$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft File: GM0m8vXURLcgxFKoxskgxtCmGAU.mft (raw, json) Hash identifier: QEqTs43ic6PjNx+K/OrjZjttgRs2AgmyOpK0LWCLiXQ= Subject key identifier: 93:81:37:39:3F:2F:4B:8E:F5:C9:10:33:7B:82:3B:A7:BC:3A:0E:6D Authority key identifier: 18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 Certificate issuer: /CN=A91AAF02/serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft Manifest number: 01A7 Signing time: Mon 02 Jun 2025 17:48:19 +0000 Manifest this update: Mon 02 Jun 2025 17:48:19 +0000 Manifest next update: Mon 09 Jun 2025 17:48:19 +0000 Files and hashes: 1: GM0m8vXURLcgxFKoxskgxtCmGAU.crl (hash: HEwbmDT0zc/xqxKRmUTV2OdGn8FLxg2/j37kOTllSMs=) 2: 65A422A8C3F411EEB1191654C4F9AE02.roa (hash: iZmR1FbskCchxXKnxnbe4xzmmTQB2zEX5unoWSw1o+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02, serialNumber=18CD26F2F5D444B720C452A8C6C920C6D0A61805 Validity Not Before: Jun 2 17:48:19 2025 GMT Not After : Jun 9 17:48:19 2025 GMT Subject: CN=683de3e3-d98e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a2:cd:5b:b1:68:e0:1c:ab:73:d0:f3:17:db: 8e:fd:51:d1:a8:9c:6d:90:0b:56:3f:28:b0:6e:ba: ea:9a:30:db:bf:7e:85:dd:14:25:0f:0b:ac:0a:2a: 24:af:be:ee:c4:3f:49:21:3f:c1:30:74:fc:f8:20: d1:b0:51:10:b1:56:e3:35:48:9c:6f:69:35:1a:b8: ae:c1:fd:38:a4:b6:cd:86:ed:9f:14:b8:c4:69:16: f2:55:bd:2e:78:6b:c8:ce:2c:cb:85:65:22:e1:ec: f6:5a:de:da:e0:23:e7:e1:38:e3:ba:86:00:b8:9e: 15:62:a2:e1:ee:06:78:b2:43:c3:35:86:fb:b0:74: 4c:2e:69:11:0a:91:16:8e:dd:09:5c:03:16:e3:a1: 42:13:5a:23:f4:1e:de:d7:a0:47:56:b0:57:1c:b0: 7f:05:81:30:64:6d:4a:0d:12:1f:03:e6:fe:a8:55: cf:b0:91:34:6a:ee:e0:ef:b2:65:1e:ef:ed:ea:e1: 13:cc:7c:65:bc:d9:71:d3:7c:be:93:3e:ba:bb:88: 2f:b6:b6:6f:33:71:4c:4b:53:54:1d:0c:c1:09:42: f3:2e:b3:ae:9a:fb:2b:03:f3:77:57:2d:fc:d8:55: 29:ec:57:4f:55:a1:3b:86:1f:5f:b0:c7:d6:cf:a6: 71:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:81:37:39:3F:2F:4B:8E:F5:C9:10:33:7B:82:3B:A7:BC:3A:0E:6D X509v3 Authority Key Identifier: keyid:18:CD:26:F2:F5:D4:44:B7:20:C4:52:A8:C6:C9:20:C6:D0:A6:18:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GM0m8vXURLcgxFKoxskgxtCmGAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/261F34D8C1F711EDB426747BC4F9AE02/GM0m8vXURLcgxFKoxskgxtCmGAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:2a:f8:2d:2b:18:8d:a0:ad:67:15:59:8e:42:b8:94:22:08: 92:d6:9f:65:67:5d:a8:77:8d:bd:2e:a4:69:a2:9b:b9:64:8b: ec:aa:fb:24:cc:6d:be:c6:c6:42:3b:bc:d0:33:47:01:fe:67: 90:04:e8:38:1c:b2:75:1b:d3:29:3f:98:f3:77:9a:d6:d0:cd: 53:47:a7:eb:94:9c:13:2c:69:8e:b8:7c:c9:2d:d0:d6:31:f5: 46:ae:01:71:44:8a:52:86:81:dd:a1:fd:59:2b:99:e8:24:d4: 20:1d:ff:32:06:24:f7:aa:e6:4b:79:2a:c6:98:66:5f:52:37: ea:12:94:21:31:7d:0f:fe:52:cf:93:ff:90:dd:8d:19:c0:20: 2f:91:27:3f:25:3e:2d:0f:19:88:bc:2e:1c:e7:05:b1:cc:cd: 2d:15:b3:4a:24:c5:01:5c:42:cb:a6:21:2a:72:d4:0f:52:04: 05:6e:df:87:23:c9:f8:e4:d4:ed:99:75:36:ac:98:57:10:98: ce:51:14:90:a2:4f:0e:2f:00:07:27:1a:1e:0c:de:48:68:76: d9:8c:22:9f:3a:f5:92:f8:f8:77:58:39:cb:49:dd:e4:36:81: af:92:c8:48:ed:86:c8:0f:02:7f:08:bd:df:54:47:52:cb:8c: be:0a:82:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKDE4Q0QyNkYyRjVENDQ0QjcyMEM0NTJBOEM2QzkyMEM2 RDBBNjE4MDUwHhcNMjUwNjAyMTc0ODE5WhcNMjUwNjA5MTc0ODE5WjAYMRYwFAYD VQQDEw02ODNkZTNlMy1kOThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6LNW7Fo4Byrc9DzF9uO/VHRqJxtkAtWPyiwbrrqmjDbv36F3RQlDwusCiok r77uxD9JIT/BMHT8+CDRsFEQsVbjNUicb2k1Griuwf04pLbNhu2fFLjEaRbyVb0u eGvIzizLhWUi4ez2Wt7a4CPn4TjjuoYAuJ4VYqLh7gZ4skPDNYb7sHRMLmkRCpEW jt0JXAMW46FCE1oj9B7e16BHVrBXHLB/BYEwZG1KDRIfA+b+qFXPsJE0au7g77Jl Hu/t6uETzHxlvNlx03y+kz66u4gvtrZvM3FMS1NUHQzBCULzLrOumvsrA/N3Vy38 2FUp7FdPVaE7hh9fsMfWz6ZxGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOBNzk/ L0uO9ckQM3uCO6e8Og5tMB8GA1UdIwQYMBaAFBjNJvL11ES3IMRSqMbJIMbQphgF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi8yNjFGMzREOEMx RjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJMY2d4RktveHNrZ3h0Q21H QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0dNMG04dlhVUkxjZ3hGS294c2tneHRDbUdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi8yNjFGMzREOEMxRjcxMUVEQjQyNjc0N0JDNEY5QUUwMi9HTTBtOHZYVVJM Y2d4RktveHNrZ3h0Q21HQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZKvgtKxiNoK1nFVmOQriUIgiS1p9lZ12od429LqRpopu5ZIvsqvsk zG2+xsZCO7zQM0cB/meQBOg4HLJ1G9MpP5jzd5rW0M1TR6frlJwTLGmOuHzJLdDW MfVGrgFxRIpShoHdof1ZK5noJNQgHf8yBiT3quZLeSrGmGZfUjfqEpQhMX0P/lLP k/+Q3Y0ZwCAvkSc/JT4tDxmIvC4c5wWxzM0tFbNKJMUBXELLpiEqctQPUgQFbt+H I8n45NTtmXU2rJhXEJjOURSQok8OLwAHJxoeDN5IaHbZjCKfOvWS+Ph3WDnLSd3k NoGvkshI7YbIDwJ/CL3fVEdSy4y+CoLm -----END CERTIFICATE-----Generated at Wed Jun 4 00:01:46 2025 by rpki-client