$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft File: gJ7_H3gZuBdR8XerWv7YK8wypWk.mft (raw, json) Hash identifier: L7gasZ3jzq7Qi28K+FxkWkAxm0jzLQweCeS7xNX2rMM= Subject key identifier: AE:DF:CF:6F:EC:4B:7C:32:54:57:CB:83:F2:84:E0:69:1D:78:5B:7E Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 0629 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft Manifest number: 0624 Signing time: Fri 04 Jul 2025 23:12:00 +0000 Manifest this update: Fri 04 Jul 2025 23:12:00 +0000 Manifest next update: Fri 11 Jul 2025 23:12:00 +0000 Files and hashes: 1: gJ7_H3gZuBdR8XerWv7YK8wypWk.crl (hash: i5bcRwgIoZsuwkCjm+ua1I05B5er2CbBy3yr+q/eREw=) 2: 687D7178B85D11EBB2E17F26C4F9AE02.roa (hash: IMdjByBIYJm1pushgtHVRf7baWnF2aGGxcZRsZb6Kqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1577 (0x629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028, serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Validity Not Before: Jul 4 23:12:00 2025 GMT Not After : Jul 11 23:12:00 2025 GMT Subject: CN=68685fc0-25c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ea:fe:4f:39:ce:1e:b3:06:45:c5:85:1f:1f: 08:52:2d:68:b8:d0:69:10:88:1a:f4:05:cb:ae:97: 21:78:46:2d:06:e6:b2:24:3c:b1:57:e3:ea:e8:cf: c6:08:6e:68:dc:5b:6b:98:c2:3e:51:1a:d5:2d:48: 6e:5d:50:2a:93:09:d9:53:fc:6d:2d:2f:94:1e:ea: a4:d0:23:af:13:2f:77:e2:bf:fc:14:d3:b3:1e:13: 16:9d:7b:a1:c7:36:4b:09:22:f1:41:0f:7f:51:65: 76:bd:f1:11:23:04:b4:ae:6f:64:21:22:a0:74:4c: 56:44:4a:ca:ab:74:e4:67:11:4f:32:c7:f1:25:30: 20:a8:b0:bc:43:81:7f:f5:70:44:2b:a2:34:76:24: 1d:6a:77:c0:2c:10:18:b7:33:b6:77:6c:a2:1b:99: 9a:33:94:48:d1:a1:a0:66:b9:69:56:a0:62:3c:b0: d4:41:52:42:5b:e0:9e:d8:da:bc:ac:0b:17:41:d6: 40:c7:7e:3b:34:0f:8b:11:82:4d:f7:08:00:65:41: d6:39:0b:f9:5c:53:72:2f:27:a5:69:4d:08:13:af: 37:73:2b:94:3b:5c:60:8a:bf:e7:1a:5a:9d:f8:1c: c2:e0:24:20:99:08:8f:ca:b8:b4:aa:33:c1:89:18: 16:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DF:CF:6F:EC:4B:7C:32:54:57:CB:83:F2:84:E0:69:1D:78:5B:7E X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:99:cc:12:b9:99:5f:3c:2a:0b:be:1f:c5:70:69:0c:d1:26: de:e3:2c:24:0a:1d:df:4a:41:ab:0c:42:13:c0:c3:fb:1d:a4: 69:d6:28:3f:ce:ec:8b:0f:af:e9:36:df:99:49:ef:87:1f:ef: dc:53:9a:e3:50:59:ec:c5:9b:26:0a:6e:6e:10:f4:7b:8e:3d: e7:c1:f2:29:bf:79:7b:42:45:6a:ee:2b:6c:27:11:7e:c6:19: 9d:94:70:dc:ae:13:2b:d4:72:06:51:c9:45:22:47:3c:11:97: 45:ed:d8:c1:99:5e:3c:49:5f:c2:ed:95:3b:6d:5f:e9:2d:8d: 27:5d:63:06:6c:c2:fc:7c:4b:bd:0a:a2:5e:55:e5:0a:74:84: a4:68:fd:49:5b:14:70:d5:b8:73:8c:07:3a:f7:66:0c:ec:0d: 7e:0f:e3:91:7e:6c:33:aa:c8:30:6e:2e:a1:e3:4a:a1:a5:e6: 2e:dd:3e:52:75:4b:c6:63:3c:a0:9e:12:8e:0c:fd:61:64:f3: 29:55:e5:47:1b:1f:57:6a:d3:a9:9b:c7:bc:b9:a1:e4:cd:ed: 89:5e:fd:a7:47:eb:67:88:6a:1b:02:8a:1e:fd:73:db:47:c2: 61:d3:8b:7b:ca:53:e4:82:b0:55:f5:cc:ba:c2:1c:71:4e:59: db:fa:33:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjUwNzA0MjMxMjAwWhcNMjUwNzExMjMxMjAwWjAYMRYwFAYD VQQDEw02ODY4NWZjMC0yNWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+r+TznOHrMGRcWFHx8IUi1ouNBpEIga9AXLrpcheEYtBuayJDyxV+Pq6M/G CG5o3FtrmMI+URrVLUhuXVAqkwnZU/xtLS+UHuqk0COvEy934r/8FNOzHhMWnXuh xzZLCSLxQQ9/UWV2vfERIwS0rm9kISKgdExWRErKq3TkZxFPMsfxJTAgqLC8Q4F/ 9XBEK6I0diQdanfALBAYtzO2d2yiG5maM5RI0aGgZrlpVqBiPLDUQVJCW+Ce2Nq8 rAsXQdZAx347NA+LEYJN9wgAZUHWOQv5XFNyLyelaU0IE683cyuUO1xgir/nGlqd +BzC4CQgmQiPyri0qjPBiRgWUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7fz2/s S3wyVFfLg/KE4GkdeFt+MB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyOC84QTRBREVFNEExMUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVC ZFI4WGVyV3Y3WUs4d3lwV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfmcwSuZlfPCoLvh/FcGkM0Sbe4ywkCh3fSkGrDEITwMP7HaRp1ig/ zuyLD6/pNt+ZSe+HH+/cU5rjUFnsxZsmCm5uEPR7jj3nwfIpv3l7QkVq7itsJxF+ xhmdlHDcrhMr1HIGUclFIkc8EZdF7djBmV48SV/C7ZU7bV/pLY0nXWMGbML8fEu9 CqJeVeUKdISkaP1JWxRw1bhzjAc692YM7A1+D+ORfmwzqsgwbi6h40qhpeYu3T5S dUvGYzygnhKODP1hZPMpVeVHGx9XatOpm8e8uaHkze2JXv2nR+tniGobAooe/XPb R8Jh04t7ylPkgrBV9cy6whxxTlnb+jNz -----END CERTIFICATE-----Generated at Sun Jul 6 01:07:45 2025 by rpki-client