$ rpki-client -vvf rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft File: GNdIiJK3LFSvZOLdI4thnIm3LWg.mft (raw, json) Hash identifier: Sveu7QUB7jE/iKSocm3IVU8LkfPv7pIeTsjh6vtiywo= Subject key identifier: 59:B5:72:F0:37:47:FE:BC:EC:DC:7F:38:A2:EA:45:D9:B7:7F:B1:F1 Authority key identifier: 18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 Certificate issuer: /CN=A91E17BF/serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Certificate serial: 0297 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft Manifest number: 0293 Signing time: Tue 17 Jun 2025 01:09:53 +0000 Manifest this update: Tue 17 Jun 2025 01:09:52 +0000 Manifest next update: Tue 24 Jun 2025 01:09:52 +0000 Files and hashes: 1: GNdIiJK3LFSvZOLdI4thnIm3LWg.crl (hash: uOSoZWdjmB1s34+gA1zQceGlenuzjd/PeSvATrtAt0E=) 2: 83D6FAEE077511EDBD013D37C4F9AE02.roa (hash: kMCJJ8NAnniqHWPJmFXYj+p1oepcYEa7mi3n3n8XfS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E17BF, serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Validity Not Before: Jun 17 01:09:52 2025 GMT Not After : Jun 24 01:09:52 2025 GMT Subject: CN=6850c060-f0db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:97:f9:78:aa:d9:fc:e6:f1:90:00:32:61:7b: 00:ae:0f:d4:ea:61:1b:4b:a7:a9:2e:29:14:02:02: 59:7f:9e:69:68:30:8a:57:74:47:47:03:6e:17:36: a2:0d:00:31:ac:24:bf:7e:be:c0:43:fa:e8:1a:98: 72:ba:1e:e8:50:f0:fa:95:a3:45:27:91:51:9a:2a: df:ee:21:c0:78:47:18:24:d7:7f:f1:bc:64:80:b4: 77:ad:ff:f8:ba:fe:18:82:cb:07:30:c0:a7:4f:7e: d0:1e:9b:a8:8d:b0:64:9a:e7:ee:73:6a:79:da:f6: b8:c3:85:a1:f2:06:55:d3:0f:61:36:d3:49:83:08: 25:11:72:04:13:15:ff:9b:30:11:e0:3d:7a:8d:c7: 6a:64:a7:6f:a7:24:5d:c9:31:32:0b:29:63:b7:46: 1c:51:62:8d:cd:0d:a0:4d:9c:c2:e3:cd:86:26:99: c0:a6:a5:ce:4c:f2:49:d4:9a:65:93:fc:9a:1e:9c: 1a:c0:d5:16:c4:aa:b9:d5:f9:1d:9d:d8:f2:d1:9b: 09:c0:09:2b:fc:f8:1b:37:f5:db:9d:a7:7e:5c:27: a3:fa:0b:53:59:64:80:eb:e8:56:c9:e1:d2:2e:10: fd:af:10:b6:2a:3d:8c:dc:31:14:20:0f:03:bc:30: 82:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B5:72:F0:37:47:FE:BC:EC:DC:7F:38:A2:EA:45:D9:B7:7F:B1:F1 X509v3 Authority Key Identifier: keyid:18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:95:61:95:3d:c2:09:8e:cf:24:ce:75:26:28:ba:dd:7e:e9: 5d:d2:90:8f:a5:11:e8:1f:c6:2a:c2:bf:5f:15:f4:87:8f:5f: 83:e1:c8:29:3a:22:b4:79:ee:36:4b:d5:04:ee:1f:dd:44:4d: 52:48:b6:46:ea:a6:b4:9f:be:f9:d9:9a:8c:ae:90:44:46:ff: 88:d6:1e:bf:10:07:6d:27:20:80:19:8c:b4:bd:c8:b6:73:c5: 9e:bc:fe:a2:ac:0f:25:7e:df:96:39:e1:c1:c9:ae:84:64:00: 64:84:7d:f8:68:09:3e:4b:83:c0:05:26:15:c5:20:e7:86:68: 21:65:19:56:96:8a:d1:04:91:34:16:d6:1e:25:4e:f5:86:c1: 73:ba:55:ae:f5:6e:3e:98:f5:ad:0c:8c:25:22:6b:c5:f1:64: 07:79:21:cf:a0:62:2b:69:b5:e5:c3:71:43:a8:bd:70:9a:79: f2:a7:38:c5:23:45:92:33:05:37:f6:92:20:2d:b5:7c:60:f5: 54:62:17:50:1c:46:82:97:0e:cd:bb:dc:7f:04:4a:fd:84:71: 72:15:1f:bd:f8:db:5d:2a:35:12:f5:76:3e:06:42:ff:79:a6: 86:b4:4c:58:09:5b:45:9d:aa:fd:e0:26:33:59:d9:89:d0:44: 9e:c1:d3:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3QkYxMTAvBgNVBAUTKDE4RDc0ODg4OTJCNzJDNTRBRjY0RTJERDIzOEI2MTlD ODlCNzJENjgwHhcNMjUwNjE3MDEwOTUyWhcNMjUwNjI0MDEwOTUyWjAYMRYwFAYD VQQDEw02ODUwYzA2MC1mMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpf5eKrZ/ObxkAAyYXsArg/U6mEbS6epLikUAgJZf55paDCKV3RHRwNuFzai DQAxrCS/fr7AQ/roGphyuh7oUPD6laNFJ5FRmirf7iHAeEcYJNd/8bxkgLR3rf/4 uv4YgssHMMCnT37QHpuojbBkmufuc2p52va4w4Wh8gZV0w9hNtNJgwglEXIEExX/ mzAR4D16jcdqZKdvpyRdyTEyCyljt0YcUWKNzQ2gTZzC482GJpnApqXOTPJJ1Jpl k/yaHpwawNUWxKq51fkdndjy0ZsJwAkr/PgbN/Xbnad+XCej+gtTWWSA6+hWyeHS LhD9rxC2Kj2M3DEUIA8DvDCCoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFm1cvA3 R/687Nx/OKLqRdm3f7HxMB8GA1UdIwQYMBaAFBjXSIiStyxUr2Ti3SOLYZyJty1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTdCRi84RDBEQzA5NjA3 NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xGU3ZaT0xkSTR0aG5JbTNM V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOZElpSkszTEZTdlpPTGRJNHRobkltM0xXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTdCRi84RDBEQzA5NjA3NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xG U3ZaT0xkSTR0aG5JbTNMV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAClWGVPcIJjs8kznUmKLrdfuld0pCPpRHoH8Yqwr9fFfSHj1+D4cgp OiK0ee42S9UE7h/dRE1SSLZG6qa0n7752ZqMrpBERv+I1h6/EAdtJyCAGYy0vci2 c8WevP6irA8lft+WOeHBya6EZABkhH34aAk+S4PABSYVxSDnhmghZRlWlorRBJE0 FtYeJU71hsFzulWu9W4+mPWtDIwlImvF8WQHeSHPoGIrabXlw3FDqL1wmnnypzjF I0WSMwU39pIgLbV8YPVUYhdQHEaClw7Nu9x/BEr9hHFyFR+9+NtdKjUS9XY+BkL/ eaaGtExYCVtFnar94CYzWdmJ0ESewdMn -----END CERTIFICATE-----Generated at Tue Jun 17 07:57:47 2025 by rpki-client