$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft File: gJ7_H3gZuBdR8XerWv7YK8wypWk.mft (raw, json) Hash identifier: 7O7z01jeuqkrRUP/yoDCZAKnF7ulQnhX0i9KcFFosfs= Subject key identifier: D1:D5:B5:87:42:4F:A8:8E:06:DC:73:F9:7A:51:19:28:D2:FF:23:C8 Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 0617 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft Manifest number: 0612 Signing time: Fri 30 May 2025 23:02:29 +0000 Manifest this update: Fri 30 May 2025 23:02:29 +0000 Manifest next update: Fri 06 Jun 2025 23:02:29 +0000 Files and hashes: 1: gJ7_H3gZuBdR8XerWv7YK8wypWk.crl (hash: /TETJN6/ZOvt+vUG757yIPPsOhZNYEAAlN8Z73p4stM=) 2: 687D7178B85D11EBB2E17F26C4F9AE02.roa (hash: IMdjByBIYJm1pushgtHVRf7baWnF2aGGxcZRsZb6Kqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1559 (0x617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028, serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Validity Not Before: May 30 23:02:29 2025 GMT Not After : Jun 6 23:02:29 2025 GMT Subject: CN=683a3905-1dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b9:44:5d:f4:b4:81:3e:40:b5:d6:34:96:06: a0:3c:88:21:ce:d5:7c:1a:30:c8:92:fa:f5:98:32: 17:13:f3:6e:4e:b2:2c:7a:ba:5d:2d:e4:bf:c6:cd: 77:e2:f4:f2:35:2a:6d:08:fe:0f:f7:a9:20:6f:0a: df:54:7a:8d:cf:92:69:8f:06:9f:44:a3:b1:34:88: f3:dd:19:ab:26:05:c9:04:fb:31:56:60:b4:99:01: c0:57:a5:5a:ad:92:dd:69:11:8a:09:2c:fe:a0:61: cf:b2:a6:87:ec:b1:61:ac:11:d7:91:dc:75:0c:93: c8:8c:87:7b:d7:13:68:db:b4:3f:d5:7a:1c:be:3b: 31:0e:df:d1:aa:5a:df:d7:87:58:c9:66:98:5f:a3: 62:d6:32:d2:99:22:47:e3:b3:77:81:3f:6f:41:11: 8f:ae:7e:14:e1:11:70:0f:dd:98:3e:62:aa:2e:4d: 0f:0b:3c:7a:17:e2:e8:52:d1:b8:c0:3f:3f:a0:f1: bb:ae:3f:e6:14:ac:ed:63:cb:c7:3c:1f:9b:bf:6a: 26:83:69:7b:e4:84:9e:74:29:68:97:6b:d7:e4:15: 62:e4:68:bb:98:9b:86:fd:f4:9f:ec:8a:1b:49:2b: bc:73:45:e5:e5:3e:86:32:a9:ab:d6:af:76:0a:ad: c3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D5:B5:87:42:4F:A8:8E:06:DC:73:F9:7A:51:19:28:D2:FF:23:C8 X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:10:68:ff:9c:f4:90:d3:cf:bd:38:c9:17:60:31:ec:81:d4: 91:a6:c6:83:8d:39:dd:c1:ab:c2:f1:bc:ee:7f:78:96:3e:2a: c2:5e:32:98:4a:f7:2b:b9:3f:f8:74:7b:30:5f:30:c5:45:b9: 12:95:86:2a:b0:e9:65:b7:44:6a:06:b2:63:e7:c1:86:c1:03: d2:57:7b:cc:e1:e9:60:a1:f3:d1:71:f6:cd:87:e9:1d:33:68: e3:1c:a2:1e:ec:0a:78:89:4f:f5:02:36:b6:62:e6:91:93:a1: 87:24:df:02:c0:71:de:e6:c3:86:32:31:87:27:c1:69:78:46: bc:f8:a1:e7:86:49:aa:37:69:17:f4:ac:14:9d:25:94:e6:df: f3:72:6d:18:ed:73:cb:0a:73:46:3d:59:1d:63:78:f6:57:bb: df:3d:e8:85:e7:78:6c:d7:f6:4e:51:b2:4c:17:8b:36:70:5a: 20:16:2e:f3:04:84:70:70:dd:b1:81:cf:54:c1:81:31:04:f9: 35:cf:0c:c6:80:4b:64:69:4a:19:64:30:b4:ac:26:d2:e1:05: 3e:f6:b5:3b:1b:43:92:92:b0:16:15:ad:f0:4d:2d:e6:25:0e: ce:01:b3:ba:14:b6:fb:a7:d8:1b:ba:01:a2:2c:7d:c1:4b:9c: 8c:53:5e:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjUwNTMwMjMwMjI5WhcNMjUwNjA2MjMwMjI5WjAYMRYwFAYD VQQDEw02ODNhMzkwNS0xZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrlEXfS0gT5AtdY0lgagPIghztV8GjDIkvr1mDIXE/NuTrIserpdLeS/xs13 4vTyNSptCP4P96kgbwrfVHqNz5JpjwafRKOxNIjz3RmrJgXJBPsxVmC0mQHAV6Va rZLdaRGKCSz+oGHPsqaH7LFhrBHXkdx1DJPIjId71xNo27Q/1XocvjsxDt/Rqlrf 14dYyWaYX6Ni1jLSmSJH47N3gT9vQRGPrn4U4RFwD92YPmKqLk0PCzx6F+LoUtG4 wD8/oPG7rj/mFKztY8vHPB+bv2omg2l75ISedClol2vX5BVi5Gi7mJuG/fSf7Iob SSu8c0Xl5T6GMqmr1q92Cq3DsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHVtYdC T6iOBtxz+XpRGSjS/yPIMB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyOC84QTRBREVFNEExMUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVC ZFI4WGVyV3Y3WUs4d3lwV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArEGj/nPSQ08+9OMkXYDHsgdSRpsaDjTndwavC8bzuf3iWPirCXjKY SvcruT/4dHswXzDFRbkSlYYqsOllt0RqBrJj58GGwQPSV3vM4elgofPRcfbNh+kd M2jjHKIe7Ap4iU/1Aja2YuaRk6GHJN8CwHHe5sOGMjGHJ8FpeEa8+KHnhkmqN2kX 9KwUnSWU5t/zcm0Y7XPLCnNGPVkdY3j2V7vfPeiF53hs1/ZOUbJMF4s2cFogFi7z BIRwcN2xgc9UwYExBPk1zwzGgEtkaUoZZDC0rCbS4QU+9rU7G0OSkrAWFa3wTS3m JQ7OAbO6FLb7p9gbugGiLH3BS5yMU15h -----END CERTIFICATE-----Generated at Sat May 31 17:45:07 2025 by rpki-client