$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: /iINUGTlgTT7NRwsQGY1u/iKhUC/qQhQyjPz0LxIFMc= Subject key identifier: A7:20:A6:86:4D:75:E5:50:F3:A2:CF:0D:60:8C:C2:B7:BF:01:7B:4E Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: A3 Signing time: Sun 01 Jun 2025 05:55:51 +0000 Manifest this update: Sun 01 Jun 2025 05:55:50 +0000 Manifest next update: Sun 08 Jun 2025 05:55:50 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: MN9i5O/YET56PmOgS5kj80KUG/OKkr3/FHbZ3G3TOfw=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: zLr4joEY+P4VPtuV8/aIjLwuAD3fE/qCh+JRJT72wJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Jun 1 05:55:50 2025 GMT Not After : Jun 8 05:55:50 2025 GMT Subject: CN=683beb67-12e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:19:a6:5c:ec:e8:b8:d0:93:75:0d:53:3e:4e: 55:8d:c0:20:22:e3:0e:91:5a:d1:91:db:ed:93:c4: 38:23:72:22:a6:f0:32:d2:40:76:9b:d6:1e:59:1c: 67:03:ca:37:e1:68:45:22:77:bb:67:4a:e1:0a:82: f1:a2:09:fb:da:cf:1f:dc:79:3e:c2:8b:7c:51:09: af:f4:74:d9:22:c9:d4:e5:6b:b4:4a:fe:a0:a6:74: 37:e0:1a:19:a1:0d:05:3a:2a:d9:61:14:bf:19:5d: 72:5a:19:99:d1:ff:f2:4f:ef:40:2e:31:8e:d9:51: 2b:1b:a8:af:26:81:47:a9:e5:be:ae:9a:9b:ae:b1: a5:55:b4:fe:38:1b:95:92:08:f1:42:04:69:4d:e5: db:d4:8f:a2:03:c3:59:ad:34:13:14:a5:af:44:47: bf:70:ff:89:26:1a:dc:0b:bf:38:06:ca:74:26:59: ae:50:f5:1b:03:af:fe:07:e2:8a:1e:e5:0e:7a:20: 1d:6b:83:2b:a7:46:e4:7c:7e:bf:98:1b:34:e3:0c: 7e:2d:34:e5:d0:59:7b:56:16:80:b1:53:2f:87:28: ee:a9:5e:54:88:e5:19:d9:5b:06:a0:80:bd:c1:fc: 28:c2:18:9e:50:4f:b2:fc:95:aa:33:02:92:e3:d9: 6b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:20:A6:86:4D:75:E5:50:F3:A2:CF:0D:60:8C:C2:B7:BF:01:7B:4E X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:a1:50:e1:2f:23:37:6f:38:88:47:19:54:55:33:74:ac:28: ab:aa:96:68:83:09:e1:12:63:f1:cb:5c:13:a8:3d:0e:a6:bb: c4:27:65:43:97:db:82:76:c7:c9:d0:2a:a1:1b:2d:6a:16:e2: d4:fa:b9:ef:00:b1:52:ba:fc:a0:65:ee:dc:9b:d3:27:c4:9e: 6f:2c:4a:39:25:fc:73:1f:a6:73:76:b1:ea:7a:9f:43:3e:11: f9:8e:71:76:9a:47:af:82:db:f3:6b:ae:22:df:1b:04:8e:07: 05:20:59:25:76:5f:fd:d0:69:8d:00:66:25:89:4d:e6:56:13: 3e:85:6b:6a:a0:3a:69:4f:bb:04:b8:c0:74:ba:a0:9c:af:82: 89:df:d6:54:64:fb:94:8e:52:46:23:c6:64:ee:07:a9:b1:50: 7e:a3:83:11:85:57:78:cf:e9:4e:4a:6d:3c:67:b6:f7:3b:86: e1:f2:1c:81:db:d4:fc:cb:07:16:a7:ac:60:cc:ef:70:15:5d: 27:90:be:b7:af:f5:9b:90:89:00:76:c2:67:21:a1:d6:fb:88: 89:a9:c9:fe:f5:bd:87:5a:b9:10:01:80:08:ca:f9:22:ef:a9: 1b:8a:29:d7:3a:48:19:6f:ff:8a:aa:4e:a5:97:97:d5:aa:7f: 92:cf:b4:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjUwNjAxMDU1NTUwWhcNMjUwNjA4MDU1NTUwWjAYMRYwFAYD VQQDEw02ODNiZWI2Ny0xMmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RmmXOzouNCTdQ1TPk5VjcAgIuMOkVrRkdvtk8Q4I3IipvAy0kB2m9YeWRxn A8o34WhFIne7Z0rhCoLxogn72s8f3Hk+wot8UQmv9HTZIsnU5Wu0Sv6gpnQ34BoZ oQ0FOirZYRS/GV1yWhmZ0f/yT+9ALjGO2VErG6ivJoFHqeW+rpqbrrGlVbT+OBuV kgjxQgRpTeXb1I+iA8NZrTQTFKWvREe/cP+JJhrcC784Bsp0JlmuUPUbA6/+B+KK HuUOeiAda4Mrp0bkfH6/mBs04wx+LTTl0Fl7VhaAsVMvhyjuqV5UiOUZ2VsGoIC9 wfwowhieUE+y/JWqMwKS49lrHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcgpoZN deVQ86LPDWCMwre/AXtOMB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH clhXRjEycjdha0FMVVVMRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAoVDhLyM3bziIRxlUVTN0rCirqpZogwnhEmPxy1wTqD0OprvEJ2VD l9uCdsfJ0CqhGy1qFuLU+rnvALFSuvygZe7cm9MnxJ5vLEo5JfxzH6ZzdrHqep9D PhH5jnF2mkevgtvza64i3xsEjgcFIFkldl/90GmNAGYliU3mVhM+hWtqoDppT7sE uMB0uqCcr4KJ39ZUZPuUjlJGI8Zk7gepsVB+o4MRhVd4z+lOSm08Z7b3O4bh8hyB 29T8ywcWp6xgzO9wFV0nkL63r/WbkIkAdsJnIaHW+4iJqcn+9b2HWrkQAYAIyvki 76kbiinXOkgZb/+Kqk6ll5fVqn+Sz7S+ -----END CERTIFICATE-----Generated at Mon Jun 2 19:27:23 2025 by rpki-client