$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: qEBVBCMDFzj4Gr4VuzkW6IpDKF7CYbqXj9a+8cDM6/c= Subject key identifier: 46:46:24:98:09:AA:DE:6E:47:AF:BE:6F:B3:C0:54:0F:3F:29:C1:ED Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B2F Signing time: Mon 30 Jun 2025 19:22:20 +0000 Manifest this update: Mon 30 Jun 2025 19:22:19 +0000 Manifest next update: Mon 07 Jul 2025 19:22:19 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: QC1e9nOpd9NDGXga3Jgv7KrSp5pD3IWF0+tYAEFQLXA=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2876 (0xb3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Jun 30 19:22:19 2025 GMT Not After : Jul 7 19:22:19 2025 GMT Subject: CN=6862e3ec-7c0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:22:ea:bc:8e:1a:34:fa:4a:59:4b:4a:a8:69: 22:77:b1:49:e7:3d:db:a7:d9:e6:d3:7d:47:b7:ff: 77:20:6e:fa:40:50:cd:28:5c:bb:6f:27:21:eb:a1: 18:ca:33:44:55:70:bc:7d:1e:33:13:22:99:2e:c6: e5:e7:9f:b0:42:85:49:02:8c:8c:de:c0:86:98:e8: b3:d6:50:e6:b6:ca:ca:99:d6:32:34:ec:02:87:6c: 8c:c0:21:ad:8e:81:48:ef:b8:62:27:37:55:a6:af: 13:4b:6a:c2:c6:2f:62:4d:bf:21:28:8a:4f:1f:41: 5e:ee:33:8a:8f:5f:45:89:4c:71:bf:22:f7:89:f0: b7:76:2f:c7:db:9e:f3:5d:81:bb:42:ad:87:8c:56: 86:a5:a7:db:38:34:b3:e1:49:02:dc:72:c5:fb:9b: e2:71:56:57:39:b2:a8:17:b2:d3:a1:34:9d:b6:bf: 8c:03:71:bf:c7:8f:85:07:ee:04:63:6b:1b:ef:61: 00:dc:3d:77:03:62:c0:26:8f:16:04:f6:5a:3c:d2: b4:f1:33:53:bd:92:28:18:87:1f:33:95:70:b5:88: 6e:a1:60:3b:65:f2:ef:df:b0:77:11:dc:bb:9e:58: cf:e2:d5:c7:a1:20:e8:5b:f8:1a:84:1c:dc:58:f7: 00:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:46:24:98:09:AA:DE:6E:47:AF:BE:6F:B3:C0:54:0F:3F:29:C1:ED X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ad:51:11:c0:3b:d2:47:28:b7:cb:7c:27:f6:0f:1a:ad:c6: 4a:48:4a:32:1f:39:44:46:c5:4e:d0:9f:9f:df:d9:4d:47:6b: d9:49:b7:40:df:0a:f6:84:b2:39:cd:59:d5:6c:ad:fc:54:ad: bf:c6:3f:4c:ce:6b:fe:7b:be:f0:ff:02:84:86:81:52:96:35: 70:c1:1c:99:2b:dd:8a:7e:95:e4:ea:99:f8:03:19:87:1b:0e: 2d:e3:39:a7:de:17:23:12:c6:13:ed:e3:94:c4:5e:51:b4:5f: f8:1a:a3:ed:f5:84:25:9c:b4:03:c8:06:ac:fa:30:14:9e:63: ab:5e:d7:0b:45:24:96:20:bf:af:ec:c4:da:f7:02:9b:85:d8: 55:b6:34:e0:c2:01:1b:d4:77:f4:d0:83:0b:fc:f0:08:63:2a: 87:b4:89:70:40:8d:93:47:53:fd:cb:d8:44:2e:07:26:4b:cf: 6f:26:d7:3d:e6:35:56:1f:a3:44:56:38:a4:25:70:76:d2:e3: ab:f6:dc:bd:c6:c6:17:11:a6:ea:6b:1e:51:7e:2b:99:0c:c4: 40:4b:95:6c:00:75:72:6e:b3:6a:11:69:fc:df:ff:e4:b5:c5: 7e:69:77:dc:d1:1b:25:c3:5b:2c:6a:e1:56:24:20:a6:73:83: 4a:8f:04:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUwNjMwMTkyMjE5WhcNMjUwNzA3MTkyMjE5WjAYMRYwFAYD VQQDEw02ODYyZTNlYy03YzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yLqvI4aNPpKWUtKqGkid7FJ5z3bp9nm031Ht/93IG76QFDNKFy7bych66EY yjNEVXC8fR4zEyKZLsbl55+wQoVJAoyM3sCGmOiz1lDmtsrKmdYyNOwCh2yMwCGt joFI77hiJzdVpq8TS2rCxi9iTb8hKIpPH0Fe7jOKj19FiUxxvyL3ifC3di/H257z XYG7Qq2HjFaGpafbODSz4UkC3HLF+5vicVZXObKoF7LToTSdtr+MA3G/x4+FB+4E Y2sb72EA3D13A2LAJo8WBPZaPNK08TNTvZIoGIcfM5VwtYhuoWA7ZfLv37B3Edy7 nljP4tXHoSDoW/gahBzcWPcAJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZGJJgJ qt5uR6++b7PAVA8/KcHtMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwrVERwDvSRyi3y3wn9g8arcZKSEoyHzlERsVO0J+f39lNR2vZSbdA 3wr2hLI5zVnVbK38VK2/xj9Mzmv+e77w/wKEhoFSljVwwRyZK92KfpXk6pn4AxmH Gw4t4zmn3hcjEsYT7eOUxF5RtF/4GqPt9YQlnLQDyAas+jAUnmOrXtcLRSSWIL+v 7MTa9wKbhdhVtjTgwgEb1Hf00IML/PAIYyqHtIlwQI2TR1P9y9hELgcmS89vJtc9 5jVWH6NEVjikJXB20uOr9ty9xsYXEabqax5RfiuZDMRAS5VsAHVybrNqEWn83//k tcV+aXfc0Rslw1ssauFWJCCmc4NKjwRt -----END CERTIFICATE-----Generated at Tue Jul 1 20:26:38 2025 by rpki-client