$ rpki-client -vvf rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft File: G43u2x08SMwcTCF7lpx5hUGkzHc.mft (raw, json) Hash identifier: RXIzldXQI0oJOuxq71bNDHJHK0WLwzZ462mQSSVsg4o= Subject key identifier: 4B:BC:5E:EF:0E:03:97:C8:89:EB:C4:DC:BC:D4:82:29:18:A5:68:3E Authority key identifier: 1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 Certificate issuer: /CN=A9124803/serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Certificate serial: 0658 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft Manifest number: 0651 Signing time: Tue 10 Jun 2025 22:27:39 +0000 Manifest this update: Tue 10 Jun 2025 22:27:39 +0000 Manifest next update: Tue 17 Jun 2025 22:27:39 +0000 Files and hashes: 1: G43u2x08SMwcTCF7lpx5hUGkzHc.crl (hash: TxanvwwEkekZ7vjHW3fiRyHHeq+MZwrf82ZWqusgcDI=) 2: 62CCFF308C7211EB98A6DD43C4F9AE02.roa (hash: lV/cpNWUCFTUuQ8wWKZTK1Tzrge3tnngMyqR3AbKgb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 22:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124803, serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Validity Not Before: Jun 10 22:27:39 2025 GMT Not After : Jun 17 22:27:39 2025 GMT Subject: CN=6848b15b-2730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:19:8e:ae:8d:23:93:d2:7b:11:57:66:9e:21: 2b:da:05:34:00:59:9b:5f:d8:1b:ac:2e:eb:42:fa: e3:7b:73:04:7b:d2:d8:9e:3b:d3:a6:6c:6a:bb:fc: 58:fe:8e:a7:ac:86:b2:67:da:13:45:60:4d:53:bd: fe:26:87:fd:34:22:e5:a2:5c:8f:15:fc:06:cf:38: c3:2b:81:32:20:e4:8b:6a:5c:72:c5:55:1c:e8:18: d2:45:a6:05:86:ed:11:57:1e:1f:46:89:e9:2e:8f: 0e:0b:36:55:cc:aa:62:e8:38:13:e7:d4:99:84:e9: 33:4a:e5:ae:d8:53:3e:79:1e:05:c3:bc:79:9f:f0: f5:c2:37:e4:b5:5a:0a:72:27:32:53:a2:20:33:10: 94:1a:96:ca:68:de:66:29:45:f6:6c:02:de:7c:5d: 20:6b:03:87:4e:e5:14:a8:a6:57:8b:bc:7a:e0:fc: 5c:3b:b5:38:2e:4e:2a:a8:19:4e:e5:d2:49:f6:55: bb:78:fa:d9:ee:bc:db:06:3a:bb:37:b4:b3:d9:f3: f1:67:62:e9:65:13:3a:73:b3:93:7e:5e:3a:c1:48: df:f5:24:82:48:93:7c:91:0b:72:9a:d8:73:31:59: b9:54:d2:31:34:a3:f5:52:72:2e:fc:cd:a9:0f:6d: 0e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BC:5E:EF:0E:03:97:C8:89:EB:C4:DC:BC:D4:82:29:18:A5:68:3E X509v3 Authority Key Identifier: keyid:1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:d9:dc:ac:7f:25:cc:16:06:19:77:c5:ea:21:9f:49:23:81: 9d:d9:2f:90:f7:37:de:e9:57:e0:69:3a:2b:86:53:6e:e4:69: 2b:2c:86:47:05:56:dc:5f:3a:3f:93:e5:d1:15:8d:a7:41:3a: ba:22:38:3e:9e:08:48:a1:1d:3d:c4:d8:bf:65:f8:d0:21:61: e8:f4:08:99:1a:aa:bc:a6:e4:d2:c8:38:a2:43:3d:4d:8d:b0: e7:c1:6f:9d:92:8c:70:6f:57:9b:8e:ab:8b:e2:f4:5f:6c:11: 2e:c6:a9:c0:73:6e:db:bd:d3:43:68:03:eb:4f:e5:c1:18:69: 39:67:42:c7:84:bd:bc:ad:29:66:c0:70:e8:9f:1f:3d:ed:05: 1e:a5:4f:66:ef:4a:75:ef:05:ef:56:50:cc:7e:ca:54:07:52: a0:f3:80:d4:22:ed:e5:50:0a:6b:4d:9b:e8:d0:e1:c0:40:d1: a8:8f:95:ce:2b:3c:a6:32:90:00:1b:1c:7e:46:15:ce:45:cb: d5:0b:55:ad:2d:b9:3c:c0:20:aa:25:ed:10:99:91:25:8c:6e: 36:67:cc:42:d8:0a:32:f7:fb:d8:e5:47:48:f7:b0:70:80:7c: 81:65:14:1d:de:f0:e9:c2:25:85:3f:f8:17:a0:c1:57:5b:b5: 33:8d:34:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4MDMxMTAvBgNVBAUTKDFCOERFRURCMUQzQzQ4Q0MxQzRDMjE3Qjk2OUM3OTg1 NDFBNENDNzcwHhcNMjUwNjEwMjIyNzM5WhcNMjUwNjE3MjIyNzM5WjAYMRYwFAYD VQQDEw02ODQ4YjE1Yi0yNzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RmOro0jk9J7EVdmniEr2gU0AFmbX9gbrC7rQvrje3MEe9LYnjvTpmxqu/xY /o6nrIayZ9oTRWBNU73+Jof9NCLlolyPFfwGzzjDK4EyIOSLalxyxVUc6BjSRaYF hu0RVx4fRonpLo8OCzZVzKpi6DgT59SZhOkzSuWu2FM+eR4Fw7x5n/D1wjfktVoK cicyU6IgMxCUGpbKaN5mKUX2bALefF0gawOHTuUUqKZXi7x64PxcO7U4Lk4qqBlO 5dJJ9lW7ePrZ7rzbBjq7N7Sz2fPxZ2LpZRM6c7OTfl46wUjf9SSCSJN8kQtymthz MVm5VNIxNKP1UnIu/M2pD20OgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEu8Xu8O A5fIievE3LzUgikYpWg+MB8GA1UdIwQYMBaAFBuN7tsdPEjMHEwhe5aceYVBpMx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDgwMy85NzdENzM2MDhD NzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNNd2NUQ0Y3bHB4NWhVR2t6 SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0M3UyeDA4U013Y1RDRjdscHg1aFVHa3pIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDgwMy85NzdENzM2MDhDNzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNN d2NUQ0Y3bHB4NWhVR2t6SGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDj2dysfyXMFgYZd8XqIZ9JI4Gd2S+Q9zfe6VfgaTorhlNu5GkrLIZH BVbcXzo/k+XRFY2nQTq6Ijg+nghIoR09xNi/ZfjQIWHo9AiZGqq8puTSyDiiQz1N jbDnwW+dkoxwb1ebjquL4vRfbBEuxqnAc27bvdNDaAPrT+XBGGk5Z0LHhL28rSlm wHDonx897QUepU9m70p17wXvVlDMfspUB1Kg84DUIu3lUAprTZvo0OHAQNGoj5XO KzymMpAAGxx+RhXORcvVC1WtLbk8wCCqJe0QmZEljG42Z8xC2Aoy9/vY5UdI97Bw gHyBZRQd3vDpwiWFP/gXoMFXW7UzjTRo -----END CERTIFICATE-----Generated at Thu Jun 12 18:59:17 2025 by rpki-client