$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: b1s43RLj1vRN2s+pbHGdUNzkCKsuTSwLfzuj+vmwwtM= Subject key identifier: 2C:F8:CC:D6:13:C7:21:98:3F:82:70:00:00:EA:60:BC:8D:B5:75:2A Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 038D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 037B Signing time: Fri 25 Apr 2025 00:40:50 +0000 Manifest this update: Fri 25 Apr 2025 00:40:50 +0000 Manifest next update: Fri 02 May 2025 00:40:50 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: aTUdhUAHHADtqnnEVB1R6yxGIARgQtgIGkFzLqxI7yo=) 2: 888790B6CD3A11EF87D85012C4F9AE02.roa (hash: AvFxWnXdXVRW4gSsV2SM184h5qE1FtXhjp3kh4Swn5U=) 3: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: WV0++0ZN/bagS69tHu4GzxXJWra/B4BQBtuEVcU79xQ=) 4: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: CVz2Xf9+JNVQc+OnMj39alF6Xn/77a8odRw6ivgbb84=) 5: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: PSuOk5hKLAcVmpB6whliDPWrfFKAhRcAnnfVLoCffRg=) 6: 8CA353C4EF5E11EF9E61950EC4F9AE02.roa (hash: 5Blz9K5XE6h6oYg/gQUJxXMDOjmAua+CLgWpZB5MaIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:40:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 909 (0x38d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A, serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: Apr 25 00:40:50 2025 GMT Not After : May 2 00:40:50 2025 GMT Subject: CN=680ada12-9a15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:91:a1:66:53:50:7b:6a:5b:e7:f3:b7:cf:7c: 58:8e:f5:da:19:fe:04:ca:5d:1d:be:3a:fb:f7:e0: fa:1a:1e:5b:d7:ec:c3:2b:47:53:c1:e0:b4:23:57: f9:8a:2e:2b:c9:64:1b:00:21:99:13:c8:d9:97:24: e8:6a:e1:cc:cd:06:ab:c9:35:36:0c:d2:dd:33:d6: 8b:ae:02:9e:a0:aa:cd:f4:6f:26:58:60:b1:7b:91: e6:cc:32:47:01:57:89:97:22:42:b4:42:f2:a0:ed: d8:94:2f:e4:3e:c5:c8:40:21:94:d5:14:94:a7:7b: df:00:62:df:ea:f2:f0:62:11:c6:85:04:34:b2:08: 43:b2:3d:96:56:a4:1b:ce:20:0c:7f:84:4c:33:ec: 77:a4:0d:2e:b1:9b:7a:19:75:f9:25:0b:1c:ab:0b: fc:c1:bd:23:20:08:dd:3e:56:00:c9:5f:33:c0:aa: 87:ad:ba:64:ac:c7:6d:ad:51:70:7c:55:21:3f:1b: 70:ae:bc:be:07:98:d1:8f:c2:6b:14:d2:72:23:d5: dc:fd:29:f6:b7:a9:78:d6:20:e3:1b:79:d5:47:b5: 97:4a:e6:f3:96:44:e4:91:a3:86:a5:2e:2b:d7:36: 32:ea:ee:3f:e8:4b:1c:95:ac:05:14:33:92:f5:3e: 52:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F8:CC:D6:13:C7:21:98:3F:82:70:00:00:EA:60:BC:8D:B5:75:2A X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:da:49:2c:50:14:a7:d1:a0:73:d6:84:b6:d3:f2:7d:3c:a5: 9c:77:91:61:22:74:14:42:2b:81:df:d7:2f:b9:de:e9:9c:20: 35:aa:71:7c:f5:87:0f:36:d9:0a:17:45:0b:56:ea:9e:c4:d5: 2e:28:18:e3:ff:4c:3b:4a:f0:14:28:87:c1:23:ad:4b:d5:c2: e7:53:7b:6f:b7:78:d2:31:b1:76:a9:ac:a7:d2:46:75:a9:67: 4f:12:12:97:fe:40:83:37:86:61:dd:c5:c0:4a:42:24:f1:1b: 92:25:47:0b:ff:eb:79:da:85:fd:03:73:e4:34:e2:34:68:44: 1c:7c:d9:03:89:03:e5:35:d2:d0:4f:78:57:48:49:c0:d5:37: c8:b4:00:d4:41:96:c8:21:32:3b:47:f9:57:81:d0:e3:b3:9a: d7:ba:f7:70:56:22:0f:8a:81:7b:ba:39:4c:9e:7b:34:61:c0: 41:fd:b8:1a:4c:a0:75:0a:f5:4e:69:26:98:23:0c:be:79:c1: 09:74:53:66:69:5b:3d:26:86:ae:b5:6c:73:f6:cf:04:5a:09: 76:89:ef:af:1b:3b:64:ad:a5:91:3e:83:46:cd:33:19:5f:be: 3a:13:cb:64:52:3a:02:00:e3:a3:ad:7b:77:74:12:e3:79:48: 27:62:e6:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjUwNDI1MDA0MDUwWhcNMjUwNTAyMDA0MDUwWjAYMRYwFAYD VQQDEw02ODBhZGExMi05YTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJGhZlNQe2pb5/O3z3xYjvXaGf4Eyl0dvjr79+D6Gh5b1+zDK0dTweC0I1f5 ii4ryWQbACGZE8jZlyToauHMzQaryTU2DNLdM9aLrgKeoKrN9G8mWGCxe5HmzDJH AVeJlyJCtELyoO3YlC/kPsXIQCGU1RSUp3vfAGLf6vLwYhHGhQQ0sghDsj2WVqQb ziAMf4RMM+x3pA0usZt6GXX5JQscqwv8wb0jIAjdPlYAyV8zwKqHrbpkrMdtrVFw fFUhPxtwrry+B5jRj8JrFNJyI9Xc/Sn2t6l41iDjG3nVR7WXSubzlkTkkaOGpS4r 1zYy6u4/6EsclawFFDOS9T5S6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCz4zNYT xyGYP4JwAADqYLyNtXUqMB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG2kksUBSn0aBz1oS20/J9PKWcd5FhInQUQiuB39cvud7pnCA1qnF8 9YcPNtkKF0ULVuqexNUuKBjj/0w7SvAUKIfBI61L1cLnU3tvt3jSMbF2qayn0kZ1 qWdPEhKX/kCDN4Zh3cXASkIk8RuSJUcL/+t52oX9A3PkNOI0aEQcfNkDiQPlNdLQ T3hXSEnA1TfItADUQZbIITI7R/lXgdDjs5rXuvdwViIPioF7ujlMnns0YcBB/bga TKB1CvVOaSaYIwy+ecEJdFNmaVs9JoautWxz9s8EWgl2ie+vGztkraWRPoNGzTMZ X746E8tkUjoCAOOjrXt3dBLjeUgnYuYT -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:04 2025 by rpki-client