$ rpki-client -vvf rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft File: GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft (raw, json) Hash identifier: ygYHdto8KLk0krirVqvybhGEGKku9ru7t5xOVFU0W/w= Subject key identifier: 13:7C:8C:55:5A:74:58:A1:AC:3A:E0:BB:E7:F3:83:BB:1B:F9:58:17 Authority key identifier: 18:81:5B:34:C8:69:28:4B:43:23:C9:16:99:36:77:0F:DD:0B:42:36 Certificate issuer: /CN=A91DACA7/serialNumber=18815B34C869284B4323C9169936770FDD0B4236 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIFbNMhpKEtDI8kWmTZ3D90LQjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft Manifest number: DA Signing time: Wed 17 Sep 2025 06:10:28 +0000 Manifest this update: Wed 17 Sep 2025 06:10:28 +0000 Manifest next update: Wed 24 Sep 2025 06:10:28 +0000 Files and hashes: 1: GIFbNMhpKEtDI8kWmTZ3D90LQjY.crl (hash: rPM2ZTUHBKN/5ocBqvM+D4C6DwGIZfg3PJBkairaP2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.crl rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIFbNMhpKEtDI8kWmTZ3D90LQjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:10:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DACA7, serialNumber=18815B34C869284B4323C9169936770FDD0B4236 Validity Not Before: Sep 17 06:10:28 2025 GMT Not After : Sep 24 06:10:28 2025 GMT Subject: CN=68ca50d4-69ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b4:fd:cf:62:25:18:97:58:64:46:80:0d:a5: 20:85:9f:b1:8c:a6:f0:e4:55:26:4b:a6:c5:51:77: c4:35:46:a7:d1:47:20:fd:ca:c6:f9:d0:f2:bf:5f: 11:c5:e0:e8:83:3c:b6:c1:c2:5e:20:30:b0:29:8d: fd:55:02:8a:b7:20:6b:97:76:42:a1:de:27:7d:f5: a9:45:c0:c9:57:52:86:67:81:f4:a3:36:08:60:eb: 8e:3d:d8:9b:b6:a7:92:2e:0e:47:19:5c:bc:1c:ac: 69:bc:74:9e:b6:fd:06:ae:3d:26:3a:ef:03:b5:59: dc:16:67:02:b5:f1:4d:4c:b9:57:e5:c4:e6:f6:50: 27:fd:04:36:9a:d3:02:80:f2:64:e3:8b:d8:cc:66: 72:8e:79:1a:a3:74:e9:8e:3d:fa:03:2e:ed:b7:04: cc:14:a4:b0:44:7d:a8:6f:5a:08:1d:b1:07:17:82: 48:22:cc:28:dd:a4:e9:0c:a7:5f:03:26:c5:47:65: 3d:e3:c3:85:51:82:bf:21:27:8e:6e:14:28:ab:38: 88:53:26:d2:e9:c7:e1:38:6c:39:5e:ce:35:37:03: 2b:85:11:8d:88:5e:91:7c:0a:6f:54:d5:48:1d:95: a1:b5:5c:0e:de:f1:04:20:eb:5a:05:df:f2:b7:79: 33:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7C:8C:55:5A:74:58:A1:AC:3A:E0:BB:E7:F3:83:BB:1B:F9:58:17 X509v3 Authority Key Identifier: keyid:18:81:5B:34:C8:69:28:4B:43:23:C9:16:99:36:77:0F:DD:0B:42:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GIFbNMhpKEtDI8kWmTZ3D90LQjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DACA7/59B9418645B211EFA5DF6D19C4F9AE02/GIFbNMhpKEtDI8kWmTZ3D90LQjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:b4:be:3a:4a:e4:29:9c:90:f4:f7:d1:44:0a:24:01:a4:86: 8d:45:04:6a:7a:38:17:4b:3c:aa:ea:d0:86:21:45:29:4c:39: 82:a0:0e:8f:bc:7a:ca:f8:62:62:d2:b2:9d:d4:5f:35:5a:c5: f7:d8:ba:59:d8:5e:0a:52:a1:17:5c:aa:2b:3f:41:74:7d:81: 88:a4:fa:47:de:7d:5e:63:d3:92:0d:da:ca:11:45:0b:c7:19: a4:f1:21:de:6b:ad:85:41:50:8d:71:d3:90:7c:a4:e1:04:67: 82:9d:74:97:24:c0:2c:39:f4:74:f0:47:b7:b3:a6:f9:6b:8f: 41:0f:34:1f:82:65:13:69:00:25:d2:05:15:11:69:c6:88:67: 87:07:73:2a:d9:22:72:1b:4e:3e:a1:e8:01:19:4e:e6:7c:1e: e8:48:86:4c:cd:28:2d:44:58:f6:c2:95:fe:e5:86:89:2e:bf: c4:a2:9e:f9:f8:3e:0f:54:22:5f:16:48:d6:fb:ae:cd:56:f4: 6a:f0:ed:bd:89:75:1b:f7:ef:52:6b:04:35:bf:74:a4:05:d8: 10:c4:53:72:98:91:5b:d5:f1:8c:80:c9:8f:36:04:77:c5:dd: 01:e5:84:a9:ef:fd:13:29:9e:46:1f:ca:63:ff:27:ff:36:93: 45:03:ba:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFDQTcxMTAvBgNVBAUTKDE4ODE1QjM0Qzg2OTI4NEI0MzIzQzkxNjk5MzY3NzBG REQwQjQyMzYwHhcNMjUwOTE3MDYxMDI4WhcNMjUwOTI0MDYxMDI4WjAYMRYwFAYD VQQDEw02OGNhNTBkNC02OWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07T9z2IlGJdYZEaADaUghZ+xjKbw5FUmS6bFUXfENUan0Ucg/crG+dDyv18R xeDogzy2wcJeIDCwKY39VQKKtyBrl3ZCod4nffWpRcDJV1KGZ4H0ozYIYOuOPdib tqeSLg5HGVy8HKxpvHSetv0Grj0mOu8DtVncFmcCtfFNTLlX5cTm9lAn/QQ2mtMC gPJk44vYzGZyjnkao3Tpjj36Ay7ttwTMFKSwRH2ob1oIHbEHF4JIIswo3aTpDKdf AybFR2U948OFUYK/ISeObhQoqziIUybS6cfhOGw5Xs41NwMrhRGNiF6RfApvVNVI HZWhtVwO3vEEIOtaBd/yt3kz2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBN8jFVa dFihrDrgu+fzg7sb+VgXMB8GA1UdIwQYMBaAFBiBWzTIaShLQyPJFpk2dw/dC0I2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUNBNy81OUI5NDE4NjQ1 QjIxMUVGQTVERjZEMTlDNEY5QUUwMi9HSUZiTk1ocEtFdERJOGtXbVRaM0Q5MExR alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dJRmJOTWhwS0V0REk4a1dtVFozRDkwTFFqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUNBNy81OUI5NDE4NjQ1QjIxMUVGQTVERjZEMTlDNEY5QUUwMi9HSUZiTk1ocEtF dERJOGtXbVRaM0Q5MExRalkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCStL46SuQpnJD099FECiQBpIaNRQRqejgXSzyq6tCGIUUpTDmCoA6P vHrK+GJi0rKd1F81WsX32LpZ2F4KUqEXXKorP0F0fYGIpPpH3n1eY9OSDdrKEUUL xxmk8SHea62FQVCNcdOQfKThBGeCnXSXJMAsOfR08Ee3s6b5a49BDzQfgmUTaQAl 0gUVEWnGiGeHB3Mq2SJyG04+oegBGU7mfB7oSIZMzSgtRFj2wpX+5YaJLr/Eop75 +D4PVCJfFkjW+67NVvRq8O29iXUb9+9SawQ1v3SkBdgQxFNymJFb1fGMgMmPNgR3 xd0B5YSp7/0TKZ5GH8pj/yf/NpNFA7px -----END CERTIFICATE-----Generated at Fri Sep 19 02:30:00 2025 by rpki-client