$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: VhXX72Jzz2c9isNXMzYFd18CWlT9N7li7mVSnzaa2RE= Subject key identifier: AF:00:43:C3:BA:60:BF:7C:C3:74:EF:78:D6:FA:0E:BC:A9:50:50:BF Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 0146 Signing time: Sat 07 Jun 2025 03:53:04 +0000 Manifest this update: Sat 07 Jun 2025 03:53:04 +0000 Manifest next update: Sat 14 Jun 2025 03:53:04 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: 47zlvGZ2ONBi7pzCrMcBYQlRe0jLkDqh20NafN2cey0=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: iKZhrYsqwja6p9Jg0/rXm6hAG4LxSI3ekb53k0lCuBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 03:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Jun 7 03:53:04 2025 GMT Not After : Jun 14 03:53:04 2025 GMT Subject: CN=6843b7a0-88d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0d:05:c2:22:27:3e:0a:70:59:12:25:2d:94: 55:51:43:1b:dc:03:35:7f:04:f0:88:dd:2d:d7:75: 7c:36:fa:85:8a:e7:ee:cb:ee:fb:31:c8:c1:7a:b8: ed:27:fb:fb:fa:f6:16:04:0f:10:7b:ca:e2:1d:2b: 72:65:e5:a4:67:84:0b:fc:be:65:44:12:53:a5:d1: 7a:09:13:b8:80:64:05:39:cd:06:05:50:c3:e0:e5: 3b:b1:1b:a5:3f:57:e5:37:90:b6:b4:99:f0:b6:17: 1a:df:fb:e4:6b:23:08:e5:c3:72:74:d5:b4:50:7a: 9c:d8:8d:12:c1:d5:16:70:34:cb:07:77:d0:a9:4c: dc:84:a8:81:6d:ac:0f:31:72:02:10:9a:59:c8:52: 09:39:70:76:17:cd:c6:a1:1f:99:c9:45:f1:b2:81: dc:db:0a:39:a4:67:a7:9e:19:e4:ce:66:62:b8:e0: 86:d0:0d:dd:00:fd:71:f9:81:e9:0f:1b:28:e1:12: ea:9e:47:b6:df:57:f5:d2:34:cf:d9:8a:35:bf:b1: 18:0a:de:5d:19:8e:ba:d3:46:25:c6:7d:fb:a5:47: 19:16:58:04:a1:29:1e:01:09:80:d7:7e:47:a6:12: 06:a0:94:cc:69:cb:e7:c1:22:7e:12:51:5a:81:92: 46:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:00:43:C3:BA:60:BF:7C:C3:74:EF:78:D6:FA:0E:BC:A9:50:50:BF X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:49:83:98:16:a6:be:5b:d8:4d:86:1b:cd:3e:82:e4:75:b7: 85:6c:ff:9e:d2:23:b7:a3:00:24:59:53:fd:ce:37:0f:d7:70: 9c:fe:4b:a8:52:20:66:1f:99:60:76:4b:66:f2:51:c4:0e:95: 85:9a:03:b3:da:fd:3c:4e:c6:9e:a1:d6:1e:b2:ee:02:aa:f3: 94:0a:90:ff:80:21:ea:3a:70:55:f0:ec:2d:03:6c:22:81:f1: 05:ca:e8:1c:42:b4:e4:67:fc:86:3c:60:8a:7c:b2:29:59:5f: 3b:ee:1b:64:4a:31:6d:e3:d8:a3:f2:e4:88:33:98:25:51:0e: 12:2f:ae:7f:5c:5a:55:79:4a:ac:be:66:24:53:53:fa:99:4a: 2f:e7:95:63:aa:64:dc:83:ca:f0:d2:d2:f3:ff:11:1e:e1:4a: ae:48:65:f6:c2:ea:d6:ff:d6:a5:49:1a:e4:9a:6f:ea:48:db: 9a:36:6e:2d:74:ee:77:9f:6b:dc:7e:56:3c:71:b7:29:c2:9a: 57:07:89:e8:45:31:8e:94:e4:81:b8:8b:55:42:8b:c0:4b:5d: a0:c6:07:68:2f:a4:ba:bc:8f:03:a2:51:c5:a9:2c:4c:9f:a8: 14:4d:65:ad:4a:10:9d:9a:c2:32:87:53:89:ad:0c:39:d8:19: ab:77:2e:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjUwNjA3MDM1MzA0WhcNMjUwNjE0MDM1MzA0WjAYMRYwFAYD VQQDEw02ODQzYjdhMC04OGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA0FwiInPgpwWRIlLZRVUUMb3AM1fwTwiN0t13V8NvqFiufuy+77McjBerjt J/v7+vYWBA8Qe8riHStyZeWkZ4QL/L5lRBJTpdF6CRO4gGQFOc0GBVDD4OU7sRul P1flN5C2tJnwthca3/vkayMI5cNydNW0UHqc2I0SwdUWcDTLB3fQqUzchKiBbawP MXICEJpZyFIJOXB2F83GoR+ZyUXxsoHc2wo5pGennhnkzmZiuOCG0A3dAP1x+YHp Dxso4RLqnke231f10jTP2Yo1v7EYCt5dGY6600Ylxn37pUcZFlgEoSkeAQmA135H phIGoJTMacvnwSJ+ElFagZJG6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8AQ8O6 YL98w3TveNb6DrypUFC/MB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVSYOYFqa+W9hNhhvNPoLkdbeFbP+e0iO3owAkWVP9zjcP13Cc/kuo UiBmH5lgdktm8lHEDpWFmgOz2v08TsaeodYesu4CqvOUCpD/gCHqOnBV8OwtA2wi gfEFyugcQrTkZ/yGPGCKfLIpWV877htkSjFt49ij8uSIM5glUQ4SL65/XFpVeUqs vmYkU1P6mUov55VjqmTcg8rw0tLz/xEe4UquSGX2wurW/9alSRrkmm/qSNuaNm4t dO53n2vcflY8cbcpwppXB4noRTGOlOSBuItVQovAS12gxgdoL6S6vI8DolHFqSxM n6gUTWWtShCdmsIyh1OJrQw52Bmrdy6f -----END CERTIFICATE-----Generated at Sat Jun 7 23:19:04 2025 by rpki-client