$ rpki-client -vvf rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft File: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft (raw, json) Hash identifier: I5G1XQOm+r+fFfVKEIM1ykg93A6tWkCNwUv+PYAOG9k= Subject key identifier: D7:8A:1F:17:18:96:5B:C8:BE:9D:81:FC:84:07:66:8F:55:7A:F4:C3 Authority key identifier: 1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 Certificate issuer: /CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Certificate serial: 0BC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft Manifest number: 0BC1 Signing time: Wed 02 Jul 2025 19:08:43 +0000 Manifest this update: Wed 02 Jul 2025 19:08:42 +0000 Manifest next update: Wed 09 Jul 2025 19:08:42 +0000 Files and hashes: 1: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl (hash: eG5E8hj9QlCYh6v7Hq4TL34vzTbv7LpsTvyaw4ueD4g=) 2: 1407117C216311EA90D74C52C4F9AE02.roa (hash: 2C78FaeQx3m8f9CmVKBPjRPsChYY+d/Ump5Gj8ph3JM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3015 (0xbc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110A69, serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Validity Not Before: Jul 2 19:08:42 2025 GMT Not After : Jul 9 19:08:42 2025 GMT Subject: CN=686583bb-c71f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a0:6b:62:f0:7e:a5:d0:92:90:d5:ba:9a:69: bf:e2:08:ad:a9:a1:b3:22:a8:4e:30:85:de:6a:88: fb:e7:01:58:84:b9:de:7c:d7:60:19:6a:60:5b:4d: 21:8a:5c:32:47:0c:0a:85:81:c6:9f:56:33:8c:87: 9f:75:1b:de:9e:f0:a6:5b:c2:ba:21:28:37:bf:56: a3:42:e3:f2:eb:20:05:5d:05:60:c0:10:49:af:21: 5b:be:e5:1b:a4:c7:e4:d7:39:7b:25:98:5f:17:40: fb:00:f5:fe:dd:10:9a:6f:a4:9b:35:89:77:56:46: 6e:3e:f8:5e:db:27:f3:7b:c0:c2:e3:8f:15:d7:d0: df:6f:de:16:bc:44:b5:c6:41:dd:7e:31:cb:78:ba: 26:d2:31:a2:6e:3f:f0:81:87:82:f0:ba:04:63:66: 42:13:6c:d1:c3:64:00:2a:a3:f0:33:45:bb:c6:48: 0f:e8:3e:6c:79:83:08:47:d1:3b:00:1c:cc:d6:0d: 73:41:5f:92:25:4f:6f:f1:3a:41:f3:7d:f8:9e:d3: 94:e9:a8:82:64:62:88:1a:07:01:55:bd:6a:cf:ee: 5d:66:7b:89:a1:e3:e4:64:7d:ce:83:92:22:79:ba: b6:52:8a:1b:c1:1c:df:ef:76:db:1a:a9:e8:02:2f: 8c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8A:1F:17:18:96:5B:C8:BE:9D:81:FC:84:07:66:8F:55:7A:F4:C3 X509v3 Authority Key Identifier: keyid:1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:ea:49:07:c9:ba:7e:f3:b1:4e:a7:d9:ce:2d:c6:0b:b9:79: 9d:58:07:97:39:21:64:66:9d:ca:ff:79:f2:c9:2c:89:f5:c5: fc:ab:dc:eb:80:3c:ca:da:bd:fd:b3:23:ec:90:03:39:e4:cc: 63:c1:65:a7:57:9c:eb:ae:3f:c7:8d:f8:14:b4:ac:18:09:eb: 17:8e:b1:91:d2:91:3a:4e:01:77:0d:3e:d8:13:1e:55:7b:f2: f0:df:af:62:27:19:92:d4:dc:92:8c:16:cc:dc:93:aa:67:a0: 1b:f9:5b:2e:37:94:6e:9a:1a:35:4e:85:45:c4:2d:c0:e0:28: 89:44:29:c9:e2:1d:c9:23:32:4c:eb:e5:2e:3e:1e:6a:a1:f1: 01:b5:69:12:97:91:26:2e:96:83:44:d2:d4:59:4c:e0:b0:51: d0:26:da:07:2a:5f:70:d8:04:39:b6:10:fc:98:a6:2c:2e:10: fc:d0:cd:95:ad:1e:1a:b3:af:c1:90:24:ed:b2:56:1c:0b:b5: 48:79:3d:95:ff:50:16:f6:d5:c8:8c:59:22:21:af:f9:15:b4: 4b:5e:74:ba:38:13:28:6f:fc:50:65:56:ff:04:37:38:4e:db: e9:a8:0b:1e:27:ca:0c:57:28:b5:1e:35:d4:8b:d8:e7:d6:33: c5:f6:f1:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBBNjkxMTAvBgNVBAUTKDFCNkUzMjkyQzgzNTY1NEU0OTE0OTJFNTU4NENGOTkz RjA1QkQ5OTAwHhcNMjUwNzAyMTkwODQyWhcNMjUwNzA5MTkwODQyWjAYMRYwFAYD VQQDEw02ODY1ODNiYi1jNzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KBrYvB+pdCSkNW6mmm/4gitqaGzIqhOMIXeaoj75wFYhLnefNdgGWpgW00h ilwyRwwKhYHGn1YzjIefdRvenvCmW8K6ISg3v1ajQuPy6yAFXQVgwBBJryFbvuUb pMfk1zl7JZhfF0D7APX+3RCab6SbNYl3VkZuPvhe2yfze8DC448V19Dfb94WvES1 xkHdfjHLeLom0jGibj/wgYeC8LoEY2ZCE2zRw2QAKqPwM0W7xkgP6D5seYMIR9E7 ABzM1g1zQV+SJU9v8TpB8334ntOU6aiCZGKIGgcBVb1qz+5dZnuJoePkZH3Og5Ii ebq2UoobwRzf73bbGqnoAi+MSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeKHxcY llvIvp2B/IQHZo9VevTDMB8GA1UdIwQYMBaAFBtuMpLINWVOSRSS5VhM+ZPwW9mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEE2OS9FM0FCRDA0MjIx NDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpVNUpGSkxsV0V6NWtfQmIy WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyNHlrc2cxWlU1SkZKTGxXRXo1a19CYjJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEE2OS9FM0FCRDA0MjIxNDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpV NUpGSkxsV0V6NWtfQmIyWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR6kkHybp+87FOp9nOLcYLuXmdWAeXOSFkZp3K/3nyySyJ9cX8q9zr gDzK2r39syPskAM55MxjwWWnV5zrrj/HjfgUtKwYCesXjrGR0pE6TgF3DT7YEx5V e/Lw369iJxmS1NySjBbM3JOqZ6Ab+VsuN5Rumho1ToVFxC3A4CiJRCnJ4h3JIzJM 6+UuPh5qofEBtWkSl5EmLpaDRNLUWUzgsFHQJtoHKl9w2AQ5thD8mKYsLhD80M2V rR4as6/BkCTtslYcC7VIeT2V/1AW9tXIjFkiIa/5FbRLXnS6OBMob/xQZVb/BDc4 TtvpqAseJ8oMVyi1HjXUi9jn1jPF9vEj -----END CERTIFICATE-----Generated at Thu Jul 3 20:14:54 2025 by rpki-client