$ rpki-client -vvf rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft File: GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft (raw, json) Hash identifier: zC3tVygl3up2TOm6GU8CWxVO7aKhzA6mcM7Flj/g/Ak= Subject key identifier: 1E:0A:CE:B9:8F:4F:23:DD:2C:42:57:AE:0C:0C:91:25:C3:A0:3B:B0 Authority key identifier: 19:5B:26:7D:6D:15:3A:F7:D0:2B:6B:EB:22:CE:15:93:D9:25:B6:36 Certificate issuer: /CN=A919400C/serialNumber=195B267D6D153AF7D02B6BEB22CE1593D925B636 Certificate serial: 061D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft Manifest number: 060D Signing time: Fri 30 May 2025 23:04:17 +0000 Manifest this update: Fri 30 May 2025 23:04:16 +0000 Manifest next update: Fri 06 Jun 2025 23:04:16 +0000 Files and hashes: 1: GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl (hash: 65a/KtgwpuPTrOihHJoA0aJCA2PPQjCYMNBdr9r5lBA=) 2: B945FB7A386011F0A5422D16C4F9AE02.roa (hash: SZrDdn156862qKjcsqUSXFw0VIWLJHX0aKveUMI7Crc=) 3: 3D83702E66CB11EFA2A66984C4F9AE02.roa (hash: yvSBH+mrjORJ3IfyqCLbdhmcmwjpugy8guoGWStrajY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1565 (0x61d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919400C, serialNumber=195B267D6D153AF7D02B6BEB22CE1593D925B636 Validity Not Before: May 30 23:04:16 2025 GMT Not After : Jun 6 23:04:16 2025 GMT Subject: CN=683a3970-6c05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:5d:94:8b:d6:22:5b:9d:c7:a8:3d:8b:66: bf:5b:60:0a:ac:00:7a:9b:64:c0:66:a8:01:98:58: 44:f2:27:6c:e2:cb:e6:ac:e0:e7:81:74:56:e0:90: c4:76:af:eb:e0:10:b4:fb:6b:1a:39:c9:d9:66:11: 08:a0:f9:bb:b9:80:d1:eb:ce:1f:28:df:30:91:83: 83:0a:57:b9:4f:98:fa:bf:57:c2:8d:b1:65:13:be: ba:aa:67:d3:82:2e:b8:3a:9e:0d:57:8b:c9:a0:82: 85:65:4d:cf:ed:ba:3d:86:46:a6:11:61:15:06:b3: 13:ba:41:ed:9d:1c:b2:9f:a8:86:9d:ee:29:0b:ee: ee:f3:90:49:df:f8:71:1b:ce:b2:be:90:bb:f0:e5: 63:78:07:a6:e3:b2:05:a2:d6:a0:02:fa:a2:32:1d: f8:69:6b:f1:56:98:ca:68:ae:d6:be:c4:d3:dd:25: a1:78:4b:f3:c7:6f:e0:01:b3:e0:21:04:af:c6:b9: 08:8f:32:d1:26:d9:1f:b1:ba:61:05:c5:72:a7:3d: c2:b4:ca:90:8f:55:ad:c3:9f:90:86:a7:2c:2a:e7: cb:87:d3:e9:0d:c1:85:54:8e:f7:34:f6:b4:34:9f: 5a:ea:db:2f:3c:9c:ab:9b:60:b7:23:40:70:cc:36: d4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0A:CE:B9:8F:4F:23:DD:2C:42:57:AE:0C:0C:91:25:C3:A0:3B:B0 X509v3 Authority Key Identifier: keyid:19:5B:26:7D:6D:15:3A:F7:D0:2B:6B:EB:22:CE:15:93:D9:25:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:21:a4:5c:a9:6e:0d:8f:24:07:98:d5:4b:04:7e:16:ba:9a: a2:f4:3a:1a:91:29:26:3e:4c:35:68:ab:16:b2:17:94:b4:90: 37:df:dd:db:39:48:29:37:e9:1e:d4:8c:5e:da:3b:ad:7b:32: e3:ea:f2:34:57:5e:ed:21:6e:cc:41:16:59:ee:71:d3:06:e6: aa:a9:fc:ba:cb:9b:e1:2e:13:5d:eb:45:dd:53:2b:62:7f:4a: bb:d7:06:52:30:8e:d3:36:82:ba:9e:94:11:90:6c:49:1a:f0: 9b:ab:20:16:c9:9a:d1:e0:72:cd:ea:b9:70:b9:af:4a:85:c8: e3:80:f3:02:40:5d:71:af:a1:06:40:e9:c4:39:41:b7:91:98: 68:30:e1:b4:99:4e:ac:a8:7e:b3:0d:6c:75:13:42:8f:24:15: a4:b1:7f:80:89:8e:e6:dd:d7:a4:0d:93:bd:b3:41:ac:13:e1: 1e:2f:57:bc:99:96:98:43:56:31:81:e9:d4:df:e2:c5:55:ab: 0d:e8:58:28:60:8b:e9:29:8d:e5:24:e3:c3:63:17:9d:6d:8c: 2e:c1:a6:9b:59:e4:be:e3:b3:32:48:44:1e:07:ae:74:2d:b7: 0e:49:77:c4:e4:9c:47:26:f7:2f:84:75:b0:8f:84:cf:8e:69: 81:24:ff:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQwMEMxMTAvBgNVBAUTKDE5NUIyNjdENkQxNTNBRjdEMDJCNkJFQjIyQ0UxNTkz RDkyNUI2MzYwHhcNMjUwNTMwMjMwNDE2WhcNMjUwNjA2MjMwNDE2WjAYMRYwFAYD VQQDEw02ODNhMzk3MC02YzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQ1dlIvWIludx6g9i2a/W2AKrAB6m2TAZqgBmFhE8ids4svmrODngXRW4JDE dq/r4BC0+2saOcnZZhEIoPm7uYDR684fKN8wkYODCle5T5j6v1fCjbFlE766qmfT gi64Op4NV4vJoIKFZU3P7bo9hkamEWEVBrMTukHtnRyyn6iGne4pC+7u85BJ3/hx G86yvpC78OVjeAem47IFotagAvqiMh34aWvxVpjKaK7WvsTT3SWheEvzx2/gAbPg IQSvxrkIjzLRJtkfsbphBcVypz3CtMqQj1Wtw5+QhqcsKufLh9PpDcGFVI73NPa0 NJ9a6tsvPJyrm2C3I0BwzDbULwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4KzrmP TyPdLEJXrgwMkSXDoDuwMB8GA1UdIwQYMBaAFBlbJn1tFTr30Ctr6yLOFZPZJbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDAwQy9DM0VDRDk2OEE2 NzQxMUVCOEM0MzIyNkZDNEY5QUUwMi9HVnNtZlcwVk92ZlFLMnZySXM0Vms5a2x0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dWc21mVzBWT3ZmUUsydnJJczRWazlrbHRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDAwQy9DM0VDRDk2OEE2NzQxMUVCOEM0MzIyNkZDNEY5QUUwMi9HVnNtZlcwVk92 ZlFLMnZySXM0Vms5a2x0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNIaRcqW4NjyQHmNVLBH4Wupqi9DoakSkmPkw1aKsWsheUtJA3393b OUgpN+ke1Ixe2jutezLj6vI0V17tIW7MQRZZ7nHTBuaqqfy6y5vhLhNd60XdUyti f0q71wZSMI7TNoK6npQRkGxJGvCbqyAWyZrR4HLN6rlwua9KhcjjgPMCQF1xr6EG QOnEOUG3kZhoMOG0mU6sqH6zDWx1E0KPJBWksX+AiY7m3dekDZO9s0GsE+EeL1e8 mZaYQ1YxgenU3+LFVasN6FgoYIvpKY3lJOPDYxedbYwuwaabWeS+47MySEQeB650 LbcOSXfE5JxHJvcvhHWwj4TPjmmBJP/O -----END CERTIFICATE-----Generated at Sat May 31 16:57:52 2025 by rpki-client