$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft File: _GiPuVzFIF4D5wpgXJlMXUlaszI.mft (raw, json) Hash identifier: TgqqEryzhik0rl7ALviV/uxh14mXu5RSt+LK3N8uBBU= Subject key identifier: 01:BB:F2:FF:43:F5:D8:3B:F4:CA:91:F5:05:5C:85:72:9A:47:8C:56 Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 02FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft Manifest number: 02F8 Signing time: Sat 31 May 2025 01:29:09 +0000 Manifest this update: Sat 31 May 2025 01:29:08 +0000 Manifest next update: Sat 07 Jun 2025 01:29:08 +0000 Files and hashes: 1: _GiPuVzFIF4D5wpgXJlMXUlaszI.crl (hash: 54PQrPpMvKTDdAToL6BMvQu7kdF3PJ92ih1IRiQhKCE=) 2: 4E8DA224547711EF9EDD014DC4F9AE02.roa (hash: 4Q9eSoyybwKkbe+OvPprVAkVlq22srO6Z2iGnnSJ3hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 765 (0x2fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43, serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Validity Not Before: May 31 01:29:08 2025 GMT Not After : Jun 7 01:29:08 2025 GMT Subject: CN=683a5b64-bd3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0e:3b:ab:5c:1b:7d:4f:3d:5c:9f:cc:9f:a4: 52:b3:f6:62:99:fe:c9:7d:be:ab:2b:8e:b1:71:5f: 2d:da:b0:8a:42:ca:42:47:f1:00:1f:a7:14:85:87: 2d:dd:d7:12:70:dc:38:ee:22:bd:28:2f:69:b1:60: 5a:ac:ca:c4:20:42:6c:99:00:9b:19:51:db:73:65: 3c:4c:f3:79:98:82:d1:9a:df:56:91:2d:59:84:59: 0b:df:2c:68:a8:15:4b:2f:63:90:e0:55:03:df:38: 40:ff:51:5e:a3:54:f6:b9:5e:1f:c4:d7:1c:9b:0f: 73:80:ed:c9:6d:82:fc:7d:3c:76:28:6a:16:68:2f: ac:e4:41:c5:79:02:ad:2d:8d:2e:95:33:f2:87:40: e7:8c:f9:ac:23:57:7e:95:68:e5:48:c6:c9:69:07: 2d:cd:80:4c:7f:5c:d8:fa:a5:00:9c:fe:ba:a0:f2: 07:d9:1c:02:b7:5e:d7:d5:ae:c1:3d:75:58:16:2e: 49:1f:95:d1:89:37:5e:d1:84:ca:6e:75:68:e4:c9: 7a:a3:db:91:d8:7c:c1:0b:37:f2:be:54:d8:df:9a: d6:b1:ce:c8:77:80:6a:a4:92:07:2d:4c:e0:bf:59: a4:62:a5:6a:63:b1:31:bd:16:37:84:e0:59:3d:7f: 51:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:BB:F2:FF:43:F5:D8:3B:F4:CA:91:F5:05:5C:85:72:9A:47:8C:56 X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:67:02:12:c8:12:6d:5b:2d:12:44:3b:24:54:50:81:2b:be: ab:46:2c:1e:a6:86:55:ab:4d:6e:b5:74:bc:db:6b:18:40:39: 5b:08:c2:1d:df:4a:3a:b5:2d:a2:d1:d9:62:47:16:7a:2f:80: 49:d0:d8:ba:bf:f8:51:d2:3b:f7:be:f8:a9:a3:a2:ea:97:b5: 23:9f:0f:a7:ca:18:3c:c3:4a:90:e1:43:78:1d:8d:04:2a:45: 50:23:73:bd:79:09:84:67:86:a4:4e:11:68:6e:5f:02:80:08: a1:e0:ad:6b:c1:ab:4b:7b:02:6a:68:06:cd:d9:24:8a:8e:f0: cc:46:36:8f:d0:e0:6a:d3:15:eb:5f:da:5d:8d:ca:59:29:0f: d6:0a:ff:cf:4d:68:0c:4c:b4:86:34:45:7e:a6:f0:32:4a:ed: 29:16:b2:df:de:42:5a:0c:86:68:08:0e:ee:69:88:6a:e7:53: c6:2a:8f:03:41:81:cd:43:67:9a:7f:37:d6:3f:5f:47:2a:5e: 75:75:96:be:53:05:32:94:f1:2d:68:72:87:ae:0e:68:24:92: 8e:ff:de:25:b3:a6:c7:da:e3:7e:13:07:dc:e3:84:34:d0:7e: 30:c8:55:4b:58:21:a6:e7:48:02:49:49:56:aa:a6:94:8b:f2: d8:7a:9a:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjUwNTMxMDEyOTA4WhcNMjUwNjA3MDEyOTA4WjAYMRYwFAYD VQQDEw02ODNhNWI2NC1iZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzg47q1wbfU89XJ/Mn6RSs/Zimf7Jfb6rK46xcV8t2rCKQspCR/EAH6cUhYct 3dcScNw47iK9KC9psWBarMrEIEJsmQCbGVHbc2U8TPN5mILRmt9WkS1ZhFkL3yxo qBVLL2OQ4FUD3zhA/1Feo1T2uV4fxNccmw9zgO3JbYL8fTx2KGoWaC+s5EHFeQKt LY0ulTPyh0DnjPmsI1d+lWjlSMbJaQctzYBMf1zY+qUAnP66oPIH2RwCt17X1a7B PXVYFi5JH5XRiTde0YTKbnVo5Ml6o9uR2HzBCzfyvlTY35rWsc7Id4BqpJIHLUzg v1mkYqVqY7ExvRY3hOBZPX9R5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAG78v9D 9dg79MqR9QVchXKaR4xWMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ0My83RDk5ODA3NkRDRDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklG NEQ1d3BnWEpsTVhVbGFzekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFZwISyBJtWy0SRDskVFCBK76rRiwepoZVq01utXS822sYQDlbCMId 30o6tS2i0dliRxZ6L4BJ0Ni6v/hR0jv3vvipo6Lql7Ujnw+nyhg8w0qQ4UN4HY0E KkVQI3O9eQmEZ4akThFobl8CgAih4K1rwatLewJqaAbN2SSKjvDMRjaP0OBq0xXr X9pdjcpZKQ/WCv/PTWgMTLSGNEV+pvAySu0pFrLf3kJaDIZoCA7uaYhq51PGKo8D QYHNQ2eafzfWP19HKl51dZa+UwUylPEtaHKHrg5oJJKO/94ls6bH2uN+Ewfc44Q0 0H4wyFVLWCGm50gCSUlWqqaUi/LYepoT -----END CERTIFICATE-----Generated at Sat May 31 16:28:44 2025 by rpki-client