$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json) Hash identifier: Sp2laCxmPC1uBFvFGvcQl3yvpzRKFk9xXUIXW9pnW/g= Subject key identifier: ED:71:C2:CF:E2:75:9F:D0:62:DC:3E:0A:EC:0B:00:68:BB:B3:83:35 Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Certificate serial: 09B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft Manifest number: 09AD Signing time: Wed 02 Jul 2025 20:17:44 +0000 Manifest this update: Wed 02 Jul 2025 20:17:43 +0000 Manifest next update: Wed 09 Jul 2025 20:17:43 +0000 Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: SvxlNNs+33L+ZX99J5ZZuWmWQS0mkKwyObxAJbcUUFI=) 2: E09840C4D5B511EFB22A647DC4F9AE02.roa (hash: UUua9CtlmlNUMxfEXymhiloAwqTpKtC9fDGIWh1Bzk8=) 3: CFD6E5708AFA11EAAACB392AC4F9AE02.roa (hash: +YzJrYGnbGLCjVsOBK3rhph4HgKiBqVFBpU2hsaMvKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2489 (0x9b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5642, serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Validity Not Before: Jul 2 20:17:43 2025 GMT Not After : Jul 9 20:17:43 2025 GMT Subject: CN=686593e8-2156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:70:d6:3e:68:d3:80:cb:76:8e:76:2f:e3:f9: e0:b9:26:1d:e6:53:41:81:46:7c:64:20:c4:00:af: 31:96:2b:8e:18:d5:b2:2e:db:87:8b:19:d9:34:92: 84:9a:7d:bc:f0:1f:dd:66:6f:aa:d5:6c:41:8a:06: ab:3b:37:5d:5b:51:e6:c3:18:5b:1c:8d:b1:05:d6: e8:4b:cb:93:5b:f8:3c:56:38:59:a3:1d:64:95:99: 0a:07:6b:37:15:42:2e:c7:ac:93:07:e7:a9:f8:65: 7f:fb:e7:db:dd:a9:98:c3:72:e1:2a:eb:25:f4:ae: b8:fb:d4:59:9f:1d:cf:f2:ad:dc:2c:6a:2c:9a:27: 01:07:7e:df:dc:ae:0a:16:ca:06:9f:24:da:c0:ba: e6:80:4e:5a:cc:56:ff:da:73:a5:29:d8:9c:cf:cb: 16:de:0e:67:27:92:36:cf:54:b4:78:a3:97:e3:1f: 0d:d2:8a:c7:59:10:4e:7b:e7:06:5a:78:ea:89:75: f2:92:04:da:1b:21:11:52:96:d5:d3:d7:49:c6:c1: 63:d8:d2:56:db:a0:5d:71:2b:fd:59:80:1a:6e:17: ba:76:63:5a:b7:5d:3d:9a:bc:05:db:b2:a5:28:8d: 42:73:01:6a:73:d9:25:98:61:a7:a3:54:6b:cc:0b: 0c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:71:C2:CF:E2:75:9F:D0:62:DC:3E:0A:EC:0B:00:68:BB:B3:83:35 X509v3 Authority Key Identifier: keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:20:28:bb:a5:c8:bd:da:c3:1a:9a:77:ff:b1:f6:24:f4:03: 4f:13:3c:29:56:0a:41:84:f5:c8:60:35:a9:88:45:8f:62:bb: c6:ce:7c:e5:84:92:a2:0c:00:cb:c8:96:f3:04:7d:45:d1:81: 8b:2b:92:99:c2:af:ca:10:48:8c:0e:35:74:92:21:c2:30:10: 89:4a:76:e7:a9:7f:97:86:98:dc:0e:5f:bb:af:f2:08:60:30: 14:eb:e3:91:0b:a1:74:07:45:ea:8f:72:eb:bb:2e:7c:bf:78: 25:3d:0c:28:40:76:06:1c:cd:64:d9:29:c8:01:51:74:18:60: b6:2e:55:02:fd:55:5e:54:21:f6:58:b3:32:5e:49:84:ba:48: f3:62:48:ea:05:7e:4e:e2:1e:85:ce:86:24:11:93:2a:54:32: 54:65:4b:8a:ec:cd:90:65:a0:62:9f:30:96:4f:ea:42:25:6a: 8b:c8:ac:12:d5:3f:d4:5f:89:e1:61:75:d2:95:1e:a0:55:93: 20:2c:b5:e5:f0:86:14:26:f9:ed:b3:35:d3:ca:7f:7f:e2:fd: 93:84:41:1b:5d:bf:5d:fc:53:b6:54:67:bd:29:8d:6d:f0:82: e3:18:ac:b2:0a:d0:77:8b:d1:af:56:78:2b:f3:63:cd:ae:8e: 1c:d0:9d:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2NDIxMTAvBgNVBAUTKDgwMzA3OUJBQjJGMUY2QjNCOUFBQzQxMURGNEE4MkMz RjA2QTY1NzEwHhcNMjUwNzAyMjAxNzQzWhcNMjUwNzA5MjAxNzQzWjAYMRYwFAYD VQQDEw02ODY1OTNlOC0yMTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nDWPmjTgMt2jnYv4/nguSYd5lNBgUZ8ZCDEAK8xliuOGNWyLtuHixnZNJKE mn288B/dZm+q1WxBigarOzddW1HmwxhbHI2xBdboS8uTW/g8VjhZox1klZkKB2s3 FUIux6yTB+ep+GV/++fb3amYw3LhKusl9K64+9RZnx3P8q3cLGosmicBB37f3K4K FsoGnyTawLrmgE5azFb/2nOlKdicz8sW3g5nJ5I2z1S0eKOX4x8N0orHWRBOe+cG WnjqiXXykgTaGyERUpbV09dJxsFj2NJW26BdcSv9WYAabhe6dmNat109mrwF27Kl KI1CcwFqc9klmGGno1RrzAsMoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1xws/i dZ/QYtw+CuwLAGi7s4M1MB8GA1UdIwQYMBaAFIAwebqy8fazuarEEd9KgsPwamVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTY0Mi8xMDQwRjMyQzhB RkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDlyTzVxc1FSMzBxQ3dfQnFa WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEQjV1ckx4OXJPNXFzUVIzMHFDd19CcVpYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTY0Mi8xMDQwRjMyQzhBRkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDly TzVxc1FSMzBxQ3dfQnFaWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkICi7pci92sMamnf/sfYk9ANPEzwpVgpBhPXIYDWpiEWPYrvGznzl hJKiDADLyJbzBH1F0YGLK5KZwq/KEEiMDjV0kiHCMBCJSnbnqX+XhpjcDl+7r/II YDAU6+ORC6F0B0Xqj3Lruy58v3glPQwoQHYGHM1k2SnIAVF0GGC2LlUC/VVeVCH2 WLMyXkmEukjzYkjqBX5O4h6FzoYkEZMqVDJUZUuK7M2QZaBinzCWT+pCJWqLyKwS 1T/UX4nhYXXSlR6gVZMgLLXl8IYUJvntszXTyn9/4v2ThEEbXb9d/FO2VGe9KY1t 8ILjGKyyCtB3i9GvVngr82PNro4c0J0D -----END CERTIFICATE-----Generated at Thu Jul 3 11:33:03 2025 by rpki-client