$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft File: _GiPuVzFIF4D5wpgXJlMXUlaszI.mft (raw, json) Hash identifier: z7CoQl+ieWAcvNR4ZjpVSNreQdFlsXSDaaV760NCObo= Subject key identifier: A9:C1:51:90:81:1A:94:5F:B8:95:64:56:B6:E8:CE:C9:1B:8B:65:0D Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 0317 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft Manifest number: 0312 Signing time: Mon 21 Jul 2025 01:29:29 +0000 Manifest this update: Mon 21 Jul 2025 01:29:28 +0000 Manifest next update: Mon 28 Jul 2025 01:29:28 +0000 Files and hashes: 1: _GiPuVzFIF4D5wpgXJlMXUlaszI.crl (hash: xhd/tmvCpNE3AxgJPuTY/cU/fd6bLKC5RwpoopvBjGM=) 2: 4E8DA224547711EF9EDD014DC4F9AE02.roa (hash: 4Q9eSoyybwKkbe+OvPprVAkVlq22srO6Z2iGnnSJ3hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43, serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Validity Not Before: Jul 21 01:29:28 2025 GMT Not After : Jul 28 01:29:28 2025 GMT Subject: CN=687d97f8-8a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ef:48:52:17:fc:4e:d5:1e:fb:18:5b:f1:f4: 16:ef:0b:9f:90:a7:54:76:73:0b:28:70:9c:66:60: f4:03:c6:c3:8c:d6:54:1d:83:83:83:09:d0:8b:3e: 53:38:bb:7a:c8:31:1a:62:99:52:22:8c:b7:6c:4f: 62:59:86:52:ba:3a:5f:56:eb:fd:d7:3f:59:7e:5e: 01:b0:42:71:96:de:05:f7:7c:94:b9:f7:d3:6e:79: 7d:cd:1f:80:6e:80:6b:c2:ae:58:5c:06:83:7e:c0: db:cf:f2:22:da:68:6c:71:3e:5c:f6:7c:c3:5f:e2: d7:eb:4e:23:3c:de:a1:00:f9:f3:32:33:4b:01:68: 10:54:e6:52:a9:a3:2e:ad:d6:cc:c6:cb:bc:7e:06: b1:98:5c:1e:9e:c5:60:00:d9:c3:0e:bb:a6:a9:7b: c0:11:2c:38:8a:df:43:63:57:18:3a:51:45:28:dc: 31:63:c7:69:43:5c:99:07:12:06:94:32:72:37:26: b6:08:da:82:e4:33:a3:64:6a:16:92:a8:13:73:83: 48:c9:6a:fa:3a:ae:79:0c:c7:48:73:88:af:c6:b5: 0f:67:f4:9c:ea:fc:11:3e:6b:14:8a:07:1d:8f:75: 3b:ce:51:62:4f:90:93:17:93:ac:46:10:69:5f:19: 9b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C1:51:90:81:1A:94:5F:B8:95:64:56:B6:E8:CE:C9:1B:8B:65:0D X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:21:6e:34:05:a9:7f:43:ea:42:e4:82:5a:73:94:28:55:f7: ba:f2:bf:dd:b9:61:7a:c0:b4:ee:17:ac:ae:92:26:25:d5:d4: 54:e6:19:4b:4b:dd:1b:c2:9c:db:63:9b:11:ed:f3:1c:ee:2a: c6:39:0a:f8:46:e5:6b:c5:68:59:58:02:c7:e5:0a:76:6b:89: e9:4d:cd:85:86:9b:a2:3a:1d:3a:4e:1a:65:2e:2d:18:38:7b: dc:58:02:f5:07:0e:24:f0:e4:4e:1f:0a:f6:4c:6b:af:24:d7: 25:cf:bf:1d:41:84:58:4f:cb:be:05:05:ad:7a:b4:61:20:44: 55:a2:45:ef:b6:df:7d:8d:26:f6:45:8d:69:34:3a:6f:24:3b: 98:56:1f:15:c1:0e:91:fa:dd:16:f9:ca:97:de:9f:c0:73:e8: 22:d2:0e:78:60:0e:e9:fe:b3:2b:18:62:cd:0f:3c:b1:6c:11: 34:43:9d:2c:ee:ae:72:f0:84:6f:40:9c:16:2d:9d:8e:53:db: d4:25:ed:d6:ac:3f:62:6e:ff:d5:41:23:ac:30:61:23:6f:17: ca:73:35:50:fc:bb:75:e2:f7:db:b2:37:66:9b:90:a2:c6:48: 1a:62:53:21:81:f8:46:44:17:e9:29:a1:66:08:9e:24:c0:a1: d5:07:08:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjUwNzIxMDEyOTI4WhcNMjUwNzI4MDEyOTI4WjAYMRYwFAYD VQQDEw02ODdkOTdmOC04YTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+9IUhf8TtUe+xhb8fQW7wufkKdUdnMLKHCcZmD0A8bDjNZUHYODgwnQiz5T OLt6yDEaYplSIoy3bE9iWYZSujpfVuv91z9Zfl4BsEJxlt4F93yUuffTbnl9zR+A boBrwq5YXAaDfsDbz/Ii2mhscT5c9nzDX+LX604jPN6hAPnzMjNLAWgQVOZSqaMu rdbMxsu8fgaxmFwensVgANnDDrumqXvAESw4it9DY1cYOlFFKNwxY8dpQ1yZBxIG lDJyNya2CNqC5DOjZGoWkqgTc4NIyWr6Oq55DMdIc4ivxrUPZ/Sc6vwRPmsUigcd j3U7zlFiT5CTF5OsRhBpXxmb6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnBUZCB GpRfuJVkVrbozskbi2UNMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ0My83RDk5ODA3NkRDRDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklG NEQ1d3BnWEpsTVhVbGFzekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTIW40Bal/Q+pC5IJac5QoVfe68r/duWF6wLTuF6yukiYl1dRU5hlL S90bwpzbY5sR7fMc7irGOQr4RuVrxWhZWALH5Qp2a4npTc2FhpuiOh06ThplLi0Y OHvcWAL1Bw4k8OROHwr2TGuvJNclz78dQYRYT8u+BQWterRhIERVokXvtt99jSb2 RY1pNDpvJDuYVh8VwQ6R+t0W+cqX3p/Ac+gi0g54YA7p/rMrGGLNDzyxbBE0Q50s 7q5y8IRvQJwWLZ2OU9vUJe3WrD9ibv/VQSOsMGEjbxfKczVQ/Lt14vfbsjdmm5Ci xkgaYlMhgfhGRBfpKaFmCJ4kwKHVBwie -----END CERTIFICATE-----Generated at Mon Jul 21 07:27:19 2025 by rpki-client