$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: NBacMq9l3kvz8opbFJ7rceMHAmkdgP4kb66nZeJ/IA0= Subject key identifier: C7:E1:BE:F7:C4:3B:D6:F0:27:7E:E7:8C:BE:45:26:C6:B3:77:07:A3 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: E8 Signing time: Sun 01 Jun 2025 05:04:00 +0000 Manifest this update: Sun 01 Jun 2025 05:03:59 +0000 Manifest next update: Sun 08 Jun 2025 05:03:59 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: 8eSvExjavoKQWwRtSwRxDFj/xJyWVbNU0wun2TW3yRc=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Jun 1 05:03:59 2025 GMT Not After : Jun 8 05:03:59 2025 GMT Subject: CN=683bdf3f-0b22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a0:6f:da:0c:9d:d6:b1:dd:63:aa:0a:12:30: b2:a5:3b:be:c4:8e:dd:1a:bb:3c:ff:59:4d:10:a0: 7e:16:c4:fa:0b:70:c4:b6:27:bc:e0:76:90:46:a0: c2:1a:6c:0d:d4:91:83:d5:34:bd:02:37:5a:fc:16: 7d:77:d6:8f:9b:17:1a:1f:ce:7f:c4:e5:99:f2:29: c2:da:bf:be:15:9c:eb:7a:f6:4f:cc:e6:12:a6:cb: 98:7f:4c:88:df:b7:6e:ad:b2:ef:78:db:d4:94:b7: 67:c3:0f:45:d0:90:9d:ac:b5:d0:06:95:b8:9c:aa: ad:f3:59:79:e1:dc:6c:e6:09:d1:8a:8a:62:3a:46: ce:75:6c:15:61:f5:c2:35:ee:e0:6c:c2:44:e8:b5: 3c:d4:fa:4b:2e:cd:5d:87:04:12:9d:bd:b2:f3:fa: 9b:99:a8:9a:9f:60:ce:bf:14:a1:3d:49:f1:d8:f9: 20:da:a1:49:37:87:91:68:1f:2f:29:d5:a5:52:f5: c3:21:73:04:cb:6d:08:9a:c3:92:e6:da:6e:4c:bf: 5f:b9:69:0b:0f:9c:19:ce:7e:e3:a0:49:d5:d8:f4: 1a:3f:bb:50:b1:6d:b8:97:89:e9:ea:b1:48:b7:90: 8f:26:f1:10:08:13:6c:e5:d7:e9:64:1b:43:b2:e2: c1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E1:BE:F7:C4:3B:D6:F0:27:7E:E7:8C:BE:45:26:C6:B3:77:07:A3 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c3:f4:46:2a:be:38:98:ec:1d:0c:5a:06:d3:ee:20:a4:8c: 7a:d2:90:d9:62:51:b7:3b:0e:38:82:f2:03:0b:f7:ff:2e:66: e2:48:96:81:ba:67:aa:05:d5:85:e3:38:af:5b:12:78:d9:d0: 5c:a2:0d:b8:a3:05:4d:ea:36:ff:31:48:a3:58:33:90:23:08: cb:a9:e0:f1:ed:2a:6b:a6:d5:da:30:65:76:1b:da:d0:19:e8: 1f:2f:e7:fb:1c:8a:5f:71:4e:0e:50:ee:7f:f2:f7:1c:c4:82: 68:f3:45:96:cd:fc:c0:5d:dc:27:a3:03:e0:1e:8e:3d:6c:91: 97:bf:03:1b:c5:71:69:dd:b0:f5:05:33:92:e4:30:81:40:ed: 3a:e8:29:c7:a9:cb:66:f0:1b:8e:1a:3f:de:11:77:b5:0e:38: ee:ca:fd:68:38:b7:75:9b:f2:d7:0c:64:d7:22:b3:c2:cb:0b: cf:94:ab:fd:2a:0a:db:27:1c:f4:89:95:31:5c:97:2f:e9:64: 3a:9c:86:aa:1b:d3:95:07:a0:3d:37:88:99:57:c9:45:b3:5b: b7:ec:89:d9:78:e7:01:9a:19:1f:80:a0:ba:ca:cf:2e:fa:9f: 32:fb:96:4a:39:25:35:89:62:0d:1e:47:c8:3a:3c:92:ee:2a: ba:f8:37:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjUwNjAxMDUwMzU5WhcNMjUwNjA4MDUwMzU5WjAYMRYwFAYD VQQDEw02ODNiZGYzZi0wYjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KBv2gyd1rHdY6oKEjCypTu+xI7dGrs8/1lNEKB+FsT6C3DEtie84HaQRqDC GmwN1JGD1TS9Ajda/BZ9d9aPmxcaH85/xOWZ8inC2r++FZzrevZPzOYSpsuYf0yI 37durbLveNvUlLdnww9F0JCdrLXQBpW4nKqt81l54dxs5gnRiopiOkbOdWwVYfXC Ne7gbMJE6LU81PpLLs1dhwQSnb2y8/qbmaian2DOvxShPUnx2Pkg2qFJN4eRaB8v KdWlUvXDIXMEy20ImsOS5tpuTL9fuWkLD5wZzn7joEnV2PQaP7tQsW24l4np6rFI t5CPJvEQCBNs5dfpZBtDsuLBIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfhvvfE O9bwJ37njL5FJsazdwejMB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDw/RGKr44mOwdDFoG0+4gpIx60pDZYlG3Ow44gvIDC/f/LmbiSJaB umeqBdWF4zivWxJ42dBcog24owVN6jb/MUijWDOQIwjLqeDx7SprptXaMGV2G9rQ GegfL+f7HIpfcU4OUO5/8vccxIJo80WWzfzAXdwnowPgHo49bJGXvwMbxXFp3bD1 BTOS5DCBQO066CnHqctm8BuOGj/eEXe1Djjuyv1oOLd1m/LXDGTXIrPCywvPlKv9 KgrbJxz0iZUxXJcv6WQ6nIaqG9OVB6A9N4iZV8lFs1u37InZeOcBmhkfgKC6ys8u +p8y+5ZKOSU1iWINHkfIOjyS7iq6+DdG -----END CERTIFICATE-----Generated at Mon Jun 2 22:11:39 2025 by rpki-client