$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft File: G4nCebixZmmNK-SGc-zMKwgTPjk.mft (raw, json) Hash identifier: MGCEyvf8TdpCcsAkvSqM9coQwUs8ANxoqOQOKqkaFfc= Subject key identifier: 5F:8B:09:7D:CA:76:8A:84:39:5B:E7:CF:6D:55:4C:E2:1D:AF:14:D2 Authority key identifier: 1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 Certificate issuer: /CN=A91FCEB1/serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Certificate serial: 070A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft Manifest number: 279C Signing time: Sat 14 Jun 2025 15:55:56 +0000 Manifest this update: Sat 14 Jun 2025 15:55:55 +0000 Manifest next update: Sat 21 Jun 2025 15:55:55 +0000 Files and hashes: 1: G4nCebixZmmNK-SGc-zMKwgTPjk.crl (hash: eThwunEASU0vB6ATWvfOYZFv42tC7+QYBjeKDSI6TuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:55:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1802 (0x70a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Validity Not Before: Jun 14 15:55:55 2025 GMT Not After : Jun 21 15:55:55 2025 GMT Subject: CN=684d9b8c-ba93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4d:08:4d:0c:d5:d8:0a:9f:c7:de:e5:b4:6d: ea:d6:ef:b1:1d:2b:d2:f9:07:80:31:31:8e:bc:44: 67:88:9c:7e:5b:9c:de:0e:8d:d5:28:50:1b:20:fc: e1:e2:21:a8:df:82:43:f3:a6:d4:9e:5e:03:a4:ca: fe:c2:14:23:9c:81:a5:5f:34:60:a4:5b:47:da:ea: 0a:bd:78:d8:9e:16:96:57:2a:1f:39:95:91:bb:cd: 97:57:33:e0:3d:7e:62:71:b3:0a:38:44:d0:22:24: 3c:08:13:a1:72:72:d2:c8:35:a6:e4:37:4b:ea:92: a2:90:17:06:3b:cd:72:7f:ec:8b:c7:ed:f8:33:18: 7e:ab:3a:c3:d5:81:52:fa:f1:44:37:ad:59:a3:2b: 7f:1e:20:ed:83:34:66:ec:09:5c:f3:a4:c0:23:2a: 1a:76:22:62:23:00:52:4e:86:4b:45:99:15:41:3e: e6:a6:d7:a6:86:24:fb:85:b1:8c:93:e0:de:79:90: b3:87:c9:d6:82:68:39:ee:27:b2:d6:e6:61:10:d4: 97:c4:1e:43:0b:8f:20:88:23:c8:bf:71:e6:1f:31: 4b:85:5d:fe:cc:c3:63:10:c3:77:9a:60:fb:29:b7: 30:30:47:3b:8d:8d:56:a1:b7:38:bf:cd:27:37:e0: 9e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:8B:09:7D:CA:76:8A:84:39:5B:E7:CF:6D:55:4C:E2:1D:AF:14:D2 X509v3 Authority Key Identifier: keyid:1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:9c:02:c8:1b:9a:a2:6a:cf:8e:87:be:58:50:89:f3:d2:cf: 95:ce:41:22:b8:89:ee:57:20:3c:69:78:6a:72:a5:cb:10:ed: c0:69:fb:bf:dc:80:1b:11:8e:0b:57:00:c9:e4:85:a3:77:ac: 96:f3:98:f7:6e:6b:cb:9d:1b:2d:dc:ed:21:d8:66:7b:7c:27: 91:e9:76:c0:4d:11:95:17:6c:7e:dd:fd:d2:ed:12:be:ec:fe: 58:20:39:64:f5:fd:df:92:8c:7a:66:06:07:7e:96:0a:b0:0b: 6e:87:28:79:98:b3:a5:b2:91:72:f7:16:fa:1f:d3:33:7d:ae: 87:3f:01:c9:2a:fc:2a:c8:b8:a1:9e:07:3e:48:19:4b:14:7c: 9a:83:19:ac:fe:d9:a2:3a:38:1a:ed:44:21:6b:3b:4c:39:27: 66:8f:4e:5d:62:01:3f:15:7a:2a:1a:20:cf:40:e6:62:c2:c8: 85:2b:70:24:2d:92:99:65:20:3d:0d:f4:2e:f6:e1:37:90:2f: 53:ed:e1:8b:9a:40:27:9c:26:00:17:f4:17:79:61:df:5e:d6: da:d2:da:d5:6d:6d:18:5e:32:1c:5b:f1:60:ce:17:95:f1:9a: f1:61:92:dc:f1:ad:5f:37:bb:18:29:d7:76:a1:03:a6:2d:85: 41:3d:85:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDFCODlDMjc5QjhCMTY2Njk4RDJCRTQ4NjczRUNDQzJC MDgxMzNFMzkwHhcNMjUwNjE0MTU1NTU1WhcNMjUwNjIxMTU1NTU1WjAYMRYwFAYD VQQDEw02ODRkOWI4Yy1iYTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE0ITQzV2Aqfx97ltG3q1u+xHSvS+QeAMTGOvERniJx+W5zeDo3VKFAbIPzh 4iGo34JD86bUnl4DpMr+whQjnIGlXzRgpFtH2uoKvXjYnhaWVyofOZWRu82XVzPg PX5icbMKOETQIiQ8CBOhcnLSyDWm5DdL6pKikBcGO81yf+yLx+34Mxh+qzrD1YFS +vFEN61Zoyt/HiDtgzRm7Alc86TAIyoadiJiIwBSToZLRZkVQT7mptemhiT7hbGM k+DeeZCzh8nWgmg57iey1uZhENSXxB5DC48giCPIv3HmHzFLhV3+zMNjEMN3mmD7 KbcwMEc7jY1Wobc4v80nN+Ce4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+LCX3K doqEOVvnz21VTOIdrxTSMB8GA1UdIwQYMBaAFBuJwnm4sWZpjSvkhnPszCsIEz45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFptbU5LLVNHYy16TUt3Z1RQ amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0bkNlYml4Wm1tTkstU0djLXpNS3dnVFBqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFpt bU5LLVNHYy16TUt3Z1RQamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEnALIG5qias+Oh75YUInz0s+VzkEiuInuVyA8aXhqcqXLEO3Aafu/ 3IAbEY4LVwDJ5IWjd6yW85j3bmvLnRst3O0h2GZ7fCeR6XbATRGVF2x+3f3S7RK+ 7P5YIDlk9f3fkox6ZgYHfpYKsAtuhyh5mLOlspFy9xb6H9Mzfa6HPwHJKvwqyLih ngc+SBlLFHyagxms/tmiOjga7UQhaztMOSdmj05dYgE/FXoqGiDPQOZiwsiFK3Ak LZKZZSA9DfQu9uE3kC9T7eGLmkAnnCYAF/QXeWHfXtba0trVbW0YXjIcW/FgzheV 8ZrxYZLc8a1fN7sYKdd2oQOmLYVBPYVW -----END CERTIFICATE-----Generated at Sun Jun 15 04:56:43 2025 by rpki-client