$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: qWxSOAqT06klsgFxDjJMgs5Dw0lnx4m5YKPMz/Z6ldQ= Subject key identifier: 18:DA:4C:EC:ED:4A:60:56:84:BB:93:3F:E2:AD:C0:86:D2:C5:2C:D1 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 048E Signing time: Sat 28 Jun 2025 23:35:07 +0000 Manifest this update: Sat 28 Jun 2025 23:35:06 +0000 Manifest next update: Sat 05 Jul 2025 23:35:06 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: UbEiP5sfwz5TqkeAFSdkzx/IRGj7FeDnblckCBsfJcY=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Jun 28 23:35:06 2025 GMT Not After : Jul 5 23:35:06 2025 GMT Subject: CN=68607c2b-6131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:77:3d:f3:f9:be:db:7a:fc:90:de:32:d0:43: d9:d0:53:1e:c1:83:e3:73:2b:19:18:f5:8a:2e:9e: 90:4f:48:6b:1e:95:bd:8f:4e:db:5a:bc:fa:fd:5a: ee:3f:c6:a9:41:05:c3:89:e6:52:99:24:c9:50:01: fe:b1:66:6d:ba:3d:e8:7c:eb:1a:10:f1:f4:d2:10: 56:18:ec:ee:5e:63:c2:34:5b:33:20:a3:24:6f:fc: 60:3c:37:af:46:30:23:e3:65:d2:21:2e:3c:c5:80: c4:cb:0c:b4:00:35:40:4e:a2:1e:2f:97:35:de:d6: a1:2d:98:bb:90:a5:3b:a4:bc:81:31:eb:d9:c3:df: c7:6b:5d:67:5b:2b:f2:d4:51:be:41:bf:c8:e9:de: c5:52:89:29:34:a5:8d:5f:5c:bc:25:22:23:ac:6a: e8:e8:27:4c:77:a5:6c:9b:4c:a1:4d:c7:9c:e0:99: a7:8c:8d:da:a3:38:50:f0:be:4c:a8:4d:07:a7:81: c3:91:8a:23:ca:e5:34:fb:3f:b2:82:08:66:a2:bc: 01:f4:76:3b:83:7d:e3:9e:91:82:eb:e4:55:c2:e7: ec:c0:8b:e2:b9:bf:73:d7:d2:e6:f3:f3:84:64:92: fd:1b:3c:2e:e0:cc:79:68:fe:c9:b4:0f:f1:17:e1: 29:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:DA:4C:EC:ED:4A:60:56:84:BB:93:3F:E2:AD:C0:86:D2:C5:2C:D1 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:cc:ec:c5:24:71:33:e7:f7:cc:6d:9c:e9:bc:ce:dd:3d:ed: 75:af:fa:cd:be:55:16:75:2a:9b:88:83:db:6d:da:9b:3d:df: 98:c6:41:be:87:5a:ec:51:1f:29:42:dc:34:6d:4b:60:ed:c7: c7:b1:c9:cf:21:df:93:6b:b3:ba:77:5c:8f:72:c3:a5:b8:90: 32:95:10:b8:d2:25:ef:c1:b9:5d:01:98:15:13:87:03:da:c4: 75:f3:84:7e:09:d4:43:3d:bf:94:d6:f5:aa:7a:1a:8c:8d:6b: 1f:dc:2f:a6:b6:10:a6:39:15:e1:5f:b3:13:68:3d:1f:81:86: 74:3c:f5:1d:bf:7d:9e:65:2f:4e:50:73:42:c3:b3:18:08:a9: 73:cd:42:79:14:d0:f3:8b:a8:5f:0c:d1:41:a9:3a:c0:6e:35: bd:d6:fd:ff:6c:5e:bf:d5:41:1b:33:42:d7:dc:62:1d:9d:c7: 31:36:12:4c:77:28:28:6e:37:dd:7f:fc:90:21:9f:26:c7:a5: 97:ab:86:80:b3:59:96:5f:fd:3f:1e:28:72:a6:2e:31:3f:94: 1b:36:3d:9b:31:64:90:c3:68:e4:3e:21:ad:46:05:5b:bc:49: a3:f6:29:7f:ac:2f:d4:40:0b:d7:17:29:49:54:72:10:9c:a8: 77:86:69:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUwNjI4MjMzNTA2WhcNMjUwNzA1MjMzNTA2WjAYMRYwFAYD VQQDEw02ODYwN2MyYi02MTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Hc98/m+23r8kN4y0EPZ0FMewYPjcysZGPWKLp6QT0hrHpW9j07bWrz6/Vru P8apQQXDieZSmSTJUAH+sWZtuj3ofOsaEPH00hBWGOzuXmPCNFszIKMkb/xgPDev RjAj42XSIS48xYDEywy0ADVATqIeL5c13tahLZi7kKU7pLyBMevZw9/Ha11nWyvy 1FG+Qb/I6d7FUokpNKWNX1y8JSIjrGro6CdMd6Vsm0yhTcec4JmnjI3aozhQ8L5M qE0Hp4HDkYojyuU0+z+ygghmorwB9HY7g33jnpGC6+RVwufswIviub9z19Lm8/OE ZJL9Gzwu4Mx5aP7JtA/xF+EpYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjaTOzt SmBWhLuTP+KtwIbSxSzRMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARzOzFJHEz5/fMbZzpvM7dPe11r/rNvlUWdSqbiIPbbdqbPd+YxkG+ h1rsUR8pQtw0bUtg7cfHscnPId+Ta7O6d1yPcsOluJAylRC40iXvwbldAZgVE4cD 2sR184R+CdRDPb+U1vWqehqMjWsf3C+mthCmORXhX7MTaD0fgYZ0PPUdv32eZS9O UHNCw7MYCKlzzUJ5FNDzi6hfDNFBqTrAbjW91v3/bF6/1UEbM0LX3GIdnccxNhJM dygobjfdf/yQIZ8mx6WXq4aAs1mWX/0/Hihypi4xP5QbNj2bMWSQw2jkPiGtRgVb vEmj9il/rC/UQAvXFylJVHIQnKh3hmmb -----END CERTIFICATE-----Generated at Mon Jun 30 00:49:50 2025 by rpki-client