$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft File: CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft (raw, json) Hash identifier: W8wZ2M17G6ZHq4ibxhp3lY1L89D9QHaQW3o3BvPXs8I= Subject key identifier: 1A:F7:51:F1:7F:E9:FB:0A:41:A2:63:D4:BF:CB:74:40:A0:77:D8:A2 Authority key identifier: 0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD Certificate issuer: /CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft Manifest number: 83 Signing time: Sat 31 May 2025 06:10:50 +0000 Manifest this update: Sat 31 May 2025 06:10:49 +0000 Manifest next update: Sat 07 Jun 2025 06:10:49 +0000 Files and hashes: 1: CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl (hash: EY3eQ0VXNsyDXbLsuU5ha0VRrSygkPCIfzB0tNvmdEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Validity Not Before: May 31 06:10:49 2025 GMT Not After : Jun 7 06:10:49 2025 GMT Subject: CN=683a9d69-effc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0a:ea:4b:7d:8e:6b:c2:d4:8d:06:83:53:91: bf:1d:39:9f:9d:42:eb:a2:62:cd:70:c7:41:0b:cb: 60:f6:ce:1e:f1:3e:43:97:c6:32:3e:cf:d3:f7:48: 62:8f:02:6d:a6:1a:f8:0a:8d:c8:e3:74:06:02:8c: a6:e0:8b:95:17:9a:e1:8d:50:8e:84:12:b0:81:0e: 11:0d:2c:a5:fa:73:35:11:03:bc:7a:fc:e4:e9:38: 72:6b:91:3b:5d:78:f0:a1:d2:86:fc:f3:46:80:db: 30:dc:1d:bb:e0:7f:d8:a5:c9:cf:04:5c:c1:5f:ba: 57:17:6a:56:2d:3d:8a:17:03:c1:3c:7d:e7:e5:8f: d9:13:f8:f4:b6:99:a9:e9:8d:48:51:66:32:55:e5: 48:ce:ef:48:e2:04:6d:88:36:15:cb:2d:e5:2f:80: cc:95:47:72:cf:85:c9:ba:7c:e0:75:73:49:08:a8: ea:bd:f0:4f:a7:b0:88:d6:34:71:d6:ff:87:8b:9b: ff:05:fa:30:81:05:33:30:a5:32:3f:04:23:cc:c4: 67:60:07:2f:9d:86:16:5d:5f:68:48:77:a1:2a:17: 52:31:40:b8:85:87:3b:16:c6:e2:c7:53:b0:13:3f: 2e:b5:2a:0a:10:f3:ed:2c:6f:51:04:0f:b4:9e:fc: 7b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F7:51:F1:7F:E9:FB:0A:41:A2:63:D4:BF:CB:74:40:A0:77:D8:A2 X509v3 Authority Key Identifier: keyid:0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:98:32:d1:35:b2:ad:d3:3e:bf:a7:a7:a6:2c:0b:8c:c6:6e: c4:31:54:8a:34:b2:fa:1b:a1:2e:ec:9f:e2:bf:fa:f2:95:bb: d3:f3:9f:f8:19:e9:af:89:c6:b4:be:1e:b7:6f:7c:4b:84:e7: cc:2b:9f:50:d8:1c:bd:cb:21:1a:5f:80:ef:f4:c0:ed:72:22: bc:15:a5:a2:e0:1d:43:9f:7e:1b:05:3a:24:da:8f:58:61:31: bb:97:91:75:3b:b5:f1:55:dc:c3:3e:a6:27:5d:7a:c7:63:33: 17:77:95:d6:86:09:b3:90:96:6a:9a:8c:4c:3d:77:30:81:2e: ee:e9:67:c1:c1:78:04:d7:3c:4d:9a:2a:fc:52:85:c8:f8:d8: 88:4c:f0:47:1c:9a:5d:db:c9:33:fa:bc:8d:8e:cc:ff:30:bc: 94:dc:0c:3b:4d:f3:49:0c:71:43:52:2a:72:73:c9:90:55:34: 7c:c4:0c:2c:ce:92:65:91:aa:fe:c3:02:21:16:c7:5c:22:92: d1:44:a6:db:7c:ce:56:b3:f6:fa:fd:19:1b:52:58:77:2d:6f: 34:2a:02:16:96:a4:ae:cd:b3:cb:f0:ac:72:5b:bc:59:42:60: fa:d9:ee:ca:0d:e4:bd:0d:b1:dd:d1:b1:be:7a:84:b9:c5:ac: 83:2d:ee:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDBBMDg4QTE5QkJEQjYxREVEMTkxNkM4NjBBQjJCOEJF RTE4NkVEQ0QwHhcNMjUwNTMxMDYxMDQ5WhcNMjUwNjA3MDYxMDQ5WjAYMRYwFAYD VQQDEw02ODNhOWQ2OS1lZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwArqS32Oa8LUjQaDU5G/HTmfnULromLNcMdBC8tg9s4e8T5Dl8YyPs/T90hi jwJtphr4Co3I43QGAoym4IuVF5rhjVCOhBKwgQ4RDSyl+nM1EQO8evzk6Thya5E7 XXjwodKG/PNGgNsw3B274H/YpcnPBFzBX7pXF2pWLT2KFwPBPH3n5Y/ZE/j0tpmp 6Y1IUWYyVeVIzu9I4gRtiDYVyy3lL4DMlUdyz4XJunzgdXNJCKjqvfBPp7CI1jRx 1v+Hi5v/BfowgQUzMKUyPwQjzMRnYAcvnYYWXV9oSHehKhdSMUC4hYc7Fsbix1Ow Ez8utSoKEPPtLG9RBA+0nvx7JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBr3UfF/ 6fsKQaJj1L/LdECgd9iiMB8GA1UdIwQYMBaAFAoIihm722He0ZFshgqyuL7hhu3N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EQjUxN0IwODc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2YllkN1JrV3lHQ3JLNHZ1R0c3 YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NnaUtHYnZiWWQ3UmtXeUdDcks0dnVHRzdjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EQjUxN0IwODc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2Yllk N1JrV3lHQ3JLNHZ1R0c3YzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCemDLRNbKt0z6/p6emLAuMxm7EMVSKNLL6G6Eu7J/iv/rylbvT85/4 Gemvica0vh63b3xLhOfMK59Q2By9yyEaX4Dv9MDtciK8FaWi4B1Dn34bBTok2o9Y YTG7l5F1O7XxVdzDPqYnXXrHYzMXd5XWhgmzkJZqmoxMPXcwgS7u6WfBwXgE1zxN mir8UoXI+NiITPBHHJpd28kz+ryNjsz/MLyU3Aw7TfNJDHFDUipyc8mQVTR8xAws zpJlkar+wwIhFsdcIpLRRKbbfM5Ws/b6/RkbUlh3LW80KgIWlqSuzbPL8KxyW7xZ QmD62e7KDeS9DbHd0bG+eoS5xayDLe4Y -----END CERTIFICATE-----Generated at Sat May 31 16:47:42 2025 by rpki-client