$ rpki-client -vvf rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft File: giq84EQXvhV7KDO6OwIw3iOEwkA.mft (raw, json) Hash identifier: uvDiyYuxmWCeJX8e5FGq78tILulzv4ygzblZd2Jw1Pc= Subject key identifier: 16:49:B6:2B:8B:BA:A5:25:D3:69:28:38:5C:B9:33:F5:A8:A1:EA:1C Authority key identifier: 82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 Certificate issuer: /CN=A911FCC1/serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Certificate serial: 0B71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft Manifest number: 0B6B Signing time: Wed 02 Jul 2025 19:17:17 +0000 Manifest this update: Wed 02 Jul 2025 19:17:17 +0000 Manifest next update: Wed 09 Jul 2025 19:17:17 +0000 Files and hashes: 1: giq84EQXvhV7KDO6OwIw3iOEwkA.crl (hash: o70JFnJ1TXzzI6FS1CCxarNAYEBrz+3aBW6StpznWEw=) 2: BFB35A9831E011EA91E99C3CC4F9AE02.roa (hash: 0GHCZ6nEXf3be8gydYVqGJhj2BigeoKuyRGIxasVxbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2929 (0xb71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FCC1, serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Validity Not Before: Jul 2 19:17:17 2025 GMT Not After : Jul 9 19:17:17 2025 GMT Subject: CN=686585bd-d66c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:d8:e5:11:47:f3:5e:8e:70:fb:a9:ff:b3: 38:0c:27:a3:bd:ee:b7:51:8d:21:6c:76:d2:ad:6b: 4b:fd:b2:f1:5f:cc:6a:de:de:84:67:2c:89:a7:16: a3:ff:9c:aa:91:b5:ab:38:5b:45:ea:39:f1:4d:8a: 54:44:6c:45:d2:26:21:7e:56:93:14:ff:f1:cb:08: 4a:2f:ec:84:c5:b8:58:b9:cc:ae:5f:71:6d:a0:a4: d9:b4:b2:cb:2d:8a:bb:f3:f4:24:00:b2:d4:3f:43: 1a:f4:01:ee:3d:54:a2:9c:29:16:18:d1:df:ce:f5: f1:24:dd:2f:c0:7a:9f:8e:4f:3a:68:b9:c5:27:78: 2b:8d:60:f7:65:18:42:9d:8c:f8:74:f3:7e:27:c5: 10:3f:fb:7f:e4:2c:ca:c2:94:87:d6:44:97:7a:8f: af:7c:5e:a4:de:8f:6f:d9:45:ea:de:f4:72:c2:1f: b1:06:ba:0c:da:25:1e:f1:6e:ca:0a:41:d4:f2:e3: 09:10:f7:9a:50:34:16:cc:fc:0d:ea:e5:1c:04:93: 4a:7d:47:c5:3e:10:2e:26:06:45:09:2b:ef:91:78: fa:8a:37:37:83:05:18:5b:18:60:58:b5:60:84:7d: 35:82:15:1b:ba:e0:53:71:5c:ae:d7:92:ae:0f:d9: 14:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:49:B6:2B:8B:BA:A5:25:D3:69:28:38:5C:B9:33:F5:A8:A1:EA:1C X509v3 Authority Key Identifier: keyid:82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:46:52:c1:c9:47:59:37:0e:d6:75:80:cb:9a:1c:c4:2d:93: 38:e7:e7:a5:28:c1:a3:8e:98:b8:cc:9d:53:66:c7:56:47:81: a4:4b:48:5d:d3:c5:74:62:ec:a4:34:b8:d9:42:30:1e:70:25: 89:b0:ae:a6:41:93:eb:be:ee:9b:65:0a:ba:e2:7d:74:55:7b: f2:dc:b7:94:32:4d:c0:57:e3:9c:0f:76:f7:bf:01:f2:5d:f9: 25:8e:6c:1b:e9:6f:8c:a6:d1:8c:fc:c5:2f:7a:a1:a6:c9:9a: 2a:13:3b:1c:80:5f:0f:32:70:be:23:7e:20:82:8c:41:22:3c: 11:f0:14:45:e6:38:04:1e:01:a1:6f:4c:2a:ec:75:b1:46:53: cb:73:69:6f:31:04:8e:c6:db:a0:c5:3f:4e:0c:22:63:ef:f6: 97:e8:65:a9:b9:af:be:c9:66:7f:aa:38:a4:bd:f3:97:ab:1d: 03:65:37:87:b4:21:2b:91:e3:d0:61:6a:8e:f6:23:57:d5:e7: fa:d4:ac:83:b7:cc:30:1d:00:b8:19:d6:13:a2:e3:f7:3b:63: 3c:6d:d7:6c:fd:4a:0f:29:4c:b3:c1:68:20:a1:dd:b4:82:cc: a5:ef:e8:a4:bc:c7:9c:ca:c8:d2:8d:c3:ec:45:60:c8:23:9a: 43:62:5e:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZDQzExMTAvBgNVBAUTKDgyMkFCQ0UwNDQxN0JFMTU3QjI4MzNCQTNCMDIzMERF MjM4NEMyNDAwHhcNMjUwNzAyMTkxNzE3WhcNMjUwNzA5MTkxNzE3WjAYMRYwFAYD VQQDEw02ODY1ODViZC1kNjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGXY5RFH816OcPup/7M4DCejve63UY0hbHbSrWtL/bLxX8xq3t6EZyyJpxaj /5yqkbWrOFtF6jnxTYpURGxF0iYhflaTFP/xywhKL+yExbhYucyuX3FtoKTZtLLL LYq78/QkALLUP0Ma9AHuPVSinCkWGNHfzvXxJN0vwHqfjk86aLnFJ3grjWD3ZRhC nYz4dPN+J8UQP/t/5CzKwpSH1kSXeo+vfF6k3o9v2UXq3vRywh+xBroM2iUe8W7K CkHU8uMJEPeaUDQWzPwN6uUcBJNKfUfFPhAuJgZFCSvvkXj6ijc3gwUYWxhgWLVg hH01ghUbuuBTcVyu15KuD9kU6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZJtiuL uqUl02koOFy5M/WooeocMB8GA1UdIwQYMBaAFIIqvOBEF74VeygzujsCMN4jhMJA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkNDMS8xNDk4RkM5RTMx RTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZoVjdLRE82T3dJdzNpT0V3 a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dpcTg0RVFYdmhWN0tETzZPd0l3M2lPRXdrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkNDMS8xNDk4RkM5RTMxRTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZo VjdLRE82T3dJdzNpT0V3a0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhRlLByUdZNw7WdYDLmhzELZM45+elKMGjjpi4zJ1TZsdWR4GkS0hd 08V0YuykNLjZQjAecCWJsK6mQZPrvu6bZQq64n10VXvy3LeUMk3AV+OcD3b3vwHy Xfkljmwb6W+MptGM/MUveqGmyZoqEzscgF8PMnC+I34ggoxBIjwR8BRF5jgEHgGh b0wq7HWxRlPLc2lvMQSOxtugxT9ODCJj7/aX6GWpua++yWZ/qjikvfOXqx0DZTeH tCErkePQYWqO9iNX1ef61KyDt8wwHQC4GdYTouP3O2M8bdds/UoPKUyzwWggod20 gsyl7+ikvMecysjSjcPsRWDII5pDYl6d -----END CERTIFICATE-----Generated at Thu Jul 3 06:17:50 2025 by rpki-client