$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft File: GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft (raw, json) Hash identifier: uMreA4AKjyslFdxOvEryaaXgMojcCjEl9CWcJpFLboc= Subject key identifier: 75:B3:39:24:68:FB:7A:AB:1B:8B:FF:FD:E3:CB:C5:CB:72:CE:76:7D Authority key identifier: 18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A Certificate issuer: /CN=A91F8357/serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft Manifest number: 4E Signing time: Tue 01 Jul 2025 08:03:27 +0000 Manifest this update: Tue 01 Jul 2025 08:03:26 +0000 Manifest next update: Tue 08 Jul 2025 08:03:26 +0000 Files and hashes: 1: GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl (hash: tzaQCwZ7f3U4Dtsi8JAzNYRzMsMnNrty8tnn/FDzoas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Validity Not Before: Jul 1 08:03:26 2025 GMT Not After : Jul 8 08:03:26 2025 GMT Subject: CN=6863964e-a714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:89:c0:e2:e2:17:b6:f2:24:35:fe:3e:8a:b7: 80:6a:82:3b:7e:a1:c2:11:d0:96:08:0c:19:ec:aa: cc:b7:06:73:30:d9:81:dd:6d:1a:0c:22:ce:54:c7: 80:ce:a2:f3:62:22:67:73:89:a3:1b:77:52:5d:83: ad:7f:f0:f7:88:30:ad:1b:db:d0:96:e6:ec:44:e3: 5a:cd:2f:67:74:b0:9c:cc:72:3d:e5:95:fb:7b:2e: 9b:43:09:8e:a6:c5:b3:73:2b:9c:ea:29:df:9d:d6: 7a:e7:b3:14:0a:8c:97:59:b5:c7:86:b7:2f:7e:3e: e6:fb:20:11:eb:38:a2:3f:ea:78:d2:fb:d7:ea:85: 7c:74:14:1d:11:fb:e2:63:66:dd:6a:d1:66:18:c4: d5:09:30:ec:9d:d5:8c:cf:6a:31:80:d4:bb:a1:84: fe:25:17:4d:b8:23:7e:01:8f:d9:23:6b:8f:9a:b7: 48:33:a3:56:92:91:83:cd:64:84:cc:d2:fc:e2:f1: 6d:2e:8b:71:d2:0b:68:d1:c2:db:23:33:b6:a9:88: d2:e0:65:17:df:a5:7c:5b:34:fd:dc:74:49:3d:d3: de:14:ba:51:4b:40:bb:aa:f9:d8:fa:e3:e9:6f:40: 8f:fe:56:6c:20:a8:c8:ff:bd:ad:82:b3:c9:a1:0d: 3a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B3:39:24:68:FB:7A:AB:1B:8B:FF:FD:E3:CB:C5:CB:72:CE:76:7D X509v3 Authority Key Identifier: keyid:18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:bd:57:8d:f1:de:9f:4b:39:bc:a1:33:d3:cf:b5:c8:b8:15: fe:d3:78:f2:38:8f:35:52:63:dd:55:77:9b:2a:ab:33:7d:b0: f9:20:d2:f7:75:04:7f:b2:2d:01:d5:3c:4c:05:95:77:c9:ec: 54:e5:2c:d1:5e:01:b4:98:df:2d:bc:c3:47:33:1c:ee:a3:41: d3:eb:8b:1a:93:d3:70:43:38:e6:51:31:6f:6d:60:4b:e7:86: 79:54:36:44:0b:a7:55:ef:f6:c3:8d:fb:5a:11:05:e5:c8:6c: b9:c6:1c:35:2f:ca:1d:dc:72:48:4d:56:ba:11:84:31:6a:3e: 90:14:59:df:52:4c:c9:8f:b4:47:db:49:eb:09:9b:f4:67:56: dd:30:ae:c8:30:d8:d6:69:40:14:b3:ff:82:26:8d:2c:4a:83: a2:33:01:25:8c:bd:ce:b3:e9:55:c5:8a:25:45:00:89:53:2a: ac:4e:22:4a:37:54:68:39:5b:5e:97:dc:b2:27:59:80:d6:b0: 2c:39:97:4f:c8:41:e5:86:70:03:99:b3:2b:ee:ab:c9:7a:cc: 87:54:f1:a3:6a:be:4f:74:6c:f7:5e:e4:de:26:cd:8b:ab:3e: e0:56:32:cf:4c:02:73:1d:3c:a6:cd:ce:09:07:9d:c2:c9:73: 53:68:c8:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMTgwQTM1MjJFMjA1MEM1RjFFMDg3MzUzOUIxMkQ2RDIz MTJBMjAxQTAeFw0yNTA3MDEwODAzMjZaFw0yNTA3MDgwODAzMjZaMBgxFjAUBgNV BAMTDTY4NjM5NjRlLWE3MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCicDi4he28iQ1/j6Kt4Bqgjt+ocIR0JYIDBnsqsy3BnMw2YHdbRoMIs5Ux4DO ovNiImdziaMbd1Jdg61/8PeIMK0b29CW5uxE41rNL2d0sJzMcj3llft7LptDCY6m xbNzK5zqKd+d1nrnsxQKjJdZtceGty9+Pub7IBHrOKI/6njS+9fqhXx0FB0R++Jj Zt1q0WYYxNUJMOyd1YzPajGA1LuhhP4lF024I34Bj9kja4+at0gzo1aSkYPNZITM 0vzi8W0ui3HSC2jRwtsjM7apiNLgZRffpXxbNP3cdEk9094UulFLQLuq+dj64+lv QI/+VmwgqMj/va2Cs8mhDTp9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdbM5JGj7 eqsbi//948vFy3LOdn0wHwYDVR0jBBgwFoAUGAo1IuIFDF8eCHNTmxLW0jEqIBow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzFEQTVDQzU2REY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4ZUNITlRteExXMGpFcUlC by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0FvMUl1SUZERjhlQ0hOVG14TFcwakVxSUJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzFEQTVDQzU2REY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4 ZUNITlRteExXMGpFcUlCby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABS9V43x3p9LObyhM9PPtci4Ff7TePI4jzVSY91Vd5sqqzN9sPkg0vd1 BH+yLQHVPEwFlXfJ7FTlLNFeAbSY3y28w0czHO6jQdPrixqT03BDOOZRMW9tYEvn hnlUNkQLp1Xv9sON+1oRBeXIbLnGHDUvyh3cckhNVroRhDFqPpAUWd9STMmPtEfb SesJm/RnVt0wrsgw2NZpQBSz/4ImjSxKg6IzASWMvc6z6VXFiiVFAIlTKqxOIko3 VGg5W16X3LInWYDWsCw5l0/IQeWGcAOZsyvuq8l6zIdU8aNqvk90bPde5N4mzYur PuBWMs9MAnMdPKbNzgkHncLJc1NoyDk= -----END CERTIFICATE-----Generated at Wed Jul 2 13:17:45 2025 by rpki-client