$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft File: _GUnKrz-olrSH5XhQm4gZ5zfyG4.mft (raw, json) Hash identifier: /7lv6lLsQS1nrNqfp6p0vEsZG3Wcx2UES/5aDObs4VI= Subject key identifier: FB:13:37:82:F7:1E:40:26:37:18:93:F4:76:AA:F7:42:4D:C7:76:9C Authority key identifier: FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E Certificate issuer: /CN=A91E5FCD/serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Certificate serial: 195F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft Manifest number: 1EFF Signing time: Sun 20 Jul 2025 16:26:24 +0000 Manifest this update: Sun 20 Jul 2025 16:26:23 +0000 Manifest next update: Sun 27 Jul 2025 16:26:23 +0000 Files and hashes: 1: _GUnKrz-olrSH5XhQm4gZ5zfyG4.crl (hash: 8vRVJmXaOBmf2nXKIkO4dLEuTxXqOufHvH4FR6Q6wsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6495 (0x195f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD, serialNumber=FC65272ABCFEA25AD21F95E1426E20679CDFC86E Validity Not Before: Jul 20 16:26:23 2025 GMT Not After : Jul 27 16:26:23 2025 GMT Subject: CN=687d18af-c6ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:16:2e:1a:be:16:48:4a:2a:7a:db:d1:71:8c: a9:62:ed:28:42:26:7c:f4:7d:24:11:5a:a8:da:8d: d8:a6:a0:6e:1e:99:ef:7b:46:58:fa:7f:21:b6:bd: f6:d1:6e:1a:4c:40:38:43:ad:25:9e:54:7c:b2:11: ef:d6:d5:c1:1b:18:2d:03:15:5e:eb:da:28:3f:6a: 10:b6:9a:f5:2c:70:9c:f0:41:b6:fc:83:18:4c:45: a6:cd:f1:c8:b9:6e:be:86:9e:83:fa:67:22:2b:ae: c2:95:4d:7b:46:46:bd:5c:78:f3:49:f4:0a:64:ad: 02:61:9d:9c:8b:f9:e5:0a:2a:9e:31:ed:aa:ca:1a: b3:36:ef:25:bc:b1:ff:36:44:b8:e8:36:1c:5e:ac: 68:20:b0:fc:89:fe:00:5b:46:20:a6:ee:9c:b2:cd: 77:40:09:af:1b:47:df:32:0b:9a:0c:4c:e3:e2:ec: df:89:21:d8:89:a0:fc:c9:dc:36:88:a6:db:62:fb: 74:f2:a1:96:74:de:ff:ce:ed:b0:77:ab:ac:e4:20: 0e:f0:c9:4d:7b:d7:6b:64:73:a9:2e:3d:31:2a:ab: 04:09:a6:ce:24:70:98:f2:88:5b:52:6d:02:dd:6e: 20:77:95:ba:97:ab:6a:71:05:91:ab:e8:be:da:34: b7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:13:37:82:F7:1E:40:26:37:18:93:F4:76:AA:F7:42:4D:C7:76:9C X509v3 Authority Key Identifier: keyid:FC:65:27:2A:BC:FE:A2:5A:D2:1F:95:E1:42:6E:20:67:9C:DF:C8:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GUnKrz-olrSH5XhQm4gZ5zfyG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/_GUnKrz-olrSH5XhQm4gZ5zfyG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b4:23:e6:65:4a:ac:80:e4:32:86:b2:9f:a9:63:52:85:f8: 09:47:f1:a6:bb:89:1a:80:d1:b9:e0:c6:fb:8f:27:9b:f9:53: 49:eb:d0:f2:0a:9b:48:f4:ab:e4:66:b6:c9:ef:03:31:76:bd: 77:9f:eb:84:f3:44:f8:53:aa:77:6e:d9:81:e4:ef:df:7e:93: 51:05:31:e6:96:b6:44:d4:7c:f2:83:74:30:89:c1:a0:14:0b: e5:60:83:7d:6c:ff:5f:52:e6:3e:56:8a:44:79:28:e0:8e:6b: c7:69:18:b4:40:e7:a3:2e:e5:d8:8d:11:29:51:d1:aa:1f:f1: d7:6c:3a:d3:a3:ae:c3:51:5d:6f:1b:ff:17:02:5d:f9:02:cf: 46:22:ab:bf:44:5e:07:10:da:35:9c:5f:bf:a3:6e:34:26:75: 1f:aa:7f:db:66:30:31:f8:d9:5c:0b:ea:03:f7:60:01:f2:71: f5:34:73:83:45:8e:29:1c:21:28:cf:2d:b3:27:de:26:e2:77: 7c:d6:44:01:57:b1:5a:b5:b7:e1:3e:db:ab:54:cd:5f:51:6b: e6:93:81:15:33:af:2e:17:51:e3:f0:22:8a:f0:30:fa:c7:f3: ba:6a:4d:21:1d:bc:9c:54:77:0c:0c:41:ca:55:38:99:c5:8a: 71:65:8f:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKEZDNjUyNzJBQkNGRUEyNUFEMjFGOTVFMTQyNkUyMDY3 OUNERkM4NkUwHhcNMjUwNzIwMTYyNjIzWhcNMjUwNzI3MTYyNjIzWjAYMRYwFAYD VQQDEw02ODdkMThhZi1jNmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BYuGr4WSEoqetvRcYypYu0oQiZ89H0kEVqo2o3YpqBuHpnve0ZY+n8htr32 0W4aTEA4Q60lnlR8shHv1tXBGxgtAxVe69ooP2oQtpr1LHCc8EG2/IMYTEWmzfHI uW6+hp6D+mciK67ClU17Rka9XHjzSfQKZK0CYZ2ci/nlCiqeMe2qyhqzNu8lvLH/ NkS46DYcXqxoILD8if4AW0Ygpu6css13QAmvG0ffMguaDEzj4uzfiSHYiaD8ydw2 iKbbYvt08qGWdN7/zu2wd6us5CAO8MlNe9drZHOpLj0xKqsECabOJHCY8ohbUm0C 3W4gd5W6l6tqcQWRq+i+2jS3qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsTN4L3 HkAmNxiT9Haq90JNx3acMB8GA1UdIwQYMBaAFPxlJyq8/qJa0h+V4UJuIGec38hu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9sclNINVhoUW00Z1o1emZ5 RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVW5Lcnotb2xyU0g1WGhRbTRnWjV6ZnlHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUZDRC8wQkUwRkZFMDc4MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9fR1VuS3J6LW9s clNINVhoUW00Z1o1emZ5RzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNtCPmZUqsgOQyhrKfqWNShfgJR/Gmu4kagNG54Mb7jyeb+VNJ69Dy CptI9KvkZrbJ7wMxdr13n+uE80T4U6p3btmB5O/ffpNRBTHmlrZE1Hzyg3QwicGg FAvlYIN9bP9fUuY+VopEeSjgjmvHaRi0QOejLuXYjREpUdGqH/HXbDrTo67DUV1v G/8XAl35As9GIqu/RF4HENo1nF+/o240JnUfqn/bZjAx+NlcC+oD92AB8nH1NHOD RY4pHCEozy2zJ94m4nd81kQBV7FatbfhPturVM1fUWvmk4EVM68uF1Hj8CKK8DD6 x/O6ak0hHbycVHcMDEHKVTiZxYpxZY/9 -----END CERTIFICATE-----Generated at Mon Jul 21 05:59:56 2025 by rpki-client