$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft File: 1gwwsan1nJWa1JZ_L21XKst1KZw.mft (raw, json) Hash identifier: wOinV7yp4hl85LxZuohFQej37dDu64I767TZ+zQxCGM= Subject key identifier: A9:FF:C7:30:FA:A5:C2:98:7F:77:91:60:68:51:7F:2A:96:9E:4D:0E Authority key identifier: D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C Certificate issuer: /CN=A91E5EEA/serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft Manifest number: 57 Signing time: Tue 01 Jul 2025 07:59:06 +0000 Manifest this update: Tue 01 Jul 2025 07:59:06 +0000 Manifest next update: Tue 08 Jul 2025 07:59:06 +0000 Files and hashes: 1: 1gwwsan1nJWa1JZ_L21XKst1KZw.crl (hash: +InGP1CGH8WB4RlJF8Yopaq3IcxR62V67QG5oeC5xsA=) 2: 2B6A4C480CDC11F0BAA65183C4F9AE02.roa (hash: BqSp/Te9KMd8YfouUPeFKU/cx03YQIHgdt5+594sWOw=) 3: A8495504D4D011EFB6100F2DC4F9AE02.roa (hash: Md7FVpdf2MqwxZW9/DFpDf2r/UivUhUhenoGocEe9lg=) 4: A7C0D96E0CDD11F0A8463D28C4F9AE02.roa (hash: QHLRTEx6Qgh4+lTDIbuuL3PGb+4V0jC1oeBCPhaLkPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Validity Not Before: Jul 1 07:59:06 2025 GMT Not After : Jul 8 07:59:06 2025 GMT Subject: CN=6863954a-a117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cf:2b:0e:95:36:bf:06:97:a8:6f:c5:36:93: 85:76:84:fb:1f:50:c4:f3:7e:22:04:0f:24:c2:70: 37:28:49:4a:75:c8:ec:7e:f0:64:13:c7:42:fa:d0: 9a:27:00:cc:1b:e2:22:69:61:60:c2:07:b3:0b:11: 52:50:95:ff:a7:99:9c:51:d1:14:bc:1f:d4:2d:30: f3:11:e9:41:bf:21:56:55:72:a3:46:fc:6a:f4:69: be:70:90:89:b0:20:84:b1:8d:1d:b2:e2:45:fb:1f: 21:64:00:12:3a:24:88:4c:cf:b4:ab:d9:9b:f9:38: 8b:83:95:14:e7:f1:32:32:bd:ac:91:5b:8e:1c:e3: 0a:a7:16:0d:c0:2f:f8:e2:86:a5:05:ac:ea:a5:3a: 85:5f:32:db:12:76:99:d0:0f:36:88:0a:d2:3c:ed: c8:5f:28:6f:96:61:9c:2b:73:c0:58:4c:8a:e3:34: de:63:63:6f:68:2d:e0:bd:22:25:51:dc:12:e3:de: 3e:dd:ed:9e:d5:65:8d:08:a2:89:84:25:74:de:a5: db:65:e8:d1:24:10:b0:cc:98:eb:af:a2:4f:5a:0d: 0e:94:5e:77:75:bb:18:6f:dd:28:16:4e:24:d0:da: 2a:8d:49:aa:66:fd:5f:65:fa:19:7e:6e:81:1c:e0: ed:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FF:C7:30:FA:A5:C2:98:7F:77:91:60:68:51:7F:2A:96:9E:4D:0E X509v3 Authority Key Identifier: keyid:D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:c9:5c:1a:f1:7e:b1:fa:dd:14:b2:49:2e:f4:29:8c:9e:a2: 10:b0:9a:bb:cd:d0:81:69:43:f3:f1:39:ae:09:87:b6:ed:b5: 49:5f:a1:18:ab:9a:81:db:af:06:5e:f3:b1:4a:f2:fb:59:8e: f5:7e:4e:b1:51:30:81:ca:ff:a5:3e:f0:ca:b7:f6:7a:6d:44: 0b:86:2c:03:1f:7b:7f:75:25:01:5c:b2:cd:69:55:fd:da:39: 09:0f:4b:e0:98:f2:d7:76:f6:7d:ae:c9:22:c1:c2:2d:b2:74: a1:2d:08:18:70:b3:9a:55:23:0e:48:98:b4:7d:a5:9e:5d:1e: db:13:04:68:bb:6d:4f:96:a1:97:a6:16:63:71:8b:3a:07:1e: 67:5f:cd:9e:a1:98:71:95:bb:a9:71:cf:43:59:4c:56:d7:95: e1:b5:05:2e:84:66:4a:18:0f:15:3a:3b:c0:95:34:3b:53:81: 55:31:3b:2d:3d:f8:88:7f:28:93:64:ca:c6:08:08:cc:7f:14: 34:ae:cc:56:64:bd:12:f3:12:b0:ac:42:36:c1:f9:99:79:93: b1:34:8e:33:95:ef:a2:2a:50:94:78:53:65:e3:94:14:85:7f: 0f:b9:58:7f:c3:16:4f:03:73:59:cf:35:4f:31:3a:37:1b:7d: fd:6e:ca:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoRDYwQzMwQjFBOUY1OUM5NTlBRDQ5NjdGMkY2RDU3MkFD Qjc1Mjk5QzAeFw0yNTA3MDEwNzU5MDZaFw0yNTA3MDgwNzU5MDZaMBgxFjAUBgNV BAMTDTY4NjM5NTRhLWExMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5zysOlTa/Bpeob8U2k4V2hPsfUMTzfiIEDyTCcDcoSUp1yOx+8GQTx0L60Jon AMwb4iJpYWDCB7MLEVJQlf+nmZxR0RS8H9QtMPMR6UG/IVZVcqNG/Gr0ab5wkImw IISxjR2y4kX7HyFkABI6JIhMz7Sr2Zv5OIuDlRTn8TIyvayRW44c4wqnFg3AL/ji hqUFrOqlOoVfMtsSdpnQDzaICtI87chfKG+WYZwrc8BYTIrjNN5jY29oLeC9IiVR 3BLj3j7d7Z7VZY0IoomEJXTepdtl6NEkELDMmOuvok9aDQ6UXnd1uxhv3SgWTiTQ 2iqNSapm/V9l+hl+boEc4O21AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqf/HMPql wph/d5FgaFF/KpaeTQ4wHwYDVR0jBBgwFoAU1gwwsan1nJWa1JZ/L21XKst1KZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0UzRkNEMTQ0RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyLzFnd3dzYW4xbkpXYTFKWl9MMjFYS3N0MUta dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMWd3d3NhbjFuSldhMUpaX0wyMVhLc3QxS1p3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0UzRkNEMTQ0RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyLzFnd3dzYW4xbkpX YTFKWl9MMjFYS3N0MUtady5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFTJXBrxfrH63RSySS70KYyeohCwmrvN0IFpQ/PxOa4Jh7bttUlfoRir moHbrwZe87FK8vtZjvV+TrFRMIHK/6U+8Mq39nptRAuGLAMfe391JQFcss1pVf3a OQkPS+CY8td29n2uySLBwi2ydKEtCBhws5pVIw5ImLR9pZ5dHtsTBGi7bU+WoZem FmNxizoHHmdfzZ6hmHGVu6lxz0NZTFbXleG1BS6EZkoYDxU6O8CVNDtTgVUxOy09 +Ih/KJNkysYICMx/FDSuzFZkvRLzErCsQjbB+Zl5k7E0jjOV76IqUJR4U2XjlBSF fw+5WH/DFk8Dc1nPNU8xOjcbff1uyhE= -----END CERTIFICATE-----Generated at Wed Jul 2 16:23:27 2025 by rpki-client