$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json) Hash identifier: 67ES7TD3iFvz/4zCcrk447q49UiyDhD3mqLQRq2r1cA= Subject key identifier: A1:18:4D:81:39:E6:A4:68:60:6B:B2:D9:B0:6A:3E:4B:0D:C9:F5:93 Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Certificate serial: 1970 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft Manifest number: 1F21 Signing time: Fri 22 Aug 2025 16:29:39 +0000 Manifest this update: Fri 22 Aug 2025 16:29:39 +0000 Manifest next update: Fri 29 Aug 2025 16:29:39 +0000 Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: XoylsQFjkx3Mlp0OEavS2K9t3diiANQTzInH1bYpSj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6512 (0x1970) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD, serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Validity Not Before: Aug 22 16:29:39 2025 GMT Not After : Aug 29 16:29:39 2025 GMT Subject: CN=68a89af3-a1f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9f:cf:3d:cc:95:52:82:a0:f6:a5:ba:a4:d0: e9:a9:5a:ae:53:20:d4:4b:1a:85:1d:8d:6d:28:26: da:87:9b:0f:17:9c:f8:bd:cc:01:bb:5a:3f:54:c4: 82:4f:b9:eb:8c:d5:eb:d0:3f:5e:91:cd:91:c5:d5: 73:ab:e4:d7:69:c6:93:e9:db:f1:41:3a:72:a9:95: 16:55:cf:53:09:66:73:bd:ff:b6:f9:c8:78:cc:88: 81:9d:ca:44:94:2a:98:34:fe:34:8f:e4:7f:e6:6d: 14:83:96:03:b9:a9:29:ea:8e:3e:8f:8a:49:cc:64: 1b:9c:82:6c:ed:3f:9a:25:b4:f9:6f:4f:d9:ab:d7: 45:94:71:d0:f4:2f:46:63:79:96:99:8f:4d:3c:13: 6f:6d:4c:cf:97:d2:d8:d6:7f:d9:1a:01:0c:c2:ae: a6:a4:11:b2:14:80:98:6e:39:de:5d:0d:54:7a:e1: ce:94:c2:90:52:19:fb:3f:55:41:d2:61:39:b4:1b: a6:3d:ef:e3:56:e4:ed:cb:4d:84:bb:51:94:62:ee: da:50:e5:58:45:3f:da:35:d6:c5:30:b0:0c:ab:64: 04:f6:ca:e2:59:c7:03:4d:f3:77:3f:47:b6:dd:37: cd:8f:59:10:c5:3f:47:2b:38:46:df:2d:c0:c1:dd: ab:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:18:4D:81:39:E6:A4:68:60:6B:B2:D9:B0:6A:3E:4B:0D:C9:F5:93 X509v3 Authority Key Identifier: keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:77:ee:cc:26:0b:e7:ed:35:b4:b7:11:e3:20:ef:01:9d:9b: b4:83:6c:25:ed:35:5f:41:99:53:64:9c:5c:6a:ce:fa:dd:45: a1:9f:bc:3d:7f:62:f0:05:37:f8:ec:86:10:9f:11:08:43:ae: 30:91:eb:fd:32:cf:39:b5:79:ff:28:a8:00:2c:4b:57:dd:ab: cd:44:9d:bb:36:e0:c0:2f:9b:ec:aa:af:f9:57:e2:b9:c1:c6: c9:2b:75:b9:64:9b:62:12:b0:20:1f:81:e7:c5:4c:44:7d:0a: 52:3b:0d:a3:4d:ca:d0:a3:33:15:3b:0b:26:ce:4b:41:4e:45: 8d:b7:00:09:cd:15:58:df:2e:8f:1a:d8:ea:54:e1:dc:76:92: 33:df:20:f9:76:80:f0:b7:87:fc:5c:6b:94:58:a4:3c:61:62: 37:c3:dd:52:ee:f5:c2:24:55:f5:9a:9e:36:aa:5b:02:cf:ef: e7:cd:56:b8:1d:be:0d:18:ba:77:e2:bf:01:ab:c8:06:14:2e: 87:38:0f:ae:94:47:7b:7f:a4:00:33:fe:40:57:8b:dc:11:79: 1e:94:40:66:aa:d8:d3:39:94:1f:e6:b0:4b:1d:20:b0:8d:39: ae:ce:8c:a7:90:18:36:df:33:f5:ad:99:e6:01:7a:bf:c1:7a: 62:59:02:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKEZDNjUyNzJBQkNGRUEyNUFEMjFGOTVFMTQyNkUyMDY3 OUNERkM4NkUwHhcNMjUwODIyMTYyOTM5WhcNMjUwODI5MTYyOTM5WjAYMRYwFAYD VQQDEw02OGE4OWFmMy1hMWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15/PPcyVUoKg9qW6pNDpqVquUyDUSxqFHY1tKCbah5sPF5z4vcwBu1o/VMSC T7nrjNXr0D9ekc2RxdVzq+TXacaT6dvxQTpyqZUWVc9TCWZzvf+2+ch4zIiBncpE lCqYNP40j+R/5m0Ug5YDuakp6o4+j4pJzGQbnIJs7T+aJbT5b0/Zq9dFlHHQ9C9G Y3mWmY9NPBNvbUzPl9LY1n/ZGgEMwq6mpBGyFICYbjneXQ1UeuHOlMKQUhn7P1VB 0mE5tBumPe/jVuTty02Eu1GUYu7aUOVYRT/aNdbFMLAMq2QE9sriWccDTfN3P0e2 3TfNj1kQxT9HKzhG3y3Awd2rJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEYTYE5 5qRoYGuy2bBqPksNyfWTMB8GA1UdIwQYMBaAFPxlJyq8/qJa0h+V4UJuIGec38hu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9sclNINVhoUW00Z1o1emZ5 RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVW5Lcnotb2xyU0g1WGhRbTRnWjV6ZnlHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUZDRC8wQkUwRkZFMDc4MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9s clNINVhoUW00Z1o1emZ5RzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7d+7MJgvn7TW0txHjIO8BnZu0g2wl7TVfQZlTZJxcas763UWhn7w9 f2LwBTf47IYQnxEIQ64wkev9Ms85tXn/KKgALEtX3avNRJ27NuDAL5vsqq/5V+K5 wcbJK3W5ZJtiErAgH4HnxUxEfQpSOw2jTcrQozMVOwsmzktBTkWNtwAJzRVY3y6P GtjqVOHcdpIz3yD5doDwt4f8XGuUWKQ8YWI3w91S7vXCJFX1mp42qlsCz+/nzVa4 Hb4NGLp34r8Bq8gGFC6HOA+ulEd7f6QAM/5AV4vcEXkelEBmqtjTOZQf5rBLHSCw jTmuzoynkBg23zP1rZnmAXq/wXpiWQLH -----END CERTIFICATE-----Generated at Sat Aug 23 21:30:31 2025 by rpki-client