$ rpki-client -vvf rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft File: gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft (raw, json) Hash identifier: boGak09uXZwxLCXUFmQMY0eioi/Q2/ncuhuGVLNc0/Q= Subject key identifier: 01:CB:23:0E:76:6B:46:EC:51:F4:38:85:12:04:DA:87:F8:3E:9F:33 Authority key identifier: 80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 Certificate issuer: /CN=A9134A42/serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft Manifest number: 4D Signing time: Thu 03 Jul 2025 07:36:59 +0000 Manifest this update: Thu 03 Jul 2025 07:36:59 +0000 Manifest next update: Thu 10 Jul 2025 07:36:59 +0000 Files and hashes: 1: gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl (hash: pE9FTYJzsrD8xbX/XXX3CA3P0NC7o6u5uKogfX5az+0=) 2: 89040F5A341011F0808A991DC4F9AE02.roa (hash: aQCWDBoOh5osM5C7MBD0kh6o6WsN7hx2kjcWDkx53es=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134A42, serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Validity Not Before: Jul 3 07:36:59 2025 GMT Not After : Jul 10 07:36:59 2025 GMT Subject: CN=6866331b-aa1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:11:4a:2c:89:b9:1b:9b:1b:5c:41:d0:aa:4d: b4:3c:30:e0:10:0d:5d:59:5b:2d:8f:85:26:1f:f4: 4e:69:e9:03:9e:d2:8a:b7:da:5d:7b:c9:97:76:ad: f9:7c:24:bf:26:ee:26:7b:b4:2c:ce:1f:a3:7b:4b: 36:40:e9:d5:e0:94:41:3a:09:d6:e5:d3:50:61:bc: de:00:a2:dc:39:87:57:35:5a:74:20:e0:b8:47:79: 83:6d:bf:c4:a4:25:38:35:99:58:0c:3d:db:cb:08: d1:8c:42:06:95:bd:17:71:44:5a:a4:31:fc:10:a4: 9e:04:97:92:19:ac:cf:79:4e:90:9b:fe:c5:24:c9: 12:09:d9:c4:c4:ed:ac:76:10:ad:1b:1b:b8:6e:fc: 75:eb:56:b2:5d:83:be:b2:c0:ee:1b:92:a8:f4:e2: 0c:f1:31:dd:01:48:fd:e2:3c:91:ca:2d:32:3d:fb: 91:9b:d6:9b:13:53:68:3e:f2:50:a1:71:1b:6b:4a: 0e:f0:cc:8d:4f:38:f6:9e:29:fb:8c:60:25:2f:74: 5d:62:1e:4f:d7:d2:3a:04:01:13:5c:bd:c8:91:27: ac:1d:1a:92:97:6d:a8:f9:bc:e8:f8:e6:70:d4:b3: 47:f6:d2:0a:81:8a:3a:a6:03:86:38:18:10:3c:0c: 11:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:CB:23:0E:76:6B:46:EC:51:F4:38:85:12:04:DA:87:F8:3E:9F:33 X509v3 Authority Key Identifier: keyid:80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:64:7f:cf:af:45:24:f8:46:9e:5f:f7:65:43:86:a7:6c:ff: fe:fc:35:3f:49:aa:1e:15:70:cc:fd:72:db:03:fe:53:1f:6a: 8e:3c:8e:88:6a:2f:15:86:cb:5f:5a:f3:31:7b:97:90:43:da: 41:92:2d:a4:00:bc:14:a1:89:89:4c:b5:23:75:7d:78:a7:81: ee:f5:1f:1d:0a:bd:41:05:c1:63:ce:0b:87:62:36:87:74:8c: 1a:fc:ab:33:19:e6:bc:2c:76:4b:42:38:08:5c:71:d6:5d:44: a5:70:35:5c:8c:45:83:d4:8b:bb:62:bf:03:69:a5:9c:d5:c4: ba:db:ca:fd:09:f1:6e:2c:95:4e:a3:db:34:b5:50:30:ab:19: ad:0b:4b:e7:27:a9:a8:ae:e2:c5:4c:fd:a8:24:70:3c:b8:b7: e0:35:6c:c8:58:cb:41:60:33:4e:12:3a:4e:05:67:85:4a:bd: d6:44:e0:2e:77:5c:fc:df:83:af:cd:53:5d:2c:18:6f:60:c0: 8f:6b:74:42:37:2e:48:30:21:3b:e7:04:42:93:e3:c7:1a:a4: 2c:bd:e0:b8:bf:50:12:31:9c:65:96:44:85:2b:48:a4:6a:ae: ec:00:2f:a0:c8:d2:ce:32:03:9a:3a:51:33:13:90:99:2f:de: f3:86:fd:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NEE0MjExMC8GA1UEBRMoODBCMThCODFENDdCNjE3NzEzMDRFMEY3NjEwRDExQTdD MzQwNjEyMzAeFw0yNTA3MDMwNzM2NTlaFw0yNTA3MTAwNzM2NTlaMBgxFjAUBgNV BAMTDTY4NjYzMzFiLWFhMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7EUosibkbmxtcQdCqTbQ8MOAQDV1ZWy2PhSYf9E5p6QOe0oq32l17yZd2rfl8 JL8m7iZ7tCzOH6N7SzZA6dXglEE6Cdbl01BhvN4Aotw5h1c1WnQg4LhHeYNtv8Sk JTg1mVgMPdvLCNGMQgaVvRdxRFqkMfwQpJ4El5IZrM95TpCb/sUkyRIJ2cTE7ax2 EK0bG7hu/HXrVrJdg76ywO4bkqj04gzxMd0BSP3iPJHKLTI9+5Gb1psTU2g+8lCh cRtrSg7wzI1POPaeKfuMYCUvdF1iHk/X0joEARNcvciRJ6wdGpKXbaj5vOj45nDU s0f20gqBijqmA4Y4GBA8DBEZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAcsjDnZr RuxR9DiFEgTah/g+nzMwHwYDVR0jBBgwFoAUgLGLgdR7YXcTBOD3YQ0Rp8NAYSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0QTQyLzFGQjBGNjc2RUE4 QzExRUY4OEM5MDg1QUM0RjlBRTAyL2dMR0xnZFI3WVhjVEJPRDNZUTBScDhOQVlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0xHTGdkUjdZWGNUQk9EM1lRMFJwOE5BWVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0 QTQyLzFGQjBGNjc2RUE4QzExRUY4OEM5MDg1QUM0RjlBRTAyL2dMR0xnZFI3WVhj VEJPRDNZUTBScDhOQVlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAJkf8+vRST4Rp5f92VDhqds//78NT9Jqh4VcMz9ctsD/lMfao48johq LxWGy19a8zF7l5BD2kGSLaQAvBShiYlMtSN1fXinge71Hx0KvUEFwWPOC4diNod0 jBr8qzMZ5rwsdktCOAhccdZdRKVwNVyMRYPUi7tivwNppZzVxLrbyv0J8W4slU6j 2zS1UDCrGa0LS+cnqaiu4sVM/agkcDy4t+A1bMhYy0FgM04SOk4FZ4VKvdZE4C53 XPzfg6/NU10sGG9gwI9rdEI3LkgwITvnBEKT48capCy94Li/UBIxnGWWRIUrSKRq ruwAL6DI0s4yA5o6UTMTkJkv3vOG/Yc= -----END CERTIFICATE-----Generated at Thu Jul 3 09:10:17 2025 by rpki-client