc:ed:e6:24:58:7a:9e:3a:18:3f:48:0c:d0: 8e:9b:47:48:f2:17:c5:21:cc:5d:8b:ff:c9:13:e9: 33:f7:9b:2f:bb:31:c8:93:b0:60:0a:2e:86:aa:1a: 70:19:98:07:bd:07:5b:3a:3b:cb:47:b8:ba:55:2c: 18:01:57:30:b6:f1:c8:48:58:c0:a3:c0:34:b8:18: a2:7b:f5:4c:09:a0:e2:d9:36:2a:89:9c:fd:b5:88: 23:f3:cf:aa:88:3f:b4:cc:b0:48:9b:de:18:89:c9: 39:6b:eb:14:b5:ae:5c:56:6e:08:95:c1:0d:5f:57: eb:19:47:a2:c0:b1:e7:25:b7:25:ef:d8:6a:46:47: 20:5f:47:aa:1f:84:e1:b4:72:f1:8a:29:06:61:4e: 05:30:bc:bb:f3:e0:e3:ca:b3:90:40:2a:51:30:c2: d8:3f:3c:0a:5f:b9:18:2c:cf:75:44:1b:26:6f:cb: 4b:63:ce:df:ac:9d:fe:e8:f9:14:c0:ad:25:66:07: 76:d1:e4:06:1b:ac:56:e1:14:72:c0:75:28:a7:65: 58:dd:d3:12:4b:1e:12:0c:fe:9e:7d:a8:6b:ea:d8: 67:16:2c:80:e2:a1:b0:be:4d:55:99:05:76:5e:c7: c1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2D:50:07:F0:F4:82:5A:BF:99:B5:C7:3D:F6:8F:C7:6C:E3:E0:57 X509v3 Authority Key Identifier: keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:c2:70:85:00:2e:20:79:96:ae:82:f9:e7:1f:73:95:55:f3: 4d:56:fc:17:2e:84:04:77:15:74:94:92:d2:b1:0b:7c:8f:fb: d6:69:33:bf:41:e9:5c:06:b4:8a:d0:f8:1e:1a:b0:f0:6f:ff: 09:fc:7b:a4:11:84:6b:f1:f2:56:94:97:04:f3:84:48:2d:dc: 16:7c:84:7d:32:56:47:41:92:45:60:cd:0b:52:8e:f6:55:27: 26:f4:a6:13:c8:f7:b2:49:87:d8:6d:f6:0d:93:36:74:43:a7: a6:b6:8a:62:9e:95:fd:5b:6d:8a:0f:bb:f3:a5:02:f3:d0:c7: 61:76:38:26:14:06:32:0d:1b:ab:35:aa:ca:e3:e2:ae:66:51: 9a:a1:a2:4b:52:0e:f1:aa:27:47:9f:a4:11:6c:a2:0d:9c:02: 1b:03:ec:c3:fa:9b:f5:49:ea:4c:cd:3b:fd:65:7e:30:00:e0: c7:95:8b:9a:68:57:64:ea:28:f8:18:4b:7a:38:5d:a7:e2:e3: 01:8b:06:6e:80:8a:88:12:5f:d2:93:78:2b:31:ab:83:01:ae: 07:da:5c:da:d6:f4:1d:e0:ed:64:b2:4b:81:30:b3:bd:80:db: 37:81:ab:c4:9a:56:77:b6:03:71:1d:ab:bb:2c:44:23:7f:4b: ef:8b:3e:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB RjYyREVGRkQwHhcNMjUwNTMwMTg0MDM5WhcNMjUwNjA2MTg0MDM5WjAYMRYwFAYD VQQDEw02ODM5ZmJhNy0wNmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFd7K9DKB6DvQrv+e50iyvzt5iRYep46GD9IDNCOm0dI8hfFIcxdi//JE+kz 95svuzHIk7BgCi6GqhpwGZgHvQdbOjvLR7i6VSwYAVcwtvHISFjAo8A0uBiie/VM CaDi2TYqiZz9tYgj88+qiD+0zLBIm94Yick5a+sUta5cVm4IlcENX1frGUeiwLHn Jbcl79hqRkcgX0eqH4ThtHLxiikGYU4FMLy78+DjyrOQQCpRMMLYPzwKX7kYLM91 RBsmb8tLY87frJ3+6PkUwK0lZgd20eQGG6xW4RRywHUop2VY3dMSSx4SDP6efahr 6thnFiyA4qGwvk1VmQV2XsfBdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHItUAfw 9IJav5m1xz32j8ds4+BXMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2 QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDc1Qy8yQkM1RkQ0MDA2QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BE Qi0xeVpOUjlKU3l2WXQ3XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSwnCFAC4geZaugvnnH3OVVfNNVvwXLoQEdxV0lJLSsQt8j/vWaTO/ QelcBrSK0PgeGrDwb/8J/HukEYRr8fJWlJcE84RILdwWfIR9MlZHQZJFYM0LUo72 VScm9KYTyPeySYfYbfYNkzZ0Q6emtopinpX9W22KD7vzpQLz0MdhdjgmFAYyDRur NarK4+KuZlGaoaJLUg7xqidHn6QRbKINnAIbA+zD+pv1SepMzTv9ZX4wAODHlYua aFdk6ij4GEt6OF2n4uMBiwZugIqIEl/Sk3grMauDAa4H2lza1vQd4O1kskuBMLO9 gNs3gavEmlZ3tgNxHau7LEQjf0vviz5g -----END CERTIFICATE-----Generated at Sat May 31 16:56:15 2025 by rpki-client