$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: +DlQ3MvDfsQdq3L2cofxkzuygy3D+rPAAKYl4UcCZ7s= Subject key identifier: AA:C6:FB:84:AD:B3:69:05:E2:8C:89:92:4B:0B:5B:91:23:6E:17:28 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 0666 Signing time: Thu 03 Jul 2025 00:35:45 +0000 Manifest this update: Thu 03 Jul 2025 00:35:45 +0000 Manifest next update: Thu 10 Jul 2025 00:35:45 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: 0oXefwEXGm08KEvhFgTwj/V3RipjkhE9pLefOnq9Ocs=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: 6xK46XhJtyZvl0GV6Tg9wg5kNg7cdtZOaQsNEIc5Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Jul 3 00:35:45 2025 GMT Not After : Jul 10 00:35:45 2025 GMT Subject: CN=6865d061-ba5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a6:a6:16:65:87:b3:c4:2d:a5:99:b8:01:24: 33:2b:87:d7:ec:20:00:f9:a1:19:52:8d:5c:48:1a: 57:11:6c:5b:4c:a1:44:f6:84:30:f6:37:07:04:b0: df:79:70:18:c5:3c:75:58:fc:12:92:f1:93:42:17: 25:8c:b4:6d:c3:25:8b:88:c2:48:71:01:e7:0d:49: 00:f0:2a:96:ca:70:88:51:ba:54:be:9f:a5:cd:54: 12:e4:2a:8c:4e:78:1d:f0:6d:e1:ae:74:cf:32:84: cd:7f:9b:28:99:ab:0c:04:e0:b7:5d:65:a4:65:54: 48:0c:8d:73:ac:7c:01:60:3d:18:f7:0e:0c:17:a5: 95:b9:e5:57:0c:52:ef:06:21:62:d0:09:dd:04:ce: 40:44:6a:22:5b:e4:f5:8c:eb:90:bc:8a:4f:af:f7: 7a:be:f4:70:56:b9:81:f5:28:20:9b:94:1a:5a:b0: 09:bf:b9:d0:33:a6:56:fa:f5:3a:b0:e4:3b:d1:8d: 5c:92:1a:37:05:a9:bb:94:4b:70:93:d4:33:f8:eb: 9b:fd:3e:81:ab:43:7f:13:61:d5:80:e9:28:bb:57: 30:bd:f1:3b:2f:a6:c9:d2:e8:79:b6:15:40:52:43: 0f:86:16:44:5a:93:53:76:a2:5b:5c:de:24:70:94: df:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C6:FB:84:AD:B3:69:05:E2:8C:89:92:4B:0B:5B:91:23:6E:17:28 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:e6:59:43:42:9e:08:a9:09:ff:d5:7e:6d:d7:51:58:2a:0f: c4:e9:25:32:16:8c:b0:33:b4:6a:89:ee:df:ef:ff:d3:c7:08: 44:4e:eb:8b:81:d9:dc:1f:fd:b2:c7:2f:b7:08:ed:d8:bd:f2: 9f:ed:6e:84:8e:9d:15:d2:a0:45:29:25:c8:53:90:ff:62:df: f3:c0:62:94:6e:70:e4:39:bc:b5:88:56:72:ed:bf:4d:0a:64: 65:fe:b0:35:58:55:4b:89:18:ce:6d:c3:68:d6:a0:66:85:67: 5c:f4:0f:cb:2f:4f:b7:c0:86:6a:c4:4e:b5:ae:68:42:58:0c: a5:86:a0:13:6d:ee:cb:cf:20:8f:cb:2e:0a:87:d0:68:cc:8c: f5:1e:f1:78:fa:e4:72:0d:52:4d:b9:db:42:ae:92:a9:18:f0: 48:e8:ab:e0:53:a8:bf:ca:08:e4:d4:5d:ad:b0:51:c1:06:d4: 8b:41:21:73:2f:30:db:4a:f3:7e:43:a3:81:70:32:13:29:19: 8e:45:2b:87:c5:e6:0c:69:30:37:5e:ad:b9:49:54:76:37:87: 61:55:57:fb:53:b7:76:ae:44:4a:22:21:e3:37:e8:29:00:4f: b6:2c:de:94:0d:e0:da:8b:90:d7:23:2e:fc:9b:d3:f0:57:06: a6:06:12:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUwNzAzMDAzNTQ1WhcNMjUwNzEwMDAzNTQ1WjAYMRYwFAYD VQQDEw02ODY1ZDA2MS1iYTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6amFmWHs8QtpZm4ASQzK4fX7CAA+aEZUo1cSBpXEWxbTKFE9oQw9jcHBLDf eXAYxTx1WPwSkvGTQhcljLRtwyWLiMJIcQHnDUkA8CqWynCIUbpUvp+lzVQS5CqM Tngd8G3hrnTPMoTNf5somasMBOC3XWWkZVRIDI1zrHwBYD0Y9w4MF6WVueVXDFLv BiFi0AndBM5ARGoiW+T1jOuQvIpPr/d6vvRwVrmB9Sggm5QaWrAJv7nQM6ZW+vU6 sOQ70Y1ckho3Bam7lEtwk9Qz+Oub/T6Bq0N/E2HVgOkou1cwvfE7L6bJ0uh5thVA UkMPhhZEWpNTdqJbXN4kcJTfqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrG+4St s2kF4oyJkksLW5EjbhcoMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN5llDQp4IqQn/1X5t11FYKg/E6SUyFoywM7Rqie7f7//TxwhETuuL gdncH/2yxy+3CO3YvfKf7W6Ejp0V0qBFKSXIU5D/Yt/zwGKUbnDkOby1iFZy7b9N CmRl/rA1WFVLiRjObcNo1qBmhWdc9A/LL0+3wIZqxE61rmhCWAylhqATbe7LzyCP yy4Kh9BozIz1HvF4+uRyDVJNudtCrpKpGPBI6KvgU6i/ygjk1F2tsFHBBtSLQSFz LzDbSvN+Q6OBcDITKRmORSuHxeYMaTA3Xq25SVR2N4dhVVf7U7d2rkRKIiHjN+gp AE+2LN6UDeDai5DXIy78m9PwVwamBhJG -----END CERTIFICATE-----Generated at Thu Jul 3 09:37:01 2025 by rpki-client