$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: JNDcJMj1GcbxCChk6aFJpoClFOPu6q4Rh31Soi0FCF0= Subject key identifier: 1D:11:A1:0F:F5:25:8B:2D:2E:5D:17:9A:59:D8:21:25:A9:78:41:A5 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0DA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0D9F Signing time: Fri 04 Jul 2025 18:13:51 +0000 Manifest this update: Fri 04 Jul 2025 18:13:51 +0000 Manifest next update: Fri 11 Jul 2025 18:13:51 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: 616kafMMDHW9bCtJQVA1rOE9S6LfEDEIB8ZoB36LRLI=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: UdehkLAzVXoFe5wUis48zru/UMqEMsZcDt54OS7NI9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3496 (0xda8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Jul 4 18:13:51 2025 GMT Not After : Jul 11 18:13:51 2025 GMT Subject: CN=686819df-44f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a1:69:86:46:3b:df:f3:10:39:ef:30:f6:e2: c6:2a:3c:05:0b:46:a7:6d:be:c1:86:15:9b:f9:df: a7:54:86:45:2e:14:79:fb:a9:93:7a:0e:9c:eb:3e: e0:57:d5:6c:6c:2e:5e:fb:42:05:23:a5:1b:83:26: 45:d7:a8:4b:4e:b7:1a:92:aa:cc:cd:3f:f2:19:98: 90:92:76:38:17:b8:9b:21:76:dd:d8:1f:c0:03:79: ec:7a:46:bd:85:48:b3:83:89:59:46:43:7f:0b:60: 0a:c5:05:ff:6d:de:c1:3c:44:cb:99:7b:0b:00:06: 90:9f:91:ec:a3:eb:9d:31:e4:d0:b2:8f:e6:fd:2d: 60:5e:d8:74:96:78:58:d5:0c:f1:4b:d6:f5:89:5b: e2:5c:5a:0c:28:ff:9f:8b:b5:99:86:58:0d:76:c9: 89:eb:9c:69:cb:40:bb:00:7f:89:1c:1d:55:49:4e: b2:59:fe:ea:f3:57:f5:1b:27:8e:be:e5:35:6d:cf: 3a:f1:4f:09:75:6b:c2:25:85:94:45:37:8c:62:4b: 35:c4:6f:17:03:33:3c:c9:9e:60:6a:b2:ac:87:b6: 88:23:ed:bc:97:0d:99:fb:15:4a:76:a0:7b:ee:03: 52:d4:ac:04:6a:0d:c8:74:4f:68:27:6f:00:78:07: eb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:11:A1:0F:F5:25:8B:2D:2E:5D:17:9A:59:D8:21:25:A9:78:41:A5 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:58:55:2f:e7:72:4f:70:4f:bb:30:20:96:cf:1f:7a:7b:38: 47:bb:4b:03:e6:7f:b9:20:21:fb:25:e1:b0:f6:62:c7:8e:61: 61:0b:d5:72:31:fa:02:62:54:3f:05:5d:72:bd:f3:2d:88:92: 42:a4:73:9d:09:b8:7f:cf:4d:8a:a7:83:82:0c:b4:d1:a2:2a: 81:93:dc:d9:30:c5:a8:c7:c4:e1:36:f2:5d:5d:ae:a3:fd:05: cc:4b:05:56:a7:0d:21:b7:bf:3a:a5:cc:b8:e8:2c:fb:f2:a8: 40:a6:e7:6b:35:89:e9:a9:40:22:22:d3:ac:c2:6d:5c:f9:4a: 1e:f3:ec:3e:76:03:ae:eb:0d:a2:44:89:dd:c4:bd:b0:08:20: ec:cc:ca:86:f5:a3:18:c7:54:7c:90:a4:5c:12:65:9d:b0:3f: a3:ab:47:93:a9:7d:f9:0f:6d:9d:91:cf:27:e0:74:a6:62:7c: 64:18:31:b5:1e:59:a1:c0:4b:53:d6:b9:e2:88:19:c5:b9:4a: a1:f5:6b:58:1c:b0:71:63:45:02:38:fc:35:d5:2a:be:79:66: 20:00:53:d5:9f:85:8b:73:62:13:0b:19:a8:89:10:76:06:ff: 06:57:d0:00:c3:04:cc:62:c7:15:90:84:9b:08:3f:e6:c0:d6: 66:bd:69:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUwNzA0MTgxMzUxWhcNMjUwNzExMTgxMzUxWjAYMRYwFAYD VQQDEw02ODY4MTlkZi00NGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qFphkY73/MQOe8w9uLGKjwFC0anbb7BhhWb+d+nVIZFLhR5+6mTeg6c6z7g V9VsbC5e+0IFI6UbgyZF16hLTrcakqrMzT/yGZiQknY4F7ibIXbd2B/AA3nseka9 hUizg4lZRkN/C2AKxQX/bd7BPETLmXsLAAaQn5Hso+udMeTQso/m/S1gXth0lnhY 1QzxS9b1iVviXFoMKP+fi7WZhlgNdsmJ65xpy0C7AH+JHB1VSU6yWf7q81f1GyeO vuU1bc868U8JdWvCJYWURTeMYks1xG8XAzM8yZ5garKsh7aII+28lw2Z+xVKdqB7 7gNS1KwEag3IdE9oJ28AeAfrJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0RoQ/1 JYstLl0XmlnYISWpeEGlMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoWFUv53JPcE+7MCCWzx96ezhHu0sD5n+5ICH7JeGw9mLHjmFhC9Vy MfoCYlQ/BV1yvfMtiJJCpHOdCbh/z02Kp4OCDLTRoiqBk9zZMMWox8ThNvJdXa6j /QXMSwVWpw0ht786pcy46Cz78qhApudrNYnpqUAiItOswm1c+Uoe8+w+dgOu6w2i RIndxL2wCCDszMqG9aMYx1R8kKRcEmWdsD+jq0eTqX35D22dkc8n4HSmYnxkGDG1 HlmhwEtT1rniiBnFuUqh9WtYHLBxY0UCOPw11Sq+eWYgAFPVn4WLc2ITCxmoiRB2 Bv8GV9AAwwTMYscVkISbCD/mwNZmvWnj -----END CERTIFICATE-----Generated at Sat Jul 5 12:29:21 2025 by rpki-client