$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft File: gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json) Hash identifier: iyEOIs3qdjF1WI5xLORYWOFyIv+VKpmYvqUrqyONaBU= Subject key identifier: 9A:45:42:77:E2:80:4E:92:8C:40:56:19:B1:13:2A:2F:50:A2:F2:C0 Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F Certificate issuer: /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft Manifest number: 01B0 Signing time: Tue 01 Jul 2025 03:33:58 +0000 Manifest this update: Tue 01 Jul 2025 03:33:58 +0000 Manifest next update: Tue 08 Jul 2025 03:33:58 +0000 Files and hashes: 1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: VyomiH8Tf/gLpeVBVsjADAs6zTev0BfNu7GCNPuu3zk=) 2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: dWU1gPzZFM9Cw+SS2wudvR0l02XzByvndbpoX+ljoqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146DAA, serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Validity Not Before: Jul 1 03:33:58 2025 GMT Not After : Jul 8 03:33:58 2025 GMT Subject: CN=68635726-59a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d9:74:6c:51:73:0e:52:b0:b2:0f:34:76:71: 48:d5:d4:e1:8a:8c:de:e1:7c:56:d9:44:be:00:6e: 77:d2:a2:80:91:ed:5f:86:84:25:4c:d2:58:7d:cf: 34:67:9d:f4:e8:ae:f4:61:d9:62:88:9e:72:7f:fd: 60:e1:1b:5d:c0:e5:57:d5:3a:e4:55:a7:10:1b:7f: 21:20:1d:72:7f:02:76:09:3c:7d:e1:91:eb:d5:7b: d9:f8:59:ae:a9:87:bf:7c:3a:6f:67:4e:2d:f8:39: 20:0b:32:14:eb:4b:b8:21:cc:41:8e:f3:51:8c:45: 30:61:50:bb:4e:15:90:a0:b4:24:85:3c:46:6c:ba: 80:8c:c1:13:b6:54:c0:44:25:f9:d0:47:93:35:c8: 24:13:5d:30:f0:73:1f:94:c9:3b:fe:80:81:40:f5: 3f:74:a1:c2:f6:01:93:be:39:21:ff:cb:72:7a:48: 40:2f:f8:d4:01:e5:43:6e:75:cf:b3:bf:c5:83:28: 5e:86:e5:67:44:80:97:2a:90:03:fd:88:87:b4:92: f6:2d:b8:2d:a5:dd:18:f2:6b:90:bb:f8:68:66:98: c4:e0:38:ea:c4:92:8b:d9:50:a3:7a:96:9c:54:92: 7b:0f:19:48:81:cb:ef:5c:29:5f:bc:db:33:63:1c: d4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:45:42:77:E2:80:4E:92:8C:40:56:19:B1:13:2A:2F:50:A2:F2:C0 X509v3 Authority Key Identifier: keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:3a:a4:22:ce:5c:ad:82:05:52:6d:b5:b0:58:8c:6e:1c:15: a8:0e:c3:75:6e:1a:9f:8b:45:cc:86:1e:0e:9c:da:bf:2c:40: e2:8a:f5:e6:73:4b:54:c7:3b:1f:a6:d5:14:50:75:42:f0:df: 15:0b:c1:09:a6:82:54:46:d1:7c:0f:bf:ed:eb:30:af:14:12: d1:6a:f9:db:63:13:26:0f:d4:8c:e0:7e:ee:9b:56:64:88:e3: db:54:79:ee:0a:d4:f9:85:d3:11:f0:9f:c0:62:40:ee:58:27: e1:a7:e9:9d:32:56:69:0f:b8:96:35:52:af:a8:83:9c:f3:bf: 8c:75:3d:97:b5:2a:ae:89:a8:7c:86:47:d9:df:8f:64:44:d4: 00:a1:87:cc:62:83:52:04:b3:ea:94:d2:d3:50:d3:9f:14:b3: 3a:b3:ed:41:7c:56:ac:56:17:89:d3:50:5d:1e:98:b3:6d:e2: e1:a4:b2:92:8b:a1:0e:c3:0c:b2:38:43:a9:5f:15:49:fc:26: dc:71:da:05:54:20:44:25:ee:eb:d0:67:49:be:89:cc:4f:25: a6:dc:77:1e:1a:e3:8f:eb:03:df:80:ac:ea:1f:22:d7:c1:19: 64:68:95:0d:c2:85:e9:cf:21:50:08:f4:33:9b:c6:11:21:ad: 10:24:95:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEQUExMTAvBgNVBAUTKDgyMEY3MDMwQkVBQzZENDlGMTA5QkE4RUMyNUE2NUJG MjM2OUFEMkYwHhcNMjUwNzAxMDMzMzU4WhcNMjUwNzA4MDMzMzU4WjAYMRYwFAYD VQQDEw02ODYzNTcyNi01OWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79l0bFFzDlKwsg80dnFI1dThioze4XxW2US+AG530qKAke1fhoQlTNJYfc80 Z5306K70YdliiJ5yf/1g4RtdwOVX1TrkVacQG38hIB1yfwJ2CTx94ZHr1XvZ+Fmu qYe/fDpvZ04t+DkgCzIU60u4IcxBjvNRjEUwYVC7ThWQoLQkhTxGbLqAjMETtlTA RCX50EeTNcgkE10w8HMflMk7/oCBQPU/dKHC9gGTvjkh/8tyekhAL/jUAeVDbnXP s7/FgyhehuVnRICXKpAD/YiHtJL2Lbgtpd0Y8muQu/hoZpjE4DjqxJKL2VCjepac VJJ7DxlIgcvvXClfvNszYxzUcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpFQnfi gE6SjEBWGbETKi9QovLAMB8GA1UdIwQYMBaAFIIPcDC+rG1J8Qm6jsJaZb8jaa0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkRBQS83MUVCN0M1QUMx OTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JVbnhDYnFPd2xwbHZ5TnBy UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnOXdNTDZzYlVueENicU93bHBsdnlOcHJTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkRBQS83MUVCN0M1QUMxOTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JV bnhDYnFPd2xwbHZ5TnByUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/OqQizlytggVSbbWwWIxuHBWoDsN1bhqfi0XMhh4OnNq/LEDiivXm c0tUxzsfptUUUHVC8N8VC8EJpoJURtF8D7/t6zCvFBLRavnbYxMmD9SM4H7um1Zk iOPbVHnuCtT5hdMR8J/AYkDuWCfhp+mdMlZpD7iWNVKvqIOc87+MdT2XtSquiah8 hkfZ349kRNQAoYfMYoNSBLPqlNLTUNOfFLM6s+1BfFasVheJ01BdHpizbeLhpLKS i6EOwwyyOEOpXxVJ/CbccdoFVCBEJe7r0GdJvonMTyWm3HceGuOP6wPfgKzqHyLX wRlkaJUNwoXpzyFQCPQzm8YRIa0QJJWA -----END CERTIFICATE-----Generated at Tue Jul 1 19:42:34 2025 by rpki-client