$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft File: GHL5iLZXI3g3mSN-VU28xuSdFLA.mft (raw, json) Hash identifier: hhjy8uh4ycpu2Mic8GGQkSPXqZfIQp8N1hTHEng9CUY= Subject key identifier: 55:1C:D2:96:49:C3:20:79:60:70:79:47:A7:EC:15:D2:81:19:16:D5 Authority key identifier: 18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 Certificate issuer: /CN=A919986F/serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Certificate serial: 0AFC Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft Manifest number: 0AFC Signing time: Wed 18 Jun 2025 15:37:10 +0000 Manifest this update: Wed 18 Jun 2025 15:37:10 +0000 Manifest next update: Wed 25 Jun 2025 15:37:10 +0000 Files and hashes: 1: GHL5iLZXI3g3mSN-VU28xuSdFLA.crl (hash: UFHzDc2CmRWdZhjTrsk6JH4voqLAXwUWWq6W4VuKvF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2812 (0xafc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Validity Not Before: Jun 18 15:37:10 2025 GMT Not After : Jun 25 15:37:10 2025 GMT Subject: CN=6852dd26-40a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:f2:de:d6:69:77:60:99:10:ef:fe:0f:69: d1:ec:94:d2:83:fc:5b:e0:6d:eb:1f:c4:c3:98:e1: c1:8d:1a:d5:80:40:a4:8b:29:d2:f8:83:ef:d0:e5: 76:f8:24:c9:63:84:e4:84:4e:c0:4f:6a:ae:29:1f: 0c:71:20:fb:fe:91:83:d2:ad:f4:79:e9:d9:6b:07: 7d:77:5f:6f:b7:2a:be:77:d5:1b:59:cb:7f:1c:45: c1:29:e8:7e:f8:a8:ee:bf:e2:b5:99:c6:bb:be:86: a0:12:61:7f:ec:4f:e7:10:6e:29:31:ee:e6:d5:a5: 1c:b0:57:3b:1f:3e:5a:c7:19:2a:53:10:17:f2:0a: 1c:fb:fd:9b:29:3c:a6:d0:a3:ce:66:20:6f:ba:84: f1:82:27:17:6e:12:c0:a5:f7:96:7c:19:35:cc:42: 3d:74:ab:1e:29:55:99:2c:1f:5e:9b:90:b0:44:f1: 57:57:7d:93:c1:51:50:19:22:72:1a:a9:d7:ef:97: be:f7:26:19:3f:38:5b:ba:b6:40:29:17:c6:10:3c: ed:03:35:2c:78:c7:4e:f0:7b:a6:50:fb:0c:54:30: ea:e2:d4:61:94:d5:d6:71:f3:08:05:68:fc:de:ce: e3:69:b7:0f:2b:ff:87:b0:9a:d6:cc:11:6a:b8:ef: 78:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1C:D2:96:49:C3:20:79:60:70:79:47:A7:EC:15:D2:81:19:16:D5 X509v3 Authority Key Identifier: keyid:18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:3e:b4:f7:cb:f7:c3:d1:ad:c1:05:85:a7:57:a6:c1:c0:bb: db:cf:c4:3f:8b:b4:c9:e3:bc:96:e6:6f:d8:1d:93:f6:07:27: 60:b1:9b:c9:81:a0:d4:b3:0a:34:c7:25:ae:b1:38:e5:aa:ce: 72:c2:c0:4f:7c:47:71:66:ac:80:05:6a:58:07:80:70:bd:f0: 2e:11:7c:d9:be:ad:65:41:a7:30:3c:e8:13:63:5e:bf:c7:d2: c3:d9:c8:8f:a8:e4:93:f7:9d:40:00:22:5a:76:73:7c:2a:f3: 81:f6:ed:89:b5:ae:1b:f0:29:bf:8f:4b:43:66:2e:01:5b:d3: 10:59:43:7a:db:96:f6:cd:b5:81:72:67:9d:8e:c3:63:69:ff: b9:cb:7b:2e:4c:b8:25:8d:20:76:c6:55:fe:72:09:a0:32:87: cf:62:18:99:9c:6b:c2:49:11:c4:a8:7c:c4:e2:fc:a5:74:6b: 14:0a:ac:89:99:17:a2:b1:01:7a:07:a2:6e:5e:a5:d1:96:b9: b9:f1:1f:e1:18:34:19:d4:e0:01:94:74:0d:b9:03:23:44:27: 9f:5f:65:ec:d5:1f:86:66:8e:ff:e9:df:e8:75:23:22:4b:6e: e9:ac:e5:14:9b:20:7a:0a:81:be:2e:5d:b3:da:f0:b9:fe:29: c9:03:95:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKDE4NzJGOTg4QjY1NzIzNzgzNzk5MjM3RTU1NERCQ0M2 RTQ5RDE0QjAwHhcNMjUwNjE4MTUzNzEwWhcNMjUwNjI1MTUzNzEwWjAYMRYwFAYD VQQDEw02ODUyZGQyNi00MGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvILy3tZpd2CZEO/+D2nR7JTSg/xb4G3rH8TDmOHBjRrVgECkiynS+IPv0OV2 +CTJY4TkhE7AT2quKR8McSD7/pGD0q30eenZawd9d19vtyq+d9UbWct/HEXBKeh+ +Kjuv+K1mca7voagEmF/7E/nEG4pMe7m1aUcsFc7Hz5axxkqUxAX8goc+/2bKTym 0KPOZiBvuoTxgicXbhLApfeWfBk1zEI9dKseKVWZLB9em5CwRPFXV32TwVFQGSJy GqnX75e+9yYZPzhburZAKRfGEDztAzUseMdO8HumUPsMVDDq4tRhlNXWcfMIBWj8 3s7jabcPK/+HsJrWzBFquO94GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUc0pZJ wyB5YHB5R6fsFdKBGRbVMB8GA1UdIwQYMBaAFBhy+Yi2VyN4N5kjflVNvMbknRSw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9BNjFERjFEQTQ2 NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkzZzNtU04tVlUyOHh1U2RG TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL0dITDVpTFpYSTNnM21TTi1WVTI4eHVTZEZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg2Ri9BNjFERjFEQTQ2NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkz ZzNtU04tVlUyOHh1U2RGTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyPrT3y/fD0a3BBYWnV6bBwLvbz8Q/i7TJ47yW5m/YHZP2BydgsZvJ gaDUswo0xyWusTjlqs5ywsBPfEdxZqyABWpYB4BwvfAuEXzZvq1lQacwPOgTY16/ x9LD2ciPqOST951AACJadnN8KvOB9u2Jta4b8Cm/j0tDZi4BW9MQWUN625b2zbWB cmedjsNjaf+5y3suTLgljSB2xlX+cgmgMofPYhiZnGvCSRHEqHzE4vyldGsUCqyJ mReisQF6B6JuXqXRlrm58R/hGDQZ1OABlHQNuQMjRCefX2Xs1R+GZo7/6d/odSMi S27prOUUmyB6CoG+Ll2z2vC5/inJA5VL -----END CERTIFICATE-----Generated at Wed Jun 18 20:22:50 2025 by rpki-client