$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft File: GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft (raw, json) Hash identifier: tGqTHU+Tw3lMNvlSlEdkWgy56S3YaVr0s9tgTIYp27M= Subject key identifier: 3E:05:62:8D:36:6E:03:8C:91:B0:CC:D2:E4:2C:22:F7:F6:C7:7B:4E Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft Manifest number: 017B Signing time: Sat 21 Jun 2025 02:08:43 +0000 Manifest this update: Sat 21 Jun 2025 02:08:43 +0000 Manifest next update: Sat 28 Jun 2025 02:08:43 +0000 Files and hashes: 1: GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl (hash: qQmoeYNMEIRPrOZjrO+sBhaid1Qv3j6zAvsnQog1ses=) 2: 1F388278205F11F0A895DE1EC4F9AE02.roa (hash: QotOqnglA46ODcG/lG9E8XyvCGo9HnekdR3etzUrE4c=) 3: 926A40AC205E11F0A7552513C4F9AE02.roa (hash: 4KMF0OCYbNDwaW3aLIgUQJgQPdi1cw9YHAWu6imOU70=) 4: 9781D91CB36B11EEA3394737C4F9AE02.roa (hash: ezxJgBFw2tKKcU962PajWcu+NU//ODot2RyjD71Fn24=) 5: 12D4E3D41AA411F0A196BA66C4F9AE02.roa (hash: vvnk4u9DNse+nnNTrLADNzPvSMLhalyiJs4z4ddnMBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Validity Not Before: Jun 21 02:08:43 2025 GMT Not After : Jun 28 02:08:43 2025 GMT Subject: CN=6856142b-243d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f6:22:2c:21:08:03:c1:21:b9:19:40:79:38: 08:8b:33:c1:a7:4e:98:e1:3b:3b:a6:bd:7f:ce:bc: d9:da:99:53:c1:b2:e1:6e:66:f8:67:27:74:b9:e6: e3:21:37:34:60:21:39:bd:12:fc:0a:aa:df:de:c7: 5c:d7:e9:81:d1:0d:16:50:51:28:1a:d7:7d:cb:5a: ee:5f:13:a0:da:01:e2:6e:a4:f2:8e:41:4e:25:aa: 54:d4:1c:f3:94:f8:86:c5:c2:31:19:fa:93:ee:59: 48:76:46:5e:01:a1:41:0c:78:8f:71:17:d1:f8:15: 28:b9:86:d3:c8:ff:29:31:28:6b:ef:86:bd:38:73: 1b:b5:9b:29:dd:3a:da:5b:e1:3b:96:f3:bf:86:40: 43:56:0b:b6:11:59:cd:60:e0:86:ba:eb:25:b8:51: 3c:21:de:ff:f1:4c:4a:c2:27:63:2b:44:81:c7:60: 34:91:44:cf:e0:c3:04:4f:9d:c8:07:1e:00:33:c4: 36:a3:b0:7d:15:76:44:42:1d:ce:c3:99:26:e6:68: 66:10:ec:0a:4f:ad:d4:17:fc:53:9b:4c:8f:0a:b4: 47:d4:5f:6e:b3:6a:35:d3:d1:da:62:5f:d1:13:ac: 37:d5:b9:8b:2a:b4:57:82:a3:bf:47:33:4b:a9:f2: a6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:05:62:8D:36:6E:03:8C:91:B0:CC:D2:E4:2C:22:F7:F6:C7:7B:4E X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:44:ac:39:0f:95:a1:03:74:11:bf:bc:64:cd:f3:44:6c:d0: 11:fb:c1:4b:33:9b:09:25:35:74:68:31:3d:49:0f:21:64:bd: ca:0e:47:1c:16:fb:dc:97:1a:95:d7:ca:eb:d6:b1:d4:9d:b6: a9:9a:83:ec:16:b0:92:dc:e5:d8:26:e2:d4:d2:35:fb:14:e9: 04:42:9f:a8:46:09:47:c4:c6:21:54:48:e0:20:b8:79:5e:b0: 16:85:4a:c6:ca:8d:f1:91:48:7e:a9:98:37:d2:4e:38:e7:f3: de:26:8c:e3:bc:57:bd:e0:10:0f:4e:6c:5f:43:2d:af:e5:49: 4b:92:8b:34:a0:ea:77:db:be:c7:ea:11:ae:d7:6b:41:c3:81: 23:3c:16:b2:34:27:25:06:23:b9:59:78:8b:a5:3c:29:c8:b2: 14:7f:4c:25:d6:4e:b4:69:6a:d0:b4:a1:82:18:b9:2c:89:39: ec:d5:fd:73:12:ef:55:7b:af:8f:ef:24:f9:53:65:e8:7e:33: 8d:f9:e0:af:87:06:2a:c0:50:f5:f9:f3:77:b5:83:a3:2c:17: e2:4a:69:cb:24:c1:35:40:0d:45:62:94:42:5f:af:95:cf:60: 74:5d:69:78:08:d3:5b:a7:39:1c:82:83:f6:43:69:6b:d5:7b: df:ff:5c:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjUwNjIxMDIwODQzWhcNMjUwNjI4MDIwODQzWjAYMRYwFAYD VQQDEw02ODU2MTQyYi0yNDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfYiLCEIA8EhuRlAeTgIizPBp06Y4Ts7pr1/zrzZ2plTwbLhbmb4Zyd0uebj ITc0YCE5vRL8Cqrf3sdc1+mB0Q0WUFEoGtd9y1ruXxOg2gHibqTyjkFOJapU1Bzz lPiGxcIxGfqT7llIdkZeAaFBDHiPcRfR+BUouYbTyP8pMShr74a9OHMbtZsp3Tra W+E7lvO/hkBDVgu2EVnNYOCGuusluFE8Id7/8UxKwidjK0SBx2A0kUTP4MMET53I Bx4AM8Q2o7B9FXZEQh3Ow5km5mhmEOwKT63UF/xTm0yPCrRH1F9us2o109HaYl/R E6w31bmLKrRXgqO/RzNLqfKmRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4FYo02 bgOMkbDM0uQsIvf2x3tOMB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy82MjlFOEIyMDNCMjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1Ba V3BiUmNSWWo0dlpnNncteGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGRKw5D5WhA3QRv7xkzfNEbNAR+8FLM5sJJTV0aDE9SQ8hZL3KDkcc FvvclxqV18rr1rHUnbapmoPsFrCS3OXYJuLU0jX7FOkEQp+oRglHxMYhVEjgILh5 XrAWhUrGyo3xkUh+qZg30k445/PeJozjvFe94BAPTmxfQy2v5UlLkos0oOp3277H 6hGu12tBw4EjPBayNCclBiO5WXiLpTwpyLIUf0wl1k60aWrQtKGCGLksiTns1f1z Eu9Ve6+P7yT5U2XofjON+eCvhwYqwFD1+fN3tYOjLBfiSmnLJME1QA1FYpRCX6+V z2B0XWl4CNNbpzkcgoP2Q2lr1Xvf/1yD -----END CERTIFICATE-----Generated at Sun Jun 22 04:55:53 2025 by rpki-client