$ rpki-client -vvf rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft File: gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft (raw, json) Hash identifier: nb5pvD4JG7NX0ERVc45+pjJJYp4kXk+6EONPBg9JxHY= Subject key identifier: CE:64:CA:69:BD:59:65:5D:42:5E:D4:58:56:00:4A:95:2C:38:71:3E Authority key identifier: 80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB Certificate issuer: /CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Certificate serial: 077D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft Manifest number: 0778 Signing time: Fri 30 May 2025 21:41:21 +0000 Manifest this update: Fri 30 May 2025 21:41:21 +0000 Manifest next update: Fri 06 Jun 2025 21:41:21 +0000 Files and hashes: 1: gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl (hash: 67O8NP+S/xTm/12ww0Axj+iEcKTWm8uZXbZ1Fp73G2s=) 2: F75AEA8A13F111EB950DBC4EC4F9AE02.roa (hash: E7aUJSWkWctXuYXSTwS30+xAR7ERalIEla2LT/i5k8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1917 (0x77d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D959F, serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Validity Not Before: May 30 21:41:21 2025 GMT Not After : Jun 6 21:41:21 2025 GMT Subject: CN=683a2601-fad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3a:01:a9:96:d3:7b:e4:ae:c3:74:0f:c2:f0: fc:a3:dc:04:ab:6b:cc:25:15:6d:6c:5c:a4:14:ac: 26:18:4c:18:c1:f0:12:28:1a:68:91:56:05:6a:64: b1:ff:2c:25:29:0b:43:6d:aa:f5:32:73:b4:19:9a: b4:38:06:79:51:6b:fb:d7:cb:23:56:00:33:00:1c: 9c:d5:e2:e0:48:cf:3e:41:a7:24:2d:b4:f6:d1:ea: 12:e8:67:41:21:1f:0a:94:9c:00:d1:47:35:5d:ca: 9b:14:b2:01:a7:d7:db:61:f0:04:40:e5:be:61:7f: 5d:ba:a3:76:39:13:9e:a9:be:de:49:51:65:8f:1a: 85:07:4d:20:36:08:3c:45:6e:df:15:2b:91:71:85: dc:87:36:26:ab:dc:01:a1:6c:63:46:b5:d1:66:f0: db:15:6e:11:53:fc:d0:f8:06:c8:90:c8:0a:82:2c: 39:06:c3:32:a8:d9:aa:1a:12:2f:b6:83:23:0e:93: ec:56:15:24:51:16:21:a6:37:71:52:68:ac:58:a6: 92:9f:29:27:52:3c:77:ab:e5:d2:37:68:73:6c:40: fe:8b:2f:1c:b2:59:2e:fa:8e:f6:8d:5b:69:89:6b: 3d:d7:fc:26:5f:dd:73:90:cc:e0:94:1b:fe:47:51: e0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:64:CA:69:BD:59:65:5D:42:5E:D4:58:56:00:4A:95:2C:38:71:3E X509v3 Authority Key Identifier: keyid:80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:e4:6c:b1:db:a1:53:27:b1:ee:a3:9d:df:f3:c4:f1:18:42: 71:4b:21:d3:d6:e0:5e:e6:56:c6:a7:c4:94:7b:1a:ec:df:97: 62:f2:96:3e:be:8a:52:f4:38:26:87:ab:06:2a:2d:07:ed:05: eb:0d:2f:1b:04:b5:d0:84:f3:2d:e3:7b:26:23:4e:f1:69:77: 74:30:6b:98:f3:de:21:5b:0b:c2:01:5f:83:48:cd:9e:bd:a9: d7:56:9f:c4:67:af:0d:47:65:9d:04:be:f3:e1:8a:2e:ee:17: 39:ec:5b:df:fb:0e:ca:dd:9f:ef:02:ec:53:3a:d6:c5:82:f5: c6:45:91:d4:0b:ae:7d:83:9f:0a:7c:1d:ca:e9:29:0f:52:0d: 19:ad:26:42:dd:4c:6b:cf:2f:f1:af:d2:eb:d9:ff:8a:79:b9: 80:98:c7:9f:c4:5e:c5:f5:16:88:5e:65:15:c2:07:d3:7a:21: 0a:67:df:64:c1:51:63:33:ce:87:d9:b6:83:05:c2:a2:d2:fd: e2:99:58:2e:a8:f5:f5:0a:f5:bd:d1:f8:e9:f8:b3:d2:8a:c2: 7c:02:c7:2b:23:53:5e:06:46:4b:e9:a3:ae:22:22:8c:42:06: ac:7b:f6:d4:fb:7e:c2:ea:a7:0b:10:2e:a5:50:d9:eb:2a:e9: 73:41:69:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk1OUYxMTAvBgNVBAUTKDgwODQwMTcyM0MyRTQxODQ1NkFGOUEwRkIyNUY4QzMy MUM0OTcwQ0IwHhcNMjUwNTMwMjE0MTIxWhcNMjUwNjA2MjE0MTIxWjAYMRYwFAYD VQQDEw02ODNhMjYwMS1mYWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojoBqZbTe+Suw3QPwvD8o9wEq2vMJRVtbFykFKwmGEwYwfASKBpokVYFamSx /ywlKQtDbar1MnO0GZq0OAZ5UWv718sjVgAzAByc1eLgSM8+QackLbT20eoS6GdB IR8KlJwA0Uc1XcqbFLIBp9fbYfAEQOW+YX9duqN2OROeqb7eSVFljxqFB00gNgg8 RW7fFSuRcYXchzYmq9wBoWxjRrXRZvDbFW4RU/zQ+AbIkMgKgiw5BsMyqNmqGhIv toMjDpPsVhUkURYhpjdxUmisWKaSnyknUjx3q+XSN2hzbED+iy8cslku+o72jVtp iWs91/wmX91zkMzglBv+R1HgaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM5kymm9 WWVdQl7UWFYASpUsOHE+MB8GA1UdIwQYMBaAFICEAXI8LkGEVq+aD7JfjDIcSXDL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTU5Ri8wNjgxMDBFQTEz RjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZUldyNW9Qc2wtTU1oeEpj TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dJUUJjand1UVlSV3I1b1BzbC1NTWh4SmNNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTU5Ri8wNjgxMDBFQTEzRjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZ UldyNW9Qc2wtTU1oeEpjTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz5Gyx26FTJ7Huo53f88TxGEJxSyHT1uBe5lbGp8SUexrs35di8pY+ vopS9Dgmh6sGKi0H7QXrDS8bBLXQhPMt43smI07xaXd0MGuY894hWwvCAV+DSM2e vanXVp/EZ68NR2WdBL7z4You7hc57Fvf+w7K3Z/vAuxTOtbFgvXGRZHUC659g58K fB3K6SkPUg0ZrSZC3Uxrzy/xr9Lr2f+KebmAmMefxF7F9RaIXmUVwgfTeiEKZ99k wVFjM86H2baDBcKi0v3imVguqPX1CvW90fjp+LPSisJ8AscrI1NeBkZL6aOuIiKM Qgase/bU+37C6qcLEC6lUNnrKulzQWmr -----END CERTIFICATE-----Generated at Sat May 31 16:28:47 2025 by rpki-client