$ rpki-client -vvf rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft File: gBf49rHsAjxINqRXp7BYQqBxnyg.mft (raw, json) Hash identifier: kQmJCkrAqMhD/W1HkIS6mrfHcDWrAqcC+WHhgTsUKI4= Subject key identifier: C5:EB:85:72:2F:59:39:EF:BF:7A:AD:01:9B:43:06:00:0F:6F:7D:E3 Authority key identifier: 80:17:F8:F6:B1:EC:02:3C:48:36:A4:57:A7:B0:58:42:A0:71:9F:28 Certificate issuer: /CN=A913B088/serialNumber=8017F8F6B1EC023C4836A457A7B05842A0719F28 Certificate serial: 0B52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBf49rHsAjxINqRXp7BYQqBxnyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft Manifest number: 0B4B Signing time: Wed 02 Jul 2025 19:21:23 +0000 Manifest this update: Wed 02 Jul 2025 19:21:22 +0000 Manifest next update: Wed 09 Jul 2025 19:21:22 +0000 Files and hashes: 1: gBf49rHsAjxINqRXp7BYQqBxnyg.crl (hash: cXO8dNJt7yvrbBdhmbD4Vla9Sd1LR8OUu9COzBmhS/U=) 2: 6DEDEF66387A11EA9450A37CC4F9AE02.roa (hash: o4u5Q2Jc2gCY8tVjsD1bgPzcbwwoDr6mqctN+7fPekU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.crl rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBf49rHsAjxINqRXp7BYQqBxnyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2898 (0xb52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B088, serialNumber=8017F8F6B1EC023C4836A457A7B05842A0719F28 Validity Not Before: Jul 2 19:21:22 2025 GMT Not After : Jul 9 19:21:22 2025 GMT Subject: CN=686586b2-213a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:60:65:14:52:89:5e:2b:85:04:21:a7:ba:49: 12:80:b5:15:f1:ad:37:cf:ad:40:70:78:c0:fb:1c: 15:25:77:14:47:21:07:88:2f:31:fa:2c:3d:b9:25: 89:fa:1c:0b:cf:39:53:d6:9f:67:ee:b2:3f:af:89: c8:3f:ae:ad:cc:62:97:ee:d8:ab:e4:11:d1:5a:13: 7d:aa:b9:98:1e:d7:88:dd:66:0f:6c:c2:5e:08:2d: 3f:cd:3f:18:59:21:8d:66:ea:e5:57:b0:a9:bb:cf: e1:95:99:4c:c4:6a:79:93:52:db:e9:91:af:d3:d0: 0d:56:82:a2:6d:cb:ec:bb:69:11:3b:ce:92:04:83: 9a:fc:fe:cf:7f:11:83:5d:96:94:0e:5f:06:3d:3b: cc:16:dc:54:83:9b:22:c1:11:6f:a7:9a:02:18:4a: 2f:df:05:a4:5f:ad:84:ce:73:1d:0e:a1:80:24:be: 3f:02:bb:d2:6f:17:6d:6f:e9:d4:72:2d:d7:fc:9b: 33:7b:05:9c:ee:c6:17:85:d9:15:9e:bc:b5:e2:dc: 21:8c:8c:87:be:ed:20:76:1d:b4:55:7e:e3:f0:b8: 5e:7e:87:ca:d8:23:d9:56:a2:14:90:b3:e9:98:6a: c5:e0:9b:7a:e1:99:58:0f:e0:f4:f2:90:ab:a0:de: de:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:EB:85:72:2F:59:39:EF:BF:7A:AD:01:9B:43:06:00:0F:6F:7D:E3 X509v3 Authority Key Identifier: keyid:80:17:F8:F6:B1:EC:02:3C:48:36:A4:57:A7:B0:58:42:A0:71:9F:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBf49rHsAjxINqRXp7BYQqBxnyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:95:c2:d8:8f:d6:7b:c9:75:f6:5e:a3:b6:ff:f8:6a:b8:49: e7:3f:de:a3:02:a0:a7:af:f6:05:28:ec:fb:d9:f7:d5:90:84: 53:4f:cf:42:ea:fe:49:fa:e9:6d:a9:2d:0a:bc:51:2a:ca:50: 2a:8b:50:7b:39:3c:49:c0:9c:3e:ae:3e:2a:90:13:a9:82:b3: 12:77:06:40:5f:7d:16:29:d4:d2:c8:17:6a:59:99:2a:2d:ba: 0c:81:7b:22:77:be:2e:ae:5e:15:4d:bf:7a:01:34:46:af:dc: cc:cd:b7:e6:f2:67:f2:b6:af:be:f3:79:04:ba:46:95:71:0d: 30:b6:27:3e:f4:1d:3b:b4:6f:d4:7b:8e:d3:de:5e:ad:9d:cb: f1:0d:b7:ce:db:16:3e:42:e8:8f:b0:bf:69:e2:1d:e6:3f:27: be:c8:da:3e:77:44:eb:d5:dc:d3:88:88:7e:9a:cc:f9:ac:ce: ec:a1:41:a2:cd:b5:cc:14:5f:30:e8:b4:92:91:f6:12:6b:c4: df:79:5d:e2:4d:e8:3b:1c:55:e3:ce:53:f6:9e:9a:07:b3:8d: 13:3c:30:49:db:32:c8:cb:71:47:04:ec:0e:39:2f:3b:89:7f: 11:40:c3:8e:77:de:33:18:08:07:38:b3:93:63:93:7a:dc:01: 81:78:0c:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwODgxMTAvBgNVBAUTKDgwMTdGOEY2QjFFQzAyM0M0ODM2QTQ1N0E3QjA1ODQy QTA3MTlGMjgwHhcNMjUwNzAyMTkyMTIyWhcNMjUwNzA5MTkyMTIyWjAYMRYwFAYD VQQDEw02ODY1ODZiMi0yMTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmBlFFKJXiuFBCGnukkSgLUV8a03z61AcHjA+xwVJXcURyEHiC8x+iw9uSWJ +hwLzzlT1p9n7rI/r4nIP66tzGKX7tir5BHRWhN9qrmYHteI3WYPbMJeCC0/zT8Y WSGNZurlV7Cpu8/hlZlMxGp5k1Lb6ZGv09ANVoKibcvsu2kRO86SBIOa/P7PfxGD XZaUDl8GPTvMFtxUg5siwRFvp5oCGEov3wWkX62EznMdDqGAJL4/ArvSbxdtb+nU ci3X/JszewWc7sYXhdkVnry14twhjIyHvu0gdh20VX7j8LhefofK2CPZVqIUkLPp mGrF4Jt64ZlYD+D08pCroN7e2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXrhXIv WTnvv3qtAZtDBgAPb33jMB8GA1UdIwQYMBaAFIAX+Pax7AI8SDakV6ewWEKgcZ8o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA4OC9GNTY5Q0Y3NjM4 NzcxMUVBOTM2OTUxNzlDNEY5QUUwMi9nQmY0OXJIc0FqeElOcVJYcDdCWVFxQnhu eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dCZjQ5ckhzQWp4SU5xUlhwN0JZUXFCeG55Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA4OC9GNTY5Q0Y3NjM4NzcxMUVBOTM2OTUxNzlDNEY5QUUwMi9nQmY0OXJIc0Fq eElOcVJYcDdCWVFxQnhueWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAklcLYj9Z7yXX2XqO2//hquEnnP96jAqCnr/YFKOz72ffVkIRTT89C 6v5J+ultqS0KvFEqylAqi1B7OTxJwJw+rj4qkBOpgrMSdwZAX30WKdTSyBdqWZkq LboMgXsid74url4VTb96ATRGr9zMzbfm8mfytq++83kEukaVcQ0wtic+9B07tG/U e47T3l6tncvxDbfO2xY+QuiPsL9p4h3mPye+yNo+d0Tr1dzTiIh+msz5rM7soUGi zbXMFF8w6LSSkfYSa8TfeV3iTeg7HFXjzlP2npoHs40TPDBJ2zLIy3FHBOwOOS87 iX8RQMOOd94zGAgHOLOTY5N63AGBeAyt -----END CERTIFICATE-----Generated at Thu Jul 3 22:00:53 2025 by rpki-client