$ rpki-client -vvf rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft File: GF_2ZH4elndQE3e1UVR5uelGEGc.mft (raw, json) Hash identifier: ETY32QJmvRY2awNnIucbQrEGevXcOVzaq7nHslFHKUQ= Subject key identifier: 35:5A:37:EF:8D:AE:E7:B4:0D:96:A3:0D:1D:E7:20:F0:A6:D8:ED:C0 Authority key identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 Certificate issuer: /CN=A9193C85/serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Certificate serial: 11A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft Manifest number: 1197 Signing time: Wed 02 Jul 2025 17:24:40 +0000 Manifest this update: Wed 02 Jul 2025 17:24:39 +0000 Manifest next update: Wed 09 Jul 2025 17:24:39 +0000 Files and hashes: 1: GF_2ZH4elndQE3e1UVR5uelGEGc.crl (hash: QCUU3aE7BGQ9fjlHnlKtT38xU7etsUNoo+2Zr11JZtM=) 2: A1E87910832A11ECA409521EC4F9AE02.roa (hash: pWwzKrBi4ex9pqtRPtIPRabSwqTwDTnYV8iW2v8i1Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4514 (0x11a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193C85, serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Validity Not Before: Jul 2 17:24:39 2025 GMT Not After : Jul 9 17:24:39 2025 GMT Subject: CN=68656b57-803d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ce:7d:05:36:04:a1:5d:36:a9:b3:fd:46:d9: 8b:92:87:59:2b:95:74:50:3e:ae:67:47:b5:b5:de: ba:e4:07:ae:51:62:c6:3d:ae:f6:ae:df:c8:06:14: af:5a:59:1d:89:f0:bf:23:d2:57:f6:e8:69:13:6b: d0:9c:b9:94:32:d2:b3:dd:9b:e1:c1:09:96:e6:e8: 9b:54:54:1b:51:ce:1c:ea:fe:2c:6e:86:60:64:fe: 53:7f:1a:09:96:04:4c:37:81:2c:0b:89:77:cf:40: 70:a5:6a:75:75:aa:b8:90:52:fd:7e:0e:7d:b9:60: ad:81:7f:f8:eb:8b:f3:ed:8f:c8:6c:71:4d:bf:d1: c4:bd:ab:6e:16:8b:25:8d:64:f0:7d:cb:f4:6b:8d: e5:59:24:ff:b0:07:ef:68:c9:39:cd:3f:1c:d5:94: b5:dd:04:c7:99:37:6f:53:ab:53:20:4d:15:4d:56: 77:ec:10:04:a3:13:7f:b4:2f:a0:cd:83:9a:88:d6: 9b:32:dc:98:c3:94:07:9b:41:8b:0b:65:15:2b:9d: 8b:0d:79:9a:38:f6:c3:26:47:54:49:66:84:7b:aa: 95:fe:a1:fb:5e:d1:ae:60:9e:82:c3:ee:92:9c:e5: bb:a0:13:de:a2:1b:f1:eb:c7:c9:da:f9:6a:6c:44: 07:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:5A:37:EF:8D:AE:E7:B4:0D:96:A3:0D:1D:E7:20:F0:A6:D8:ED:C0 X509v3 Authority Key Identifier: keyid:18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:1e:2c:74:a7:92:b3:d9:dd:93:2c:e3:28:ff:12:af:ac:9f: 23:0e:11:42:db:0a:3a:72:7b:34:76:be:55:de:21:d5:0a:8b: 24:5a:9a:3d:3c:26:26:58:83:eb:c6:b8:d3:ac:55:58:fe:1a: 7b:ab:36:8a:ae:27:7e:fd:dd:73:78:a0:18:2c:e3:77:c7:12: 28:90:2f:d1:54:88:40:2b:26:91:2c:ac:7f:37:f0:fc:b9:a9: 00:68:16:ad:81:b9:cd:4b:01:94:c6:f6:56:eb:3e:93:8d:15: 9d:26:c4:ac:f3:2b:12:94:1e:66:73:35:cf:a4:e5:1b:00:b9: 7b:f4:71:fd:44:41:4a:64:9e:c7:fa:df:b7:28:a0:58:60:5a: bb:37:c4:c2:94:3f:73:ef:21:8c:0d:27:d2:ac:13:fa:4d:8f: 61:4a:b3:cf:fc:22:76:5f:38:e4:4f:04:d8:f8:bc:18:a9:8a: 2b:d4:02:ec:d9:ec:8e:87:ad:bf:0f:ef:f9:c8:5c:1d:62:59: 98:d0:d8:1a:e1:86:4a:95:0c:2e:ba:c5:a3:cb:5c:96:87:c5: 1b:b0:2c:31:c5:d6:2d:da:91:05:7a:f4:03:57:a5:55:0e:58: ec:43:a8:7a:a6:f9:2a:40:28:34:2a:40:c7:ff:22:4c:06:0a: 64:19:4b:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNDODUxMTAvBgNVBAUTKDE4NUZGNjY0N0UxRTk2Nzc1MDEzNzdCNTUxNTQ3OUI5 RTk0NjEwNjcwHhcNMjUwNzAyMTcyNDM5WhcNMjUwNzA5MTcyNDM5WjAYMRYwFAYD VQQDEw02ODY1NmI1Ny04MDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtc59BTYEoV02qbP9RtmLkodZK5V0UD6uZ0e1td665AeuUWLGPa72rt/IBhSv WlkdifC/I9JX9uhpE2vQnLmUMtKz3ZvhwQmW5uibVFQbUc4c6v4sboZgZP5TfxoJ lgRMN4EsC4l3z0BwpWp1daq4kFL9fg59uWCtgX/464vz7Y/IbHFNv9HEvatuFosl jWTwfcv0a43lWST/sAfvaMk5zT8c1ZS13QTHmTdvU6tTIE0VTVZ37BAEoxN/tC+g zYOaiNabMtyYw5QHm0GLC2UVK52LDXmaOPbDJkdUSWaEe6qV/qH7XtGuYJ6Cw+6S nOW7oBPeohvx68fJ2vlqbEQH9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVaN++N rue0DZajDR3nIPCm2O3AMB8GA1UdIwQYMBaAFBhf9mR+HpZ3UBN3tVFUebnpRhBn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0M4NS80RkY0Q0I3MkZE RTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxuZFFFM2UxVVZSNXVlbEdF R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dGXzJaSDRlbG5kUUUzZTFVVlI1dWVsR0VHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0M4NS80RkY0Q0I3MkZERTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxu ZFFFM2UxVVZSNXVlbEdFR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhHix0p5Kz2d2TLOMo/xKvrJ8jDhFC2wo6cns0dr5V3iHVCoskWpo9 PCYmWIPrxrjTrFVY/hp7qzaKrid+/d1zeKAYLON3xxIokC/RVIhAKyaRLKx/N/D8 uakAaBatgbnNSwGUxvZW6z6TjRWdJsSs8ysSlB5mczXPpOUbALl79HH9REFKZJ7H +t+3KKBYYFq7N8TClD9z7yGMDSfSrBP6TY9hSrPP/CJ2XzjkTwTY+LwYqYor1ALs 2eyOh62/D+/5yFwdYlmY0Nga4YZKlQwuusWjy1yWh8UbsCwxxdYt2pEFevQDV6VV DljsQ6h6pvkqQCg0KkDH/yJMBgpkGUu3 -----END CERTIFICATE-----Generated at Thu Jul 3 05:02:55 2025 by rpki-client