$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: t3B+R14v0yxhwZN3GOJ1dJ0hYKWYp7DIxo21RRCU99c= Subject key identifier: 6C:89:16:DA:C8:14:A4:38:E7:5E:1F:3E:B3:2C:22:DC:F4:41:79:41 Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 04C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 04BE Signing time: Thu 24 Apr 2025 23:37:52 +0000 Manifest this update: Thu 24 Apr 2025 23:37:51 +0000 Manifest next update: Thu 01 May 2025 23:37:51 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: pKdx4yCv/HGqjkJ93znajABS1hnzrHaPBihdApjFnkU=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: 40Tp9vYlwNjlXHzULzghK25QKYAH3IMjVH7JAvH5N/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1219 (0x4c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8, serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: Apr 24 23:37:51 2025 GMT Not After : May 1 23:37:51 2025 GMT Subject: CN=680acb50-1fab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c3:49:6a:e7:d0:c7:a6:f8:25:b0:ec:f0:f6: 29:d0:ec:77:ec:ae:7f:10:3d:29:25:84:f2:8d:0f: c1:d2:2e:6a:ac:00:59:97:30:96:e8:04:ea:31:d5: 03:60:d4:5a:d0:21:3d:81:97:8c:86:57:d4:41:de: 9b:17:25:4b:56:87:c8:56:c4:a7:ee:fb:a9:6f:55: e2:0a:a7:f0:ea:af:ed:a4:48:a3:d6:03:c7:95:93: c1:30:0b:e4:a1:94:98:77:54:5a:32:64:b4:ef:50: cf:29:00:08:f7:bf:98:79:4b:68:92:2b:36:5f:86: d7:6d:11:b4:23:0f:db:55:82:d2:0f:f2:87:64:41: 7e:6a:01:34:cf:9b:56:09:bc:41:8b:d8:75:33:03: c9:a6:71:52:0c:99:5a:5f:b3:df:db:a6:30:13:9f: 74:d7:f0:23:83:7d:c2:0a:b8:1d:a9:69:86:d4:ee: 5d:17:47:27:63:bf:1e:64:2d:1e:3a:3b:44:5d:0d: c0:c8:cc:4a:f4:00:2d:24:e8:9b:0c:7f:9c:bc:cd: 4b:3e:e4:4f:49:17:c1:63:76:45:e9:2a:a8:4c:0c: 71:07:0a:2e:93:93:65:13:53:42:dc:fb:64:79:58: be:9b:97:1d:a8:dc:36:67:5c:f8:b6:d6:19:42:13: fc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:89:16:DA:C8:14:A4:38:E7:5E:1F:3E:B3:2C:22:DC:F4:41:79:41 X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:97:d4:d5:b4:dc:df:89:a5:59:11:53:a6:34:b3:73:f7:ba: 9e:55:8d:1b:f6:a2:42:2f:10:97:2e:f9:7f:62:d0:86:ed:5f: 77:59:c3:3e:30:cf:98:b1:db:a5:31:70:29:7e:14:a9:51:1d: 21:64:f5:a2:06:a2:ca:b8:84:41:19:fa:2d:b1:50:25:30:6e: a6:08:91:dc:ae:ad:fa:ae:60:c8:55:ac:f8:46:aa:42:77:76: 15:6d:86:8f:8f:20:e2:29:3b:f9:81:f8:89:8f:58:68:4c:0b: b6:0a:df:c1:59:9b:9c:0f:cd:2b:ca:66:94:90:28:2d:eb:5b: 87:c3:93:d0:d3:52:f8:2b:4a:aa:f1:33:ff:9e:6d:0f:46:0c: f7:ff:51:24:8c:09:d6:74:65:40:42:42:b5:e9:4a:34:25:8a: 7c:f5:14:e2:16:71:9b:90:59:88:f3:b9:00:26:e5:d4:ad:46: 8c:7d:48:72:5f:b9:b3:bd:bf:89:99:0d:ef:04:b0:de:1a:46: fc:46:0d:29:d3:63:cf:b1:ce:c2:d7:fb:8b:a6:df:31:84:e2: 7a:d5:4a:9d:51:1f:58:e1:4c:83:ed:25:71:a2:46:00:35:6e: e8:ed:b5:3a:d6:9b:3f:c4:41:64:69:73:e9:0a:8a:35:02:7b: a3:70:24:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjUwNDI0MjMzNzUxWhcNMjUwNTAxMjMzNzUxWjAYMRYwFAYD VQQDEw02ODBhY2I1MC0xZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMNJaufQx6b4JbDs8PYp0Ox37K5/ED0pJYTyjQ/B0i5qrABZlzCW6ATqMdUD YNRa0CE9gZeMhlfUQd6bFyVLVofIVsSn7vupb1XiCqfw6q/tpEij1gPHlZPBMAvk oZSYd1RaMmS071DPKQAI97+YeUtokis2X4bXbRG0Iw/bVYLSD/KHZEF+agE0z5tW CbxBi9h1MwPJpnFSDJlaX7Pf26YwE5901/Ajg33CCrgdqWmG1O5dF0cnY78eZC0e OjtEXQ3AyMxK9AAtJOibDH+cvM1LPuRPSRfBY3ZF6SqoTAxxBwouk5NlE1NC3Ptk eVi+m5cdqNw2Z1z4ttYZQhP8swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyJFtrI FKQ4514fPrMsItz0QXlBMB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPl9TVtNzfiaVZEVOmNLNz97qeVY0b9qJCLxCXLvl/YtCG7V93WcM+ MM+YsdulMXApfhSpUR0hZPWiBqLKuIRBGfotsVAlMG6mCJHcrq36rmDIVaz4RqpC d3YVbYaPjyDiKTv5gfiJj1hoTAu2Ct/BWZucD80rymaUkCgt61uHw5PQ01L4K0qq 8TP/nm0PRgz3/1EkjAnWdGVAQkK16Uo0JYp89RTiFnGbkFmI87kAJuXUrUaMfUhy X7mzvb+JmQ3vBLDeGkb8Rg0p02PPsc7C1/uLpt8xhOJ61UqdUR9Y4UyD7SVxokYA NW7o7bU61ps/xEFkaXPpCoo1AnujcCRx -----END CERTIFICATE-----Generated at Sat Apr 26 05:29:25 2025 by rpki-client