$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: UnJll0ZwhNaZ63dlmCarKz3XWrgBnm5AzEpUut6ldJk= Subject key identifier: 21:A3:F9:37:CA:69:4C:80:EA:E4:07:B1:9A:86:3E:32:C4:7E:6C:5E Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 09B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 09AE Signing time: Fri 16 May 2025 20:18:21 +0000 Manifest this update: Fri 16 May 2025 20:18:21 +0000 Manifest next update: Fri 23 May 2025 20:18:21 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: g/KgabIC25s60slmWzvSsH1K4qJyZ5LYgePLEObRTA4=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: 3hay+KNg/2l74ymUeo3rJ7DbBbo6k73NfQvBnuqkfBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 20:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2486 (0x9b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2, serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: May 16 20:18:21 2025 GMT Not After : May 23 20:18:21 2025 GMT Subject: CN=68279d8d-2b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7a:27:b4:d1:90:c8:25:5e:a8:68:58:94:80: c1:dc:ab:70:a8:2f:97:f3:8d:f2:4e:de:89:ef:16: f0:fd:24:21:ac:4b:58:b0:35:33:5c:37:13:4f:27: 67:53:70:e3:b1:06:ca:5a:5e:88:1d:81:fc:a6:b3: 52:db:c2:5d:8c:3a:9f:4e:ae:e8:ba:f9:05:23:19: fa:1a:93:cd:6c:02:c1:c7:6c:3d:4a:1b:98:47:85: 9c:a4:2e:c0:9f:f2:b1:d0:b3:ca:8f:92:f9:de:ca: 65:0b:db:ef:ba:54:28:bf:50:be:0a:a0:81:83:f4: f4:7b:f5:f3:88:ee:f6:b8:95:fc:fa:0c:51:0f:91: f2:05:0d:5a:bb:e6:42:50:8b:e4:f9:bd:d0:03:3e: 54:ff:ab:e9:0a:52:e7:54:e4:43:2b:1f:9c:25:54: 92:70:bb:ab:e3:a9:3e:ee:6d:58:b7:8a:a9:1c:38: b3:d5:70:69:e7:38:65:be:35:94:73:31:d6:2d:39: 22:34:e9:94:4e:f2:6d:91:7e:c1:dc:74:55:0d:71: cb:fc:52:0d:10:0c:ca:1b:42:52:4b:0a:52:e1:d4: 6d:bc:1d:1b:8f:1c:d7:be:74:30:8a:38:dd:c9:1c: 25:9e:1d:53:ea:ce:49:30:fa:7d:7d:e5:33:14:11: 35:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A3:F9:37:CA:69:4C:80:EA:E4:07:B1:9A:86:3E:32:C4:7E:6C:5E X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:ae:e5:7b:69:4d:54:ef:97:a0:83:9f:58:bc:86:e2:52:bf: d7:0b:24:5a:a8:0b:4b:ee:dc:92:2a:28:e5:aa:38:42:3b:78: 3d:bf:83:3c:ea:97:f1:97:d9:25:e3:e2:6a:14:ff:55:40:2f: 44:69:4f:50:2a:8d:4d:c7:ae:b3:be:98:a9:0c:0b:db:25:4e: 8e:22:6b:0d:22:12:b7:53:7d:78:93:f2:b2:a0:2d:35:36:7f: 73:85:09:df:f4:76:df:d8:0a:09:a5:36:90:90:da:b1:d1:2b: fd:99:6c:41:9b:a5:3f:01:b1:6a:81:f6:70:7b:68:d8:30:a2: 87:c7:34:14:93:07:82:38:01:8b:31:cb:4c:09:31:d3:7b:96: bc:82:b5:fa:9f:6f:58:86:d3:2b:1c:11:4b:38:2a:0f:52:1a: c6:22:39:b2:49:eb:ef:30:96:36:69:40:08:73:62:45:c1:7e: 91:fc:00:fc:3e:92:75:27:b8:85:cf:aa:8c:e0:2c:d9:04:cc: a2:a0:c6:31:1b:a3:d9:c0:84:66:38:9a:a4:54:e0:39:3b:7c: a0:53:3d:9a:8d:69:cc:b3:d6:f3:c2:58:7b:6b:f7:2a:7f:1c: 8c:91:ee:db:ad:9f:90:56:e0:65:fc:92:93:76:46:24:ea:48: ef:6d:6f:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjUwNTE2MjAxODIxWhcNMjUwNTIzMjAxODIxWjAYMRYwFAYD VQQDEw02ODI3OWQ4ZC0yYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXontNGQyCVeqGhYlIDB3KtwqC+X843yTt6J7xbw/SQhrEtYsDUzXDcTTydn U3DjsQbKWl6IHYH8prNS28JdjDqfTq7ouvkFIxn6GpPNbALBx2w9ShuYR4WcpC7A n/Kx0LPKj5L53splC9vvulQov1C+CqCBg/T0e/XziO72uJX8+gxRD5HyBQ1au+ZC UIvk+b3QAz5U/6vpClLnVORDKx+cJVSScLur46k+7m1Yt4qpHDiz1XBp5zhlvjWU czHWLTkiNOmUTvJtkX7B3HRVDXHL/FINEAzKG0JSSwpS4dRtvB0bjxzXvnQwijjd yRwlnh1T6s5JMPp9feUzFBE1BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGj+TfK aUyA6uQHsZqGPjLEfmxeMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuruV7aU1U75egg59YvIbiUr/XCyRaqAtL7tySKijlqjhCO3g9v4M8 6pfxl9kl4+JqFP9VQC9EaU9QKo1Nx66zvpipDAvbJU6OImsNIhK3U314k/KyoC01 Nn9zhQnf9Hbf2AoJpTaQkNqx0Sv9mWxBm6U/AbFqgfZwe2jYMKKHxzQUkweCOAGL MctMCTHTe5a8grX6n29YhtMrHBFLOCoPUhrGIjmySevvMJY2aUAIc2JFwX6R/AD8 PpJ1J7iFz6qM4CzZBMyioMYxG6PZwIRmOJqkVOA5O3ygUz2ajWnMs9bzwlh7a/cq fxyMke7brZ+QVuBl/JKTdkYk6kjvbW+V -----END CERTIFICATE-----Generated at Sat May 17 09:42:04 2025 by rpki-client