$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: yiNRw7h0P2puvQX1XbYi6F4JRYUJVADRZB8u8krmgW0= Subject key identifier: D0:38:EF:21:6A:45:36:E7:49:8A:D7:92:A4:E6:87:B7:B1:7E:F0:A2 Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 0621 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 061C Signing time: Mon 30 Jun 2025 23:09:39 +0000 Manifest this update: Mon 30 Jun 2025 23:09:39 +0000 Manifest next update: Mon 07 Jul 2025 23:09:39 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: gX/gBMWsTWGvtpXaTHsrdDU40pYkAIxNl/dHXul40wc=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: ljHjZ6k7MiI2pN3VX1Cgx4pPDWP1h2Cokp04xup/nNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:09:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Jun 30 23:09:39 2025 GMT Not After : Jul 7 23:09:39 2025 GMT Subject: CN=68631933-e794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ed:e4:54:11:e4:28:e7:1f:36:35:e1:74:3f: 38:64:fb:06:ef:8f:7d:5a:49:bf:39:cd:57:d1:0d: a0:a9:c8:c4:5d:32:ac:fc:75:09:a3:40:b4:bf:f3: 40:df:72:61:11:17:ff:15:0a:83:d9:64:fd:01:95: 18:f4:9d:81:42:fa:db:8d:8c:eb:e6:e8:95:f8:05: b8:03:4e:09:3c:4a:d3:03:bc:8b:e1:e3:05:c2:53: 87:1c:98:a3:0c:ab:be:37:9b:8e:5c:c2:7f:1e:14: e8:cc:fd:00:cd:8c:a4:1b:2e:3b:d2:20:51:ee:03: 22:50:da:04:b4:99:f6:3d:0a:31:93:fd:5f:fe:ce: 1d:89:fe:f1:8b:ba:fe:75:5e:2e:09:f8:ed:22:57: 37:65:9b:1d:c2:56:8c:da:10:a3:68:97:64:bb:72: 11:c4:7e:78:0a:bd:d3:30:2c:6e:02:92:3a:56:17: d1:da:2c:05:76:86:bd:0a:92:3c:0c:51:89:82:8e: 60:e7:ad:6f:9a:8a:1f:4d:ae:1f:28:c8:e9:a1:e6: 66:f6:e5:34:b8:08:06:cb:fc:8c:1d:02:db:52:91: e4:b1:44:d9:78:2d:ee:62:77:60:e7:5c:e2:87:df: 4d:f8:ee:0d:bc:a1:cf:0d:d0:90:5c:f1:d8:a8:c7: b5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:38:EF:21:6A:45:36:E7:49:8A:D7:92:A4:E6:87:B7:B1:7E:F0:A2 X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:71:8f:f6:6f:20:1e:00:a8:85:87:26:e3:13:44:18:82:71: 45:6a:76:d3:57:8d:c5:ea:d1:ae:87:60:11:7c:0c:a0:a7:bc: 38:33:d6:f2:28:ea:33:ea:f5:d8:cd:08:fd:17:18:8c:e2:1f: 93:08:c7:ab:b8:89:c8:34:ed:5e:c5:62:e1:36:cb:62:c2:46: d0:d5:da:58:6d:95:91:6c:b5:fe:04:e0:44:a7:3d:94:12:f1: 7d:41:c4:51:67:62:19:39:88:a6:39:4a:2e:df:8a:f6:6a:5d: da:2f:ec:3b:f7:d6:a0:cc:0f:ec:43:ac:f1:7e:7c:0f:c3:3d: 2e:8e:f7:29:ab:f5:b2:ab:0d:21:ab:43:36:01:d1:be:e6:22: 5c:d9:5f:09:f5:7c:1d:a0:88:04:1b:24:ac:87:02:fc:c6:a3: 33:75:3d:5e:07:11:4f:94:95:25:a6:74:bd:1f:7c:73:f3:71: 77:04:b0:ae:77:dd:08:8a:69:a9:93:1b:01:7f:fe:cc:ed:ce: 7f:b8:50:1f:39:cc:f7:bb:75:42:ea:74:57:35:26:b8:96:76: 3a:d7:ed:76:8a:d5:02:b1:6a:da:8d:8d:4f:7e:fe:99:89:73: 1f:ce:3d:d5:92:ac:0f:7f:74:55:5f:bd:f1:1d:77:70:d8:9d: b3:ee:a2:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjUwNjMwMjMwOTM5WhcNMjUwNzA3MjMwOTM5WjAYMRYwFAYD VQQDEw02ODYzMTkzMy1lNzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAle3kVBHkKOcfNjXhdD84ZPsG7499Wkm/Oc1X0Q2gqcjEXTKs/HUJo0C0v/NA 33JhERf/FQqD2WT9AZUY9J2BQvrbjYzr5uiV+AW4A04JPErTA7yL4eMFwlOHHJij DKu+N5uOXMJ/HhTozP0AzYykGy470iBR7gMiUNoEtJn2PQoxk/1f/s4dif7xi7r+ dV4uCfjtIlc3ZZsdwlaM2hCjaJdku3IRxH54Cr3TMCxuApI6VhfR2iwFdoa9CpI8 DFGJgo5g561vmoofTa4fKMjpoeZm9uU0uAgGy/yMHQLbUpHksUTZeC3uYndg51zi h99N+O4NvKHPDdCQXPHYqMe1/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNA47yFq RTbnSYrXkqTmh7exfvCiMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApcY/2byAeAKiFhybjE0QYgnFFanbTV43F6tGuh2ARfAygp7w4M9by KOoz6vXYzQj9FxiM4h+TCMeruInINO1exWLhNstiwkbQ1dpYbZWRbLX+BOBEpz2U EvF9QcRRZ2IZOYimOUou34r2al3aL+w799agzA/sQ6zxfnwPwz0ujvcpq/Wyqw0h q0M2AdG+5iJc2V8J9XwdoIgEGySshwL8xqMzdT1eBxFPlJUlpnS9H3xz83F3BLCu d90IimmpkxsBf/7M7c5/uFAfOcz3u3VC6nRXNSa4lnY61+12itUCsWrajY1Pfv6Z iXMfzj3VkqwPf3RVX73xHXdw2J2z7qIm -----END CERTIFICATE-----Generated at Wed Jul 2 14:40:26 2025 by rpki-client