$ rpki-client -vvf rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft File: GHJyN_a30WUlK_m9s4a24ergVXQ.mft (raw, json) Hash identifier: uZkx+1i9ktvgu1eAvMpasWcz7APPP/OaBqvb17VUvYg= Subject key identifier: 9D:47:9C:C3:6A:92:CC:F9:90:46:79:18:22:EC:1C:E5:46:71:E4:1D Authority key identifier: 18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 Certificate issuer: /CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Certificate serial: 02F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft Manifest number: 02F0 Signing time: Tue 01 Jul 2025 01:55:49 +0000 Manifest this update: Tue 01 Jul 2025 01:55:49 +0000 Manifest next update: Tue 08 Jul 2025 01:55:49 +0000 Files and hashes: 1: GHJyN_a30WUlK_m9s4a24ergVXQ.crl (hash: AlZvpFfO7dVpQLBnabnzHp+/5fyHJv2QF0tPXavHw1A=) 2: FCA92EAAE4AD11EC839CED77C4F9AE02.roa (hash: wW4HCqhcoyo/dCvusJDIhbj+A+f9Rh4hUlMCJe2c3dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 756 (0x2f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917418A, serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Validity Not Before: Jul 1 01:55:49 2025 GMT Not After : Jul 8 01:55:49 2025 GMT Subject: CN=68634025-6680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5f:bf:32:ec:83:16:fe:22:7d:58:34:e8:24: 59:59:6a:be:c9:7b:2f:fd:62:ea:d1:d1:3a:ab:f9: 46:bc:48:12:4d:8b:33:27:6b:ed:53:ff:ad:c5:dc: b1:9c:56:e4:d9:11:0d:45:78:a7:c8:2f:0d:70:94: 47:e7:a2:25:8a:19:4a:89:6e:48:18:ac:5b:99:27: 66:ed:59:a1:ce:42:3c:39:3c:81:f2:09:d3:5e:9b: 90:54:ca:91:15:92:a0:02:d4:b1:16:c5:e1:36:e2: 9f:e7:48:b2:96:8c:d6:05:c6:3f:3c:ee:8b:58:2c: a6:06:db:eb:1d:8e:c4:f8:f4:01:a3:fb:9d:4e:b2: 76:bb:c9:7a:06:29:0d:7c:7f:fa:36:7b:a6:f5:c9: 31:7c:d4:88:cc:4c:65:d7:2a:91:4d:3b:4c:6d:1e: 7e:63:25:2f:4c:c1:88:36:90:22:d0:1c:e1:13:cc: b2:70:17:12:de:81:7d:ad:a5:fa:c0:88:79:1b:1b: 04:0f:c5:97:e5:74:3a:e4:7f:d1:ad:e9:d5:a9:20: 37:55:ce:13:76:fe:43:38:7d:06:a6:5f:85:26:d0: 46:c6:2d:f8:2f:99:b6:0e:26:2f:bd:0b:36:8a:23: c6:a7:3a:4a:3a:f4:7a:22:20:a3:ef:08:6c:d5:6f: b6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:47:9C:C3:6A:92:CC:F9:90:46:79:18:22:EC:1C:E5:46:71:E4:1D X509v3 Authority Key Identifier: keyid:18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:73:e7:b6:63:97:b5:cc:f9:43:4a:d0:34:64:77:bc:be:db: 6a:0e:c6:98:80:8f:6a:f0:94:95:c5:96:2c:5a:33:a5:b8:bc: 73:34:eb:55:84:3b:28:ad:63:30:11:27:46:62:0e:76:b4:3f: ce:6c:d4:27:a3:c1:3e:cf:6b:7f:7b:5a:a2:e7:c0:0e:aa:6f: 38:2b:7f:99:71:c1:6b:59:4a:7b:4e:6f:ab:2a:f3:e9:34:f0: 0a:86:b2:ff:11:c9:aa:9c:32:0d:b9:c6:46:a8:d3:b6:1e:24: f9:88:f2:40:00:1d:5d:ec:60:44:8f:76:c1:d3:78:7d:4a:50: 01:ff:a9:7e:44:4d:c0:61:31:12:40:f0:9e:5a:81:11:10:67: 7f:e1:c5:28:af:33:ba:97:b6:54:c9:e8:c9:20:da:ad:ba:36: e1:52:05:ae:dc:fb:19:d5:a0:9e:62:3b:8b:0e:4e:92:72:51: dd:04:de:25:26:38:ed:bf:ed:48:1d:9a:96:64:b2:33:6f:4b: a7:3d:f2:f2:9f:17:fd:9b:c8:9a:69:32:4a:fa:0a:58:a9:b2: ef:e7:38:32:5c:67:6f:3c:d0:df:9c:01:4c:70:02:e8:b3:e6: dd:bf:7e:4b:04:68:f0:2e:68:7f:ae:3a:47:3c:39:05:9e:24: 80:17:3a:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOEExMTAvBgNVBAUTKDE4NzI3MjM3RjZCN0QxNjUyNTJCRjlCREIzODZCNkUx RUFFMDU1NzQwHhcNMjUwNzAxMDE1NTQ5WhcNMjUwNzA4MDE1NTQ5WjAYMRYwFAYD VQQDEw02ODYzNDAyNS02NjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1+/MuyDFv4ifVg06CRZWWq+yXsv/WLq0dE6q/lGvEgSTYszJ2vtU/+txdyx nFbk2RENRXinyC8NcJRH56IlihlKiW5IGKxbmSdm7VmhzkI8OTyB8gnTXpuQVMqR FZKgAtSxFsXhNuKf50iylozWBcY/PO6LWCymBtvrHY7E+PQBo/udTrJ2u8l6BikN fH/6Nnum9ckxfNSIzExl1yqRTTtMbR5+YyUvTMGINpAi0BzhE8yycBcS3oF9raX6 wIh5GxsED8WX5XQ65H/RrenVqSA3Vc4Tdv5DOH0Gpl+FJtBGxi34L5m2DiYvvQs2 iiPGpzpKOvR6IiCj7whs1W+2fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1HnMNq ksz5kEZ5GCLsHOVGceQdMB8GA1UdIwQYMBaAFBhycjf2t9FlJSv5vbOGtuHq4FV0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE4QS8wRTA5MDk2OEU0 QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBXVWxLX205czRhMjRlcmdW WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dISnlOX2EzMFdVbEtfbTlzNGEyNGVyZ1ZYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE4QS8wRTA5MDk2OEU0QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBX VWxLX205czRhMjRlcmdWWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoc+e2Y5e1zPlDStA0ZHe8vttqDsaYgI9q8JSVxZYsWjOluLxzNOtV hDsorWMwESdGYg52tD/ObNQno8E+z2t/e1qi58AOqm84K3+ZccFrWUp7Tm+rKvPp NPAKhrL/EcmqnDINucZGqNO2HiT5iPJAAB1d7GBEj3bB03h9SlAB/6l+RE3AYTES QPCeWoEREGd/4cUorzO6l7ZUyejJINqtujbhUgWu3PsZ1aCeYjuLDk6SclHdBN4l Jjjtv+1IHZqWZLIzb0unPfLynxf9m8iaaTJK+gpYqbLv5zgyXGdvPNDfnAFMcALo s+bdv35LBGjwLmh/rjpHPDkFniSAFzoB -----END CERTIFICATE-----Generated at Wed Jul 2 16:36:44 2025 by rpki-client