$ rpki-client -vvf rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft File: gCfg71TQC2H3E28JcZv89MRTNAU.mft (raw, json) Hash identifier: 1DFe+mxmECYAeuahA1JjStdbvPjQPCSMgWdIX+8wehg= Subject key identifier: D1:1E:85:02:AF:44:6C:3F:26:49:79:D1:39:1C:62:44:58:25:26:EE Authority key identifier: 80:27:E0:EF:54:D0:0B:61:F7:13:6F:09:71:9B:FC:F4:C4:53:34:05 Certificate issuer: /CN=A9182CFC/serialNumber=8027E0EF54D00B61F7136F09719BFCF4C4533405 Certificate serial: 34D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft Manifest number: 34C7 Signing time: Fri 04 Jul 2025 14:31:36 +0000 Manifest this update: Fri 04 Jul 2025 14:31:36 +0000 Manifest next update: Fri 11 Jul 2025 14:31:36 +0000 Files and hashes: 1: gCfg71TQC2H3E28JcZv89MRTNAU.crl (hash: YhCeM5jvSH+xNZNzjzlEJuuKEAPURFZ7A4QWma5MDc0=) 2: 60020E9436F511F0B22B5E24C4F9AE02.roa (hash: JetDV/3YonU90g4PmXfe9VaHyV+YwCaNx8AIiUOEL+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.crl rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13522 (0x34d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182CFC, serialNumber=8027E0EF54D00B61F7136F09719BFCF4C4533405 Validity Not Before: Jul 4 14:31:36 2025 GMT Not After : Jul 11 14:31:36 2025 GMT Subject: CN=6867e5c8-9d04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f9:5f:dc:9c:b9:0c:e3:fd:5b:1d:28:b3:7f: 46:af:a9:f1:15:51:78:c4:33:81:30:83:17:1c:1a: b1:e3:bb:ac:29:38:1d:49:31:b6:a3:09:37:2a:be: fa:ed:4f:e5:fd:b4:60:50:df:b0:20:39:06:79:26: 15:5d:41:e7:50:52:68:b0:22:b4:d0:90:13:06:e0: 1f:73:3b:5e:42:6d:74:30:f7:05:79:d3:85:d0:b0: 7c:2d:07:ca:b6:8d:73:fd:c1:da:00:7f:6b:cf:87: 95:17:ec:2f:88:57:b6:b6:2e:89:3d:d7:00:01:c0: c5:fc:7f:14:01:34:52:56:26:d8:45:46:fd:40:89: df:0a:cb:31:15:0c:8d:67:53:b4:4d:fc:eb:69:55: 7d:5e:33:5e:10:69:2a:35:0c:4f:d6:7e:8a:52:4b: 58:53:62:2e:9e:6e:55:7d:ff:9a:ef:85:21:e5:e9: a3:2b:f3:d4:4a:55:2f:66:06:f4:66:34:bb:9c:30: 02:04:38:ed:e5:b0:1f:08:e2:6b:45:5e:73:13:36: 15:ae:8f:78:e1:6b:37:c1:2f:2b:40:76:ca:b4:79: ba:84:d2:bb:6e:6c:a2:ba:6a:c3:63:bb:85:a9:43: b9:94:d3:03:6f:99:db:6a:98:5a:35:06:0b:fc:0f: e2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1E:85:02:AF:44:6C:3F:26:49:79:D1:39:1C:62:44:58:25:26:EE X509v3 Authority Key Identifier: keyid:80:27:E0:EF:54:D0:0B:61:F7:13:6F:09:71:9B:FC:F4:C4:53:34:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:9d:9e:b9:1c:0a:01:72:c2:54:74:54:be:8f:6c:4b:4d:fc: 13:3f:09:57:a0:34:e7:c0:e0:68:e2:73:b7:92:43:a3:04:c8: 84:60:5d:d8:66:ad:13:8d:1f:73:83:9e:7c:94:a2:42:bf:4d: d1:a8:cb:8f:4d:5a:41:4f:4d:02:95:b3:18:75:7c:9a:67:52: 06:8a:ab:86:56:5a:e6:4e:e3:b6:6d:14:12:c7:65:e0:30:7c: 46:aa:1b:2e:3e:17:bc:61:5f:8f:8e:3a:bd:5e:af:39:73:5a: 38:60:8c:fa:66:ee:e4:52:63:19:ec:21:5d:b8:78:06:d3:13: 88:cf:d6:b3:7a:9b:62:fa:9d:2f:be:e9:ab:94:cd:6a:b2:7d: 90:c9:3b:58:9d:59:fa:96:0a:c8:63:82:92:43:b1:83:b5:3e: ff:45:e6:1a:f2:bd:1e:65:79:55:40:d1:70:f2:f3:47:63:f8: db:52:f2:5e:2e:d3:a2:bd:d8:b1:a0:27:28:98:e4:17:98:80: a7:24:c2:91:fb:9e:05:e8:cf:b0:6b:cc:b6:ee:0d:75:43:d5: d6:4d:e4:46:de:65:4a:92:a9:cb:19:4b:9f:b3:7f:08:6d:5c: 42:c8:9f:98:00:3b:1f:2e:27:fd:22:20:1b:2f:7d:ce:d6:96: 71:00:58:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJDRkMxMTAvBgNVBAUTKDgwMjdFMEVGNTREMDBCNjFGNzEzNkYwOTcxOUJGQ0Y0 QzQ1MzM0MDUwHhcNMjUwNzA0MTQzMTM2WhcNMjUwNzExMTQzMTM2WjAYMRYwFAYD VQQDEw02ODY3ZTVjOC05ZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Plf3Jy5DOP9Wx0os39Gr6nxFVF4xDOBMIMXHBqx47usKTgdSTG2owk3Kr76 7U/l/bRgUN+wIDkGeSYVXUHnUFJosCK00JATBuAfczteQm10MPcFedOF0LB8LQfK to1z/cHaAH9rz4eVF+wviFe2ti6JPdcAAcDF/H8UATRSVibYRUb9QInfCssxFQyN Z1O0TfzraVV9XjNeEGkqNQxP1n6KUktYU2Iunm5Vff+a74Uh5emjK/PUSlUvZgb0 ZjS7nDACBDjt5bAfCOJrRV5zEzYVro944Ws3wS8rQHbKtHm6hNK7bmyiumrDY7uF qUO5lNMDb5nbaphaNQYL/A/ilwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEehQKv RGw/Jkl50TkcYkRYJSbuMB8GA1UdIwQYMBaAFIAn4O9U0Ath9xNvCXGb/PTEUzQF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkNGQy9CRjg0QjU3NDFE ODYxMUUyQTc2MzQ0REUwOEIwMkNEMi9nQ2ZnNzFUUUMySDNFMjhKY1p2ODlNUlRO QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDZmc3MVRRQzJIM0UyOEpjWnY4OU1SVE5BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MkNGQy9CRjg0QjU3NDFEODYxMUUyQTc2MzQ0REUwOEIwMkNEMi9nQ2ZnNzFUUUMy SDNFMjhKY1p2ODlNUlROQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChnZ65HAoBcsJUdFS+j2xLTfwTPwlXoDTnwOBo4nO3kkOjBMiEYF3Y Zq0TjR9zg558lKJCv03RqMuPTVpBT00ClbMYdXyaZ1IGiquGVlrmTuO2bRQSx2Xg MHxGqhsuPhe8YV+Pjjq9Xq85c1o4YIz6Zu7kUmMZ7CFduHgG0xOIz9azepti+p0v vumrlM1qsn2QyTtYnVn6lgrIY4KSQ7GDtT7/ReYa8r0eZXlVQNFw8vNHY/jbUvJe LtOivdixoCcomOQXmICnJMKR+54F6M+wa8y27g11Q9XWTeRG3mVKkqnLGUufs38I bVxCyJ+YADsfLif9IiAbL33O1pZxAFgD -----END CERTIFICATE-----Generated at Fri Jul 4 21:55:46 2025 by rpki-client