$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json) Hash identifier: Z2uqboIiQ0BdEkbrUzD8eaqGNfkCXbNNKvpms8sPmOo= Subject key identifier: 5D:A8:3D:EC:8C:9F:DF:71:93:DB:80:F9:8D:C3:D0:B2:87:72:80:4F Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Certificate serial: 193C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft Manifest number: 1EB9 Signing time: Mon 12 May 2025 16:21:58 +0000 Manifest this update: Mon 12 May 2025 16:21:58 +0000 Manifest next update: Mon 19 May 2025 16:21:58 +0000 Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: 7lhTG+SxawmbijAOkcmQBsD8EIn1LLVTrssXWYs5wHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6460 (0x193c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD, serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Validity Not Before: May 12 16:21:58 2025 GMT Not After : May 19 16:21:58 2025 GMT Subject: CN=68222026-0ed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bd:74:6b:9a:31:66:f7:b3:d6:08:75:8d:2d: 7c:fa:11:41:06:4e:2d:e6:34:25:2d:08:b1:78:9e: 28:82:23:be:c6:2a:23:88:d2:78:ec:53:b4:07:0a: 25:33:57:ed:41:ff:47:59:6f:cf:e5:31:76:05:ac: 15:34:e3:fa:db:d3:b7:ba:31:12:28:26:57:f7:d5: 88:e0:11:49:e1:69:51:58:d4:45:4e:13:80:b2:0b: 09:ac:a9:57:ae:44:45:c7:51:ba:aa:cd:aa:31:7e: c1:10:24:29:ce:76:f5:51:1b:7d:e8:dc:6b:e3:87: 24:e3:e9:a9:9a:79:4a:42:34:73:ba:49:d7:07:e5: aa:81:cf:9d:48:ee:9f:3a:88:05:1f:63:47:4f:10: 45:83:26:f1:93:f2:03:72:d7:81:76:ca:48:54:1d: 9e:62:7d:93:ad:2d:8c:6e:ed:9b:6a:85:a5:89:cb: 0f:7a:98:93:b9:4a:59:08:ce:27:99:e5:74:d3:8e: 3c:2c:ff:de:11:88:c4:c3:12:b2:7f:db:16:34:09: e0:9d:0b:bf:a3:47:40:4e:79:7e:10:b5:14:1d:fb: 9c:df:2e:c3:b6:65:16:82:fd:5d:5e:59:63:ce:9a: 6f:85:e6:58:31:e6:e1:dd:4e:af:8e:44:8d:2c:ae: 5b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A8:3D:EC:8C:9F:DF:71:93:DB:80:F9:8D:C3:D0:B2:87:72:80:4F X509v3 Authority Key Identifier: keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:29:56:25:3b:83:de:ea:33:aa:a6:1d:bd:9d:78:62:d9:37: 2f:6d:1d:c4:28:e6:83:c8:20:0d:d8:13:94:ce:b0:09:10:90: 45:ad:5e:a7:bb:1a:c6:4e:a7:c6:8d:8f:9a:f7:54:a5:b7:69: 92:fc:c0:65:ea:8c:e9:b8:ab:91:c5:9c:b1:f7:96:48:ea:58: d4:26:87:26:ac:19:1c:d2:23:f3:10:39:c0:1a:6a:72:65:a6: d1:b1:04:5d:eb:87:c3:48:23:82:f0:ef:45:ac:f6:7e:7a:2d: f1:fc:62:8a:fa:0f:00:ec:06:74:77:41:94:26:b1:d4:56:29: 68:b2:d5:e0:bb:f4:63:25:6b:41:27:28:67:d9:c8:1c:c1:31: 8f:6e:7d:61:15:9e:4e:5b:cf:fa:6c:40:5e:71:8c:e5:da:6d: 5d:ca:7a:7a:bd:13:9f:6c:0d:a1:38:4c:86:a8:b2:95:93:13: 5c:76:e4:0e:5d:19:7e:69:d8:d9:e7:c4:38:f2:3e:ca:68:80: 7d:d3:d9:89:58:00:c7:53:0e:ca:6a:ce:47:4d:7e:c7:50:c9: 85:66:70:83:1f:37:02:4e:cc:08:41:58:43:0f:46:be:80:2b: 78:14:ec:e6:40:1d:c5:81:4c:90:9d:44:a2:e0:8b:de:3f:35: 3e:16:19:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKEZDNjUyNzJBQkNGRUEyNUFEMjFGOTVFMTQyNkUyMDY3 OUNERkM4NkUwHhcNMjUwNTEyMTYyMTU4WhcNMjUwNTE5MTYyMTU4WjAYMRYwFAYD VQQDEw02ODIyMjAyNi0wZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4b10a5oxZvez1gh1jS18+hFBBk4t5jQlLQixeJ4ogiO+xiojiNJ47FO0Bwol M1ftQf9HWW/P5TF2BawVNOP629O3ujESKCZX99WI4BFJ4WlRWNRFThOAsgsJrKlX rkRFx1G6qs2qMX7BECQpznb1URt96Nxr44ck4+mpmnlKQjRzuknXB+Wqgc+dSO6f OogFH2NHTxBFgybxk/IDcteBdspIVB2eYn2TrS2Mbu2baoWlicsPepiTuUpZCM4n meV00448LP/eEYjEwxKyf9sWNAngnQu/o0dATnl+ELUUHfuc3y7DtmUWgv1dXllj zppvheZYMebh3U6vjkSNLK5bawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2oPeyM n99xk9uA+Y3D0LKHcoBPMB8GA1UdIwQYMBaAFPxlJyq8/qJa0h+V4UJuIGec38hu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9sclNINVhoUW00Z1o1emZ5 RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVW5Lcnotb2xyU0g1WGhRbTRnWjV6ZnlHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUZDRC8wQkUwRkZFMDc4MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9s clNINVhoUW00Z1o1emZ5RzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/KVYlO4Pe6jOqph29nXhi2TcvbR3EKOaDyCAN2BOUzrAJEJBFrV6n uxrGTqfGjY+a91Slt2mS/MBl6ozpuKuRxZyx95ZI6ljUJocmrBkc0iPzEDnAGmpy ZabRsQRd64fDSCOC8O9FrPZ+ei3x/GKK+g8A7AZ0d0GUJrHUVilostXgu/RjJWtB Jyhn2cgcwTGPbn1hFZ5OW8/6bEBecYzl2m1dynp6vROfbA2hOEyGqLKVkxNcduQO XRl+adjZ58Q48j7KaIB909mJWADHUw7Kas5HTX7HUMmFZnCDHzcCTswIQVhDD0a+ gCt4FOzmQB3FgUyQnUSi4IvePzU+FhlF -----END CERTIFICATE-----Generated at Wed May 14 01:57:29 2025 by rpki-client