$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: OratQf632aKpYO8GWWTCL11D/ZNzXszn00N/jzGEykc= Subject key identifier: 0B:5F:89:43:1D:C2:FD:48:AB:66:02:23:01:F2:95:90:AC:34:B0:64 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 05CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 05C9 Signing time: Fri 30 May 2025 23:16:50 +0000 Manifest this update: Fri 30 May 2025 23:16:49 +0000 Manifest next update: Fri 06 Jun 2025 23:16:49 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: f+H7cHdwxLws/D+8QkFM1E6S20JfVtIoQpf1tuGXXaE=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1486 (0x5ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: May 30 23:16:49 2025 GMT Not After : Jun 6 23:16:49 2025 GMT Subject: CN=683a3c61-d5f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b5:a9:51:fc:7b:56:a1:b7:47:8d:51:61:68: ed:e4:e9:d8:c0:b0:a2:5c:7d:29:e7:03:3c:21:be: d7:1c:76:0b:ee:0c:21:54:3d:41:df:00:6c:9e:37: 93:b2:03:2a:a6:3e:a4:40:bf:fa:9f:f9:b1:9c:30: e5:cc:f4:c6:52:84:15:51:7a:e6:61:97:b4:29:12: e2:e3:da:ec:b1:1d:e6:be:4b:bf:4c:59:b1:ab:e7: cf:a3:bf:45:0e:5c:ca:30:49:fc:d1:01:f8:f8:1d: 9f:fe:62:8c:49:34:33:97:f7:f7:98:42:78:23:93: fd:f3:de:9a:36:b1:c2:f0:d6:a8:36:f0:27:39:1a: 88:35:5d:f5:c0:06:65:2c:e5:00:27:9c:38:7b:22: f3:5c:ef:e9:25:91:55:08:6f:b4:2f:cc:a6:34:6a: 1a:da:eb:6a:bd:64:cb:43:d2:7d:6d:cf:d7:d2:66: 96:f9:08:fd:66:67:dd:6d:31:16:c1:c0:60:86:6c: 85:c9:d2:b9:03:ea:a5:f6:53:62:6f:0c:56:42:92: 2f:74:81:dd:7c:5e:86:64:27:ad:14:08:6f:62:80: aa:3f:82:14:66:86:55:6d:ed:5a:20:58:9e:e5:0b: 9f:c0:2b:ce:7a:e5:4b:d3:fd:f7:a1:a9:66:ea:05: 4c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:5F:89:43:1D:C2:FD:48:AB:66:02:23:01:F2:95:90:AC:34:B0:64 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:90:0c:20:39:fd:f2:e1:4b:6f:23:d6:9c:61:2c:ab:0c:a4: 4d:ed:43:b3:a8:c7:23:f1:77:f6:da:64:a6:2c:79:0d:2e:4c: 32:9a:f4:8e:fb:54:a1:3a:3d:bb:e3:ef:ef:c2:02:a0:a6:b9: 3c:10:7f:7b:6c:9a:94:39:ce:ed:5f:12:4c:e2:f8:1e:a7:16: b3:ac:fa:97:76:2c:96:40:f5:ec:ee:fc:20:2d:b9:70:8a:37: d8:cb:19:53:56:3c:80:5d:d0:3f:52:c0:7b:04:5d:57:8b:cf: 52:fc:f9:4f:99:c0:85:76:19:a1:f5:b9:97:26:62:ee:cf:0b: e7:4f:bd:ce:89:7b:7d:55:e4:86:a8:29:9f:13:35:03:1d:fb: 91:3c:85:89:59:e6:f8:92:ea:a9:7e:10:ef:12:3d:7a:4b:99: 94:77:af:43:37:df:6f:28:6b:8d:07:b7:29:d3:31:49:6e:10: b0:79:98:ef:f2:b4:55:75:bd:35:43:95:6e:cf:29:e4:37:16: a0:f3:86:b8:cb:01:05:7a:6b:b1:14:79:30:f7:50:6e:8b:6a: ee:68:5b:b4:63:b5:c4:97:00:ea:69:df:79:ef:54:6c:96:13: 12:31:0e:f4:89:5c:df:5b:75:95:81:0c:c8:4c:b8:ee:68:fd: 7f:2b:46:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwNTMwMjMxNjQ5WhcNMjUwNjA2MjMxNjQ5WjAYMRYwFAYD VQQDEw02ODNhM2M2MS1kNWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7WpUfx7VqG3R41RYWjt5OnYwLCiXH0p5wM8Ib7XHHYL7gwhVD1B3wBsnjeT sgMqpj6kQL/6n/mxnDDlzPTGUoQVUXrmYZe0KRLi49rssR3mvku/TFmxq+fPo79F DlzKMEn80QH4+B2f/mKMSTQzl/f3mEJ4I5P9896aNrHC8NaoNvAnORqINV31wAZl LOUAJ5w4eyLzXO/pJZFVCG+0L8ymNGoa2utqvWTLQ9J9bc/X0maW+Qj9ZmfdbTEW wcBghmyFydK5A+ql9lNibwxWQpIvdIHdfF6GZCetFAhvYoCqP4IUZoZVbe1aIFie 5QufwCvOeuVL0/33oalm6gVMrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtfiUMd wv1Iq2YCIwHylZCsNLBkMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQkAwgOf3y4UtvI9acYSyrDKRN7UOzqMcj8Xf22mSmLHkNLkwymvSO +1ShOj274+/vwgKgprk8EH97bJqUOc7tXxJM4vgepxazrPqXdiyWQPXs7vwgLblw ijfYyxlTVjyAXdA/UsB7BF1Xi89S/PlPmcCFdhmh9bmXJmLuzwvnT73OiXt9VeSG qCmfEzUDHfuRPIWJWeb4kuqpfhDvEj16S5mUd69DN99vKGuNB7cp0zFJbhCweZjv 8rRVdb01Q5VuzynkNxag84a4ywEFemuxFHkw91Bui2ruaFu0Y7XElwDqad9571Rs lhMSMQ70iVzfW3WVgQzITLjuaP1/K0YO -----END CERTIFICATE-----Generated at Sat May 31 16:43:48 2025 by rpki-client