$ rpki-client -vvf rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft File: GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft (raw, json) Hash identifier: TzJqu4TsxuSu4pUcMEwxGs7oc85QSuH0DkdB/QJ4YTM= Subject key identifier: C0:91:35:B0:53:60:22:4F:A6:5F:3B:4D:63:B6:3B:28:0A:E2:FC:05 Authority key identifier: 1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 Certificate issuer: /CN=A914E91C/serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Certificate serial: 04CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft Manifest number: 04C7 Signing time: Thu 03 Jul 2025 00:09:07 +0000 Manifest this update: Thu 03 Jul 2025 00:09:07 +0000 Manifest next update: Thu 10 Jul 2025 00:09:07 +0000 Files and hashes: 1: GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl (hash: MbZJrx/sWlpG6ZLqYT6uuJRiX+fuVwkW2JDN5T/70aM=) 2: 9BC1C0762BD411EC81C16155C4F9AE02.roa (hash: en/5+Is2njNPEHjZ9D4KmksDt8McYOOkdTXWUEGbh1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E91C, serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Validity Not Before: Jul 3 00:09:07 2025 GMT Not After : Jul 10 00:09:07 2025 GMT Subject: CN=6865ca23-6ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c3:bc:2c:35:05:cb:0b:09:e5:13:6c:1b:c5: d3:76:e8:a9:35:72:f3:05:e2:b3:fc:82:ef:e7:6c: 9d:16:ec:e4:eb:fc:3d:03:f7:5c:fd:59:00:3f:16: ee:80:64:fc:c7:a7:3d:5d:42:e9:54:97:a7:13:2c: e5:4c:95:7c:58:f4:3b:08:48:a7:db:46:5c:68:f8: 85:dd:91:3c:04:b9:44:ae:a1:ba:77:ed:3b:76:d2: aa:2e:ed:32:90:1b:1f:b2:64:5e:db:36:e7:b5:f7: a8:a6:17:f0:6a:94:85:f8:e6:97:6b:68:95:b0:ca: 44:35:47:58:14:e1:11:da:96:04:52:86:84:78:6e: 2f:90:b9:9c:d2:fa:d5:53:1a:35:0e:bf:c6:c1:d2: 7f:78:8f:23:83:78:d1:db:68:a8:7c:71:0e:8c:61: a8:3f:7b:23:8e:4c:ed:1c:98:a7:fd:a5:00:bf:40: b9:4c:f4:10:38:d2:78:a4:b9:d5:2b:55:7c:33:9c: 18:22:c2:73:87:ec:eb:43:a5:bd:85:cb:3b:3c:1c: 56:0b:1d:9d:f1:2d:0d:bb:13:4b:5c:28:9d:eb:41: 9c:dc:ca:cf:9c:c5:95:81:18:46:a0:36:69:b5:c6: d4:78:d4:61:c5:8b:55:3e:cb:39:fe:1e:67:34:8e: 89:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:91:35:B0:53:60:22:4F:A6:5F:3B:4D:63:B6:3B:28:0A:E2:FC:05 X509v3 Authority Key Identifier: keyid:1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8e:03:af:73:f1:36:0d:77:0d:52:2b:bf:cd:88:c5:a0:c5: 70:1e:5f:ef:c9:c1:ce:7f:1f:e2:c1:2b:c9:47:95:20:3f:9d: e1:46:29:d5:75:fc:f9:db:68:0c:46:57:27:a7:a8:c9:65:c2: 87:cf:47:cf:0c:6f:82:d4:2c:f6:de:d0:ae:1b:84:97:f8:9b: 80:8f:48:1d:e6:7d:de:af:4f:25:0e:30:9a:e8:a2:c1:4e:19: 08:06:9e:ec:d3:91:f8:b2:a0:b0:d8:fc:fc:16:74:48:84:10: 42:40:9d:2c:0a:80:6d:59:8d:b7:e0:2f:99:55:e9:a3:79:48: e8:4d:1b:33:22:48:f7:73:1d:32:2b:b8:22:2e:9f:db:2b:ed: ea:f9:70:9b:94:c8:b5:93:4f:1c:2a:da:4f:39:12:a4:7f:e8: 0c:5d:72:f6:da:d4:77:0f:11:2c:65:37:52:f1:9a:ff:f6:a0: 3f:59:eb:e2:ef:b3:0f:ed:be:e9:36:53:09:58:65:76:44:2b: dc:9b:73:ea:8a:79:d0:14:53:47:3b:d5:5f:55:8b:7f:f7:c6: 92:fc:89:be:e5:d0:b0:82:64:7f:66:aa:45:e6:c2:a7:82:26: 37:ab:2d:b5:3f:17:25:09:48:a1:d5:5a:86:2f:f8:77:8e:34: 44:64:44:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5MUMxMTAvBgNVBAUTKDFBNjEyMzA3NTY5NEI4MjIxOEFBMkZDNzZGNjE1QjQw MjU1OTYxNTYwHhcNMjUwNzAzMDAwOTA3WhcNMjUwNzEwMDAwOTA3WjAYMRYwFAYD VQQDEw02ODY1Y2EyMy02ZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8O8LDUFywsJ5RNsG8XTduipNXLzBeKz/ILv52ydFuzk6/w9A/dc/VkAPxbu gGT8x6c9XULpVJenEyzlTJV8WPQ7CEin20ZcaPiF3ZE8BLlErqG6d+07dtKqLu0y kBsfsmRe2zbntfeophfwapSF+OaXa2iVsMpENUdYFOER2pYEUoaEeG4vkLmc0vrV Uxo1Dr/GwdJ/eI8jg3jR22iofHEOjGGoP3sjjkztHJin/aUAv0C5TPQQONJ4pLnV K1V8M5wYIsJzh+zrQ6W9hcs7PBxWCx2d8S0NuxNLXCid60Gc3MrPnMWVgRhGoDZp tcbUeNRhxYtVPss5/h5nNI6JHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCRNbBT YCJPpl87TWO2OygK4vwFMB8GA1UdIwQYMBaAFBphIwdWlLgiGKovx29hW0AlWWFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkxQy9CQzI2M0E4RTJC RDExMUVDQURERkEzMTFDNEY5QUUwMi9HbUVqQjFhVXVDSVlxaV9IYjJGYlFDVlpZ VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtRWpCMWFVdUNJWXFpX0hiMkZiUUNWWllWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTkxQy9CQzI2M0E4RTJCRDExMUVDQURERkEzMTFDNEY5QUUwMi9HbUVqQjFhVXVD SVlxaV9IYjJGYlFDVlpZVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASjgOvc/E2DXcNUiu/zYjFoMVwHl/vycHOfx/iwSvJR5UgP53hRinV dfz522gMRlcnp6jJZcKHz0fPDG+C1Cz23tCuG4SX+JuAj0gd5n3er08lDjCa6KLB ThkIBp7s05H4sqCw2Pz8FnRIhBBCQJ0sCoBtWY234C+ZVemjeUjoTRszIkj3cx0y K7giLp/bK+3q+XCblMi1k08cKtpPORKkf+gMXXL22tR3DxEsZTdS8Zr/9qA/Wevi 77MP7b7pNlMJWGV2RCvcm3PqinnQFFNHO9VfVYt/98aS/Im+5dCwgmR/ZqpF5sKn giY3qy21PxclCUih1VqGL/h3jjREZETX -----END CERTIFICATE-----Generated at Thu Jul 3 08:48:45 2025 by rpki-client