$ rpki-client -vvf rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft File: gOknW25uvGrXWF12r7akALUULD8.mft (raw, json) Hash identifier: eD/s7Zm4D/2sWv6hwKDfyXfAPqJSnccYCoaZ93qwT3Y= Subject key identifier: 1C:A9:4C:BF:EB:F7:73:96:5F:6B:C4:7D:BC:38:78:E1:8B:18:CB:78 Authority key identifier: 80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F Certificate issuer: /CN=A91D313B/serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft Manifest number: B3 Signing time: Thu 03 Jul 2025 06:12:50 +0000 Manifest this update: Thu 03 Jul 2025 06:12:50 +0000 Manifest next update: Thu 10 Jul 2025 06:12:50 +0000 Files and hashes: 1: gOknW25uvGrXWF12r7akALUULD8.crl (hash: b+Fy7oP4rGdIyeqHZ6zNS5822kRXnNZEMmIaAzIkaMQ=) 2: 3446813047DC11EFA05E932EC4F9AE02.roa (hash: zLr4joEY+P4VPtuV8/aIjLwuAD3fE/qCh+JRJT72wJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D313B, serialNumber=80E9275B6E6EBC6AD7585D76AFB6A400B5142C3F Validity Not Before: Jul 3 06:12:50 2025 GMT Not After : Jul 10 06:12:50 2025 GMT Subject: CN=68661f62-e4a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f8:6a:f2:90:f1:8c:e9:41:fc:ea:4e:85:19: d9:8b:41:2e:48:e3:0b:cc:41:25:d3:9e:c3:a4:3a: c3:0a:d5:ed:d7:07:e1:5d:58:e2:a4:81:9b:fd:52: 2c:ef:45:d1:a4:54:c5:5d:a8:6c:aa:c4:13:41:f9: 0c:3c:5b:4f:48:3c:8f:c4:a8:30:72:4c:d5:75:61: 9d:79:fb:a6:7c:ce:10:07:08:7c:22:c7:99:b2:e1: 74:b2:4e:64:f7:b8:54:f5:6b:bb:01:3f:fd:30:4a: ed:03:e2:83:bf:41:1e:97:0a:e4:71:a6:88:4d:93: ae:ab:94:b0:ff:b7:22:3c:c3:b0:57:f3:e7:b8:13: 40:6e:86:85:eb:b7:42:ed:e1:42:d3:39:61:02:dc: 23:59:b1:1d:75:99:61:bc:35:99:ab:65:bf:5b:49: 8b:17:f3:60:58:2e:1b:80:73:63:4b:55:e2:10:13: 4a:f3:eb:9d:3f:6e:dd:aa:f3:34:c7:17:cd:1e:12: d5:7a:71:52:ea:28:a7:42:c8:5c:f5:6a:87:49:e2: c2:74:7b:f7:be:77:20:9c:c1:8e:34:e5:bf:a0:d6: f2:dd:24:37:82:e6:8d:a8:5f:08:ca:38:1e:02:a5: 19:b3:8a:45:bc:ea:8b:c2:c2:d7:39:4c:f1:30:46: 2c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A9:4C:BF:EB:F7:73:96:5F:6B:C4:7D:BC:38:78:E1:8B:18:CB:78 X509v3 Authority Key Identifier: keyid:80:E9:27:5B:6E:6E:BC:6A:D7:58:5D:76:AF:B6:A4:00:B5:14:2C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gOknW25uvGrXWF12r7akALUULD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D313B/CCE99D7E47DB11EFAEA4B02DC4F9AE02/gOknW25uvGrXWF12r7akALUULD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:b1:27:c5:f2:b3:41:d7:7a:52:93:79:3c:0e:a8:d0:0b:9b: 57:1d:67:9a:72:00:a8:44:fe:e7:ee:cd:d0:45:08:0c:2c:a3: 00:98:d2:7f:e0:0f:36:24:44:1b:09:b0:c0:d0:f1:d4:77:32: d7:45:cf:34:97:38:72:86:d7:bc:40:d7:dc:82:7b:64:8d:bd: 3c:49:39:f7:03:75:a7:7b:ea:7c:e2:df:55:14:0f:0e:d9:16: 72:df:20:97:d4:d2:90:47:02:22:52:e8:81:24:fb:b0:39:a0: c2:2e:28:d9:22:cb:ec:a9:c9:06:d3:fd:ee:b7:3a:9a:80:c5: f5:18:d6:88:f0:ba:c2:fa:26:f2:1e:e7:e8:45:ce:e5:ab:4d: 19:09:a9:5f:37:13:29:5e:18:3e:35:69:e0:19:0e:3c:5f:e4: 86:50:aa:18:ac:25:b5:5e:39:e5:bc:a4:e9:92:e2:0d:a2:44: 37:0a:8e:25:01:e9:bb:48:91:23:d2:49:58:b5:76:58:23:27: 9e:9c:06:b2:54:05:ed:b5:34:9d:be:cc:9a:41:37:31:4a:43: eb:af:be:0f:35:e7:cc:55:f6:a6:53:db:22:23:e4:a7:50:3e: cf:b6:c9:b8:1f:64:2f:f4:7c:0f:6b:4f:f4:f9:b9:35:66:5b: b2:aa:ee:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxM0IxMTAvBgNVBAUTKDgwRTkyNzVCNkU2RUJDNkFENzU4NUQ3NkFGQjZBNDAw QjUxNDJDM0YwHhcNMjUwNzAzMDYxMjUwWhcNMjUwNzEwMDYxMjUwWjAYMRYwFAYD VQQDEw02ODY2MWY2Mi1lNGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/hq8pDxjOlB/OpOhRnZi0EuSOMLzEEl057DpDrDCtXt1wfhXVjipIGb/VIs 70XRpFTFXahsqsQTQfkMPFtPSDyPxKgwckzVdWGdefumfM4QBwh8IseZsuF0sk5k 97hU9Wu7AT/9MErtA+KDv0EelwrkcaaITZOuq5Sw/7ciPMOwV/PnuBNAboaF67dC 7eFC0zlhAtwjWbEddZlhvDWZq2W/W0mLF/NgWC4bgHNjS1XiEBNK8+udP27dqvM0 xxfNHhLVenFS6iinQshc9WqHSeLCdHv3vncgnMGONOW/oNby3SQ3guaNqF8Iyjge AqUZs4pFvOqLwsLXOUzxMEYsPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBypTL/r 93OWX2vEfbw4eOGLGMt4MB8GA1UdIwQYMBaAFIDpJ1tubrxq11hddq+2pAC1FCw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEzQi9DQ0U5OUQ3RTQ3 REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZHclhXRjEycjdha0FMVVVM RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dPa25XMjV1dkdyWFdGMTJyN2FrQUxVVUxEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEzQi9DQ0U5OUQ3RTQ3REIxMUVGQUVBNEIwMkRDNEY5QUUwMi9nT2tuVzI1dXZH clhXRjEycjdha0FMVVVMRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLsSfF8rNB13pSk3k8DqjQC5tXHWeacgCoRP7n7s3QRQgMLKMAmNJ/ 4A82JEQbCbDA0PHUdzLXRc80lzhyhte8QNfcgntkjb08STn3A3Wne+p84t9VFA8O 2RZy3yCX1NKQRwIiUuiBJPuwOaDCLijZIsvsqckG0/3utzqagMX1GNaI8LrC+iby HufoRc7lq00ZCalfNxMpXhg+NWngGQ48X+SGUKoYrCW1XjnlvKTpkuINokQ3Co4l Aem7SJEj0klYtXZYIyeenAayVAXttTSdvsyaQTcxSkPrr74PNefMVfamU9siI+Sn UD7Ptsm4H2Qv9HwPa0/0+bk1Zluyqu7I -----END CERTIFICATE-----Generated at Thu Jul 3 19:45:31 2025 by rpki-client