$ rpki-client -vvf rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft File: gprYV1claHsfCkxV-UIq8zsA_LE.mft (raw, json) Hash identifier: EFLY1Y9JK+sWKS/Q6s4hddzjQTAT7QAnEJnRtpMs2lA= Subject key identifier: D1:7F:91:74:AC:EE:1A:AF:6A:07:F7:C6:02:B7:CD:4C:90:07:4C:E7 Authority key identifier: 82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 Certificate issuer: /CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft Manifest number: 96 Signing time: Sat 31 May 2025 05:57:08 +0000 Manifest this update: Sat 31 May 2025 05:57:08 +0000 Manifest next update: Sat 07 Jun 2025 05:57:08 +0000 Files and hashes: 1: gprYV1claHsfCkxV-UIq8zsA_LE.crl (hash: mJ8MaqL5kxyEsTtvoStQP87l/AEeWwVpG+HJ09vtUF4=) 2: 833934745B9E11EFA7D10E5BC4F9AE02.roa (hash: Z7ymI4gwgufBDRVS5UuVZ13UBlK2Svt1pgBpOJn+u0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A511, serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Validity Not Before: May 31 05:57:08 2025 GMT Not After : Jun 7 05:57:08 2025 GMT Subject: CN=683a9a34-ad95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:83:f3:2e:5b:54:af:33:e7:9c:8b:74:a2:1c: ce:06:5e:5c:f8:ec:88:42:c4:ee:f2:1a:9e:2e:34: 59:10:23:a9:4c:99:b8:9f:e7:5b:3a:4c:42:ed:63: 98:e5:a2:9d:be:d5:19:6d:59:bd:b3:96:aa:eb:e5: 7c:b8:a3:20:c8:50:1c:3d:16:bc:e4:9e:f1:ac:18: 68:56:d7:d1:69:d5:59:97:5f:b9:45:9d:ab:1d:18: 3a:34:fa:01:bb:84:a1:34:8e:69:07:ba:58:cb:41: 0c:88:65:6c:fc:8e:30:20:47:d7:a6:33:ad:dd:8f: 51:04:4f:9c:11:dd:51:9a:d3:e8:c0:30:7c:de:89: 12:37:97:11:6d:d1:bd:21:28:b5:60:db:82:97:d8: d7:51:a3:b0:44:06:37:48:c2:a4:e2:5b:8b:7f:30: e3:2b:31:9e:2f:05:35:b7:d4:44:5f:e9:98:77:fa: e5:4a:c2:2b:3c:cd:10:5c:c1:49:eb:e7:16:b1:b4: af:3d:c4:94:a2:25:bd:74:d1:6d:23:25:56:a1:2b: 8c:e7:48:70:c7:4b:ab:dd:60:05:bf:8e:20:e1:d3: 39:85:be:7e:0b:c2:46:e1:46:b6:fb:5c:71:ca:7d: 00:f3:51:d9:fd:b3:02:23:b0:87:24:d3:2f:c6:67: b0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:7F:91:74:AC:EE:1A:AF:6A:07:F7:C6:02:B7:CD:4C:90:07:4C:E7 X509v3 Authority Key Identifier: keyid:82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:fa:4a:e2:e7:60:ae:84:6e:4c:d0:e7:78:b3:37:f4:4c:c8: 5a:96:e0:a8:80:40:03:5f:41:ab:99:ff:ba:29:ea:6a:65:c9: 17:0b:39:db:f8:3d:98:ae:7b:34:9e:1a:03:37:15:e4:e7:bb: 3a:bc:88:ea:99:80:70:20:ec:5f:50:ca:09:3b:88:49:61:93: a1:16:69:bb:ca:2f:e5:3c:7c:c3:a4:86:60:c6:7a:42:a6:63: d5:61:62:1b:1f:35:43:3f:dc:fc:f6:5f:e2:fe:99:98:35:9a: 0d:e0:49:99:b7:fa:3c:d6:33:cc:8a:19:84:10:e3:1d:67:75: 92:3a:82:80:67:64:4b:16:52:4d:7b:57:19:d1:d3:02:dd:ed: 52:a1:e1:5e:4f:8e:8d:50:7f:08:4b:26:89:ef:00:be:41:1d: 52:41:95:cb:4b:80:8e:46:57:33:c4:70:1d:d5:bb:3b:6d:f7: b7:d4:3a:c6:36:ba:b7:f9:5f:73:b5:45:d6:84:68:a0:24:d0: 8a:2c:2c:ea:cb:5a:4b:32:5e:c5:51:e3:aa:c2:07:7d:ad:87: 9d:4e:98:ec:4e:ef:85:e1:84:20:2f:0d:1e:c7:c4:1a:a9:4a: b6:e5:0b:e4:df:c5:6a:b8:9a:90:ff:74:3e:20:e1:4f:41:48: c2:9a:a6:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1MTExMTAvBgNVBAUTKDgyOUFEODU3NTcyNTY4N0IxRjBBNEM1NUY5NDIyQUYz M0IwMEZDQjEwHhcNMjUwNTMxMDU1NzA4WhcNMjUwNjA3MDU1NzA4WjAYMRYwFAYD VQQDEw02ODNhOWEzNC1hZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4PzLltUrzPnnIt0ohzOBl5c+OyIQsTu8hqeLjRZECOpTJm4n+dbOkxC7WOY 5aKdvtUZbVm9s5aq6+V8uKMgyFAcPRa85J7xrBhoVtfRadVZl1+5RZ2rHRg6NPoB u4ShNI5pB7pYy0EMiGVs/I4wIEfXpjOt3Y9RBE+cEd1RmtPowDB83okSN5cRbdG9 ISi1YNuCl9jXUaOwRAY3SMKk4luLfzDjKzGeLwU1t9REX+mYd/rlSsIrPM0QXMFJ 6+cWsbSvPcSUoiW9dNFtIyVWoSuM50hwx0ur3WAFv44g4dM5hb5+C8JG4Ua2+1xx yn0A81HZ/bMCI7CHJNMvxmewEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNF/kXSs 7hqvagf3xgK3zUyQB0znMB8GA1UdIwQYMBaAFIKa2FdXJWh7HwpMVflCKvM7APyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTUxMS8yRENGRjYxMjVC OUUxMUVGOTQ4NDYzNUFDNEY5QUUwMi9ncHJZVjFjbGFIc2ZDa3hWLVVJcTh6c0Ff TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dwcllWMWNsYUhzZkNreFYtVUlxOHpzQV9MRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTUxMS8yRENGRjYxMjVCOUUxMUVGOTQ4NDYzNUFDNEY5QUUwMi9ncHJZVjFjbGFI c2ZDa3hWLVVJcTh6c0FfTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN+kri52CuhG5M0Od4szf0TMhaluCogEADX0Grmf+6KepqZckXCznb +D2Yrns0nhoDNxXk57s6vIjqmYBwIOxfUMoJO4hJYZOhFmm7yi/lPHzDpIZgxnpC pmPVYWIbHzVDP9z89l/i/pmYNZoN4EmZt/o81jPMihmEEOMdZ3WSOoKAZ2RLFlJN e1cZ0dMC3e1SoeFeT46NUH8ISyaJ7wC+QR1SQZXLS4CORlczxHAd1bs7bfe31DrG Nrq3+V9ztUXWhGigJNCKLCzqy1pLMl7FUeOqwgd9rYedTpjsTu+F4YQgLw0ex8Qa qUq25Qvk38VquJqQ/3Q+IOFPQUjCmqaY -----END CERTIFICATE-----Generated at Sat May 31 16:50:36 2025 by rpki-client