$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft File: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft (raw, json) Hash identifier: btb4RRHABwwq7E+J8XjgvufStwm839iSxKbWkAAR8sY= Subject key identifier: 54:58:22:14:17:08:7C:1F:BD:8C:19:A0:51:19:5A:11:9B:6A:5C:FF Authority key identifier: 82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD Certificate issuer: /CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Certificate serial: 3492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft Manifest number: 40A7 Signing time: Sat 14 Jun 2025 15:02:10 +0000 Manifest this update: Sat 14 Jun 2025 15:02:10 +0000 Manifest next update: Sat 21 Jun 2025 15:02:10 +0000 Files and hashes: 1: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl (hash: uIQU32l4mpPwh6KRXyTuAoLlD30+PE61d/K0956qU7k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13458 (0x3492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49, serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Validity Not Before: Jun 14 15:02:10 2025 GMT Not After : Jun 21 15:02:10 2025 GMT Subject: CN=684d8ef2-9e70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f5:2c:13:02:74:13:84:04:9a:c7:5a:92:dd: a5:3e:d2:d5:6c:af:51:7c:f8:da:ba:6b:8a:2a:4b: ea:97:ce:6d:fe:b1:86:5a:19:4a:cd:30:0c:a1:93: 39:ba:01:2e:97:c7:0a:6a:a4:a6:04:df:32:38:4b: 7b:d8:df:09:f0:61:96:9e:eb:4d:4a:65:dd:ae:38: bc:7a:52:95:e1:65:73:f7:a9:5e:be:09:bb:96:97: 38:ba:d7:08:a3:a6:e7:82:5d:b3:a9:bb:2e:a2:30: be:fc:10:4a:7f:2f:8f:49:be:89:b4:f6:f3:03:5a: 8b:83:0d:e2:f8:7b:a0:db:01:8c:af:ca:b4:a1:c4: c5:b7:ac:8c:d3:43:ac:87:d6:4e:a4:52:96:19:29: ab:e3:83:fa:4b:bf:fb:69:a9:cf:22:a6:c2:66:c0: 54:9e:c4:bc:60:86:28:cc:29:75:e8:c0:3a:55:54: 9c:8f:ce:30:a0:a5:b9:ce:b2:a5:7f:43:c5:cc:27: 04:bb:d8:42:4f:99:e7:19:ec:5a:e5:98:76:94:40: f5:fb:f7:a5:00:17:a9:81:82:99:57:e4:76:cc:79: 11:6a:bb:b3:9a:0c:92:dc:88:d1:db:a3:25:6e:9b: 79:88:5f:84:e5:e0:ec:e2:a2:b2:e6:bd:23:11:75: ae:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:58:22:14:17:08:7C:1F:BD:8C:19:A0:51:19:5A:11:9B:6A:5C:FF X509v3 Authority Key Identifier: keyid:82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:c7:d4:28:fb:46:e1:11:dc:e5:c2:24:6f:e7:92:c6:4c:93: 95:09:ba:37:f0:86:fc:c8:8f:90:69:8e:10:91:7b:8e:13:54: 88:70:41:3d:73:d3:0e:74:8c:29:08:3d:95:c3:f8:0d:45:e0: 37:ca:6d:63:4d:a0:66:06:f7:d2:24:e7:83:31:50:85:f3:33: 75:bd:3d:86:5a:73:f4:7b:27:c7:34:0f:8c:85:a8:1f:29:2d: 10:fc:fb:5a:fd:63:b7:7a:b3:ea:4f:cd:85:2e:3d:ac:b2:a7: 8d:92:f2:b1:a4:03:52:50:0a:2a:25:06:4f:e9:da:73:d5:c9: a1:1d:a8:11:fd:e4:93:cb:d2:d9:cb:f6:ee:cb:d7:b6:3d:67: 01:5f:72:d8:5f:ba:ec:9c:49:b2:a0:a7:ba:e6:b5:03:15:e8: fb:f1:a1:ac:b9:63:ca:67:d2:c8:52:4a:12:91:81:15:67:bf: 56:ef:d4:e3:ad:52:13:31:3f:9c:fb:b8:22:aa:92:b9:07:02: b8:45:98:d2:2c:85:dd:9b:b4:18:69:15:f1:67:79:0d:b3:58: 21:c7:13:ca:02:85:31:d6:13:0a:f3:a5:c3:43:65:db:a9:ee: 65:0a:3e:9b:5f:9e:2e:75:8d:37:b9:b8:b3:ad:80:5b:5b:92: 8a:ad:5a:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDgyMUY0REIyMkVFNTlBRkQ1OTNBN0U2ODlFREE5RkM5 NEJFNTg1REQwHhcNMjUwNjE0MTUwMjEwWhcNMjUwNjIxMTUwMjEwWjAYMRYwFAYD VQQDEw02ODRkOGVmMi05ZTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/UsEwJ0E4QEmsdakt2lPtLVbK9RfPjaumuKKkvql85t/rGGWhlKzTAMoZM5 ugEul8cKaqSmBN8yOEt72N8J8GGWnutNSmXdrji8elKV4WVz96levgm7lpc4utcI o6bngl2zqbsuojC+/BBKfy+PSb6JtPbzA1qLgw3i+Hug2wGMr8q0ocTFt6yM00Os h9ZOpFKWGSmr44P6S7/7aanPIqbCZsBUnsS8YIYozCl16MA6VVScj84woKW5zrKl f0PFzCcEu9hCT5nnGexa5Zh2lED1+/elABepgYKZV+R2zHkRaruzmgyS3IjR26Ml bpt5iF+E5eDs4qKy5r0jEXWuDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRYIhQX CHwfvYwZoFEZWhGbalz/MB8GA1UdIwQYMBaAFIIfTbIu5Zr9WTp+aJ7an8lL5YXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12MVpPbjVvbnRxZnlVdmxo ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doOU5zaTdsbXYxWk9uNW9udHFmeVV2bGhkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12 MVpPbjVvbnRxZnlVdmxoZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbx9Qo+0bhEdzlwiRv55LGTJOVCbo38Ib8yI+QaY4QkXuOE1SIcEE9 c9MOdIwpCD2Vw/gNReA3ym1jTaBmBvfSJOeDMVCF8zN1vT2GWnP0eyfHNA+Mhagf KS0Q/Pta/WO3erPqT82FLj2ssqeNkvKxpANSUAoqJQZP6dpz1cmhHagR/eSTy9LZ y/buy9e2PWcBX3LYX7rsnEmyoKe65rUDFej78aGsuWPKZ9LIUkoSkYEVZ79W79Tj rVITMT+c+7giqpK5BwK4RZjSLIXdm7QYaRXxZ3kNs1ghxxPKAoUx1hMK86XDQ2Xb qe5lCj6bX54udY03ubizrYBbW5KKrVo4 -----END CERTIFICATE-----Generated at Sun Jun 15 05:15:22 2025 by rpki-client