$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: SiPo5Jr8JNTUg2Xwk8o9n9rvv57EkanZadVDBEcT9IQ= Subject key identifier: 9F:74:AC:06:15:BD:C4:05:03:1A:50:D7:25:01:0E:75:29:0D:FE:55 Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 02C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 02B7 Signing time: Sat 31 May 2025 01:40:13 +0000 Manifest this update: Sat 31 May 2025 01:40:13 +0000 Manifest next update: Sat 07 Jun 2025 01:40:13 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: RgHjy3Dotx/2OCIeQ+kW/ObAxMhO6d9kwQ1ULXRyNP0=) 2: 3785A958EF4711EF906AD167C4F9AE02.roa (hash: Xop4pF7LmPiWj4qFmNK9jXxRuc+SVOdI5Rsywj/dhPQ=) 3: 464B4494F7D911EF8EA69265C4F9AE02.roa (hash: kw7ZHY1axLvj55a+YPxHpHPEy1diN3j6tF6SRdvVlY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 704 (0x2c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F, serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: May 31 01:40:13 2025 GMT Not After : Jun 7 01:40:13 2025 GMT Subject: CN=683a5dfd-3538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c7:23:f9:59:e4:54:27:cf:a2:70:ac:e4:01: 10:fe:c2:71:3e:30:2c:d5:16:e7:70:96:33:46:b7: 12:21:44:1d:00:e5:03:a8:a8:be:2f:47:b3:9c:5c: 87:b1:93:96:3d:42:8f:22:43:54:92:62:19:59:7c: 62:8b:21:84:ec:e7:ae:64:86:e5:e9:f9:45:e1:7c: d3:af:b0:ac:61:69:46:bc:7f:b6:9f:af:1e:e2:cb: b1:dc:72:07:c7:5b:9d:3a:b8:4b:1d:14:7e:45:d1: e3:51:70:62:b2:0f:10:14:e9:b0:82:f8:8b:9c:cd: 58:38:ab:0f:69:27:c6:80:a5:54:a1:5d:db:94:8e: 40:eb:08:c3:0f:8a:0e:04:d4:da:6a:7a:01:de:75: ba:91:0b:b4:c5:ff:cc:83:9c:23:27:e5:8e:13:ed: 0a:c4:42:ce:c9:38:82:50:58:be:1e:ae:07:48:b9: 89:3d:28:0a:f5:9d:78:93:22:ae:c9:ea:dd:6e:6e: b7:c1:b1:9b:fa:17:9f:5d:17:3e:c4:f9:90:45:3f: 55:cd:fc:81:ea:ca:30:64:8b:75:55:51:64:bc:06: 0f:5a:00:48:81:12:b2:03:c8:08:fc:af:a5:c1:f1: 6b:4c:48:ee:ee:f9:34:bd:b6:d3:df:3f:2f:39:a8: 52:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:74:AC:06:15:BD:C4:05:03:1A:50:D7:25:01:0E:75:29:0D:FE:55 X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e1:74:eb:d9:5e:a1:46:68:92:cd:bf:cc:ab:ab:bc:4d:35: 74:d7:60:88:ea:29:1d:2b:31:84:0a:e3:ed:3f:22:24:43:19: a6:66:bd:9e:ee:a8:eb:b6:72:74:af:e1:53:b7:e9:5e:d8:bc: da:f2:2e:65:83:25:82:7b:78:96:11:3e:1e:d0:e2:bb:f9:1a: b4:17:68:7e:a8:2a:7b:44:d5:3b:05:f7:06:23:ce:95:5e:26: c6:09:0e:00:ea:0c:2b:a7:65:04:08:1c:0a:55:f9:f0:b7:26: 20:4f:43:a0:75:95:cd:bb:31:fa:99:f1:7d:ed:f1:d9:48:26: 28:2d:e8:c9:bf:cd:85:eb:44:4f:30:f1:61:0a:ca:8c:75:92: cc:53:ad:12:dd:3b:74:bc:c1:18:5f:58:48:46:ef:42:4c:21: 5a:fe:0b:e9:e7:22:9c:63:04:d2:2a:1f:ac:ca:e9:53:7a:4d: d0:3f:a8:a0:bc:89:c3:f6:a4:3a:42:fe:7e:9f:b7:ce:48:6d: d8:f6:d4:90:8c:11:01:77:97:81:7b:fe:d3:c7:71:92:16:ec: ac:df:5a:f2:9d:c6:af:2b:78:2b:62:79:40:36:42:2d:5a:23: de:43:9f:bb:6d:e8:28:d8:0a:87:f7:7d:16:d5:fb:b2:1b:b9: 57:4d:4a:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUwNTMxMDE0MDEzWhcNMjUwNjA3MDE0MDEzWjAYMRYwFAYD VQQDEw02ODNhNWRmZC0zNTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyccj+VnkVCfPonCs5AEQ/sJxPjAs1RbncJYzRrcSIUQdAOUDqKi+L0eznFyH sZOWPUKPIkNUkmIZWXxiiyGE7OeuZIbl6flF4XzTr7CsYWlGvH+2n68e4sux3HIH x1udOrhLHRR+RdHjUXBisg8QFOmwgviLnM1YOKsPaSfGgKVUoV3blI5A6wjDD4oO BNTaanoB3nW6kQu0xf/Mg5wjJ+WOE+0KxELOyTiCUFi+Hq4HSLmJPSgK9Z14kyKu yerdbm63wbGb+hefXRc+xPmQRT9VzfyB6sowZIt1VVFkvAYPWgBIgRKyA8gI/K+l wfFrTEju7vk0vbbT3z8vOahSewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ90rAYV vcQFAxpQ1yUBDnUpDf5VMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa4XTr2V6hRmiSzb/Mq6u8TTV012CI6ikdKzGECuPtPyIkQxmmZr2e 7qjrtnJ0r+FTt+le2Lza8i5lgyWCe3iWET4e0OK7+Rq0F2h+qCp7RNU7BfcGI86V XibGCQ4A6gwrp2UECBwKVfnwtyYgT0OgdZXNuzH6mfF97fHZSCYoLejJv82F60RP MPFhCsqMdZLMU60S3Tt0vMEYX1hIRu9CTCFa/gvp5yKcYwTSKh+syulTek3QP6ig vInD9qQ6Qv5+n7fOSG3Y9tSQjBEBd5eBe/7Tx3GSFuys31ryncavK3grYnlANkIt WiPeQ5+7bego2AqH930W1fuyG7lXTUqA -----END CERTIFICATE-----Generated at Sat May 31 16:43:56 2025 by rpki-client