$ rpki-client -vvf rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft File: G43u2x08SMwcTCF7lpx5hUGkzHc.mft (raw, json) Hash identifier: 4vn1g50ZEBQw04ZfJFPQ8nASYF8kzcfOdCdb9XKfQIc= Subject key identifier: D9:D2:21:AC:A9:C0:41:F7:0C:F8:F4:4A:FE:D9:9D:48:E3:30:ED:6B Authority key identifier: 1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 Certificate issuer: /CN=A9124803/serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft Manifest number: 0652 Signing time: Thu 12 Jun 2025 22:11:31 +0000 Manifest this update: Thu 12 Jun 2025 22:11:30 +0000 Manifest next update: Thu 19 Jun 2025 22:11:30 +0000 Files and hashes: 1: G43u2x08SMwcTCF7lpx5hUGkzHc.crl (hash: s+ZiGbb0P3xeieAYYOu8sy6mTyWK6KMgMl/MtZAPwhQ=) 2: 62CCFF308C7211EB98A6DD43C4F9AE02.roa (hash: lV/cpNWUCFTUuQ8wWKZTK1Tzrge3tnngMyqR3AbKgb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124803, serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Validity Not Before: Jun 12 22:11:30 2025 GMT Not After : Jun 19 22:11:30 2025 GMT Subject: CN=684b5093-6cd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f2:23:dd:ff:c7:8d:b8:29:5a:b6:8f:dc:ce: e8:48:f9:6b:d0:74:cb:c0:d6:e3:1e:e0:97:c1:8b: 2e:8c:0d:ab:01:67:d1:9d:70:eb:be:71:c7:3b:a7: ae:cd:1e:cb:8a:3e:83:bd:4b:fb:4f:39:ac:51:80: b4:bd:34:78:c4:4d:01:ef:80:e6:f3:fb:a8:35:bf: 90:c2:53:1b:79:f9:c3:07:3b:14:0a:81:b5:4f:ae: 80:5b:60:23:76:a2:bc:fb:51:0f:6a:22:70:49:16: 8d:86:94:bd:f8:fb:91:9d:24:a1:59:73:60:85:18: cf:6d:e8:25:b7:cc:26:04:dd:21:c6:0c:a8:83:46: 62:59:ef:f2:b6:c7:67:bc:e9:23:3b:c1:4c:48:f1: 77:77:e5:4a:cb:74:d6:c8:b8:d5:14:d8:6c:07:8a: bc:58:ee:9f:9b:d8:23:6c:f0:f1:ba:01:91:55:e0: aa:18:95:0c:0a:b2:b2:d5:f9:e7:05:c5:98:61:a6: 3f:5a:98:2c:ff:69:bf:20:24:f0:06:6f:b4:10:b8: fa:a4:b7:94:db:e8:42:ca:48:6c:bd:01:de:4a:4c: 24:f4:63:3a:9d:7c:af:3a:46:e9:93:db:76:3e:fb: 81:52:c6:e2:f6:01:e4:87:a2:c1:c4:9a:b3:9d:18: ca:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D2:21:AC:A9:C0:41:F7:0C:F8:F4:4A:FE:D9:9D:48:E3:30:ED:6B X509v3 Authority Key Identifier: keyid:1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:6e:f4:24:02:4e:58:03:7f:54:01:1a:20:7a:45:3b:6f:ca: 1c:fa:80:8f:05:25:55:17:dc:c6:1c:84:48:66:ff:56:c9:a9: 5d:83:51:9c:8e:52:0f:0c:d9:de:48:aa:57:f5:d4:de:5d:86: 6e:ea:95:81:f8:b4:7e:02:63:a0:1f:09:3b:ad:58:30:e4:e0: c6:8c:6a:4f:15:85:01:77:5e:70:a7:cd:73:77:92:6a:63:8b: 6e:9a:d0:e6:0c:78:2a:1a:27:f7:0b:62:85:d3:e1:aa:b8:e3: 93:29:d1:91:ad:8b:9e:19:bd:f6:56:e7:bf:2e:2f:80:be:f0: 5e:67:fc:78:7b:a6:c6:ee:b7:6c:3b:cc:f4:fb:71:e2:07:6e: 9f:11:2f:e8:1c:1c:c1:5e:4b:a5:e7:f4:da:32:bb:88:fd:09: 75:57:39:54:cb:5e:5f:74:98:de:e3:17:4d:c4:14:49:5c:b4: 98:be:6c:8b:b2:61:44:ef:62:46:3f:46:78:8c:6f:d7:15:c6: b4:ac:32:00:41:db:d7:47:c5:3a:95:27:08:9b:b7:67:5d:48: e2:be:47:ed:63:66:21:82:8f:09:7d:2f:13:a5:0a:13:25:b3: a3:e3:97:84:6f:4c:d4:6d:ed:87:95:43:42:b7:27:75:55:db: ed:96:2a:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4MDMxMTAvBgNVBAUTKDFCOERFRURCMUQzQzQ4Q0MxQzRDMjE3Qjk2OUM3OTg1 NDFBNENDNzcwHhcNMjUwNjEyMjIxMTMwWhcNMjUwNjE5MjIxMTMwWjAYMRYwFAYD VQQDEw02ODRiNTA5My02Y2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPIj3f/HjbgpWraP3M7oSPlr0HTLwNbjHuCXwYsujA2rAWfRnXDrvnHHO6eu zR7Lij6DvUv7TzmsUYC0vTR4xE0B74Dm8/uoNb+QwlMbefnDBzsUCoG1T66AW2Aj dqK8+1EPaiJwSRaNhpS9+PuRnSShWXNghRjPbeglt8wmBN0hxgyog0ZiWe/ytsdn vOkjO8FMSPF3d+VKy3TWyLjVFNhsB4q8WO6fm9gjbPDxugGRVeCqGJUMCrKy1fnn BcWYYaY/Wpgs/2m/ICTwBm+0ELj6pLeU2+hCykhsvQHeSkwk9GM6nXyvOkbpk9t2 PvuBUsbi9gHkh6LBxJqznRjKbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnSIayp wEH3DPj0Sv7ZnUjjMO1rMB8GA1UdIwQYMBaAFBuN7tsdPEjMHEwhe5aceYVBpMx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDgwMy85NzdENzM2MDhD NzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNNd2NUQ0Y3bHB4NWhVR2t6 SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0M3UyeDA4U013Y1RDRjdscHg1aFVHa3pIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDgwMy85NzdENzM2MDhDNzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNN d2NUQ0Y3bHB4NWhVR2t6SGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDObvQkAk5YA39UARogekU7b8oc+oCPBSVVF9zGHIRIZv9Wyaldg1Gc jlIPDNneSKpX9dTeXYZu6pWB+LR+AmOgHwk7rVgw5ODGjGpPFYUBd15wp81zd5Jq Y4tumtDmDHgqGif3C2KF0+GquOOTKdGRrYueGb32Vue/Li+AvvBeZ/x4e6bG7rds O8z0+3HiB26fES/oHBzBXkul5/TaMruI/Ql1VzlUy15fdJje4xdNxBRJXLSYvmyL smFE72JGP0Z4jG/XFca0rDIAQdvXR8U6lScIm7dnXUjivkftY2Yhgo8JfS8TpQoT JbOj45eEb0zUbe2HlUNCtyd1Vdvtlio6 -----END CERTIFICATE-----Generated at Fri Jun 13 01:42:11 2025 by rpki-client