$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft File: gHwED6kB5dhpWmU03mbD1qC_vMU.mft (raw, json) Hash identifier: xfJ/f9Qdq1EInhC03hZo/zY20vFIIV+Ne8ZtOYILQ4g= Subject key identifier: D6:B9:FA:AC:6A:79:B1:B7:8C:E0:D4:83:20:7D:F9:B8:C7:69:42:25 Authority key identifier: 80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5 Certificate issuer: /CN=A91BC3F1/serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft Manifest number: D9 Signing time: Tue 01 Jul 2025 06:09:59 +0000 Manifest this update: Tue 01 Jul 2025 06:09:59 +0000 Manifest next update: Tue 08 Jul 2025 06:09:59 +0000 Files and hashes: 1: gHwED6kB5dhpWmU03mbD1qC_vMU.crl (hash: yEN8H22NBu9nu4gSxwq+aRITmW5iUxrd3Hl9uyETXOc=) 2: 7D9F83FE10FA11EFADBBC431C4F9AE02.roa (hash: kRUKk6YhznpQLf70+sbW+4rHruxwNLVLHD+xyjgrv/8=) 3: A697738410FA11EF9A068536C4F9AE02.roa (hash: GgKSSa0DZkr/DMOZ+SWiE+267xJNKIhRXUimhakcIXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC3F1, serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5 Validity Not Before: Jul 1 06:09:59 2025 GMT Not After : Jul 8 06:09:59 2025 GMT Subject: CN=68637bb7-efca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d6:ae:cd:d0:2a:cf:dd:bc:24:7d:17:51:12: c4:d2:64:6b:18:9d:b5:ba:f9:97:f3:4e:37:0a:27: c1:8c:09:aa:19:09:00:57:63:06:0c:26:2f:0e:89: d7:4b:84:67:d8:52:f9:27:a1:e2:fb:a8:a8:02:62: 57:88:68:4d:d3:0f:b3:95:4a:66:7a:cd:c5:fd:62: 89:88:07:31:49:84:b2:bd:0c:4c:c4:45:71:11:06: ca:23:1e:57:7c:7c:6b:57:48:89:80:5d:96:f9:70: 06:35:ac:a1:5f:83:66:90:5a:af:66:ed:37:2e:eb: 37:12:dd:12:dd:fb:bb:88:fe:30:89:93:ef:f2:6f: e5:b6:b0:12:52:6a:ee:1a:ca:36:60:28:f0:08:54: 7a:68:b8:7a:86:a8:ae:ed:51:47:ba:7e:60:80:1a: ae:cd:45:63:c2:1c:2c:5e:2c:44:c7:0f:20:20:d8: e5:bb:92:bb:21:e3:87:57:5c:9d:25:c9:ae:be:51: 6d:23:a1:51:2e:f4:78:f3:08:8c:27:e6:a5:28:c8: f0:41:64:2d:d0:f1:04:ab:92:97:c6:9d:de:44:08: ad:96:c0:66:90:1b:ab:66:f0:66:30:2d:92:7d:41: b3:4d:2d:76:b6:d6:05:55:c4:67:ce:9b:ef:77:7a: 7d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B9:FA:AC:6A:79:B1:B7:8C:E0:D4:83:20:7D:F9:B8:C7:69:42:25 X509v3 Authority Key Identifier: keyid:80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:66:97:e1:8a:36:de:c6:78:7c:bc:f6:14:94:12:17:d4:0e: 50:21:ba:86:37:e6:19:54:3b:c9:e3:2b:77:ef:04:c0:43:63: c1:85:c9:6e:8c:99:11:ef:7e:f9:dc:0c:47:6d:39:f4:72:2e: 8e:6a:ad:83:4c:df:db:81:1e:f2:fa:d2:8a:9f:99:a4:2c:47: a8:76:40:05:f4:21:97:44:72:5a:5f:3d:a4:53:06:07:b5:ba: e9:36:5d:4a:6b:18:f9:48:32:22:77:17:01:d3:86:ce:8a:d5: 68:1b:43:a2:8a:2a:22:ab:a1:97:26:c1:f1:8b:1a:b9:67:ed: 9a:44:0b:4d:f4:da:07:8f:2b:ba:6c:39:cf:fb:fb:c7:e0:d2: 85:fc:85:3d:d9:7b:44:59:35:07:85:3d:1a:91:c1:88:02:90: e8:66:8e:de:18:1a:aa:1e:fe:8d:79:c7:fa:70:a0:d5:90:ee: 72:3d:06:dc:0f:75:95:8a:e0:ae:0d:94:03:d3:93:1f:26:bb: bb:3b:fa:e5:b7:e3:00:a2:78:8c:93:3b:0e:90:65:72:06:ee: 08:64:cd:8d:7c:e0:4f:74:55:69:89:d3:10:1f:cd:a8:5b:71: 15:23:9e:78:2b:b3:67:11:17:fa:5c:62:ee:22:df:3a:73:c0: 94:de:c0:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMzRjExMTAvBgNVBAUTKDgwN0MwNDBGQTkwMUU1RDg2OTVBNjUzNERFNjZDM0Q2 QTBCRkJDQzUwHhcNMjUwNzAxMDYwOTU5WhcNMjUwNzA4MDYwOTU5WjAYMRYwFAYD VQQDEw02ODYzN2JiNy1lZmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtauzdAqz928JH0XURLE0mRrGJ21uvmX8043CifBjAmqGQkAV2MGDCYvDonX S4Rn2FL5J6Hi+6ioAmJXiGhN0w+zlUpmes3F/WKJiAcxSYSyvQxMxEVxEQbKIx5X fHxrV0iJgF2W+XAGNayhX4NmkFqvZu03Lus3Et0S3fu7iP4wiZPv8m/ltrASUmru Gso2YCjwCFR6aLh6hqiu7VFHun5ggBquzUVjwhwsXixExw8gINjlu5K7IeOHV1yd JcmuvlFtI6FRLvR48wiMJ+alKMjwQWQt0PEEq5KXxp3eRAitlsBmkBurZvBmMC2S fUGzTS12ttYFVcRnzpvvd3p94wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNa5+qxq ebG3jODUgyB9+bjHaUIlMB8GA1UdIwQYMBaAFIB8BA+pAeXYaVplNN5mw9agv7zF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzNGMS85NUI3MTFDNDEw RjkxMUVGODg4QzUyMkZDNEY5QUUwMi9nSHdFRDZrQjVkaHBXbVUwM21iRDFxQ192 TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dId0VENmtCNWRocFdtVTAzbWJEMXFDX3ZNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzNGMS85NUI3MTFDNDEwRjkxMUVGODg4QzUyMkZDNEY5QUUwMi9nSHdFRDZrQjVk aHBXbVUwM21iRDFxQ192TVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgZpfhijbexnh8vPYUlBIX1A5QIbqGN+YZVDvJ4yt37wTAQ2PBhclu jJkR73753AxHbTn0ci6Oaq2DTN/bgR7y+tKKn5mkLEeodkAF9CGXRHJaXz2kUwYH tbrpNl1Kaxj5SDIidxcB04bOitVoG0Oiiioiq6GXJsHxixq5Z+2aRAtN9NoHjyu6 bDnP+/vH4NKF/IU92XtEWTUHhT0akcGIApDoZo7eGBqqHv6Necf6cKDVkO5yPQbc D3WViuCuDZQD05MfJru7O/rlt+MAoniMkzsOkGVyBu4IZM2NfOBPdFVpidMQH82o W3EVI554K7NnERf6XGLuIt86c8CU3sCp -----END CERTIFICATE-----Generated at Wed Jul 2 02:01:45 2025 by rpki-client