$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: FeU1gYg150Izz48/5ABC4YY8LOfuMCC8M+HrN41G4sw= Subject key identifier: AE:E4:6C:2E:A9:B8:B1:CF:72:CF:1A:E6:4B:C4:3D:E9:00:76:F2:FA Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 14D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 14C9 Signing time: Thu 24 Apr 2025 16:51:30 +0000 Manifest this update: Thu 24 Apr 2025 16:51:29 +0000 Manifest next update: Thu 01 May 2025 16:51:29 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: zi0A8K4IDrzDmwdaK/lqZpc2uNeZYU8HmqKI7mGtTqM=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: ts6CuXT017m+Eo1tnvA5GQ371D5wqgoVWLN1l6w+WmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:51:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5331 (0x14d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: Apr 24 16:51:29 2025 GMT Not After : May 1 16:51:29 2025 GMT Subject: CN=680a6c11-a5ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:86:b9:eb:43:0d:ce:85:a9:21:68:ed:98:2e: ee:7d:78:5b:c4:97:96:d1:00:04:6c:f0:c2:0c:d1: a3:e1:36:b2:4d:ca:3f:d8:85:e5:a1:d2:92:cb:c1: e3:43:dd:11:f4:c7:dd:6d:5a:d1:b8:3b:b4:3d:a1: db:b0:d6:eb:e6:cf:a8:95:26:09:a0:1f:b5:a1:7b: 03:c0:a6:86:a4:a2:f0:36:1c:a0:24:b0:62:70:89: a4:ba:04:0b:6b:75:f1:b3:8e:3c:d5:26:9b:cc:26: 7e:a0:cb:6b:1b:db:e2:b3:72:9b:9d:7c:b7:b5:18: 8a:a2:bc:6d:c8:55:a9:c2:7d:cf:c9:23:0b:d3:08: 53:3c:ea:b9:10:c0:c4:a7:32:ea:a5:79:9b:e9:a9: 60:46:15:2d:78:41:3b:09:fb:ce:c7:2a:65:6d:f1: 81:d4:db:22:85:00:8f:06:72:46:7c:06:c8:33:dc: 98:20:1e:8c:14:71:b7:59:d8:58:3c:06:d0:aa:f6: 89:eb:6a:c5:2f:9e:30:0f:73:ff:af:12:fa:4c:73: c0:e4:f6:2f:69:e5:9c:2c:c4:6d:28:de:57:2c:0e: 17:11:3b:a7:96:3c:4f:ee:db:9d:36:7e:d0:4a:ff: 8c:78:dc:f2:82:b4:c4:89:cd:c4:bc:96:dd:a5:d2: 78:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E4:6C:2E:A9:B8:B1:CF:72:CF:1A:E6:4B:C4:3D:E9:00:76:F2:FA X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:f2:c0:c3:00:09:a1:9d:12:f4:71:51:75:27:9b:5e:a8:f6: d8:e6:d7:cb:75:f0:e9:a7:fd:41:82:7a:7f:02:21:29:83:1a: c3:8b:6b:9f:6d:be:88:df:f0:f2:a6:0e:43:d0:59:bd:9f:0c: 81:39:bd:be:c4:e8:84:a5:61:e7:d8:2d:17:60:89:7b:92:45: 77:17:40:27:ab:59:94:63:c9:27:c6:93:5f:d9:36:01:d5:6b: bb:0f:93:eb:25:81:a6:d1:27:9c:7b:2a:18:ed:0e:43:05:4a: cf:07:81:a4:1e:fe:d1:65:de:16:4a:a7:f1:ae:81:59:4c:f4: 31:ee:17:cf:d8:ae:26:53:75:b5:c7:c5:30:68:c5:1f:eb:b8: d0:c8:75:8f:6a:94:9a:c1:a5:37:38:cd:7c:f2:50:3f:8a:b9: 24:9f:99:9f:3b:77:a6:c4:be:ed:e6:ab:f0:f8:c8:54:31:13: 28:41:09:49:e9:d9:1d:d2:ab:74:ae:71:67:5f:2a:48:96:17: a2:76:c5:eb:67:db:b9:68:b6:89:22:d9:ee:5d:fe:64:d8:07: 4e:90:3e:f8:68:45:c0:b1:74:99:00:07:2e:4f:ac:bb:48:9a: 14:ce:05:b0:8e:4a:4c:5c:9d:76:1a:78:31:ad:05:27:d3:a7: 0c:5c:32:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjUwNDI0MTY1MTI5WhcNMjUwNTAxMTY1MTI5WjAYMRYwFAYD VQQDEw02ODBhNmMxMS1hNWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oa560MNzoWpIWjtmC7ufXhbxJeW0QAEbPDCDNGj4TayTco/2IXlodKSy8Hj Q90R9MfdbVrRuDu0PaHbsNbr5s+olSYJoB+1oXsDwKaGpKLwNhygJLBicImkugQL a3Xxs4481SabzCZ+oMtrG9vis3KbnXy3tRiKorxtyFWpwn3PySML0whTPOq5EMDE pzLqpXmb6algRhUteEE7CfvOxyplbfGB1NsihQCPBnJGfAbIM9yYIB6MFHG3WdhY PAbQqvaJ62rFL54wD3P/rxL6THPA5PYvaeWcLMRtKN5XLA4XETunljxP7tudNn7Q Sv+MeNzygrTEic3EvJbdpdJ4fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7kbC6p uLHPcs8a5kvEPekAdvL6MB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ8sDDAAmhnRL0cVF1J5teqPbY5tfLdfDpp/1Bgnp/AiEpgxrDi2uf bb6I3/Dypg5D0Fm9nwyBOb2+xOiEpWHn2C0XYIl7kkV3F0Anq1mUY8knxpNf2TYB 1Wu7D5PrJYGm0SeceyoY7Q5DBUrPB4GkHv7RZd4WSqfxroFZTPQx7hfP2K4mU3W1 x8UwaMUf67jQyHWPapSawaU3OM188lA/irkkn5mfO3emxL7t5qvw+MhUMRMoQQlJ 6dkd0qt0rnFnXypIlheidsXrZ9u5aLaJItnuXf5k2AdOkD74aEXAsXSZAAcuT6y7 SJoUzgWwjkpMXJ12GngxrQUn06cMXDKQ -----END CERTIFICATE-----Generated at Sat Apr 26 04:27:04 2025 by rpki-client