$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: a4iDIjkxbndQC64LxLoZpea8prOhhSZSAlIccv8nH8w= Subject key identifier: 56:F6:13:74:C1:DB:B0:67:0F:51:3F:9F:A8:28:06:1F:69:A9:91:DE Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 09CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 09C5 Signing time: Wed 02 Jul 2025 20:13:08 +0000 Manifest this update: Wed 02 Jul 2025 20:13:08 +0000 Manifest next update: Wed 09 Jul 2025 20:13:08 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: z68kHXcduxGvV52c+d336Xlgx0XWpeueHRoAc+0iBAw=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: 3hay+KNg/2l74ymUeo3rJ7DbBbo6k73NfQvBnuqkfBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2509 (0x9cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2, serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: Jul 2 20:13:08 2025 GMT Not After : Jul 9 20:13:08 2025 GMT Subject: CN=686592d4-4627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:79:d6:b8:18:1e:81:ab:b9:9e:44:5e:e1:c4: cc:f8:7e:53:9c:49:87:8f:6f:c3:2c:8b:cd:c3:b7: 46:de:f1:59:69:b0:40:14:64:1a:11:75:34:b0:5b: ad:a2:d6:3d:17:35:15:e2:91:1d:22:ef:75:a6:f7: d5:50:76:46:e8:dd:a4:80:6d:19:dd:d4:36:e3:94: 4e:6e:8f:c9:91:45:15:05:82:04:82:ca:f2:7c:58: d3:b5:25:73:7e:b6:18:a9:10:fe:62:d1:33:d6:5c: 33:42:85:30:c0:d5:d5:a1:47:23:3d:93:1e:9a:e7: 76:e7:db:10:c0:08:8a:de:40:7d:4d:f5:27:17:57: 23:3d:8a:c9:5a:a6:b5:67:02:16:db:f8:a5:69:4b: c4:e0:c8:d9:d8:e9:f5:19:4c:0d:e8:04:1d:af:16: a8:68:dc:7f:57:49:22:d8:3c:9c:4b:e8:e7:fa:6c: 01:57:64:d6:fc:c3:f6:dd:de:99:c1:68:73:9d:b4: aa:bb:b9:50:5c:d1:55:1e:21:27:f1:c3:44:d5:1e: 44:8c:6e:8d:b6:05:3f:30:ba:a7:f9:a2:88:59:7a: bc:c0:57:37:15:12:0a:12:d8:1c:a1:f7:e5:0b:a4: 8e:46:27:1e:dc:93:29:00:5b:63:46:cd:2a:8b:85: f5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:F6:13:74:C1:DB:B0:67:0F:51:3F:9F:A8:28:06:1F:69:A9:91:DE X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:61:44:1c:da:4f:e3:13:c2:68:8b:1d:c0:01:43:36:45:33: cd:5e:d5:15:19:6f:bf:9f:35:a3:f2:d1:5d:6b:8f:02:e5:c4: 84:ec:42:51:90:20:38:18:97:03:37:98:45:4c:ad:09:9f:31: 3b:5d:4e:24:a2:bf:e6:07:6c:b4:e2:ed:ca:a1:b1:94:12:27: 07:f5:20:7a:03:33:39:35:93:73:b9:0f:eb:e9:0f:e0:08:89: 60:51:b4:8c:1a:59:30:cc:b1:58:63:a7:57:43:54:1e:d4:68: d3:ff:0c:d1:57:de:0f:81:c1:4c:34:61:5b:bf:d3:a1:bf:e1: 02:b5:b3:d4:93:a7:26:de:a1:83:88:9a:ac:d2:43:bb:fb:b5: 3b:cc:2d:a4:a5:95:ea:3a:1c:91:df:2b:be:61:90:8d:60:a8: d9:59:17:2f:fe:a9:81:68:69:ad:c9:23:74:35:ed:d8:97:44: 2f:60:68:28:4b:12:2f:9d:c4:02:b8:4b:bb:61:12:c2:65:3a: 6c:4a:9a:16:d5:29:6d:e0:6b:b4:e2:6f:e1:2e:0d:b3:e2:88: a1:06:94:7d:51:60:84:9e:ff:a5:50:7f:0d:fa:ee:31:d3:b8: 92:6a:72:11:b4:2a:cc:4c:a2:99:90:26:49:d9:43:e1:df:57: 17:45:62:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjUwNzAyMjAxMzA4WhcNMjUwNzA5MjAxMzA4WjAYMRYwFAYD VQQDEw02ODY1OTJkNC00NjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA83nWuBgegau5nkRe4cTM+H5TnEmHj2/DLIvNw7dG3vFZabBAFGQaEXU0sFut otY9FzUV4pEdIu91pvfVUHZG6N2kgG0Z3dQ245RObo/JkUUVBYIEgsryfFjTtSVz frYYqRD+YtEz1lwzQoUwwNXVoUcjPZMemud259sQwAiK3kB9TfUnF1cjPYrJWqa1 ZwIW2/ilaUvE4MjZ2On1GUwN6AQdrxaoaNx/V0ki2DycS+jn+mwBV2TW/MP23d6Z wWhznbSqu7lQXNFVHiEn8cNE1R5EjG6NtgU/MLqn+aKIWXq8wFc3FRIKEtgcoffl C6SORice3JMpAFtjRs0qi4X1UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFb2E3TB 27BnD1E/n6goBh9pqZHeMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHYUQc2k/jE8Joix3AAUM2RTPNXtUVGW+/nzWj8tFda48C5cSE7EJR kCA4GJcDN5hFTK0JnzE7XU4kor/mB2y04u3KobGUEicH9SB6AzM5NZNzuQ/r6Q/g CIlgUbSMGlkwzLFYY6dXQ1Qe1GjT/wzRV94PgcFMNGFbv9Ohv+ECtbPUk6cm3qGD iJqs0kO7+7U7zC2kpZXqOhyR3yu+YZCNYKjZWRcv/qmBaGmtySN0Ne3Yl0QvYGgo SxIvncQCuEu7YRLCZTpsSpoW1Slt4Gu04m/hLg2z4oihBpR9UWCEnv+lUH8N+u4x 07iSanIRtCrMTKKZkCZJ2UPh31cXRWK9 -----END CERTIFICATE-----Generated at Thu Jul 3 18:08:03 2025 by rpki-client