$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: HT9xxUG8MWzd5JfygNQNBp0Wf1NiZuNtbQjUujpd6jo= Subject key identifier: 8A:FB:30:5D:D6:80:4D:F2:F0:41:F0:58:90:B6:41:12:9C:5F:A4:5C Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 073A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 0727 Signing time: Fri 30 May 2025 22:04:12 +0000 Manifest this update: Fri 30 May 2025 22:04:11 +0000 Manifest next update: Fri 06 Jun 2025 22:04:11 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: kniiqMrIBsu4LhpSa6IRsBu+LEwqjqowvyfJvJnbayM=) 2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1850 (0x73a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834, serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Validity Not Before: May 30 22:04:11 2025 GMT Not After : Jun 6 22:04:11 2025 GMT Subject: CN=683a2b5b-7ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b8:15:2e:b7:a7:da:59:8d:36:cf:b0:aa:99: 83:10:82:6d:56:72:f3:ae:22:48:97:ba:1b:65:67: bb:af:d8:69:fd:70:33:2d:75:64:15:0e:9e:8b:a6: b7:56:5c:72:d9:a3:69:5a:ee:63:be:6f:a5:04:8b: da:85:2b:c9:df:34:40:77:f4:df:e4:da:67:29:b4: 97:3c:75:a0:31:6b:29:15:43:d8:73:3c:05:02:54: c7:e4:c5:c1:9c:9a:dc:ad:2d:59:5b:a2:76:96:1d: 0f:0f:ff:db:86:46:7f:c6:45:d9:88:9f:57:35:6b: d1:17:b3:7d:ff:d0:e6:bc:de:c9:be:3f:1d:54:ed: 6a:3e:c4:55:f3:22:73:7e:61:9a:46:6d:25:1c:3d: d5:d1:b7:aa:10:9c:1d:26:24:13:d9:7e:cb:ff:33: 49:5b:6d:d1:37:0f:2f:36:90:5e:c0:b8:84:bf:e1: 47:06:6e:bb:8a:ec:68:6b:5d:2b:d9:cb:40:d6:d7: df:a8:72:d6:f0:c5:93:67:62:5c:3e:c3:d7:24:57: a4:aa:f7:35:7e:a6:d1:51:3b:83:1a:24:50:b9:44: e0:fd:2a:42:3a:3d:8c:f4:ef:3d:3b:c8:d9:05:c5: ed:02:41:36:35:eb:68:be:53:8b:cb:a1:0a:26:6b: 56:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:FB:30:5D:D6:80:4D:F2:F0:41:F0:58:90:B6:41:12:9C:5F:A4:5C X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:a4:73:ef:0d:a7:a6:a6:78:3e:fe:a7:fa:16:6d:9f:8b:1e: 26:b5:cb:a0:cb:7f:73:13:0e:ab:9d:8f:b4:7b:81:50:df:ff: 5d:59:fc:6f:8a:e5:15:db:92:2f:14:17:7f:94:9e:47:9c:bb: f2:ee:68:18:40:f3:5b:f4:76:66:8e:09:04:aa:00:ad:58:86: b0:10:df:e6:56:61:1b:86:e6:89:d9:cb:b1:25:b8:53:06:ce: f6:82:33:ad:e9:d8:21:f4:53:bc:f3:66:a9:c1:33:ec:ae:d6: 54:12:bf:81:97:76:27:12:ba:06:f4:12:31:d8:39:c7:ee:8e: 8d:c7:25:ea:1d:ed:4b:3b:8d:8d:a3:dc:cb:d2:12:de:30:b8: 6c:bc:81:01:8d:7f:82:b3:02:a3:da:cf:0a:82:ae:58:9f:18: ce:80:51:a3:37:10:4f:b7:58:60:fb:ce:1e:c7:79:64:ed:7b: f5:33:3c:8f:c4:e3:b7:e3:85:34:f8:40:d4:16:bd:a9:fb:25: 83:b2:5c:73:67:07:6c:96:12:0c:21:e7:42:12:5d:08:c8:f2: ba:49:34:03:93:39:8f:0f:cf:41:ab:72:db:f7:bc:ad:69:9a: 29:36:ba:88:da:39:94:e6:9e:d5:61:09:21:cc:d1:4f:42:a5: 17:43:d8:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjUwNTMwMjIwNDExWhcNMjUwNjA2MjIwNDExWjAYMRYwFAYD VQQDEw02ODNhMmI1Yi03ZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLgVLren2lmNNs+wqpmDEIJtVnLzriJIl7obZWe7r9hp/XAzLXVkFQ6ei6a3 Vlxy2aNpWu5jvm+lBIvahSvJ3zRAd/Tf5NpnKbSXPHWgMWspFUPYczwFAlTH5MXB nJrcrS1ZW6J2lh0PD//bhkZ/xkXZiJ9XNWvRF7N9/9DmvN7Jvj8dVO1qPsRV8yJz fmGaRm0lHD3V0beqEJwdJiQT2X7L/zNJW23RNw8vNpBewLiEv+FHBm67iuxoa10r 2ctA1tffqHLW8MWTZ2JcPsPXJFekqvc1fqbRUTuDGiRQuUTg/SpCOj2M9O89O8jZ BcXtAkE2NetovlOLy6EKJmtWywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIr7MF3W gE3y8EHwWJC2QRKcX6RcMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjpHPvDaempng+/qf6Fm2fix4mtcugy39zEw6rnY+0e4FQ3/9dWfxv iuUV25IvFBd/lJ5HnLvy7mgYQPNb9HZmjgkEqgCtWIawEN/mVmEbhuaJ2cuxJbhT Bs72gjOt6dgh9FO882apwTPsrtZUEr+Bl3YnEroG9BIx2DnH7o6NxyXqHe1LO42N o9zL0hLeMLhsvIEBjX+CswKj2s8Kgq5YnxjOgFGjNxBPt1hg+84ex3lk7Xv1MzyP xOO344U0+EDUFr2p+yWDslxzZwdslhIMIedCEl0IyPK6STQDkzmPD89Bq3Lb97yt aZopNrqI2jmU5p7VYQkhzNFPQqUXQ9ii -----END CERTIFICATE-----Generated at Sat May 31 17:17:22 2025 by rpki-client