$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft File: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft (raw, json) Hash identifier: I4DMk+2Mlz5x0wVyeKdVInPL031KtHXFv0ffGizaDhY= Subject key identifier: 23:E8:6B:56:A2:1E:99:2B:DA:53:7F:2F:86:AF:A8:24:D5:FA:89:2C Authority key identifier: EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 Certificate issuer: /CN=A91982B6/serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft Manifest number: 4B Signing time: Sat 31 May 2025 06:52:39 +0000 Manifest this update: Sat 31 May 2025 06:52:38 +0000 Manifest next update: Sat 07 Jun 2025 06:52:38 +0000 Files and hashes: 1: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl (hash: /bCqh4AJomGnbk8e2TZ6QKJLUNvXpt/0PCi1q8AjulA=) 2: 739C8BDECB5A11EFBEE64062C4F9AE02.roa (hash: WVqv1JuSt8hSNNolUiV5z8//m1vJSnq0q+Q8Ooe/S0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6 Validity Not Before: May 31 06:52:38 2025 GMT Not After : Jun 7 06:52:38 2025 GMT Subject: CN=683aa736-f4ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a0:c2:8b:70:b2:32:32:04:05:aa:56:b6:28: 72:32:63:da:09:4f:f9:c1:09:b5:18:4c:02:f2:86: ee:99:17:5d:6b:df:ff:64:fb:d6:3c:d0:5c:a4:54: 44:5f:49:54:72:9c:bd:20:db:53:da:0a:5b:17:d4: e1:54:41:5a:74:e7:bd:cd:76:f3:7a:90:7b:42:96: dc:47:c8:ea:48:19:bc:d6:fd:23:b1:cb:40:0d:02: 51:af:16:2b:4e:10:a1:0f:f3:6c:89:50:68:a1:36: d1:b9:9b:6e:5c:d0:06:84:4f:02:6c:03:7e:c2:28: 9e:83:81:e4:39:dc:85:7e:17:ad:8f:b8:64:be:d6: 93:86:0d:94:c0:49:cc:4b:32:bf:3b:e3:24:da:f5: 3f:1a:62:d7:db:1c:f2:30:09:3f:2a:22:98:4b:11: 17:ac:63:32:63:55:af:e9:1d:3c:bc:20:b5:bb:91: ef:7b:b8:c4:5c:25:d7:49:28:07:a1:b0:4c:31:a6: c5:25:77:32:43:4f:97:01:8f:42:50:4a:8c:70:b2: 0b:31:75:4b:9e:79:17:83:ea:63:6c:ce:0f:34:a0: cc:7f:fe:af:18:95:e7:1f:83:e3:8e:af:0d:22:50: ee:92:04:0e:2b:d6:13:6e:84:cc:1f:21:43:a6:56: f0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:E8:6B:56:A2:1E:99:2B:DA:53:7F:2F:86:AF:A8:24:D5:FA:89:2C X509v3 Authority Key Identifier: keyid:EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:4d:f6:3f:f8:c1:96:e3:b1:b0:cb:47:88:05:84:52:04:e3: 7c:ed:52:5f:19:1b:d7:ac:a2:e5:7a:3a:3b:76:9f:09:e7:06: 4c:11:f1:55:54:6e:be:79:a0:0a:84:fb:48:44:58:f2:37:1f: a7:2d:83:78:60:7f:41:24:a2:af:11:be:28:7a:e2:11:7f:60: 88:f5:d8:fb:89:7e:d4:f1:c3:bd:3e:1f:ce:f8:16:cc:06:e1: 1c:d7:27:8f:29:5a:7b:33:35:bb:2c:91:95:57:60:59:93:70: f2:0a:45:25:73:bf:87:87:8a:1e:55:bb:94:d7:59:74:c2:b3: 91:56:56:82:25:6a:d5:0f:0d:22:9a:b3:7b:88:95:98:60:6e: 37:32:b2:0f:37:54:8e:ef:1a:83:96:9d:25:da:33:cc:3a:9f: b8:5e:0d:23:d7:7b:04:6d:98:5b:f2:d6:68:c6:83:6f:4b:17: 06:1d:6c:12:6e:3f:2b:1a:dd:e4:23:a4:f0:30:26:b1:47:02: a3:1a:e2:84:cd:ac:ca:29:29:49:71:3d:9c:29:bd:fa:b2:87: 6a:e5:9c:87:53:a2:3d:83:73:f9:76:f8:4c:12:94:48:f9:eb: 8f:ba:ed:05:17:59:5b:a8:2c:da:d4:3f:39:75:4a:c2:99:de: ff:7c:e8:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJCNjExMC8GA1UEBRMoRUM2NzkxNjkxNzdCOUUxMzFEMERBQTAxMzk4RDcwMDM5 ODI3RDFGNjAeFw0yNTA1MzEwNjUyMzhaFw0yNTA2MDcwNjUyMzhaMBgxFjAUBgNV BAMTDTY4M2FhNzM2LWY0Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDloMKLcLIyMgQFqla2KHIyY9oJT/nBCbUYTALyhu6ZF11r3/9k+9Y80FykVERf SVRynL0g21PaClsX1OFUQVp0573NdvN6kHtCltxHyOpIGbzW/SOxy0ANAlGvFitO EKEP82yJUGihNtG5m25c0AaETwJsA37CKJ6DgeQ53IV+F62PuGS+1pOGDZTAScxL Mr874yTa9T8aYtfbHPIwCT8qIphLEResYzJjVa/pHTy8ILW7ke97uMRcJddJKAeh sEwxpsUldzJDT5cBj0JQSoxwsgsxdUueeReD6mNszg80oMx//q8Ylecfg+OOrw0i UO6SBA4r1hNuhMwfIUOmVvDHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI+hrVqIe mSvaU38vhq+oJNX6iSwwHwYDVR0jBBgwFoAU7GeRaRd7nhMdDaoBOY1wA5gn0fYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkI2L0U2NEIwM0I0Q0I1 OTExRUY4NjkxNUI2MUM0RjlBRTAyLzdHZVJhUmQ3bmhNZERhb0JPWTF3QTVnbjBm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0dlUmFSZDduaE1kRGFvQk9ZMXdBNWduMGZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MkI2L0U2NEIwM0I0Q0I1OTExRUY4NjkxNUI2MUM0RjlBRTAyLzdHZVJhUmQ3bmhN ZERhb0JPWTF3QTVnbjBmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJxN9j/4wZbjsbDLR4gFhFIE43ztUl8ZG9esouV6Ojt2nwnnBkwR8VVU br55oAqE+0hEWPI3H6ctg3hgf0Ekoq8Rvih64hF/YIj12PuJftTxw70+H874FswG 4RzXJ48pWnszNbsskZVXYFmTcPIKRSVzv4eHih5Vu5TXWXTCs5FWVoIlatUPDSKa s3uIlZhgbjcysg83VI7vGoOWnSXaM8w6n7heDSPXewRtmFvy1mjGg29LFwYdbBJu Pysa3eQjpPAwJrFHAqMa4oTNrMopKUlxPZwpvfqyh2rlnIdToj2Dc/l2+EwSlEj5 64+67QUXWVuoLNrUPzl1SsKZ3v986Hs= -----END CERTIFICATE-----Generated at Sat May 31 17:53:13 2025 by rpki-client