$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft File: GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft (raw, json) Hash identifier: APBK52gEMHKDLnUpNZVQeADcEYRm7A+aILx+Tq4+978= Subject key identifier: 87:35:C5:07:B1:09:84:F8:7C:B2:BD:68:EE:5F:C6:2E:B5:EC:00:D2 Authority key identifier: 18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 Certificate issuer: /CN=A91AE69C/serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Certificate serial: 0270 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft Manifest number: 026C Signing time: Sat 31 May 2025 01:55:54 +0000 Manifest this update: Sat 31 May 2025 01:55:54 +0000 Manifest next update: Sat 07 Jun 2025 01:55:54 +0000 Files and hashes: 1: GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl (hash: QsTwI+TsCllWAC5yyrHTdsHD1J1S4Khr5pH3N+eOI2s=) 2: DD1FEE48C77311EEA5076E2CC4F9AE02.roa (hash: AMI8B01oJYBvuALPO9a5072lSyPAKpdtjtQhc2T4uR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 624 (0x270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE69C, serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Validity Not Before: May 31 01:55:54 2025 GMT Not After : Jun 7 01:55:54 2025 GMT Subject: CN=683a61aa-8804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:80:98:c6:1a:68:04:56:65:66:0e:32:44:53: 29:b8:fa:af:7f:7c:c9:99:fa:60:4f:70:eb:87:67: 64:6e:ea:7c:74:40:3c:d9:b8:ea:d0:27:29:2b:0c: 43:6e:90:12:85:61:a9:23:dc:e9:fd:39:71:3a:3d: 3e:6e:9b:39:16:7d:6b:a3:43:5a:d0:dc:03:63:75: e7:a4:ad:5b:ac:7a:33:cd:d8:14:26:36:80:d7:dc: d4:7e:40:c3:f8:9f:46:85:57:47:76:6d:62:7a:8f: 0e:f2:bc:2b:ad:9b:f1:24:cc:cf:92:07:39:e3:67: e5:cb:95:f4:c4:1f:f8:ef:b9:1d:62:af:50:90:c5: 7a:a9:59:87:23:f8:0a:df:41:26:4c:80:5c:9e:05: 18:16:72:4b:91:b6:e3:67:19:2f:63:9c:85:58:ad: b0:e1:98:f0:2c:c4:08:ac:c7:a2:0f:11:22:42:84: ff:ba:c7:5a:2f:39:31:49:f5:7a:a6:96:30:37:e9: f5:93:38:a9:2c:0d:76:75:2c:7b:ee:67:58:8b:30: 68:4a:5f:91:ba:4e:c7:51:d3:ab:a3:d4:0e:a0:16: ec:ab:bc:02:61:b7:62:2a:63:91:8e:b1:b4:df:8b: b5:0e:5c:e1:0b:48:bc:2d:76:ec:54:c6:94:80:ed: f2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:35:C5:07:B1:09:84:F8:7C:B2:BD:68:EE:5F:C6:2E:B5:EC:00:D2 X509v3 Authority Key Identifier: keyid:18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ff:d3:8f:ab:06:19:b8:32:99:09:8c:37:2e:e0:49:e2:6e: 10:fa:a7:d7:fa:75:26:0e:33:c7:43:9b:3e:ed:e6:b0:d0:46: 9c:b4:7f:04:ea:20:43:44:8f:20:c4:03:00:97:33:bb:fb:2e: a9:07:c6:05:0b:82:08:13:3b:18:dd:1c:93:32:c4:2d:bb:ab: 25:ef:72:eb:79:06:07:3f:06:a8:c9:5f:10:61:70:c5:b3:3a: 27:d0:4f:a6:a3:11:46:66:ed:1d:60:d3:6a:6b:b3:34:8e:a2: f3:d7:2c:5d:66:64:e4:ca:b4:35:f2:8d:41:5e:70:b7:50:2d: 6c:e9:b0:46:d7:0e:1b:bf:c3:fd:62:d3:b2:b3:b4:16:6e:de: 88:67:be:13:7f:ad:60:ef:a6:ff:09:1e:2f:cc:cb:2e:5d:cf: 15:78:e4:ec:48:1f:76:32:c1:86:1d:b0:39:21:3c:d1:e4:9f: 70:2f:f7:46:56:d8:c9:ef:4e:30:19:65:23:39:8a:0a:1f:ca: 40:37:10:48:6f:63:83:e5:d7:fc:5d:d7:01:6d:b9:bd:84:35: a7:f6:df:d8:d5:f7:ca:9f:91:80:c4:1d:88:68:e3:e4:55:d3: 94:0b:59:92:96:df:3f:b3:0e:3a:dc:17:03:4f:42:aa:09:ff: 38:db:25:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2OUMxMTAvBgNVBAUTKDE4NjE1M0NCOTg4ODM4QTNBNkQ0OENGMDQyM0M1QjQ2 MjMwMDU5RTgwHhcNMjUwNTMxMDE1NTU0WhcNMjUwNjA3MDE1NTU0WjAYMRYwFAYD VQQDEw02ODNhNjFhYS04ODA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8YCYxhpoBFZlZg4yRFMpuPqvf3zJmfpgT3Drh2dkbup8dEA82bjq0CcpKwxD bpAShWGpI9zp/TlxOj0+bps5Fn1ro0Na0NwDY3XnpK1brHozzdgUJjaA19zUfkDD +J9GhVdHdm1ieo8O8rwrrZvxJMzPkgc542fly5X0xB/477kdYq9QkMV6qVmHI/gK 30EmTIBcngUYFnJLkbbjZxkvY5yFWK2w4ZjwLMQIrMeiDxEiQoT/usdaLzkxSfV6 ppYwN+n1kzipLA12dSx77mdYizBoSl+Ruk7HUdOro9QOoBbsq7wCYbdiKmORjrG0 34u1DlzhC0i8LXbsVMaUgO3ypQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIc1xQex CYT4fLK9aO5fxi617ADSMB8GA1UdIwQYMBaAFBhhU8uYiDijptSM8EI8W0YjAFno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTY5Qy85RUIwNzk5ODEy N0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9LT20xSXp3UWp4YlJpTUFX ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dHRlR5NWlJT0tPbTFJendRanhiUmlNQVdlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTY5Qy85RUIwNzk5ODEyN0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9L T20xSXp3UWp4YlJpTUFXZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU/9OPqwYZuDKZCYw3LuBJ4m4Q+qfX+nUmDjPHQ5s+7eaw0EactH8E 6iBDRI8gxAMAlzO7+y6pB8YFC4IIEzsY3RyTMsQtu6sl73LreQYHPwaoyV8QYXDF szon0E+moxFGZu0dYNNqa7M0jqLz1yxdZmTkyrQ18o1BXnC3UC1s6bBG1w4bv8P9 YtOys7QWbt6IZ74Tf61g76b/CR4vzMsuXc8VeOTsSB92MsGGHbA5ITzR5J9wL/dG VtjJ704wGWUjOYoKH8pANxBIb2OD5df8XdcBbbm9hDWn9t/Y1ffKn5GAxB2IaOPk VdOUC1mSlt8/sw463BcDT0KqCf842yW+ -----END CERTIFICATE-----Generated at Sat May 31 17:00:27 2025 by rpki-client