$ rpki-client -vvf rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft File: gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft (raw, json) Hash identifier: /asp/Uv4MW2yVXO0mFmtIXO4z53AMBhx851hCRDXiC0= Subject key identifier: 7D:77:8C:C9:EB:43:2D:36:90:EE:7C:44:15:E9:BB:A1:4F:A3:1F:C5 Authority key identifier: 81:BF:DE:91:69:D5:C2:C0:EB:45:17:62:07:53:73:76:99:DF:16:AC Certificate issuer: /CN=A916C6A1/serialNumber=81BFDE9169D5C2C0EB4517620753737699DF16AC Certificate serial: 058D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft Manifest number: 0588 Signing time: Fri 30 May 2025 23:26:46 +0000 Manifest this update: Fri 30 May 2025 23:26:46 +0000 Manifest next update: Fri 06 Jun 2025 23:26:46 +0000 Files and hashes: 1: gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl (hash: AyD/lcafEdjatY4/f560pOXlw2lfJV9l/FnIHxGvm1k=) 2: 72AA1A38D7CB11EBB8307453C4F9AE02.roa (hash: YHV0pOPKI4RCYfRV7LWo65eFNEXv2JBj+IEUg9SpWKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C6A1, serialNumber=81BFDE9169D5C2C0EB4517620753737699DF16AC Validity Not Before: May 30 23:26:46 2025 GMT Not After : Jun 6 23:26:46 2025 GMT Subject: CN=683a3eb6-1362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b2:64:42:80:db:60:09:c7:29:2c:c0:71:c1: 5b:53:00:0a:76:a4:ff:75:47:c9:74:95:38:32:61: 52:c5:76:9d:c6:73:61:b7:c7:e3:ec:96:42:fa:a5: ce:48:ff:63:c4:05:14:24:e7:ee:0a:35:81:71:43: 35:3c:2f:db:9d:65:a3:bc:43:19:b3:06:56:78:5a: 86:63:1f:1f:94:bb:93:c5:17:50:2f:3c:f2:5b:72: ab:ed:e5:e7:4c:5d:d8:31:dd:29:73:62:79:f0:75: aa:cd:c2:2c:2b:61:8e:97:ab:1d:36:64:a1:75:ad: d9:7c:94:e9:6a:71:2b:f7:50:86:f7:dd:4c:ce:fb: dc:11:53:6a:87:ed:14:c8:17:3b:bc:6f:d1:79:37: 5a:7e:67:4a:96:a3:b0:55:43:4b:45:37:03:60:2a: 14:44:8e:78:b1:bb:34:20:e0:46:36:1b:b0:38:d2: 32:ea:4b:34:23:74:db:92:02:ab:14:0c:42:a2:52: 99:64:79:89:bb:7c:e0:b6:aa:97:ab:d1:04:9f:86: 4b:54:82:bc:d2:09:84:a2:bc:46:b4:83:5d:7e:bb: bc:47:33:9a:d6:1e:2d:e4:04:2a:45:53:48:ca:34: eb:76:1e:83:a9:b9:c6:0e:2e:6a:e4:a4:01:8c:20: 64:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:77:8C:C9:EB:43:2D:36:90:EE:7C:44:15:E9:BB:A1:4F:A3:1F:C5 X509v3 Authority Key Identifier: keyid:81:BF:DE:91:69:D5:C2:C0:EB:45:17:62:07:53:73:76:99:DF:16:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gb_ekWnVwsDrRRdiB1NzdpnfFqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C6A1/7119C5EAD7C811EB8406244EC4F9AE02/gb_ekWnVwsDrRRdiB1NzdpnfFqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:a8:18:3b:7a:d0:fd:ba:62:34:f6:b1:96:36:cb:7c:96:e4: 6a:41:0e:10:4e:5a:45:b1:72:0c:13:8b:77:08:71:1d:1a:c0: 9f:4c:92:2a:63:dd:61:d3:bf:5a:2c:ea:b8:0a:76:c5:8f:65: af:27:fa:a4:28:b7:e1:a3:98:6c:4e:f1:ad:9c:e1:a5:bc:b7: 01:ab:39:0c:cb:1a:69:40:91:20:3e:12:dd:c0:ab:5f:23:08: 56:90:26:ef:ec:36:89:8f:f4:70:64:fb:92:dc:eb:37:74:f7: f3:2a:65:3f:6d:fc:09:c4:f5:66:ae:4d:33:24:02:e0:ac:b5: 04:9d:f4:fe:58:f1:4d:9d:67:df:90:a7:e5:b6:5e:13:9a:84: 21:83:5f:57:e4:b1:c8:c8:ba:22:ac:40:a8:5c:d3:4a:e2:81: c1:84:54:e0:b9:47:63:cb:3e:9a:04:81:3b:95:c1:0e:92:aa: 3c:ef:cc:c6:e9:95:f6:2d:4a:2e:7e:4f:de:67:57:ef:86:5a: e2:c8:0c:de:66:64:44:eb:31:44:c3:57:c5:76:c6:e2:17:30: cd:d2:5c:9c:d1:6a:70:32:00:da:c3:47:ed:17:ab:f2:98:c6: 89:84:59:7c:ea:d4:a5:8e:35:9d:81:41:03:9b:59:96:d9:37: 8b:11:aa:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2QTExMTAvBgNVBAUTKDgxQkZERTkxNjlENUMyQzBFQjQ1MTc2MjA3NTM3Mzc2 OTlERjE2QUMwHhcNMjUwNTMwMjMyNjQ2WhcNMjUwNjA2MjMyNjQ2WjAYMRYwFAYD VQQDEw02ODNhM2ViNi0xMzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7JkQoDbYAnHKSzAccFbUwAKdqT/dUfJdJU4MmFSxXadxnNht8fj7JZC+qXO SP9jxAUUJOfuCjWBcUM1PC/bnWWjvEMZswZWeFqGYx8flLuTxRdQLzzyW3Kr7eXn TF3YMd0pc2J58HWqzcIsK2GOl6sdNmShda3ZfJTpanEr91CG991MzvvcEVNqh+0U yBc7vG/ReTdafmdKlqOwVUNLRTcDYCoURI54sbs0IOBGNhuwONIy6ks0I3TbkgKr FAxColKZZHmJu3zgtqqXq9EEn4ZLVIK80gmEorxGtINdfru8RzOa1h4t5AQqRVNI yjTrdh6DqbnGDi5q5KQBjCBkqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH13jMnr Qy02kO58RBXpu6FPox/FMB8GA1UdIwQYMBaAFIG/3pFp1cLA60UXYgdTc3aZ3xas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzZBMS83MTE5QzVFQUQ3 QzgxMUVCODQwNjI0NEVDNEY5QUUwMi9nYl9la1duVndzRHJSUmRpQjFOemRwbmZG cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2diX2VrV25Wd3NEclJSZGlCMU56ZHBuZkZxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzZBMS83MTE5QzVFQUQ3QzgxMUVCODQwNjI0NEVDNEY5QUUwMi9nYl9la1duVndz RHJSUmRpQjFOemRwbmZGcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUqBg7etD9umI09rGWNst8luRqQQ4QTlpFsXIME4t3CHEdGsCfTJIq Y91h079aLOq4CnbFj2WvJ/qkKLfho5hsTvGtnOGlvLcBqzkMyxppQJEgPhLdwKtf IwhWkCbv7DaJj/RwZPuS3Os3dPfzKmU/bfwJxPVmrk0zJALgrLUEnfT+WPFNnWff kKfltl4TmoQhg19X5LHIyLoirECoXNNK4oHBhFTguUdjyz6aBIE7lcEOkqo878zG 6ZX2LUoufk/eZ1fvhlriyAzeZmRE6zFEw1fFdsbiFzDN0lyc0WpwMgDaw0ftF6vy mMaJhFl86tSljjWdgUEDm1mW2TeLEaq4 -----END CERTIFICATE-----Generated at Sat May 31 16:46:56 2025 by rpki-client