$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft File: GHL5iLZXI3g3mSN-VU28xuSdFLA.mft (raw, json) Hash identifier: TFfV7BHR+Q47BG5Fb7KnxHXFOG/gqS3ccRtQ7Q4u2HI= Subject key identifier: F8:9B:8E:46:F1:D0:C1:20:D0:11:70:F7:46:6B:EE:4C:40:64:D5:AD Authority key identifier: 18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 Certificate issuer: /CN=A919986F/serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Certificate serial: 0B17 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft Manifest number: 0B17 Signing time: Sun 10 Aug 2025 15:33:33 +0000 Manifest this update: Sun 10 Aug 2025 15:33:33 +0000 Manifest next update: Sun 17 Aug 2025 15:33:33 +0000 Files and hashes: 1: GHL5iLZXI3g3mSN-VU28xuSdFLA.crl (hash: 4shQ4imvjtC65oikWEltnASk85AI/wVu0BlzuJKmO8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2839 (0xb17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Validity Not Before: Aug 10 15:33:33 2025 GMT Not After : Aug 17 15:33:33 2025 GMT Subject: CN=6898bbcd-5687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:c8:78:fd:df:ff:77:6e:fb:ac:ff:9c:c4: 70:d5:7f:0e:be:3f:ad:da:25:d3:b0:0a:dc:cf:24: fe:73:1c:e4:f1:f4:a6:68:f1:60:5e:47:04:32:9b: 8d:af:60:6f:ca:9a:d2:4c:c1:1a:a4:b1:81:08:3a: 50:c3:19:db:a1:91:67:ff:41:37:ef:78:48:94:d4: 52:a3:9e:3b:b5:8a:fc:94:a2:86:d3:2b:74:08:47: 3f:ee:41:b2:4c:26:96:5a:f1:d8:27:38:4d:2c:3f: f4:a3:c6:6e:41:b6:ae:cc:0a:29:a1:d0:92:12:d9: 4d:c2:a5:a0:26:3d:b9:bb:0b:8f:04:c5:45:00:5a: 2b:b9:a7:de:0a:75:60:34:9a:52:94:87:60:ef:74: 7c:e7:20:a1:9c:4a:22:c3:44:dd:93:45:fb:64:07: 3e:c3:09:d6:14:2a:95:3a:97:e5:f4:0a:41:7d:0f: 4b:7b:c8:fc:5f:f2:85:06:f2:d9:35:89:e6:d3:c9: 57:8e:8b:c3:32:43:0c:5e:61:83:c2:f2:1d:1e:c1: ff:ed:b9:59:3b:71:54:22:29:cb:16:8d:f4:f8:96: 82:b2:24:dc:ca:31:80:6a:30:81:a3:d9:81:f2:8d: dc:85:03:af:f0:fb:53:6b:79:bf:0a:89:cd:b8:76: dd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:9B:8E:46:F1:D0:C1:20:D0:11:70:F7:46:6B:EE:4C:40:64:D5:AD X509v3 Authority Key Identifier: keyid:18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:1e:6a:a0:54:d1:3e:a4:7d:d9:70:fc:e5:0e:1c:44:92:db: c1:07:45:2d:10:97:b3:bb:05:74:7b:79:a4:4f:e6:8f:9e:d7: 45:99:b0:a2:83:a3:54:bf:e4:05:4e:e3:3f:f7:81:90:95:cf: 16:85:6d:64:5e:c8:63:72:88:5e:63:fe:b3:f5:4d:8a:71:63: a6:4a:c9:0b:1c:5c:c3:0d:a6:8a:92:25:02:e3:0b:8e:fe:0b: 66:f0:44:27:bb:f1:da:de:76:9e:70:5c:48:a5:27:a3:63:20: 14:3d:14:0f:1f:66:f3:c0:9f:e5:20:2a:e8:ca:a6:1b:68:47: 02:1f:23:21:d6:bb:72:60:6f:8a:aa:7c:ab:6b:ac:41:18:b8: 6b:15:69:a3:50:9e:e6:36:3c:ce:10:39:25:31:f6:ae:e8:59: 64:8b:98:9d:5b:df:9b:75:69:ff:9e:78:66:ed:b8:9a:94:c9: 8d:9b:90:6c:9d:e8:cc:ea:7e:79:6a:64:01:c2:a0:5b:f9:21: 78:ad:f7:d9:61:6b:f1:bd:51:0e:2b:6f:f7:3f:14:76:36:2d: 1c:06:ce:5b:a1:c1:8a:aa:89:43:0c:02:06:13:2b:7b:d1:a5: 00:a1:00:07:e6:22:c6:de:e9:57:8f:8f:3d:d5:fa:6f:61:38: 1b:3a:73:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKDE4NzJGOTg4QjY1NzIzNzgzNzk5MjM3RTU1NERCQ0M2 RTQ5RDE0QjAwHhcNMjUwODEwMTUzMzMzWhcNMjUwODE3MTUzMzMzWjAYMRYwFAYD VQQDEw02ODk4YmJjZC01Njg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ3IeP3f/3du+6z/nMRw1X8Ovj+t2iXTsArczyT+cxzk8fSmaPFgXkcEMpuN r2BvyprSTMEapLGBCDpQwxnboZFn/0E373hIlNRSo547tYr8lKKG0yt0CEc/7kGy TCaWWvHYJzhNLD/0o8ZuQbauzAopodCSEtlNwqWgJj25uwuPBMVFAForuafeCnVg NJpSlIdg73R85yChnEoiw0Tdk0X7ZAc+wwnWFCqVOpfl9ApBfQ9Le8j8X/KFBvLZ NYnm08lXjovDMkMMXmGDwvIdHsH/7blZO3FUIinLFo30+JaCsiTcyjGAajCBo9mB 8o3chQOv8PtTa3m/ConNuHbdZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPibjkbx 0MEg0BFw90Zr7kxAZNWtMB8GA1UdIwQYMBaAFBhy+Yi2VyN4N5kjflVNvMbknRSw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9BNjFERjFEQTQ2 NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkzZzNtU04tVlUyOHh1U2RG TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL0dITDVpTFpYSTNnM21TTi1WVTI4eHVTZEZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg2Ri9BNjFERjFEQTQ2NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkz ZzNtU04tVlUyOHh1U2RGTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTHmqgVNE+pH3ZcPzlDhxEktvBB0UtEJezuwV0e3mkT+aPntdFmbCi g6NUv+QFTuM/94GQlc8WhW1kXshjcoheY/6z9U2KcWOmSskLHFzDDaaKkiUC4wuO /gtm8EQnu/Ha3naecFxIpSejYyAUPRQPH2bzwJ/lICroyqYbaEcCHyMh1rtyYG+K qnyra6xBGLhrFWmjUJ7mNjzOEDklMfau6Flki5idW9+bdWn/nnhm7bialMmNm5Bs nejM6n55amQBwqBb+SF4rffZYWvxvVEOK2/3PxR2Ni0cBs5bocGKqolDDAIGEyt7 0aUAoQAH5iLG3ulXj4891fpvYTgbOnMP -----END CERTIFICATE-----Generated at Mon Aug 11 14:49:53 2025 by rpki-client