$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft File: G4nCebixZmmNK-SGc-zMKwgTPjk.mft (raw, json) Hash identifier: 5stFuV/MXj4kIhGLTDkJVulrwShBb3c9/gE3Xl5mLxI= Subject key identifier: 3C:D3:4D:30:C0:3F:23:D8:63:EF:A0:7B:7E:39:B5:42:7D:86:12:F8 Authority key identifier: 1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 Certificate issuer: /CN=A91FCEB1/serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Certificate serial: 0725 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft Manifest number: 27D2 Signing time: Wed 06 Aug 2025 16:02:18 +0000 Manifest this update: Wed 06 Aug 2025 16:02:18 +0000 Manifest next update: Wed 13 Aug 2025 16:02:17 +0000 Files and hashes: 1: G4nCebixZmmNK-SGc-zMKwgTPjk.crl (hash: HW8Ir1MEM/bpCvtrR9AwIeAWYtVaigr1+D1v2FTSK1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 16:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1829 (0x725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Validity Not Before: Aug 6 16:02:18 2025 GMT Not After : Aug 13 16:02:17 2025 GMT Subject: CN=68937c8a-ec9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8b:c0:10:8a:d9:63:90:f2:c6:be:1a:42:71: cd:fb:97:c1:78:9f:89:cb:a7:91:af:b9:99:80:f6: 45:0d:b0:33:80:16:c7:b5:ec:5e:6b:99:7a:e8:35: bd:8c:ff:bd:62:35:06:fe:40:3b:43:35:6c:72:0a: 3d:e2:c3:de:63:e2:89:8a:c0:a6:f5:5c:22:f8:8e: c8:67:b5:7b:28:d3:16:d3:11:30:94:3e:80:d0:20: ef:9d:b6:8a:d0:a4:91:fb:bf:f4:23:8b:8f:c6:66: 85:c2:76:23:7f:da:bf:b5:07:35:a4:67:4e:98:ec: 9d:b4:a6:50:f4:49:f3:5a:78:87:6f:cf:3a:da:ec: 0a:1d:c4:10:fa:94:c5:bb:e9:be:c7:d5:d3:22:af: a4:ec:da:bf:f0:3d:cd:a9:9b:56:8a:37:59:5d:ae: 91:01:3b:41:f8:b8:94:65:ea:a3:7b:d4:21:98:99: e2:44:dd:7b:d3:d7:14:45:48:9c:e6:f1:78:fc:58: 6d:16:36:cb:2a:e0:6f:41:27:35:6d:8e:13:70:38: e6:20:50:4b:bc:ec:fc:e2:3a:5f:9c:20:19:25:00: 58:df:aa:1f:7b:f9:a0:19:e9:f6:97:e9:01:31:48: 10:29:bf:0e:86:bb:6d:bd:cb:13:ad:74:6b:a3:d3: ba:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D3:4D:30:C0:3F:23:D8:63:EF:A0:7B:7E:39:B5:42:7D:86:12:F8 X509v3 Authority Key Identifier: keyid:1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:80:a2:fc:8b:57:db:36:fd:76:40:b0:a5:74:f8:1f:58:b0: fc:61:61:87:fe:6d:7c:61:e8:18:14:7e:d8:2e:62:5b:68:85: db:52:98:32:37:21:00:db:e6:1d:87:3f:7f:97:f7:82:7e:3b: f7:bc:2a:20:b2:51:49:c7:a3:38:5a:85:74:33:b3:2d:df:8b: be:a0:cc:4a:73:05:4e:a9:07:5f:74:a1:bf:4a:84:5f:d6:9c: 8e:aa:e8:71:04:6f:bc:2a:9a:1f:a8:fa:73:0d:82:45:f9:fa: 89:49:47:be:f9:4c:28:ff:c0:53:32:04:4b:68:92:08:41:79: 3e:e7:4c:bb:9f:34:45:59:d4:a1:3a:27:5f:6f:28:bb:e4:66: df:21:38:07:db:ae:48:5b:6d:25:c8:91:1d:50:96:5e:63:2e: 56:85:52:ea:74:19:13:bf:a6:82:e8:2a:63:a3:78:84:33:4e: d0:7a:32:7b:2e:5b:78:e1:71:3c:01:b0:e5:a7:dd:af:2b:ff: 3d:ec:a6:c8:de:45:e0:f1:af:24:f4:df:47:7c:44:b3:1b:88: 11:4d:15:0a:63:21:f3:f4:66:ed:b0:92:3d:b1:21:03:bd:b7: 5b:8b:03:06:d0:d9:ee:e6:36:23:ca:8e:f0:14:fb:a0:af:c8: 04:f8:2a:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDFCODlDMjc5QjhCMTY2Njk4RDJCRTQ4NjczRUNDQzJC MDgxMzNFMzkwHhcNMjUwODA2MTYwMjE4WhcNMjUwODEzMTYwMjE3WjAYMRYwFAYD VQQDEw02ODkzN2M4YS1lYzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4vAEIrZY5Dyxr4aQnHN+5fBeJ+Jy6eRr7mZgPZFDbAzgBbHtexea5l66DW9 jP+9YjUG/kA7QzVscgo94sPeY+KJisCm9Vwi+I7IZ7V7KNMW0xEwlD6A0CDvnbaK 0KSR+7/0I4uPxmaFwnYjf9q/tQc1pGdOmOydtKZQ9EnzWniHb8862uwKHcQQ+pTF u+m+x9XTIq+k7Nq/8D3NqZtWijdZXa6RATtB+LiUZeqje9QhmJniRN1709cURUic 5vF4/FhtFjbLKuBvQSc1bY4TcDjmIFBLvOz84jpfnCAZJQBY36ofe/mgGen2l+kB MUgQKb8OhrttvcsTrXRro9O6uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzTTTDA PyPYY++ge345tUJ9hhL4MB8GA1UdIwQYMBaAFBuJwnm4sWZpjSvkhnPszCsIEz45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFptbU5LLVNHYy16TUt3Z1RQ amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0bkNlYml4Wm1tTkstU0djLXpNS3dnVFBqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFpt bU5LLVNHYy16TUt3Z1RQamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwgKL8i1fbNv12QLCldPgfWLD8YWGH/m18YegYFH7YLmJbaIXbUpgy NyEA2+Ydhz9/l/eCfjv3vCogslFJx6M4WoV0M7Mt34u+oMxKcwVOqQdfdKG/SoRf 1pyOquhxBG+8KpofqPpzDYJF+fqJSUe++Uwo/8BTMgRLaJIIQXk+50y7nzRFWdSh Oidfbyi75GbfITgH265IW20lyJEdUJZeYy5WhVLqdBkTv6aC6Cpjo3iEM07QejJ7 Llt44XE8AbDlp92vK/897KbI3kXg8a8k9N9HfESzG4gRTRUKYyHz9GbtsJI9sSED vbdbiwMG0Nnu5jYjyo7wFPugr8gE+CpE -----END CERTIFICATE-----Generated at Thu Aug 7 03:18:12 2025 by rpki-client