$ rpki-client -vvf rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft File: gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft (raw, json) Hash identifier: 9O/YFC0NwB5wdz2dP9E+635PQqN6GgxWVQCv0BrMk2A= Subject key identifier: D9:08:D6:AF:53:EA:A9:0E:16:5A:CA:4B:A2:36:9B:52:A4:DB:F8:3C Authority key identifier: 83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 Certificate issuer: /CN=A911C005/serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Certificate serial: 08F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft Manifest number: 08E9 Signing time: Thu 24 Apr 2025 20:17:33 +0000 Manifest this update: Thu 24 Apr 2025 20:17:32 +0000 Manifest next update: Thu 01 May 2025 20:17:32 +0000 Files and hashes: 1: gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl (hash: m9AEnJvFwKxszCdLZdWLaRdZlK+noyB7vhmpy5T11k0=) 2: B0071914AAE811EA8412810FC4F9AE02.roa (hash: cT6sVy2cPkGv5IyoVyqlT1wpNogGAW7RrVuiP5uIBJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:17:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2292 (0x8f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C005, serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22 Validity Not Before: Apr 24 20:17:32 2025 GMT Not After : May 1 20:17:32 2025 GMT Subject: CN=680a9c5c-7666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:d2:28:b2:23:3b:cb:29:d3:77:b9:21:f0: ac:0f:b4:be:11:f1:bb:0e:f6:30:14:74:85:36:99: f1:53:cb:99:f7:14:c3:92:dc:da:c9:2c:e0:ce:ab: 0e:fa:82:0e:10:fb:27:da:1b:fd:2d:2e:a7:fe:bf: 65:90:9a:d8:52:9d:33:03:cf:e8:f5:b1:33:f3:58: 26:89:d0:0d:be:75:1f:ad:c6:20:27:15:ac:b8:02: 35:ea:f4:16:31:e9:49:6b:a3:04:7a:ec:33:22:02: ec:59:08:91:c2:1d:86:60:99:38:7d:cd:ce:00:4c: 4a:75:b6:07:ad:33:8c:f0:17:34:8f:74:e7:55:2a: 7e:28:eb:72:ce:a9:f1:ed:4b:c2:64:7d:34:14:51: e5:4a:81:00:47:6b:a9:89:97:be:70:44:18:2d:48: 1e:de:ae:39:c9:3d:0c:30:7e:df:62:d6:e8:de:5e: 04:2c:a3:1b:4b:2b:eb:93:8f:4f:f0:d7:e4:30:2d: 81:66:a6:eb:9f:db:61:ee:1b:0d:14:52:4a:95:36: 0a:86:4c:19:98:7f:54:e8:29:0f:f0:7c:dd:96:dc: b5:a3:ae:27:12:a7:48:c9:5f:1d:06:1a:30:b1:ad: fe:c7:be:45:db:f2:06:e2:a5:01:1f:a3:54:66:a3: 9d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:08:D6:AF:53:EA:A9:0E:16:5A:CA:4B:A2:36:9B:52:A4:DB:F8:3C X509v3 Authority Key Identifier: keyid:83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:f1:b9:99:6e:30:b2:57:91:bf:5d:87:28:c6:65:cf:99:5d: 80:24:9d:2f:1f:bd:78:09:ba:ef:d0:3b:71:bf:9d:66:92:e7: f8:e7:b4:3e:22:e0:90:9c:33:8c:f2:5b:81:2b:13:21:80:80: 2e:fc:9c:09:7c:2b:77:79:50:1a:33:12:6d:c9:c0:0f:9c:2b: 42:2c:8b:0a:1f:8e:85:63:5f:f7:9d:d8:03:80:c3:01:98:f2: f2:6c:ac:7e:d7:87:36:59:a6:49:50:ed:8d:21:c8:c9:98:22: d9:de:3a:57:06:a4:71:c5:36:08:93:02:42:2a:2e:67:3a:1b: 3c:d3:ad:66:cf:3c:a5:9e:9a:02:e8:7c:a5:ef:0f:30:23:b5: db:4f:39:73:56:69:eb:a7:78:27:56:c1:fe:72:f4:ed:41:c8: e9:55:ba:82:b8:e4:91:61:00:85:73:31:35:7e:e9:8a:d0:20: 47:31:0a:ff:ad:a8:b8:2b:1c:20:fc:48:33:8c:e8:55:da:8f: dc:3b:83:9e:3c:2a:64:75:a4:ca:9c:55:8e:85:f3:78:55:78: b7:e0:59:e9:e3:47:2b:21:2f:d8:74:50:71:e1:a3:83:ff:b5: 86:b4:50:48:2d:05:65:1d:75:1a:49:32:81:7a:84:77:2e:ab: f0:ee:37:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMwMDUxMTAvBgNVBAUTKDgzMERDRkNCNUE5QUEwQzdGQTdEN0FCOTk4OURBMjM0 M0RFRDJDMjIwHhcNMjUwNDI0MjAxNzMyWhcNMjUwNTAxMjAxNzMyWjAYMRYwFAYD VQQDEw02ODBhOWM1Yy03NjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMTSKLIjO8sp03e5IfCsD7S+EfG7DvYwFHSFNpnxU8uZ9xTDktzaySzgzqsO +oIOEPsn2hv9LS6n/r9lkJrYUp0zA8/o9bEz81gmidANvnUfrcYgJxWsuAI16vQW MelJa6MEeuwzIgLsWQiRwh2GYJk4fc3OAExKdbYHrTOM8Bc0j3TnVSp+KOtyzqnx 7UvCZH00FFHlSoEAR2upiZe+cEQYLUge3q45yT0MMH7fYtbo3l4ELKMbSyvrk49P 8NfkMC2BZqbrn9th7hsNFFJKlTYKhkwZmH9U6CkP8Hzdlty1o64nEqdIyV8dBhow sa3+x75F2/IG4qUBH6NUZqOdXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkI1q9T 6qkOFlrKS6I2m1Kk2/g8MB8GA1UdIwQYMBaAFIMNz8tamqDH+n16uZidojQ97Swi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzAwNS84Q0E2ODI3NkFB RTcxMUVBQTkxMjJCMEVDNEY5QUUwMi9ndzNQeTFxYW9NZjZmWHE1bUoyaU5EM3RM Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3M1B5MXFhb01mNmZYcTVtSjJpTkQzdExDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzAwNS84Q0E2ODI3NkFBRTcxMUVBQTkxMjJCMEVDNEY5QUUwMi9ndzNQeTFxYW9N ZjZmWHE1bUoyaU5EM3RMQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV8bmZbjCyV5G/XYcoxmXPmV2AJJ0vH714Cbrv0Dtxv51mkuf457Q+ IuCQnDOM8luBKxMhgIAu/JwJfCt3eVAaMxJtycAPnCtCLIsKH46FY1/3ndgDgMMB mPLybKx+14c2WaZJUO2NIcjJmCLZ3jpXBqRxxTYIkwJCKi5nOhs8061mzzylnpoC 6Hyl7w8wI7XbTzlzVmnrp3gnVsH+cvTtQcjpVbqCuOSRYQCFczE1fumK0CBHMQr/ rai4Kxwg/EgzjOhV2o/cO4OePCpkdaTKnFWOhfN4VXi34Fnp40crIS/YdFBx4aOD /7WGtFBILQVlHXUaSTKBeoR3Lqvw7jdk -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:43 2025 by rpki-client