$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft File: g4L2GIxKbdZpVNVxij2cz5uL-JU.mft (raw, json) Hash identifier: Hdn7Bx385ZWiK7tqmSNMFQdfK9W7/pvdjF1/glmTL7o= Subject key identifier: 4D:AD:36:AA:FF:AB:AA:66:E2:78:6A:C1:F5:14:39:4C:2D:19:B0:D1 Authority key identifier: 83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 Certificate issuer: /CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Certificate serial: 07E4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft Manifest number: 07DE Signing time: Wed 04 Jun 2025 20:27:58 +0000 Manifest this update: Wed 04 Jun 2025 20:27:57 +0000 Manifest next update: Wed 11 Jun 2025 20:27:57 +0000 Files and hashes: 1: g4L2GIxKbdZpVNVxij2cz5uL-JU.crl (hash: zEshK5NPU1VZhkjj0d/DKTizUNX8YGIj1JekQ+BNkaQ=) 2: 21B96F2E7BC911EBABCF472DC4F9AE02.roa (hash: jfAjvDFneg9TxfVOqlYPDujvfvVSOSgnFYEvXUOG5OY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 20:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2020 (0x7e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Validity Not Before: Jun 4 20:27:57 2025 GMT Not After : Jun 11 20:27:57 2025 GMT Subject: CN=6840ac4d-90be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:27:95:50:5b:39:70:c6:c0:c4:0b:b2:05:33: 38:0c:07:d1:f8:26:44:20:81:2f:7f:8f:87:ee:15: 3e:91:c1:aa:cb:4b:f8:05:74:05:6b:11:62:3c:99: 9f:77:48:40:7a:58:be:bf:b0:9c:16:9a:b3:00:87: a4:d4:ae:cf:e1:f7:38:6a:8b:59:dc:b2:c0:7b:2f: 0d:85:fd:18:f0:fb:5b:5a:3d:8f:05:48:30:0f:42: 92:47:aa:6f:cf:2c:a4:f8:bf:21:1a:33:c7:b7:e6: d1:9d:8a:45:f3:c9:84:43:d2:d4:32:8d:b9:b3:ec: 37:af:f7:40:2e:f2:9b:fa:59:7a:1f:fc:ce:4f:db: d0:5a:53:de:4a:ac:9d:45:06:dc:d0:ba:af:8b:36: b3:4d:55:df:78:f4:18:aa:9d:70:df:8a:e2:f4:5a: 2f:78:0c:c5:0d:77:07:38:98:e2:ef:2c:64:83:21: c5:ad:58:69:20:52:71:ac:f0:fd:be:e8:5e:cf:c8: fe:c1:7b:54:56:94:84:fc:74:ad:6d:f0:cc:68:b9: e1:a5:f4:20:f2:3f:d5:61:15:57:6a:68:1a:3b:f3: 9d:83:fc:52:56:50:b0:c3:1e:93:81:b9:87:fe:09: e4:27:79:83:42:93:82:ea:58:4f:ac:f0:c8:90:54: 6d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:AD:36:AA:FF:AB:AA:66:E2:78:6A:C1:F5:14:39:4C:2D:19:B0:D1 X509v3 Authority Key Identifier: keyid:83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:bf:ea:78:d6:20:cc:23:f5:4d:5a:d7:4e:d8:18:7e:b9:55: 95:81:2f:fc:f4:3d:32:93:76:9c:5a:a2:1c:c3:8b:d0:3e:aa: 7b:e2:36:13:b5:f5:27:55:d9:e3:6b:8a:d8:12:10:0e:28:01: 6e:8c:45:22:44:b4:af:3c:f1:00:75:b0:eb:7d:8d:25:4a:50: d1:b0:3c:71:4e:6e:6d:9d:13:c1:1c:42:2f:20:5b:1d:c3:d3: 9b:a8:60:51:9a:73:69:e7:66:88:64:27:ff:c0:43:dd:e6:d0: 3d:e1:0d:e6:a7:fe:56:ca:53:64:cf:ea:01:ab:83:41:ba:79: eb:3d:d0:9b:2c:60:18:39:66:83:b7:04:93:36:89:10:5a:dd: ff:40:58:84:dc:a2:52:a4:29:4a:d4:76:51:0f:6e:57:e4:2e: ed:4b:76:9a:c1:88:b7:29:2a:39:50:16:67:e0:f0:76:82:81: 4e:8b:e6:d7:77:78:d7:c8:f2:98:9f:43:30:15:f8:73:17:f7: 69:5a:2b:b7:8e:b8:64:69:6f:f5:71:1c:75:63:06:2a:0f:24: 8d:70:6b:f2:21:4a:92:46:5b:b9:a1:7a:2a:c2:82:78:cb:e8: 1f:e7:1b:5f:8a:5b:72:14:1b:b5:34:6f:c7:eb:8d:9c:f6:0f: 57:bd:07:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDgzODJGNjE4OEM0QTZERDY2OTU0RDU3MThBM0Q5Q0NG OUI4QkY4OTUwHhcNMjUwNjA0MjAyNzU3WhcNMjUwNjExMjAyNzU3WjAYMRYwFAYD VQQDEw02ODQwYWM0ZC05MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnieVUFs5cMbAxAuyBTM4DAfR+CZEIIEvf4+H7hU+kcGqy0v4BXQFaxFiPJmf d0hAeli+v7CcFpqzAIek1K7P4fc4aotZ3LLAey8Nhf0Y8PtbWj2PBUgwD0KSR6pv zyyk+L8hGjPHt+bRnYpF88mEQ9LUMo25s+w3r/dALvKb+ll6H/zOT9vQWlPeSqyd RQbc0LqvizazTVXfePQYqp1w34ri9FoveAzFDXcHOJji7yxkgyHFrVhpIFJxrPD9 vuhez8j+wXtUVpSE/HStbfDMaLnhpfQg8j/VYRVXamgaO/Odg/xSVlCwwx6TgbmH /gnkJ3mDQpOC6lhPrPDIkFRtQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2tNqr/ q6pm4nhqwfUUOUwtGbDRMB8GA1UdIwQYMBaAFIOC9hiMSm3WaVTVcYo9nM+bi/iV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yNTEwQjRFNkYw RkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2JkWnBWTlZ4aWoyY3o1dUwt SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2c0TDJHSXhLYmRacFZOVnhpajJjejV1TC1KVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yNTEwQjRFNkYwRkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2Jk WnBWTlZ4aWoyY3o1dUwtSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsv+p41iDMI/VNWtdO2Bh+uVWVgS/89D0yk3acWqIcw4vQPqp74jYT tfUnVdnja4rYEhAOKAFujEUiRLSvPPEAdbDrfY0lSlDRsDxxTm5tnRPBHEIvIFsd w9ObqGBRmnNp52aIZCf/wEPd5tA94Q3mp/5WylNkz+oBq4NBunnrPdCbLGAYOWaD twSTNokQWt3/QFiE3KJSpClK1HZRD25X5C7tS3aawYi3KSo5UBZn4PB2goFOi+bX d3jXyPKYn0MwFfhzF/dpWiu3jrhkaW/1cRx1YwYqDySNcGvyIUqSRlu5oXoqwoJ4 y+gf5xtfiltyFBu1NG/H642c9g9XvQeT -----END CERTIFICATE-----Generated at Fri Jun 6 17:10:01 2025 by rpki-client