$ rpki-client -vvf rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft File: gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft (raw, json) Hash identifier: AP32tPWse1YCeLAvp6xqzVXpZAQhTLsJwyB/osK+qPQ= Subject key identifier: 0F:F9:2A:79:CB:7D:5E:8E:14:5B:13:5E:5B:46:B2:5A:57:26:77:5B Authority key identifier: 80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 Certificate issuer: /CN=A9155D1E/serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft Manifest number: 026E Signing time: Sat 31 May 2025 02:29:16 +0000 Manifest this update: Sat 31 May 2025 02:29:15 +0000 Manifest next update: Sat 07 Jun 2025 02:29:15 +0000 Files and hashes: 1: gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl (hash: /ezSbnR9Bfkh6JBxbtRySAtL6uVvFUfhM1hPy+5zzMI=) 2: C003531C10EB11ED9C882A38C4F9AE02.roa (hash: dtuYeScxI0cvK8sz9E/Cl0+96zsD1MptOKpsIJKXrl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155D1E, serialNumber=80A4B8FCAECD011E82AA4E2D72173CA63E9C4E51 Validity Not Before: May 31 02:29:15 2025 GMT Not After : Jun 7 02:29:15 2025 GMT Subject: CN=683a697c-cf5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fc:c6:53:b1:70:7a:65:f0:cd:e6:e8:7a:51: 2f:26:39:5f:04:a5:94:af:29:b0:e8:43:46:71:34: 0e:cf:9d:b0:a2:0f:dd:7e:ad:c2:e1:b9:be:1a:70: 3b:18:5c:a8:63:ae:b6:70:47:b6:f3:f4:fb:91:d0: ae:1d:43:78:e5:b8:4c:a6:c4:2e:58:6f:75:26:de: 0b:e9:70:bf:62:e3:6d:91:9a:75:54:3e:f0:3b:55: f2:ed:72:3d:99:82:41:3c:f3:86:be:3d:a8:ac:f3: 82:17:75:5a:6d:68:94:40:1c:c7:30:5f:b8:e1:0b: 34:b7:ab:0f:b0:45:8c:ab:18:fd:49:f1:c3:dc:ac: c0:dc:63:e0:d1:54:3c:ba:85:fa:79:d0:6e:12:38: 10:c8:02:6f:5f:a6:34:d0:fb:c0:c4:08:50:d9:45: 47:11:ae:ef:17:d3:a4:ad:80:f8:72:d6:06:61:97: 43:8e:30:6e:34:98:95:bb:46:fd:9d:48:a2:25:db: da:27:18:9e:13:9c:6a:2e:c9:8b:1a:6c:79:d1:36: 74:12:27:8e:5d:a6:a0:19:d8:5c:31:77:0e:90:4f: fe:3c:92:f8:57:ba:75:c4:0d:a5:28:ee:8c:5f:4c: 5c:49:b8:be:8b:84:9e:8f:f2:52:4f:a2:42:e8:2d: ee:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F9:2A:79:CB:7D:5E:8E:14:5B:13:5E:5B:46:B2:5A:57:26:77:5B X509v3 Authority Key Identifier: keyid:80:A4:B8:FC:AE:CD:01:1E:82:AA:4E:2D:72:17:3C:A6:3E:9C:4E:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gKS4_K7NAR6Cqk4tchc8pj6cTlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155D1E/A8D883EA10E311EDADAFD909C4F9AE02/gKS4_K7NAR6Cqk4tchc8pj6cTlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:41:84:a2:11:e0:fd:83:e2:7a:fa:ea:f5:eb:dc:41:da:42: 5d:40:75:d7:d9:b0:57:a9:86:61:a9:14:c8:59:a8:f6:05:6e: 24:4d:ee:4d:e8:4e:2b:e4:60:86:f6:f8:9b:70:48:45:a5:a6: 54:d6:11:d4:0a:a9:d0:6a:2d:6a:4e:15:5b:8e:f5:0a:f0:d4: 40:42:54:a6:bd:db:72:bc:a1:6b:80:da:89:f6:c7:b0:f1:dc: d1:9d:33:28:3c:50:a4:c8:0b:23:a2:2d:e8:f2:1e:82:bd:4a: 5c:d0:d4:f5:d3:94:22:c1:13:d9:49:a6:81:dd:c3:85:eb:60: a3:c7:50:74:a1:65:51:4a:ae:b3:4a:39:04:f7:73:e5:c2:ae: ce:a4:b4:15:a2:23:a9:da:21:4f:fe:7e:4d:51:81:dc:34:f6: bc:fe:1f:95:93:04:46:17:d3:75:c5:6d:c0:f9:3e:2e:09:80: 62:83:c9:b5:b9:d7:e6:fe:79:69:a0:0a:0b:ac:54:63:52:80: 5f:dc:df:90:33:4d:75:3a:d3:de:38:d9:e0:01:60:6d:ee:66: 4e:5b:95:55:6a:04:2e:f7:3c:6d:a3:14:6b:44:78:cd:23:5f: 4a:b6:61:6b:17:83:f6:af:a4:02:61:93:da:1c:79:8f:90:17: 65:d3:e9:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVEMUUxMTAvBgNVBAUTKDgwQTRCOEZDQUVDRDAxMUU4MkFBNEUyRDcyMTczQ0E2 M0U5QzRFNTEwHhcNMjUwNTMxMDIyOTE1WhcNMjUwNjA3MDIyOTE1WjAYMRYwFAYD VQQDEw02ODNhNjk3Yy1jZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fzGU7FwemXwzeboelEvJjlfBKWUrymw6ENGcTQOz52wog/dfq3C4bm+GnA7 GFyoY662cEe28/T7kdCuHUN45bhMpsQuWG91Jt4L6XC/YuNtkZp1VD7wO1Xy7XI9 mYJBPPOGvj2orPOCF3VabWiUQBzHMF+44Qs0t6sPsEWMqxj9SfHD3KzA3GPg0VQ8 uoX6edBuEjgQyAJvX6Y00PvAxAhQ2UVHEa7vF9OkrYD4ctYGYZdDjjBuNJiVu0b9 nUiiJdvaJxieE5xqLsmLGmx50TZ0EieOXaagGdhcMXcOkE/+PJL4V7p1xA2lKO6M X0xcSbi+i4Sej/JST6JC6C3u4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/5KnnL fV6OFFsTXltGslpXJndbMB8GA1UdIwQYMBaAFICkuPyuzQEegqpOLXIXPKY+nE5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUQxRS9BOEQ4ODNFQTEw RTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFSNkNxazR0Y2hjOHBqNmNU bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dLUzRfSzdOQVI2Q3FrNHRjaGM4cGo2Y1RsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUQxRS9BOEQ4ODNFQTEwRTMxMUVEQURBRkQ5MDlDNEY5QUUwMi9nS1M0X0s3TkFS NkNxazR0Y2hjOHBqNmNUbEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaQYSiEeD9g+J6+ur169xB2kJdQHXX2bBXqYZhqRTIWaj2BW4kTe5N 6E4r5GCG9vibcEhFpaZU1hHUCqnQai1qThVbjvUK8NRAQlSmvdtyvKFrgNqJ9sew 8dzRnTMoPFCkyAsjoi3o8h6CvUpc0NT105QiwRPZSaaB3cOF62Cjx1B0oWVRSq6z SjkE93Plwq7OpLQVoiOp2iFP/n5NUYHcNPa8/h+VkwRGF9N1xW3A+T4uCYBig8m1 udfm/nlpoAoLrFRjUoBf3N+QM011OtPeONngAWBt7mZOW5VVagQu9zxtoxRrRHjN I19KtmFrF4P2r6QCYZPaHHmPkBdl0+n6 -----END CERTIFICATE-----Generated at Sat May 31 17:07:39 2025 by rpki-client