$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft File: gTpuT37cWLx6SLbR_XwZ39go8fE.mft (raw, json) Hash identifier: S/5mp2y5JGTrdW6Wa/ZCFi53k9rKQwed9aeGXC680Oo= Subject key identifier: 28:D0:C9:20:17:04:6E:EB:20:DD:52:53:F6:A5:70:22:1B:A8:6F:0E Authority key identifier: 81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 Certificate issuer: /CN=A91E0CF5/serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft Manifest number: A1 Signing time: Tue 03 Jun 2025 06:00:34 +0000 Manifest this update: Tue 03 Jun 2025 06:00:34 +0000 Manifest next update: Tue 10 Jun 2025 06:00:34 +0000 Files and hashes: 1: gTpuT37cWLx6SLbR_XwZ39go8fE.crl (hash: MQcUJn9yLfkiZiaei+wcXoG/Meu4dgm0/9oR6MWHckk=) 2: C0F3F504492B11EF8EF0D04FC4F9AE02.roa (hash: 9XdOr8ci0XxQ25MZorUAalomR3Uhklj1yk5ZzWVz3NQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5, serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Validity Not Before: Jun 3 06:00:34 2025 GMT Not After : Jun 10 06:00:34 2025 GMT Subject: CN=683e8f82-b443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ac:cc:b1:55:83:4a:f0:d7:ba:08:11:71:6c: a1:26:8c:75:c3:52:b9:c2:c9:bd:79:c8:82:79:0c: 89:70:df:12:e8:88:a5:83:c8:79:74:c8:2e:83:bf: f8:f6:e2:c0:e5:ba:d3:be:9c:c2:4f:5f:b0:59:49: 36:53:5c:54:7f:78:43:52:bb:d2:10:1e:d0:0b:13: a6:62:62:1c:66:b6:ef:3d:e1:3a:08:46:5d:fc:8c: f3:92:40:ac:cb:87:59:e0:26:47:a7:f8:91:9c:f1: 9e:9d:53:35:8b:91:a6:bd:83:b6:6f:10:a8:29:25: 62:c3:50:b7:11:bd:12:51:17:5c:40:05:d0:e6:17: e9:15:29:17:fc:94:45:c4:1d:37:95:96:f6:8c:6c: e3:de:0b:3c:9a:ae:a4:16:b9:6f:c0:af:b9:15:cb: b9:aa:87:7b:a4:01:63:0e:3f:97:6f:49:40:c5:5e: f7:94:23:34:fc:52:20:49:af:20:5e:d5:e5:04:ae: e8:9b:e5:a1:53:fe:50:a0:d0:fb:9b:c7:d2:41:96: 51:70:2c:fe:a5:bf:f7:ae:db:a9:d8:0a:e3:90:e2: c2:62:59:1f:ca:c5:ba:24:5c:6a:2f:81:f8:b8:00: e6:10:1a:67:29:59:03:4d:f8:17:38:dd:a6:77:ba: f7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D0:C9:20:17:04:6E:EB:20:DD:52:53:F6:A5:70:22:1B:A8:6F:0E X509v3 Authority Key Identifier: keyid:81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:a7:f7:f7:e1:54:2d:53:0f:e1:a8:f2:16:37:c3:01:19:8e: 75:52:e8:01:6e:cf:0e:2c:3d:e8:42:79:9a:16:ed:90:d0:c1: 62:10:87:e1:10:4c:01:b3:89:34:7b:fd:90:b8:80:e9:97:8d: 93:e5:db:33:7b:09:19:2d:a8:8e:6a:3f:67:94:25:24:14:79: 5a:fb:de:32:fd:a4:f2:97:2a:c9:7d:26:a2:81:e2:95:16:a5: 83:58:08:de:1a:b9:a5:0e:6a:9c:df:63:a2:04:bf:f1:93:82: 4b:78:a4:88:f2:bd:2a:7e:c5:72:d0:1f:26:a1:22:c4:c5:2d: b5:fb:2a:41:ab:7a:02:02:f8:e7:38:c1:9c:73:d1:67:2c:ae: 14:94:2a:54:0c:e0:d3:33:fe:19:4b:ba:88:44:f4:94:ae:cf: 34:c7:99:8f:8f:06:f5:6f:f2:7c:79:1e:67:53:0a:c2:88:49: eb:a5:66:bf:9c:32:6a:55:29:0d:dc:c9:10:14:c6:af:aa:0a: 19:b7:eb:bb:a4:d7:8b:87:0e:20:cb:cb:5d:8a:e5:96:d0:53: 1a:e8:8c:8d:92:fa:c3:ee:a8:6d:e9:32:5c:63:86:48:40:c9: 0f:c3:5a:76:a4:08:9a:a4:f9:b2:14:7f:e7:90:0d:60:5b:cf: a6:96:61:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRjUxMTAvBgNVBAUTKDgxM0E2RTRGN0VEQzU4QkM3QTQ4QjZEMUZEN0MxOURG RDgyOEYxRjEwHhcNMjUwNjAzMDYwMDM0WhcNMjUwNjEwMDYwMDM0WjAYMRYwFAYD VQQDEw02ODNlOGY4Mi1iNDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KzMsVWDSvDXuggRcWyhJox1w1K5wsm9eciCeQyJcN8S6Iilg8h5dMgug7/4 9uLA5brTvpzCT1+wWUk2U1xUf3hDUrvSEB7QCxOmYmIcZrbvPeE6CEZd/IzzkkCs y4dZ4CZHp/iRnPGenVM1i5GmvYO2bxCoKSViw1C3Eb0SURdcQAXQ5hfpFSkX/JRF xB03lZb2jGzj3gs8mq6kFrlvwK+5Fcu5qod7pAFjDj+Xb0lAxV73lCM0/FIgSa8g XtXlBK7om+WhU/5QoND7m8fSQZZRcCz+pb/3rtup2ArjkOLCYlkfysW6JFxqL4H4 uADmEBpnKVkDTfgXON2md7r3zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjQySAX BG7rIN1SU/alcCIbqG8OMB8GA1UdIwQYMBaAFIE6bk9+3Fi8eki20f18Gd/YKPHx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENGNS80QkI3QzY0NDQ5 MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi9nVHB1VDM3Y1dMeDZTTGJSX1h3WjM5Z284 ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dUcHVUMzdjV0x4NlNMYlJfWHdaMzlnbzhmRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENGNS80QkI3QzY0NDQ5MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi9nVHB1VDM3Y1dM eDZTTGJSX1h3WjM5Z284ZkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpp/f34VQtUw/hqPIWN8MBGY51UugBbs8OLD3oQnmaFu2Q0MFiEIfh EEwBs4k0e/2QuIDpl42T5dszewkZLaiOaj9nlCUkFHla+94y/aTylyrJfSaigeKV FqWDWAjeGrmlDmqc32OiBL/xk4JLeKSI8r0qfsVy0B8moSLExS21+ypBq3oCAvjn OMGcc9FnLK4UlCpUDODTM/4ZS7qIRPSUrs80x5mPjwb1b/J8eR5nUwrCiEnrpWa/ nDJqVSkN3MkQFMavqgoZt+u7pNeLhw4gy8tdiuWW0FMa6IyNkvrD7qht6TJcY4ZI QMkPw1p2pAiapPmyFH/nkA1gW8+mlmG0 -----END CERTIFICATE-----Generated at Wed Jun 4 00:05:55 2025 by rpki-client