$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft File: gH5oiqUL0-OL4xtdTE4GCATrFdw.mft (raw, json) Hash identifier: n1MXa5l3Cy9+yVsib0O5nWmDYBP5Xi49BqHwjM9KH68= Subject key identifier: BA:5D:27:64:6B:E1:5B:D0:E4:06:85:57:55:D8:E9:63:3D:60:36:E7 Authority key identifier: 80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC Certificate issuer: /CN=A918F0E2/serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft Manifest number: 79 Signing time: Thu 03 Jul 2025 07:00:54 +0000 Manifest this update: Thu 03 Jul 2025 07:00:53 +0000 Manifest next update: Thu 10 Jul 2025 07:00:53 +0000 Files and hashes: 1: gH5oiqUL0-OL4xtdTE4GCATrFdw.crl (hash: +jNHOxR+mjIwyre72Z5QA4A19k0nntmmSkO3rwJHV70=) 2: EF63DB0EA26B11EF8F077C3FC4F9AE02.roa (hash: etgfr2FMXbKAdL4ONMDhHdEqlj7eq8Os+Vy9Aq6JfHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0E2, serialNumber=807E688AA50BD3E38BE31B5D4C4E060804EB15DC Validity Not Before: Jul 3 07:00:53 2025 GMT Not After : Jul 10 07:00:53 2025 GMT Subject: CN=68662aa5-0402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cd:20:cf:f6:eb:77:25:54:fc:f5:0b:8b:e1: 9e:63:81:63:de:d7:7b:96:6d:29:d6:35:1f:f9:6c: f2:ed:ec:0f:05:1c:63:89:f9:c6:ac:8a:0c:a6:73: 59:33:3c:67:38:3d:f1:88:f2:da:e6:e1:2a:e8:53: 3a:31:21:85:de:06:cb:4b:59:3c:ff:09:6c:79:3d: 92:9c:a2:74:99:22:3d:4f:83:81:4c:8d:cb:89:fc: 1e:bc:f8:6f:f5:14:38:7a:0d:4a:29:51:9a:09:c0: 27:84:7a:cf:02:07:8e:c4:4d:b4:41:42:79:d8:6f: d1:2e:b2:65:37:60:47:ad:74:3e:fc:dd:5f:b5:a2: f8:ec:9f:07:79:6b:99:85:30:c9:37:94:b2:75:c0: dd:4b:ae:9e:b8:72:f9:a6:b4:90:59:a8:9e:4e:9d: 67:21:08:62:8c:80:77:b3:98:16:e3:63:28:5d:fa: dc:86:62:ac:fe:94:cf:ca:70:47:c6:20:21:1c:5c: fa:06:12:28:fd:bf:98:46:c8:57:07:19:92:72:21: eb:bf:f7:db:c1:21:8c:59:f8:ed:f5:d4:46:3d:28: 15:e9:39:7d:ab:be:5a:b8:24:01:2b:41:0c:46:c7: 78:86:43:bc:9b:7b:c8:c4:f4:47:0d:37:75:37:ef: 17:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:5D:27:64:6B:E1:5B:D0:E4:06:85:57:55:D8:E9:63:3D:60:36:E7 X509v3 Authority Key Identifier: keyid:80:7E:68:8A:A5:0B:D3:E3:8B:E3:1B:5D:4C:4E:06:08:04:EB:15:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gH5oiqUL0-OL4xtdTE4GCATrFdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0E2/2B4BB42EA25E11EFA38D9375C4F9AE02/gH5oiqUL0-OL4xtdTE4GCATrFdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:aa:67:9c:d6:58:d6:db:2d:db:45:85:6f:79:86:62:a7:46: 75:a3:dd:03:c5:3f:7b:8e:75:4c:36:07:14:be:e3:05:7e:56: ae:5b:27:94:92:16:a9:24:d0:c1:c4:11:a9:8c:15:b6:ff:9e: 3e:4e:75:3a:c1:5d:0f:79:20:79:80:cc:e9:72:6e:ed:86:73: 73:bb:de:15:86:86:f3:4b:87:64:8f:31:65:95:a5:21:f8:60: 15:fd:38:37:4b:9c:ec:2f:fb:a0:ab:21:56:3d:ee:7e:f4:67: 26:aa:a2:f4:18:6f:12:b1:22:32:d8:84:5f:cb:61:7d:e0:5e: 33:bb:a3:20:20:ba:1b:55:1a:32:d3:1d:1b:0f:d2:10:e3:f0: c5:43:21:22:58:85:ce:75:f5:2d:00:93:a8:75:df:5d:2e:2a: 58:3d:9e:e5:df:bd:62:43:f2:d3:90:98:4c:e5:19:16:ce:9c: d7:63:8c:22:ea:05:cd:39:a2:a8:1b:f8:c4:53:06:53:63:d3: 7c:51:43:e5:be:e8:b9:41:83:d9:3c:fb:56:a9:d1:52:5d:c6: 52:50:ac:d4:98:83:de:0a:bd:fc:5a:d1:b4:fc:64:72:ca:f9: 56:ef:b3:36:01:21:15:6f:b2:94:ee:41:66:56:3e:00:d2:74: 1d:a1:e6:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjBFMjExMC8GA1UEBRMoODA3RTY4OEFBNTBCRDNFMzhCRTMxQjVENEM0RTA2MDgw NEVCMTVEQzAeFw0yNTA3MDMwNzAwNTNaFw0yNTA3MTAwNzAwNTNaMBgxFjAUBgNV BAMTDTY4NjYyYWE1LTA0MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwzSDP9ut3JVT89QuL4Z5jgWPe13uWbSnWNR/5bPLt7A8FHGOJ+casigymc1kz PGc4PfGI8trm4SroUzoxIYXeBstLWTz/CWx5PZKconSZIj1Pg4FMjcuJ/B68+G/1 FDh6DUopUZoJwCeEes8CB47ETbRBQnnYb9EusmU3YEetdD783V+1ovjsnwd5a5mF MMk3lLJ1wN1Lrp64cvmmtJBZqJ5OnWchCGKMgHezmBbjYyhd+tyGYqz+lM/KcEfG ICEcXPoGEij9v5hGyFcHGZJyIeu/99vBIYxZ+O311EY9KBXpOX2rvlq4JAErQQxG x3iGQ7ybe8jE9EcNN3U37xffAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUul0nZGvh W9DkBoVXVdjpYz1gNucwHwYDVR0jBBgwFoAUgH5oiqUL0+OL4xtdTE4GCATrFdww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMEUyLzJCNEJCNDJFQTI1 RTExRUZBMzhEOTM3NUM0RjlBRTAyL2dINW9pcVVMMC1PTDR4dGRURTRHQ0FUckZk dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ0g1b2lxVUwwLU9MNHh0ZFRFNEdDQVRyRmR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MEUyLzJCNEJCNDJFQTI1RTExRUZBMzhEOTM3NUM0RjlBRTAyL2dINW9pcVVMMC1P TDR4dGRURTRHQ0FUckZkdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALqqZ5zWWNbbLdtFhW95hmKnRnWj3QPFP3uOdUw2BxS+4wV+Vq5bJ5SS Fqkk0MHEEamMFbb/nj5OdTrBXQ95IHmAzOlybu2Gc3O73hWGhvNLh2SPMWWVpSH4 YBX9ODdLnOwv+6CrIVY97n70ZyaqovQYbxKxIjLYhF/LYX3gXjO7oyAguhtVGjLT HRsP0hDj8MVDISJYhc519S0Ak6h1310uKlg9nuXfvWJD8tOQmEzlGRbOnNdjjCLq Bc05oqgb+MRTBlNj03xRQ+W+6LlBg9k8+1ap0VJdxlJQrNSYg94Kvfxa0bT8ZHLK +VbvszYBIRVvspTuQWZWPgDSdB2h5mY= -----END CERTIFICATE-----Generated at Thu Jul 3 23:21:37 2025 by rpki-client