$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft File: gFLXiRiFOIg0vD1ozrIclvdiXmc.mft (raw, json) Hash identifier: dPiw+F2FWpH1DvIxxAhH98Yetch5Q8uxzpMq3iHbOpQ= Subject key identifier: 12:FA:36:78:3F:C6:47:23:CE:D9:80:83:42:0D:88:D3:AA:DE:E8:E1 Authority key identifier: 80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 Certificate issuer: /CN=A91CBE89/serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Certificate serial: 1E58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft Manifest number: 1E57 Signing time: Fri 30 May 2025 16:14:49 +0000 Manifest this update: Fri 30 May 2025 16:14:49 +0000 Manifest next update: Fri 06 Jun 2025 16:14:49 +0000 Files and hashes: 1: gFLXiRiFOIg0vD1ozrIclvdiXmc.crl (hash: KPbtfWMWp5mvThOxtw+bpN0sOCrCMcCazKLWFr0Rlcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:14:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7768 (0x1e58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBE89, serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Validity Not Before: May 30 16:14:49 2025 GMT Not After : Jun 6 16:14:49 2025 GMT Subject: CN=6839d979-ae11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d2:ce:c5:ca:22:94:5a:21:70:e9:cd:37:c7: 28:4f:e3:67:67:e9:26:2a:27:f4:0e:38:10:bd:d4: 89:92:dd:fe:f7:71:4e:fd:6f:74:f9:9b:af:e5:3d: 5e:0f:1b:e2:28:b2:cb:62:73:f6:d7:15:62:17:ec: 6f:9c:f0:42:77:e1:1b:4e:98:5d:6f:96:7a:3a:6e: 8e:8d:17:c8:d0:2e:f6:26:89:ee:2c:fe:ac:8c:e2: e4:33:8c:6b:7d:53:ef:76:02:a4:e0:65:27:4d:c3: 54:18:10:29:75:04:93:99:72:ab:15:ef:f2:61:b4: 5f:39:57:cc:c3:0f:fd:2c:03:40:63:08:df:5d:18: 7e:89:03:53:50:b5:2b:63:9d:5b:46:63:b4:3c:60: 71:2a:4d:64:9d:04:bc:f9:8a:b8:c3:86:4f:b0:57: 3b:8e:5d:2e:6d:96:38:91:f5:27:cf:3a:22:76:09: fd:24:a3:4d:9a:10:e2:8c:78:fd:9e:2b:55:6b:5d: ee:ab:db:ab:fa:a2:93:d2:11:d3:24:95:92:ad:18: 6c:41:57:69:63:c8:ca:e1:31:2d:e7:57:0b:72:3b: 41:ae:9b:de:4d:27:28:59:70:c4:cb:e4:9a:19:08: 09:f6:44:ac:1d:16:db:69:bd:5e:63:c5:3c:61:bf: 38:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:FA:36:78:3F:C6:47:23:CE:D9:80:83:42:0D:88:D3:AA:DE:E8:E1 X509v3 Authority Key Identifier: keyid:80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:85:58:f7:dc:84:6e:57:53:d1:4b:8c:4f:0f:7f:38:c2:95: 43:c0:d3:0c:ed:30:85:f9:8f:ab:30:a1:8a:37:70:09:2e:5f: a4:af:e3:aa:5a:df:27:fe:f6:dc:f8:51:d4:78:96:ba:b5:73: 7c:72:1e:e0:a6:d3:36:de:06:ef:e5:71:1f:24:38:75:8d:4a: 8f:5d:00:ce:8d:e0:21:d6:dc:5f:4b:2e:54:3f:2a:13:20:d7: 0b:6a:f2:af:43:4e:93:ce:96:60:97:c8:c5:0c:d2:3f:72:c6: 86:40:cd:05:a9:8c:79:9f:23:6f:6c:59:b9:f9:0c:3a:f1:57: 94:99:47:b4:74:50:e9:fe:a0:69:32:3e:28:8d:d5:00:bd:4d: a7:4a:c3:41:75:b2:59:be:00:ab:ef:f6:60:9c:de:03:67:3b: e7:1d:6b:03:84:c6:b7:04:78:39:97:4e:2f:e9:25:74:01:70: 48:33:dd:cb:99:65:77:cc:f5:c4:12:64:76:b1:78:f0:78:4f: 99:31:3a:94:03:98:f4:65:33:c8:88:c4:4c:b2:ee:6a:f5:08: 70:7c:e2:d6:78:11:9c:0a:a2:e5:ff:e8:5c:01:1d:e7:fa:45: a8:30:43:39:fe:92:51:58:26:ea:5d:ff:6b:c8:1b:60:e4:e1: f2:a8:0d:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JFODkxMTAvBgNVBAUTKDgwNTJENzg5MTg4NTM4ODgzNEJDM0Q2OENFQjIxQzk2 Rjc2MjVFNjcwHhcNMjUwNTMwMTYxNDQ5WhcNMjUwNjA2MTYxNDQ5WjAYMRYwFAYD VQQDEw02ODM5ZDk3OS1hZTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9LOxcoilFohcOnNN8coT+NnZ+kmKif0DjgQvdSJkt3+93FO/W90+Zuv5T1e DxviKLLLYnP21xViF+xvnPBCd+EbTphdb5Z6Om6OjRfI0C72JonuLP6sjOLkM4xr fVPvdgKk4GUnTcNUGBApdQSTmXKrFe/yYbRfOVfMww/9LANAYwjfXRh+iQNTULUr Y51bRmO0PGBxKk1knQS8+Yq4w4ZPsFc7jl0ubZY4kfUnzzoidgn9JKNNmhDijHj9 nitVa13uq9ur+qKT0hHTJJWSrRhsQVdpY8jK4TEt51cLcjtBrpveTScoWXDEy+Sa GQgJ9kSsHRbbab1eY8U8Yb84yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBL6Nng/ xkcjztmAg0INiNOq3ujhMB8GA1UdIwQYMBaAFIBS14kYhTiINLw9aM6yHJb3Yl5n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkU4OS9GMjcyNkExODc2 M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9JZzB2RDFvenJJY2x2ZGlY bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dGTFhpUmlGT0lnMHZEMW96ckljbHZkaVhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkU4OS9GMjcyNkExODc2M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9J ZzB2RDFvenJJY2x2ZGlYbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXhVj33IRuV1PRS4xPD384wpVDwNMM7TCF+Y+rMKGKN3AJLl+kr+Oq Wt8n/vbc+FHUeJa6tXN8ch7gptM23gbv5XEfJDh1jUqPXQDOjeAh1txfSy5UPyoT INcLavKvQ06TzpZgl8jFDNI/csaGQM0FqYx5nyNvbFm5+Qw68VeUmUe0dFDp/qBp Mj4ojdUAvU2nSsNBdbJZvgCr7/ZgnN4DZzvnHWsDhMa3BHg5l04v6SV0AXBIM93L mWV3zPXEEmR2sXjweE+ZMTqUA5j0ZTPIiMRMsu5q9QhwfOLWeBGcCqLl/+hcAR3n +kWoMEM5/pJRWCbqXf9ryBtg5OHyqA3c -----END CERTIFICATE-----Generated at Sat May 31 16:53:46 2025 by rpki-client