$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft File: gwig5Q7SdrauEaNIK8K70EDlnxo.mft (raw, json) Hash identifier: Sd7UsvWOcYUT1+MKYq46ybmDo6hwssvdJA84H4/7CbA= Subject key identifier: 47:88:BC:32:53:53:07:4F:A6:26:90:AB:FA:D2:38:1E:0E:CF:F1:F9 Authority key identifier: 83:08:A0:E5:0E:D2:76:B6:AE:11:A3:48:2B:C2:BB:D0:40:E5:9F:1A Certificate issuer: /CN=A91A45A0/serialNumber=8308A0E50ED276B6AE11A3482BC2BBD040E59F1A Certificate serial: 0A93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwig5Q7SdrauEaNIK8K70EDlnxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft Manifest number: 0A8D Signing time: Thu 24 Apr 2025 19:28:12 +0000 Manifest this update: Thu 24 Apr 2025 19:28:12 +0000 Manifest next update: Thu 01 May 2025 19:28:12 +0000 Files and hashes: 1: gwig5Q7SdrauEaNIK8K70EDlnxo.crl (hash: iEiClEMdwmtv/Jt0kt1tIB6ssN0GtVtd18PpoCD4aso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.crl rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwig5Q7SdrauEaNIK8K70EDlnxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2707 (0xa93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45A0, serialNumber=8308A0E50ED276B6AE11A3482BC2BBD040E59F1A Validity Not Before: Apr 24 19:28:12 2025 GMT Not After : May 1 19:28:12 2025 GMT Subject: CN=680a90cc-10b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8e:4a:75:de:1b:81:69:93:32:c1:b8:b3:cd: 3a:f0:8c:2f:69:d9:65:fc:c0:dc:2e:e0:47:82:0d: 6f:07:25:e6:84:f2:46:0f:32:53:93:e6:ce:c2:77: 0b:1d:cb:ff:ad:b7:8d:6e:66:6d:07:0b:ff:b1:f9: ba:b3:66:48:c6:c4:c4:e6:6c:38:be:42:d4:48:bc: 2e:6a:26:ab:49:0b:52:0a:e2:0e:a7:10:f8:62:4c: d8:74:c6:03:e8:8e:8f:58:31:b7:61:64:8c:2e:f9: 88:b4:70:9f:2b:61:0a:0e:89:c9:69:86:c5:e6:6c: 90:2e:4a:00:4f:38:a3:37:05:0f:d1:16:c7:37:84: ab:ad:6e:5e:4e:f1:45:7a:f0:ea:06:ae:d2:3c:4a: 54:94:35:2b:78:24:89:30:c7:17:9d:35:78:b6:3c: 82:0b:f1:e3:b5:90:a5:d9:c2:2b:0e:41:da:b7:40: b4:d0:7f:84:c2:ac:65:95:06:58:9b:b3:dc:9b:b7: cf:10:ec:f0:d9:51:67:4e:c2:eb:8c:48:65:d1:44: 87:54:de:fa:e6:6a:e5:61:5b:34:c7:a4:f0:72:53: 40:1a:84:72:48:e1:8f:33:04:2f:48:2c:1a:a7:81: 02:f8:e1:cf:14:77:56:3d:59:37:9f:93:5c:06:e4: 0a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:88:BC:32:53:53:07:4F:A6:26:90:AB:FA:D2:38:1E:0E:CF:F1:F9 X509v3 Authority Key Identifier: keyid:83:08:A0:E5:0E:D2:76:B6:AE:11:A3:48:2B:C2:BB:D0:40:E5:9F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwig5Q7SdrauEaNIK8K70EDlnxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45A0/BF31471256F011EAA6E98D42C4F9AE02/gwig5Q7SdrauEaNIK8K70EDlnxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:f5:d5:30:78:5d:1c:16:27:c0:f9:ad:5d:5f:15:36:f4:12: 20:13:3c:8a:56:cc:17:61:7e:7e:3d:a4:12:9f:d6:6e:11:e9: ff:e5:af:89:3f:df:ab:d2:1e:bc:35:48:b2:cf:ac:16:77:1e: f2:bf:3b:cc:be:6d:f6:05:e7:1f:ef:d8:a8:dd:6f:2d:12:52: 67:d1:b8:83:f5:c5:5f:43:cf:5c:1e:38:a8:d3:d8:30:a8:8f: e6:ac:39:8e:a7:49:b1:20:77:70:f4:39:a0:d1:3b:e3:be:97: 4a:54:dc:30:ce:19:e6:9e:9a:67:6a:a6:46:25:84:c5:b1:92: 9b:79:2a:d6:f5:c0:e5:4b:93:7f:38:a6:9c:d8:e7:06:f3:1e: 8b:c1:d9:ec:07:40:bc:59:45:65:ba:91:51:e6:ac:2f:e0:fd: 64:5c:6e:79:73:a8:68:c0:46:3f:4d:27:5b:f7:5f:22:b1:62: 9f:27:28:c1:fe:05:e9:33:b3:db:29:3c:c3:26:45:71:58:93: 1b:64:0b:5c:d1:d0:e8:ba:60:b6:29:3f:a1:05:76:61:7c:3e: 19:d4:76:bd:e4:ca:8e:d9:77:52:be:52:69:61:5a:fc:03:8a: a1:0e:41:d9:d3:5d:d2:55:be:67:e8:4c:50:fe:0e:8d:6a:1f: 4a:57:49:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1QTAxMTAvBgNVBAUTKDgzMDhBMEU1MEVEMjc2QjZBRTExQTM0ODJCQzJCQkQw NDBFNTlGMUEwHhcNMjUwNDI0MTkyODEyWhcNMjUwNTAxMTkyODEyWjAYMRYwFAYD VQQDEw02ODBhOTBjYy0xMGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAso5Kdd4bgWmTMsG4s8068Iwvadll/MDcLuBHgg1vByXmhPJGDzJTk+bOwncL Hcv/rbeNbmZtBwv/sfm6s2ZIxsTE5mw4vkLUSLwuaiarSQtSCuIOpxD4YkzYdMYD 6I6PWDG3YWSMLvmItHCfK2EKDonJaYbF5myQLkoATzijNwUP0RbHN4SrrW5eTvFF evDqBq7SPEpUlDUreCSJMMcXnTV4tjyCC/HjtZCl2cIrDkHat0C00H+EwqxllQZY m7Pcm7fPEOzw2VFnTsLrjEhl0USHVN765mrlYVs0x6TwclNAGoRySOGPMwQvSCwa p4EC+OHPFHdWPVk3n5NcBuQKBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEeIvDJT UwdPpiaQq/rSOB4Oz/H5MB8GA1UdIwQYMBaAFIMIoOUO0na2rhGjSCvCu9BA5Z8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVBMC9CRjMxNDcxMjU2 RjAxMUVBQTZFOThENDJDNEY5QUUwMi9nd2lnNVE3U2RyYXVFYU5JSzhLNzBFRGxu eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3aWc1UTdTZHJhdUVhTklLOEs3MEVEbG54by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVBMC9CRjMxNDcxMjU2RjAxMUVBQTZFOThENDJDNEY5QUUwMi9nd2lnNVE3U2Ry YXVFYU5JSzhLNzBFRGxueG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr9dUweF0cFifA+a1dXxU29BIgEzyKVswXYX5+PaQSn9ZuEen/5a+J P9+r0h68NUiyz6wWdx7yvzvMvm32Becf79io3W8tElJn0biD9cVfQ89cHjio09gw qI/mrDmOp0mxIHdw9Dmg0TvjvpdKVNwwzhnmnppnaqZGJYTFsZKbeSrW9cDlS5N/ OKac2OcG8x6LwdnsB0C8WUVlupFR5qwv4P1kXG55c6howEY/TSdb918isWKfJyjB /gXpM7PbKTzDJkVxWJMbZAtc0dDoumC2KT+hBXZhfD4Z1Ha95MqO2XdSvlJpYVr8 A4qhDkHZ013SVb5n6ExQ/g6Nah9KV0lS -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:05 2025 by rpki-client