$ rpki-client -vvf rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft File: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft (raw, json) Hash identifier: NGmWyjSpxwVm/ptw/paO6+PjoGj4I4o7phK6Mhhy5mQ= Subject key identifier: 90:F7:90:F8:2C:43:8B:D4:01:ED:9D:14:3A:14:3F:1D:16:64:5A:1C Authority key identifier: 1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A Certificate issuer: /CN=A91518AF/serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Certificate serial: 06DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft Manifest number: 06D5 Signing time: Fri 30 May 2025 22:16:31 +0000 Manifest this update: Fri 30 May 2025 22:16:29 +0000 Manifest next update: Fri 06 Jun 2025 22:16:29 +0000 Files and hashes: 1: Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl (hash: mnXClbRcR1ZTjuJb98Vh3LUwUk5q2SAyZLaZ7ReivMU=) 2: C1C296F45A7111EBB1700884C4F9AE02.roa (hash: B12a5nmb++1idn982o5fMgF1ev9LOoacLfiyTpfrCoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1755 (0x6db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91518AF, serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Validity Not Before: May 30 22:16:29 2025 GMT Not After : Jun 6 22:16:29 2025 GMT Subject: CN=683a2e3e-e66c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2b:9b:3f:01:1d:b8:f2:a3:d4:12:f8:60:1b: 16:45:da:14:e4:41:2d:82:a7:f4:7f:51:8c:43:51: 01:84:0d:da:a6:05:59:21:f9:cc:c0:c3:d3:e4:01: a8:ff:ec:b4:a3:42:82:93:95:09:26:df:e0:aa:ce: c7:cd:fb:23:fc:72:21:b7:29:52:b2:f9:46:e1:95: e7:1f:da:e9:a6:cb:d8:33:4e:22:b5:2a:ce:74:c4: 60:13:9b:56:7e:f8:76:45:70:fb:7d:8f:2b:34:4f: 5d:90:a1:6a:a7:8b:54:39:e6:85:40:10:31:9e:81: 67:0d:c1:a4:c9:45:0f:3f:92:33:03:b8:a9:4d:73: f6:6d:ff:c0:3f:dc:82:6f:1a:82:d8:91:cf:0a:3d: b2:86:5d:d7:ca:96:b1:f1:fd:df:13:14:c6:0f:ff: 69:50:24:c8:a1:d4:f6:46:32:8a:70:23:76:fc:38: 6f:b7:1e:9e:47:70:97:c4:80:65:67:c0:4d:6d:87: b0:e9:fc:d4:9d:ac:27:83:b2:60:3d:23:16:b6:50: e1:5b:2b:15:f3:08:0c:a4:1a:20:eb:35:0f:f6:24: 0d:ad:89:56:68:41:a0:19:bd:c7:3b:73:c6:bc:c5: 5b:80:00:ac:b3:09:5b:bc:f5:11:a1:75:55:c2:81: df:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F7:90:F8:2C:43:8B:D4:01:ED:9D:14:3A:14:3F:1D:16:64:5A:1C X509v3 Authority Key Identifier: keyid:1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:6e:35:2d:56:42:c4:94:c3:c0:e5:50:af:e6:26:cf:d9:4e: 03:44:41:99:21:36:47:38:d7:08:d5:b3:0f:ca:85:d0:87:50: 2a:19:66:77:a1:25:f9:c2:2a:b2:a1:2b:0d:d7:56:e3:fc:7d: 47:b5:d5:e2:62:5e:06:e2:dd:5b:71:73:e8:2f:71:9a:f8:f3: bc:72:c9:a5:33:49:75:b9:65:53:31:e9:54:0a:40:ac:a0:98: 82:a2:a1:64:e5:63:b5:66:97:d2:1b:f2:97:cc:ba:dc:61:61: d5:b5:71:59:92:37:ee:ec:67:dd:4d:20:87:8d:61:ab:0c:de: 3d:0e:8c:73:b1:13:9d:e1:04:c9:a6:08:1f:cc:07:56:48:98: cb:00:60:b5:b3:2a:f1:16:d5:00:b7:53:e6:5a:05:ec:f6:1b: d0:2c:61:7e:78:0d:b0:8b:89:7a:d8:60:f6:f5:64:52:4b:a8: 87:11:07:72:8f:ec:b6:d4:b7:d5:54:64:12:9c:c9:5d:9a:68: 1b:7c:e8:47:56:02:99:6e:64:51:a8:5c:8f:4e:bb:3d:2e:53: 40:82:58:ec:bf:6c:8f:1c:6b:2b:b6:f9:ff:5d:24:9d:4b:ef: 26:2a:0f:a6:9d:12:71:f5:1a:7e:ab:10:44:b8:42:27:ce:65: 90:f9:b4:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4QUYxMTAvBgNVBAUTKDFBNjkzNENBQjUyMTNEOEI0M0ZENTQzNTg5MzhERDFG MzFBMTY5MEEwHhcNMjUwNTMwMjIxNjI5WhcNMjUwNjA2MjIxNjI5WjAYMRYwFAYD VQQDEw02ODNhMmUzZS1lNjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSubPwEduPKj1BL4YBsWRdoU5EEtgqf0f1GMQ1EBhA3apgVZIfnMwMPT5AGo /+y0o0KCk5UJJt/gqs7Hzfsj/HIhtylSsvlG4ZXnH9rppsvYM04itSrOdMRgE5tW fvh2RXD7fY8rNE9dkKFqp4tUOeaFQBAxnoFnDcGkyUUPP5IzA7ipTXP2bf/AP9yC bxqC2JHPCj2yhl3Xypax8f3fExTGD/9pUCTIodT2RjKKcCN2/Dhvtx6eR3CXxIBl Z8BNbYew6fzUnawng7JgPSMWtlDhWysV8wgMpBog6zUP9iQNrYlWaEGgGb3HO3PG vMVbgACsswlbvPURoXVVwoHfYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJD3kPgs Q4vUAe2dFDoUPx0WZFocMB8GA1UdIwQYMBaAFBppNMq1IT2LQ/1UNYk43R8xoWkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MThBRi9ENzkyRjQ3NDU2 QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZdERfVlExaVRqZEh6R2hh UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtazB5clVoUFl0RF9WUTFpVGpkSHpHaGFRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MThBRi9ENzkyRjQ3NDU2QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZ dERfVlExaVRqZEh6R2hhUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBibjUtVkLElMPA5VCv5ibP2U4DREGZITZHONcI1bMPyoXQh1AqGWZ3 oSX5wiqyoSsN11bj/H1HtdXiYl4G4t1bcXPoL3Ga+PO8csmlM0l1uWVTMelUCkCs oJiCoqFk5WO1ZpfSG/KXzLrcYWHVtXFZkjfu7GfdTSCHjWGrDN49DoxzsROd4QTJ pggfzAdWSJjLAGC1syrxFtUAt1PmWgXs9hvQLGF+eA2wi4l62GD29WRSS6iHEQdy j+y21LfVVGQSnMldmmgbfOhHVgKZbmRRqFyPTrs9LlNAgljsv2yPHGsrtvn/XSSd S+8mKg+mnRJx9Rp+qxBEuEInzmWQ+bR8 -----END CERTIFICATE-----Generated at Sat May 31 16:35:06 2025 by rpki-client