$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft File: gJ7_H3gZuBdR8XerWv7YK8wypWk.mft (raw, json) Hash identifier: 20U/dWv3beKETMHTDwDvRP/VUHm2WXIPr1tT89knywY= Subject key identifier: 56:D3:CC:3E:E2:F4:CA:A2:26:33:77:BE:63:57:89:1C:DC:09:1D:54 Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 0610 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft Manifest number: 060B Signing time: Wed 14 May 2025 22:54:33 +0000 Manifest this update: Wed 14 May 2025 22:54:33 +0000 Manifest next update: Wed 21 May 2025 22:54:33 +0000 Files and hashes: 1: gJ7_H3gZuBdR8XerWv7YK8wypWk.crl (hash: okFoKHemqDMee/VyojmoBNgohGuCubH6/6I5CuX6/04=) 2: 687D7178B85D11EBB2E17F26C4F9AE02.roa (hash: IMdjByBIYJm1pushgtHVRf7baWnF2aGGxcZRsZb6Kqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1552 (0x610) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028, serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Validity Not Before: May 14 22:54:33 2025 GMT Not After : May 21 22:54:33 2025 GMT Subject: CN=68251f29-9759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c0:d9:17:bd:5e:d7:58:2e:42:2f:48:31:2f: 19:98:14:1e:f6:64:a2:bb:99:ef:9a:99:6e:8d:fc: 54:6f:9a:b4:47:f1:0f:b4:d1:94:3b:68:17:d7:90: c3:26:e2:16:29:72:f2:b3:2a:fd:ce:f9:2a:97:c0: ae:c5:f7:ba:3d:f3:fd:a6:3d:a6:ae:56:9e:86:45: a5:d0:d8:b1:78:9c:66:6a:7c:b6:1f:ab:a1:15:66: 1d:b9:f7:ea:5c:6a:94:88:cd:f1:5a:cd:c7:f2:d8: f7:a7:ff:c9:dc:5b:d3:1f:58:d3:24:d6:4c:dc:5c: 0d:8f:fd:4e:83:26:6f:b3:b7:5e:93:2a:51:48:89: 4f:a6:67:0e:a6:82:b7:b8:ab:39:86:49:2e:ae:f8: 44:c9:71:a2:9f:de:03:2a:ab:61:4e:a7:56:17:c3: a3:52:44:8b:2d:f9:4a:72:50:de:a8:fa:dc:8c:75: 8c:3a:f8:b5:12:30:3a:2d:b2:b7:eb:82:f1:5f:35: 4f:da:35:18:b3:86:cf:d1:98:ed:c8:a7:25:51:ae: f3:18:5a:9f:33:42:77:2a:9d:55:ad:ef:4f:80:fe: 95:59:98:f6:cf:df:3a:00:6c:29:2d:f2:92:55:f1: 8b:a1:42:39:b5:c0:ef:1d:12:df:13:61:e5:9c:49: 7e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D3:CC:3E:E2:F4:CA:A2:26:33:77:BE:63:57:89:1C:DC:09:1D:54 X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:67:8c:ff:eb:f3:f8:0c:cb:e0:61:28:c4:d3:bd:88:77:69: 3a:8d:f5:89:4b:23:9d:5d:60:13:3b:64:26:05:f0:f6:e5:83: 03:cf:58:fd:f7:63:c9:7d:d4:5a:d6:63:fe:01:04:e0:39:01: 79:25:e0:ce:b1:dd:47:6b:eb:76:6a:25:9d:f5:61:7a:b6:f0: 33:2f:c9:52:33:3b:b8:cc:cf:9e:b0:25:7a:85:68:4c:35:a2: 06:1f:50:0c:b9:37:b5:a1:88:19:d3:70:e9:c6:dd:00:99:77: 0a:b0:2a:c1:da:43:41:78:3a:c8:20:e0:da:5a:94:2f:c5:2f: 5c:65:50:a8:02:18:12:93:aa:d9:25:52:82:26:21:70:57:d6: b1:9e:3b:05:8f:23:10:9e:e7:47:a4:51:ee:bf:b8:2b:b0:6a: c0:64:f8:26:fb:03:d8:c1:fc:d5:28:40:c1:7b:48:13:3f:04: ef:c7:ca:51:bf:85:de:9a:3f:e2:30:c7:c3:a5:1e:cd:ea:7a: e4:7f:10:39:d4:5d:49:f5:91:0b:9b:c2:6e:94:84:42:a3:2e: 77:93:78:46:89:1d:5c:52:fd:1a:b7:9a:f0:e6:d1:09:6c:f8: 8b:c8:0f:bf:c8:31:a8:c8:a9:de:3d:00:3c:08:ae:a4:34:59: 6d:67:13:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjUwNTE0MjI1NDMzWhcNMjUwNTIxMjI1NDMzWjAYMRYwFAYD VQQDEw02ODI1MWYyOS05NzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8DZF71e11guQi9IMS8ZmBQe9mSiu5nvmplujfxUb5q0R/EPtNGUO2gX15DD JuIWKXLysyr9zvkql8Cuxfe6PfP9pj2mrlaehkWl0NixeJxmany2H6uhFWYduffq XGqUiM3xWs3H8tj3p//J3FvTH1jTJNZM3FwNj/1OgyZvs7dekypRSIlPpmcOpoK3 uKs5hkkurvhEyXGin94DKqthTqdWF8OjUkSLLflKclDeqPrcjHWMOvi1EjA6LbK3 64LxXzVP2jUYs4bP0ZjtyKclUa7zGFqfM0J3Kp1Vre9PgP6VWZj2z986AGwpLfKS VfGLoUI5tcDvHRLfE2HlnEl+ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbTzD7i 9MqiJjN3vmNXiRzcCR1UMB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyOC84QTRBREVFNEExMUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVC ZFI4WGVyV3Y3WUs4d3lwV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzZ4z/6/P4DMvgYSjE072Id2k6jfWJSyOdXWATO2QmBfD25YMDz1j9 92PJfdRa1mP+AQTgOQF5JeDOsd1Ha+t2aiWd9WF6tvAzL8lSMzu4zM+esCV6hWhM NaIGH1AMuTe1oYgZ03Dpxt0AmXcKsCrB2kNBeDrIIODaWpQvxS9cZVCoAhgSk6rZ JVKCJiFwV9axnjsFjyMQnudHpFHuv7grsGrAZPgm+wPYwfzVKEDBe0gTPwTvx8pR v4Xemj/iMMfDpR7N6nrkfxA51F1J9ZELm8JulIRCoy53k3hGiR1cUv0at5rw5tEJ bPiLyA+/yDGoyKnePQA8CK6kNFltZxPZ -----END CERTIFICATE-----Generated at Fri May 16 09:42:09 2025 by rpki-client