$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft File: Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft (raw, json) Hash identifier: 4IjXSwDyyVvz7OlwMQDNQPxRaNz4qB2yn8hw7J+Y7q0= Subject key identifier: E7:3F:3B:2F:16:B8:C5:D9:33:E1:00:A7:7F:FF:56:21:2E:BE:6A:93 Authority key identifier: 1A:4D:31:4C:1F:D0:10:62:2E:87:49:1C:E4:82:7B:62:39:66:70:9C Certificate issuer: /CN=A917B4EE/serialNumber=1A4D314C1FD010622E87491CE4827B623966709C Certificate serial: 0630 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft Manifest number: 062B Signing time: Fri 30 May 2025 22:55:44 +0000 Manifest this update: Fri 30 May 2025 22:55:44 +0000 Manifest next update: Fri 06 Jun 2025 22:55:44 +0000 Files and hashes: 1: Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl (hash: jG8aJseux2XxF0MUKcFmRsBcdpdtkwq/PVK7gLL+gAY=) 2: 851D827C977511EBA99DCE72C4F9AE02.roa (hash: hQ/sXLdGqM267Zz0nlBpIRPhMJ+xIknpNjyonr+GXWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4EE, serialNumber=1A4D314C1FD010622E87491CE4827B623966709C Validity Not Before: May 30 22:55:44 2025 GMT Not After : Jun 6 22:55:44 2025 GMT Subject: CN=683a3770-da83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:61:c2:a9:8a:45:d3:da:3c:79:0b:21:3f:f7: 46:a3:e0:43:98:9f:f1:9a:79:c7:86:3f:1a:aa:f7: 90:2b:40:92:1a:24:fe:36:84:67:67:36:43:45:6e: 9e:56:a9:c5:ef:4f:44:51:1c:c7:2b:c7:4d:46:a8: f0:d6:15:32:62:eb:4d:15:ae:4c:17:17:20:ff:40: ab:e1:4b:45:92:3e:17:dc:41:d4:d7:b6:66:80:9e: 80:a4:fa:f5:14:61:79:20:57:66:23:9f:0e:a7:ea: 34:e7:6b:11:a7:9f:3c:6e:3f:85:e5:13:c8:98:9d: ae:50:8e:7c:17:c9:ae:66:52:32:1d:f3:0c:15:b6: b3:12:1c:48:3e:84:1b:dd:bf:6f:f9:6e:91:e9:61: 05:eb:43:9f:04:18:2b:17:9e:c3:28:51:ca:a6:40: b0:9a:f9:65:55:73:b7:7e:12:76:05:f4:64:04:1b: f0:a3:14:46:65:b9:83:59:37:fd:07:a6:86:29:f3: bd:bc:4e:d9:77:08:98:34:65:07:bb:08:51:42:7d: 03:02:1b:4e:af:43:04:67:09:4f:a4:16:8c:96:4a: 99:c3:14:72:60:e0:51:66:46:eb:49:fe:4c:8b:ab: d3:03:f7:d9:b1:97:e9:fb:50:02:fc:3f:5f:af:46: ee:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3F:3B:2F:16:B8:C5:D9:33:E1:00:A7:7F:FF:56:21:2E:BE:6A:93 X509v3 Authority Key Identifier: keyid:1A:4D:31:4C:1F:D0:10:62:2E:87:49:1C:E4:82:7B:62:39:66:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4EE/3A727C7E977411EBAE83FD71C4F9AE02/Gk0xTB_QEGIuh0kc5IJ7YjlmcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:c5:40:d4:bc:a9:27:b4:8e:a0:69:81:d0:f6:ee:2c:2c:3e: 59:58:93:8b:63:5b:b8:2f:a3:0a:e9:02:d6:56:ef:d8:2c:ef: 8d:79:d5:94:e1:b4:b0:39:b0:97:1a:f3:56:f2:37:6c:2d:3f: f8:8b:5a:8e:1b:7e:c3:c5:fd:ea:89:75:69:63:b1:e4:7f:f3: eb:3b:73:34:9f:72:e9:49:50:97:6c:37:39:88:25:77:92:ef: 57:20:ad:c8:b7:10:a7:3e:ba:5f:7c:b2:bc:c8:7c:c7:4d:fc: f3:6d:9e:17:ee:91:e2:27:67:0e:cb:35:98:b3:8b:ff:03:e2: 60:fa:51:d4:f0:f9:5e:d6:3c:03:11:c1:ea:60:3f:e1:49:4f: 53:8c:b0:4b:38:e0:d2:b0:b4:f1:d5:1d:6f:b2:bd:73:2d:bb: 5f:fd:fb:02:f2:4f:f0:7b:57:4d:45:d1:1d:fd:c0:dd:84:49: 6a:c8:e9:ba:c2:1f:bd:3b:09:27:b7:a6:3a:5e:02:14:56:90: 7b:c0:97:10:28:68:2a:58:9d:e7:00:21:96:15:5e:71:89:43: 53:59:72:89:3f:e9:ed:9c:02:28:f3:75:57:17:52:03:02:5c: b5:1a:dd:7b:3d:83:dd:f2:1b:67:bc:fb:43:6d:8c:75:bc:07: 2e:9c:cb:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0RUUxMTAvBgNVBAUTKDFBNEQzMTRDMUZEMDEwNjIyRTg3NDkxQ0U0ODI3QjYy Mzk2NjcwOUMwHhcNMjUwNTMwMjI1NTQ0WhcNMjUwNjA2MjI1NTQ0WjAYMRYwFAYD VQQDEw02ODNhMzc3MC1kYTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmHCqYpF09o8eQshP/dGo+BDmJ/xmnnHhj8aqveQK0CSGiT+NoRnZzZDRW6e VqnF709EURzHK8dNRqjw1hUyYutNFa5MFxcg/0Cr4UtFkj4X3EHU17ZmgJ6ApPr1 FGF5IFdmI58Op+o052sRp588bj+F5RPImJ2uUI58F8muZlIyHfMMFbazEhxIPoQb 3b9v+W6R6WEF60OfBBgrF57DKFHKpkCwmvllVXO3fhJ2BfRkBBvwoxRGZbmDWTf9 B6aGKfO9vE7ZdwiYNGUHuwhRQn0DAhtOr0MEZwlPpBaMlkqZwxRyYOBRZkbrSf5M i6vTA/fZsZfp+1AC/D9fr0buuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOc/Oy8W uMXZM+EAp3//ViEuvmqTMB8GA1UdIwQYMBaAFBpNMUwf0BBiLodJHOSCe2I5ZnCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRFRS8zQTcyN0M3RTk3 NzQxMUVCQUU4M0ZENzFDNEY5QUUwMi9HazB4VEJfUUVHSXVoMGtjNUlKN1lqbG1j SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0drMHhUQl9RRUdJdWgwa2M1SUo3WWpsbWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRFRS8zQTcyN0M3RTk3NzQxMUVCQUU4M0ZENzFDNEY5QUUwMi9HazB4VEJfUUVH SXVoMGtjNUlKN1lqbG1jSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIxUDUvKkntI6gaYHQ9u4sLD5ZWJOLY1u4L6MK6QLWVu/YLO+NedWU 4bSwObCXGvNW8jdsLT/4i1qOG37Dxf3qiXVpY7Hkf/PrO3M0n3LpSVCXbDc5iCV3 ku9XIK3ItxCnPrpffLK8yHzHTfzzbZ4X7pHiJ2cOyzWYs4v/A+Jg+lHU8Ple1jwD EcHqYD/hSU9TjLBLOODSsLTx1R1vsr1zLbtf/fsC8k/we1dNRdEd/cDdhElqyOm6 wh+9Owknt6Y6XgIUVpB7wJcQKGgqWJ3nACGWFV5xiUNTWXKJP+ntnAIo83VXF1ID Aly1Gt17PYPd8htnvPtDbYx1vAcunMsb -----END CERTIFICATE-----Generated at Sat May 31 16:43:05 2025 by rpki-client