$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: Pa2UKcoVwfOG0fpZZ3WFRJieCihpcZkcLdPNkDGzXN0= Subject key identifier: BA:EC:50:C9:49:07:F1:9B:44:D8:95:D4:E2:D8:17:98:AB:F4:CE:E9 Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 24 Signing time: Sat 31 May 2025 07:24:24 +0000 Manifest this update: Sat 31 May 2025 07:24:23 +0000 Manifest next update: Sat 07 Jun 2025 07:24:23 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: o17E4b2iCI+55iBF7jVW+kMWpfP+ftyCeqB7GvQp2vc=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: FyXjLRCgkRt49xci/u6DJz1qKlOyAWBczjrKc036O0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: May 31 07:24:23 2025 GMT Not After : Jun 7 07:24:23 2025 GMT Subject: CN=683aaea8-b7a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:55:da:47:7c:08:e9:72:ea:b3:ad:24:3a:29: 16:f9:80:a7:15:2f:42:34:da:81:26:2d:b1:26:35: a4:18:ec:8a:b3:b5:49:c9:3d:c6:9f:25:92:6c:1b: 26:75:b3:0e:4c:44:19:85:8a:a6:13:a7:66:00:13: f2:fd:d0:81:0c:7d:41:fd:f2:39:89:ff:08:fb:39: 09:dc:f3:17:fa:83:10:43:9f:d6:d0:ce:6e:9f:9e: 6c:20:2d:da:e3:90:32:1d:3d:1c:3d:de:a2:15:6b: ca:20:ac:3e:62:91:10:22:fa:5c:43:be:f3:f0:0a: 18:f6:fe:a8:0d:58:f9:08:4b:dc:22:16:89:9e:66: ca:cc:c4:cf:96:60:37:6e:cd:70:ad:77:c6:6d:ae: ed:14:e4:49:9c:d8:e6:5a:5a:13:ad:e7:d5:d5:71: 39:95:0b:cf:a3:44:0e:b4:6e:50:39:fb:d3:aa:fe: b0:99:0a:3b:ba:5f:79:99:fc:c8:2b:4d:8c:f9:cb: 06:14:de:a7:20:ea:b7:cf:a3:14:69:3f:b9:f2:b7: 42:37:e5:1b:31:ea:23:86:98:e1:a9:0c:8e:87:ed: 1d:b2:06:97:a5:1a:54:4c:e0:34:15:d7:dc:d7:3b: bf:1d:d5:fd:69:dd:6f:74:21:84:be:38:16:ed:da: c5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EC:50:C9:49:07:F1:9B:44:D8:95:D4:E2:D8:17:98:AB:F4:CE:E9 X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b1:01:5b:22:96:19:15:04:ba:f0:68:44:53:da:d8:56:50: 1d:46:63:f4:99:62:e6:fe:7a:c5:c3:31:8e:c3:e0:55:41:63: 05:63:4c:54:7d:d8:56:e0:93:64:f9:f5:6b:1a:30:64:c0:d4: 1b:04:df:e3:18:f0:1c:df:76:5a:de:89:a1:6d:c0:aa:ce:61: aa:d4:a7:31:46:ad:4e:c7:3b:c9:c2:5d:36:3f:82:85:d6:ea: 87:b5:82:5e:05:9a:9e:6f:13:68:11:91:85:1d:0e:d0:e9:34: 28:fa:e7:cf:96:b2:2d:0d:57:a5:53:86:28:b0:c3:fe:06:d2: aa:b1:da:fb:14:5c:35:93:91:c2:4c:9e:4f:8d:75:a1:aa:ad: 19:8b:c9:ec:76:76:57:1a:74:3b:66:7e:8c:e3:bb:64:4d:ea: 48:01:94:4a:10:b4:24:71:f6:6d:4d:1c:c8:5a:73:63:70:dd: 21:c6:1f:17:4e:e5:5a:26:b0:a6:52:e5:4d:e6:94:6c:d6:0a: cd:2e:b0:e3:e0:e0:f3:f8:92:70:9c:73:65:79:f6:1f:b3:5c: 1e:60:f8:21:2c:6e:f4:f8:b1:fc:3a:6c:48:fa:f6:bd:20:40: ba:68:67:06:a9:52:c1:c9:da:3a:65:10:09:69:ea:ba:0f:ec: af:d6:77:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTA1MzEwNzI0MjNaFw0yNTA2MDcwNzI0MjNaMBgxFjAUBgNV BAMTDTY4M2FhZWE4LWI3YTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdVdpHfAjpcuqzrSQ6KRb5gKcVL0I02oEmLbEmNaQY7IqztUnJPcafJZJsGyZ1 sw5MRBmFiqYTp2YAE/L90IEMfUH98jmJ/wj7OQnc8xf6gxBDn9bQzm6fnmwgLdrj kDIdPRw93qIVa8ogrD5ikRAi+lxDvvPwChj2/qgNWPkIS9wiFomeZsrMxM+WYDdu zXCtd8Ztru0U5Emc2OZaWhOt59XVcTmVC8+jRA60blA5+9Oq/rCZCju6X3mZ/Mgr TYz5ywYU3qcg6rfPoxRpP7nyt0I35Rsx6iOGmOGpDI6H7R2yBpelGlRM4DQV19zX O78d1f1p3W90IYS+OBbt2sURAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuuxQyUkH 8ZtE2JXU4tgXmKv0zukwHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 OUNBL0E5RjI3MjJFMDhBMDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZ V2U2T24xeVU4ZGhZeG9vMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI2xAVsilhkVBLrwaERT2thWUB1GY/SZYub+esXDMY7D4FVBYwVjTFR9 2Fbgk2T59WsaMGTA1BsE3+MY8BzfdlreiaFtwKrOYarUpzFGrU7HO8nCXTY/goXW 6oe1gl4Fmp5vE2gRkYUdDtDpNCj658+Wsi0NV6VThiiww/4G0qqx2vsUXDWTkcJM nk+NdaGqrRmLyex2dlcadDtmfozju2RN6kgBlEoQtCRx9m1NHMhac2Nw3SHGHxdO 5VomsKZS5U3mlGzWCs0usOPg4PP4knCcc2V59h+zXB5g+CEsbvT4sfw6bEj69r0g QLpoZwapUsHJ2jplEAlp6roP7K/Wd5U= -----END CERTIFICATE-----Generated at Sat May 31 17:54:58 2025 by rpki-client