$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft File: gFLXiRiFOIg0vD1ozrIclvdiXmc.mft (raw, json) Hash identifier: PfMuzV86RmJZa0koGj7ul961UskEt6PmjW2p1MDhwcc= Subject key identifier: 87:A7:9E:CA:1D:60:8A:5C:A0:CE:78:B0:FD:C9:43:8E:85:EA:49:F2 Authority key identifier: 80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 Certificate issuer: /CN=A91CBE89/serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Certificate serial: 1E72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft Manifest number: 1E71 Signing time: Fri 18 Jul 2025 16:10:16 +0000 Manifest this update: Fri 18 Jul 2025 16:10:15 +0000 Manifest next update: Fri 25 Jul 2025 16:10:15 +0000 Files and hashes: 1: gFLXiRiFOIg0vD1ozrIclvdiXmc.crl (hash: 1HhYa7WgBWyh9cLMF0mrZEsXmryH+m9xcu9hQq3IZuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7794 (0x1e72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBE89, serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Validity Not Before: Jul 18 16:10:15 2025 GMT Not After : Jul 25 16:10:15 2025 GMT Subject: CN=687a71e7-29aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e0:8c:91:e8:47:a5:e5:4a:c5:b8:5e:d7:8a: 34:10:3d:06:57:49:53:5e:00:3d:b2:40:bc:24:09: fa:73:7a:af:2c:7a:92:27:ce:e5:72:b7:1e:2c:53: 46:bb:06:11:08:0e:7d:f3:8d:39:46:12:0a:2c:c1: 29:70:cf:c0:07:dc:6f:0f:83:ee:ee:7e:f4:7a:ca: 0f:da:8b:f6:95:00:00:89:12:86:ce:f1:e5:44:1b: 0a:33:ec:dd:44:25:4d:64:a2:8c:d7:97:c2:89:ee: 50:d2:43:70:d7:0a:f5:af:dd:1d:bc:4d:1c:c6:93: 44:58:8c:45:a0:0a:79:93:70:de:c1:98:1e:99:b4: f8:df:46:2a:46:be:7f:c2:3b:6f:16:6b:1b:27:fa: eb:ef:40:2a:2c:16:20:e2:09:d8:5f:28:60:b7:42: b3:8f:d9:11:b5:69:bd:13:d2:e1:0a:ff:6e:77:e0: a6:cd:0d:4d:55:55:06:ca:42:05:7a:21:36:5b:3e: bc:84:2f:00:99:13:ce:09:88:a1:f3:e4:95:4c:46: 84:68:75:da:5e:1a:c9:97:42:89:84:c5:8b:b4:a9: ec:0f:a2:37:8e:40:13:13:80:ec:70:c9:c6:68:66: cb:d9:72:33:a6:a3:aa:50:8c:39:94:ff:08:ee:36: e1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A7:9E:CA:1D:60:8A:5C:A0:CE:78:B0:FD:C9:43:8E:85:EA:49:F2 X509v3 Authority Key Identifier: keyid:80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:85:fa:35:83:08:18:c0:e8:c1:93:8e:81:c6:1a:b5:0b:b7: 5e:5a:ee:90:ab:10:59:04:cc:a4:35:a4:8c:17:21:df:dd:11: 16:90:e3:20:fa:ca:75:b3:be:25:29:42:91:79:45:2c:f6:1d: d2:6f:14:e7:37:c3:ae:be:12:8f:99:4c:ea:cb:74:d3:64:47: b9:13:5e:cc:66:c4:97:12:a9:91:ed:76:4f:d6:c4:9d:71:69: a4:e9:00:e8:a3:c0:3a:7c:f9:41:72:03:f7:51:4c:3a:fd:14: 77:26:e3:3a:7d:e7:4f:07:80:64:46:97:d0:f2:86:aa:ac:b5: 94:9d:6a:52:7b:53:3e:51:8b:bf:29:d0:27:71:6b:8a:84:03: 3a:1d:3e:95:de:1b:c0:e7:dc:a0:19:88:18:6f:22:7c:ba:92: 52:68:15:17:57:e9:e8:5e:af:f8:5a:47:c9:e3:e9:d6:6a:60: 4e:5b:49:8f:ad:32:82:87:05:cf:68:49:4b:90:44:68:40:2f: cf:8d:b1:ae:0a:9d:fa:b4:9f:ee:bc:33:b9:46:99:fd:3b:9d: d9:0f:21:1b:c4:5d:f5:56:6f:9f:39:0f:4f:24:fa:fc:25:3c: 22:dd:d0:8e:ee:8b:26:32:43:88:7c:c8:11:86:6f:63:f6:1a: 94:cb:bf:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JFODkxMTAvBgNVBAUTKDgwNTJENzg5MTg4NTM4ODgzNEJDM0Q2OENFQjIxQzk2 Rjc2MjVFNjcwHhcNMjUwNzE4MTYxMDE1WhcNMjUwNzI1MTYxMDE1WjAYMRYwFAYD VQQDEw02ODdhNzFlNy0yOWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOCMkehHpeVKxbhe14o0ED0GV0lTXgA9skC8JAn6c3qvLHqSJ87lcrceLFNG uwYRCA598405RhIKLMEpcM/AB9xvD4Pu7n70esoP2ov2lQAAiRKGzvHlRBsKM+zd RCVNZKKM15fCie5Q0kNw1wr1r90dvE0cxpNEWIxFoAp5k3DewZgembT430YqRr5/ wjtvFmsbJ/rr70AqLBYg4gnYXyhgt0Kzj9kRtWm9E9LhCv9ud+CmzQ1NVVUGykIF eiE2Wz68hC8AmRPOCYih8+SVTEaEaHXaXhrJl0KJhMWLtKnsD6I3jkATE4DscMnG aGbL2XIzpqOqUIw5lP8I7jbhvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIennsod YIpcoM54sP3JQ46F6knyMB8GA1UdIwQYMBaAFIBS14kYhTiINLw9aM6yHJb3Yl5n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkU4OS9GMjcyNkExODc2 M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9JZzB2RDFvenJJY2x2ZGlY bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dGTFhpUmlGT0lnMHZEMW96ckljbHZkaVhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkU4OS9GMjcyNkExODc2M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9J ZzB2RDFvenJJY2x2ZGlYbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBphfo1gwgYwOjBk46Bxhq1C7deWu6QqxBZBMykNaSMFyHf3REWkOMg +sp1s74lKUKReUUs9h3SbxTnN8OuvhKPmUzqy3TTZEe5E17MZsSXEqmR7XZP1sSd cWmk6QDoo8A6fPlBcgP3UUw6/RR3JuM6fedPB4BkRpfQ8oaqrLWUnWpSe1M+UYu/ KdAncWuKhAM6HT6V3hvA59ygGYgYbyJ8upJSaBUXV+noXq/4WkfJ4+nWamBOW0mP rTKChwXPaElLkERoQC/PjbGuCp36tJ/uvDO5Rpn9O53ZDyEbxF31Vm+fOQ9PJPr8 JTwi3dCO7osmMkOIfMgRhm9j9hqUy7+N -----END CERTIFICATE-----Generated at Sat Jul 19 18:29:36 2025 by rpki-client