$ rpki-client -vvf rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft File: GHJyN_a30WUlK_m9s4a24ergVXQ.mft (raw, json) Hash identifier: l+FzpvCxbBmfmPAHLgNLnq74TZY/5heFRTKYsV3kpao= Subject key identifier: BE:5B:AA:30:BF:9C:97:59:71:D1:6F:2F:C1:9B:3D:FD:8C:FD:EE:0C Authority key identifier: 18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 Certificate issuer: /CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Certificate serial: 02E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft Manifest number: 02E4 Signing time: Sat 07 Jun 2025 01:21:39 +0000 Manifest this update: Sat 07 Jun 2025 01:21:39 +0000 Manifest next update: Sat 14 Jun 2025 01:21:39 +0000 Files and hashes: 1: GHJyN_a30WUlK_m9s4a24ergVXQ.crl (hash: DUTN007tVQxO0ts5RjFM19tMHoJm6/me4S1kCIoWAQ8=) 2: FCA92EAAE4AD11EC839CED77C4F9AE02.roa (hash: wW4HCqhcoyo/dCvusJDIhbj+A+f9Rh4hUlMCJe2c3dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 01:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917418A, serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Validity Not Before: Jun 7 01:21:39 2025 GMT Not After : Jun 14 01:21:39 2025 GMT Subject: CN=68439423-f343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:21:7e:7d:6e:ae:4d:c0:21:98:bf:f8:28:81: 3c:ec:db:61:72:84:52:5d:79:c6:e4:9f:7e:ee:ae: 1d:04:2e:52:e0:ff:f8:46:2d:23:8b:0c:f6:0f:f1: 99:ab:70:18:f4:9b:a5:01:e0:6d:1b:29:09:2e:eb: 80:12:45:13:c2:69:04:ab:33:55:ad:cf:38:cf:c8: d2:38:98:6d:c8:bf:eb:22:a5:1f:ae:45:1e:00:48: 34:7e:3b:47:31:b1:ef:da:a1:e7:61:9d:7c:85:09: 27:01:99:bf:8b:b9:de:37:4d:4b:d6:07:91:32:ee: 97:5b:47:39:90:1f:65:6d:95:33:81:1d:58:4d:31: c1:8c:02:c2:92:9e:b4:63:4b:80:6d:a0:14:2f:7f: 7a:ed:71:f3:1c:e2:69:d7:7e:d7:17:c7:3b:ef:7b: 9c:bc:65:ca:d4:99:69:6e:45:a1:b6:f7:2e:37:21: 1f:56:07:aa:c4:0a:c2:be:18:06:86:e6:bb:67:0b: 93:fe:fd:e8:1a:af:26:17:43:8e:55:6a:d8:d1:01: 54:1d:4a:54:5c:b1:b4:af:b4:8c:6d:54:56:d0:18: 5d:b0:23:0a:01:5f:88:b7:d6:e2:3c:d9:80:c3:c1: 47:2a:76:d9:da:bc:85:4f:68:5e:9b:b9:6d:97:e8: f5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5B:AA:30:BF:9C:97:59:71:D1:6F:2F:C1:9B:3D:FD:8C:FD:EE:0C X509v3 Authority Key Identifier: keyid:18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:9a:49:5f:0f:39:48:c4:45:82:98:36:29:0e:92:fa:be:ba: a5:ec:3e:9c:a3:03:10:7a:67:03:b8:f5:8d:f1:15:80:21:fa: b3:90:2f:e9:c6:d8:66:95:c0:8f:2c:64:db:3c:72:9d:61:5b: 2e:9a:b5:b3:79:9a:48:31:29:aa:93:90:fe:61:c0:30:e5:e0: 1e:b5:93:5a:54:40:0b:78:8a:d7:02:ff:30:1a:1c:42:0c:aa: 18:8f:b2:51:af:af:d3:bb:ca:ae:5e:2d:24:c6:ab:21:df:79: e4:b8:33:fc:83:01:f8:e7:73:91:67:66:7e:c2:20:b5:e6:56: 43:62:4b:6e:ed:11:fb:a2:aa:97:6b:9b:5a:3b:03:43:4f:fc: be:93:7e:d1:12:f3:c1:75:51:dc:0c:cb:7e:3a:56:48:72:96: 04:72:0b:dd:47:3f:e6:3a:4b:42:62:7f:28:cc:45:17:91:83: 48:d2:99:44:66:d6:24:a1:02:94:7f:42:63:25:e1:66:5a:94: 96:63:c3:e4:2c:3e:8a:af:37:07:85:56:27:71:a6:a7:d1:9d: 1b:6e:4e:1f:c4:30:22:9a:cb:7e:72:f5:b4:83:40:f1:77:2d: 6a:3e:eb:aa:79:c8:d4:92:dc:d7:14:13:d5:bc:75:49:a8:b7: b3:88:17:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOEExMTAvBgNVBAUTKDE4NzI3MjM3RjZCN0QxNjUyNTJCRjlCREIzODZCNkUx RUFFMDU1NzQwHhcNMjUwNjA3MDEyMTM5WhcNMjUwNjE0MDEyMTM5WjAYMRYwFAYD VQQDEw02ODQzOTQyMy1mMzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSF+fW6uTcAhmL/4KIE87NthcoRSXXnG5J9+7q4dBC5S4P/4Ri0jiwz2D/GZ q3AY9JulAeBtGykJLuuAEkUTwmkEqzNVrc84z8jSOJhtyL/rIqUfrkUeAEg0fjtH MbHv2qHnYZ18hQknAZm/i7neN01L1geRMu6XW0c5kB9lbZUzgR1YTTHBjALCkp60 Y0uAbaAUL3967XHzHOJp137XF8c773ucvGXK1JlpbkWhtvcuNyEfVgeqxArCvhgG hua7ZwuT/v3oGq8mF0OOVWrY0QFUHUpUXLG0r7SMbVRW0BhdsCMKAV+It9biPNmA w8FHKnbZ2ryFT2hem7ltl+j1gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5bqjC/ nJdZcdFvL8GbPf2M/e4MMB8GA1UdIwQYMBaAFBhycjf2t9FlJSv5vbOGtuHq4FV0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE4QS8wRTA5MDk2OEU0 QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBXVWxLX205czRhMjRlcmdW WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dISnlOX2EzMFdVbEtfbTlzNGEyNGVyZ1ZYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE4QS8wRTA5MDk2OEU0QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBX VWxLX205czRhMjRlcmdWWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcmklfDzlIxEWCmDYpDpL6vrql7D6cowMQemcDuPWN8RWAIfqzkC/p xthmlcCPLGTbPHKdYVsumrWzeZpIMSmqk5D+YcAw5eAetZNaVEALeIrXAv8wGhxC DKoYj7JRr6/Tu8quXi0kxqsh33nkuDP8gwH453ORZ2Z+wiC15lZDYktu7RH7oqqX a5taOwNDT/y+k37REvPBdVHcDMt+OlZIcpYEcgvdRz/mOktCYn8ozEUXkYNI0plE ZtYkoQKUf0JjJeFmWpSWY8PkLD6KrzcHhVYncaan0Z0bbk4fxDAimst+cvW0g0Dx dy1qPuuqecjUktzXFBPVvHVJqLeziBcm -----END CERTIFICATE-----Generated at Sun Jun 8 22:07:01 2025 by rpki-client