$ rpki-client -vvf rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft File: ggCxpefBdgW1czx0_sHvEnOz6iU.mft (raw, json) Hash identifier: aQDLqYAPmHWDrqWvlyeTaTVWL2/vzJbmel7yV7I96Rw= Subject key identifier: DD:2E:2A:7F:9F:9B:B3:17:C3:A0:CB:77:AA:E5:FA:A4:4D:9E:28:B2 Authority key identifier: 82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 Certificate issuer: /CN=A911AD0C/serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Certificate serial: 348F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft Manifest number: 348F Signing time: Wed 02 Jul 2025 15:23:35 +0000 Manifest this update: Wed 02 Jul 2025 15:23:35 +0000 Manifest next update: Wed 09 Jul 2025 15:23:35 +0000 Files and hashes: 1: ggCxpefBdgW1czx0_sHvEnOz6iU.crl (hash: C9RgdYOSz3Sv+OvLWEm82sQUIksvTcr7rR35OJHoJFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13455 (0x348f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AD0C, serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Validity Not Before: Jul 2 15:23:35 2025 GMT Not After : Jul 9 15:23:35 2025 GMT Subject: CN=68654ef7-38f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a3:28:89:2b:94:eb:e9:4d:a9:86:31:f3:75: 91:34:55:1e:f0:bb:30:ae:2e:b4:29:ea:93:1e:8b: d1:b1:d2:ed:b4:ab:b5:be:55:64:e1:c6:73:b0:46: a4:81:2d:7f:31:4f:1e:3d:73:52:32:b4:91:7a:c1: e5:b1:6d:cd:b9:e2:cb:98:56:7a:3f:9c:1a:68:84: 85:0b:fc:30:6f:22:ea:35:db:ed:ff:06:4c:f3:67: 06:bf:1f:4b:9b:d4:8e:65:b1:c8:3c:d2:52:5f:cd: 81:94:b7:b2:01:8e:9e:a8:b4:5b:a3:16:bc:bd:69: 6e:9b:c7:d4:df:b2:6c:56:52:85:e9:93:46:8a:48: 33:10:81:06:2d:66:5a:9d:5e:74:f2:37:05:ab:f7: 11:03:01:91:fe:61:02:f9:59:54:2c:2c:6a:0a:5c: 3b:14:84:91:75:df:ed:e7:f3:aa:79:e5:44:b7:ce: ae:62:35:ed:17:92:26:08:e1:b8:dc:62:a1:2d:9d: aa:17:26:33:43:8a:60:f3:3a:a2:67:93:f7:2c:34: 68:8e:7f:48:fd:a3:85:92:76:a8:99:5f:88:e6:e4: c2:70:99:ce:32:c3:3d:e7:80:f9:28:ca:28:1f:3f: 32:89:dd:f7:5e:f8:1e:1a:9b:dc:b7:f2:9f:72:3a: 5d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:2E:2A:7F:9F:9B:B3:17:C3:A0:CB:77:AA:E5:FA:A4:4D:9E:28:B2 X509v3 Authority Key Identifier: keyid:82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:f5:d9:32:fc:a5:05:91:2b:b8:7c:4f:50:57:a2:a8:11:80: 61:68:98:86:1e:97:da:b0:fd:33:f1:3b:2a:bd:ee:47:ed:90: de:5a:1a:21:0f:3a:c9:74:3b:8d:0b:65:34:c6:60:cf:2f:4e: 52:04:91:d0:b3:87:b3:0c:6d:ac:2e:f8:67:09:35:ba:46:b8: 44:a1:9f:b4:ab:51:dc:ab:62:12:f9:ae:9a:5f:90:6d:5d:48: e0:14:59:a8:87:3e:2e:a6:00:33:53:25:86:23:48:19:02:80: f5:74:78:83:2e:86:26:e2:d7:85:d9:ec:fb:63:99:43:c0:cd: ec:75:31:66:89:32:07:d2:6b:01:e8:e5:a3:a6:15:d9:5d:bf: 9e:e1:bb:14:18:61:bb:96:cd:31:c4:7c:56:57:40:b0:30:40: 9c:4b:8d:b6:a7:db:74:73:bc:e2:00:54:8d:15:b2:44:21:4f: b5:d4:00:6e:ee:2b:4c:f5:99:6e:ae:31:ed:cb:94:03:9f:eb: 5b:1e:6e:f1:0f:ed:21:bf:4c:76:0c:30:92:cf:e6:26:03:ea: 12:4d:6c:29:07:6d:92:c9:3b:68:11:9e:f7:86:b3:fe:7c:99: ee:da:ab:1b:49:ea:64:52:4f:09:c5:de:e9:0e:71:cb:51:a8: 8b:9b:5e:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFEMEMxMTAvBgNVBAUTKDgyMDBCMUE1RTdDMTc2MDVCNTczM0M3NEZFQzFFRjEy NzNCM0VBMjUwHhcNMjUwNzAyMTUyMzM1WhcNMjUwNzA5MTUyMzM1WjAYMRYwFAYD VQQDEw02ODY1NGVmNy0zOGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36MoiSuU6+lNqYYx83WRNFUe8Lswri60KeqTHovRsdLttKu1vlVk4cZzsEak gS1/MU8ePXNSMrSResHlsW3NueLLmFZ6P5waaISFC/wwbyLqNdvt/wZM82cGvx9L m9SOZbHIPNJSX82BlLeyAY6eqLRboxa8vWlum8fU37JsVlKF6ZNGikgzEIEGLWZa nV508jcFq/cRAwGR/mEC+VlULCxqClw7FISRdd/t5/OqeeVEt86uYjXtF5ImCOG4 3GKhLZ2qFyYzQ4pg8zqiZ5P3LDRojn9I/aOFknaomV+I5uTCcJnOMsM954D5KMoo Hz8yid33XvgeGpvct/KfcjpdfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0uKn+f m7MXw6DLd6rl+qRNniiyMB8GA1UdIwQYMBaAFIIAsaXnwXYFtXM8dP7B7xJzs+ol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUQwQy8xQjBCMzU4RTFE QUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRnVzFjengwX3NIdkVuT3o2 aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnQ3hwZWZCZGdXMWN6eDBfc0h2RW5PejZpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUQwQy8xQjBCMzU4RTFEQUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRn VzFjengwX3NIdkVuT3o2aVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE9dky/KUFkSu4fE9QV6KoEYBhaJiGHpfasP0z8Tsqve5H7ZDeWhoh DzrJdDuNC2U0xmDPL05SBJHQs4ezDG2sLvhnCTW6RrhEoZ+0q1Hcq2IS+a6aX5Bt XUjgFFmohz4upgAzUyWGI0gZAoD1dHiDLoYm4teF2ez7Y5lDwM3sdTFmiTIH0msB 6OWjphXZXb+e4bsUGGG7ls0xxHxWV0CwMECcS422p9t0c7ziAFSNFbJEIU+11ABu 7itM9ZlurjHty5QDn+tbHm7xD+0hv0x2DDCSz+YmA+oSTWwpB22SyTtoEZ73hrP+ fJnu2qsbSepkUk8Jxd7pDnHLUaiLm173 -----END CERTIFICATE-----Generated at Fri Jul 4 01:14:14 2025 by rpki-client