$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft File: gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft (raw, json) Hash identifier: yAHVD/rNqDXZTn1+Y3+82BJ4pK/Sh+l15i1as1/VQBA= Subject key identifier: 74:2D:BC:CA:8F:90:48:35:8B:AA:5B:0A:14:42:42:30:BD:BF:32:64 Authority key identifier: 81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B Certificate issuer: /CN=A91CDC32/serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft Manifest number: 85 Signing time: Fri 25 Apr 2025 05:33:01 +0000 Manifest this update: Fri 25 Apr 2025 05:33:01 +0000 Manifest next update: Fri 02 May 2025 05:33:01 +0000 Files and hashes: 1: gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl (hash: 5SFY+hDpH/MmDiBhts6oXyldXuEhgQTC7vfJtlk7K8A=) 2: 5221650C5ADE11EFBE0B0841C4F9AE02.roa (hash: DfXJNnGu5R78q4knIp+T6nbwy/V4l/65/i/LBotIC/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDC32, serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Validity Not Before: Apr 25 05:33:01 2025 GMT Not After : May 2 05:33:01 2025 GMT Subject: CN=680b1e8d-dfa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:32:f4:f6:97:c6:61:a4:87:48:17:f4:9d:97: 59:2c:d9:f8:83:28:06:e4:84:f8:5d:a8:4c:6e:31: e3:91:a6:88:f9:99:8e:dd:d6:e8:06:e9:fe:1b:a4: 38:69:59:a8:d7:2f:9c:e3:28:1d:46:0b:a7:df:92: 0d:5d:e8:d2:11:f0:55:ee:c1:c8:a8:b6:7e:f9:29: 35:38:35:a5:d6:fb:2e:6f:27:6f:97:42:48:76:0c: 32:de:d5:6f:b1:51:ab:44:6a:0a:e8:54:ed:e6:f6: 52:25:a6:8a:d1:b2:97:51:84:ae:c9:9f:4d:4b:2b: c3:d9:e1:89:b8:a8:a1:ca:73:76:10:05:f1:cf:e5: 41:71:dd:f1:b8:a3:47:29:4a:61:5e:a2:53:43:7a: f2:8e:4f:db:bf:11:9e:84:d3:b9:ec:28:7e:09:20: 0f:ad:7a:24:68:a3:0f:3d:9b:00:c0:e6:f5:43:d6: 3b:b6:71:6d:09:06:fe:12:a4:0f:25:f4:94:5d:0a: 27:8f:24:ab:35:da:5c:9d:f1:b8:42:b8:98:1c:e5: ea:b1:eb:b7:71:93:29:37:64:d6:81:a7:8b:60:98: 03:ac:74:54:3c:db:a2:e5:da:c1:31:d1:b0:5a:00: 26:70:a4:4f:6c:8d:b2:e8:2e:4d:35:f6:1f:00:f5: e0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:2D:BC:CA:8F:90:48:35:8B:AA:5B:0A:14:42:42:30:BD:BF:32:64 X509v3 Authority Key Identifier: keyid:81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:83:76:2f:93:02:42:ff:67:7f:8c:bd:09:05:ae:3b:94:8a: 6c:bf:d7:e3:68:38:fb:57:3b:fd:14:e4:07:f8:96:75:a4:90: 83:86:43:79:fa:23:cc:dc:3a:81:dd:23:99:50:4f:77:b3:1b: 6c:69:44:4a:1c:74:e7:d6:5f:5b:91:b3:45:9b:b5:7f:6d:1c: 78:7b:67:0d:9f:0f:60:81:f7:dd:5c:94:72:3c:e5:52:ab:96: 23:7b:0f:d5:31:9e:e5:4e:15:4a:58:92:ba:85:09:ef:47:41: 89:a5:f0:9a:c9:30:c4:93:08:2a:e0:24:53:ce:4b:8d:c2:6a: 53:bd:3c:00:b2:4f:3c:f6:a3:d9:34:3e:3c:d0:15:c2:29:2e: ac:ad:3f:95:b1:5b:dd:28:4b:fe:24:05:5a:a5:23:f5:b3:c2: 56:00:7d:87:f4:39:b1:d9:35:22:6b:de:7c:27:4c:d0:d3:db: 04:a9:b4:de:5b:ae:83:32:2d:be:bb:c4:54:69:e5:09:d8:5b: 75:e1:86:f2:fe:94:96:9f:38:54:ec:dd:f8:14:a0:b6:12:1b: 3a:6f:47:85:61:a3:fc:59:b7:7a:40:f7:0f:b0:f0:41:1d:e9: 7e:0f:c1:f3:95:f8:ab:3f:c8:36:ba:aa:11:51:fd:98:2f:eb: 32:f1:a8:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RDMzIxMTAvBgNVBAUTKDgxOTk0OTNBRDI2NUFEMkRDNzMzOTZGNkJBMEI2RUQ2 Q0M0MUUxMEIwHhcNMjUwNDI1MDUzMzAxWhcNMjUwNTAyMDUzMzAxWjAYMRYwFAYD VQQDEw02ODBiMWU4ZC1kZmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzL09pfGYaSHSBf0nZdZLNn4gygG5IT4XahMbjHjkaaI+ZmO3dboBun+G6Q4 aVmo1y+c4ygdRgun35INXejSEfBV7sHIqLZ++Sk1ODWl1vsubydvl0JIdgwy3tVv sVGrRGoK6FTt5vZSJaaK0bKXUYSuyZ9NSyvD2eGJuKihynN2EAXxz+VBcd3xuKNH KUphXqJTQ3ryjk/bvxGehNO57Ch+CSAPrXokaKMPPZsAwOb1Q9Y7tnFtCQb+EqQP JfSUXQonjySrNdpcnfG4QriYHOXqseu3cZMpN2TWgaeLYJgDrHRUPNui5drBMdGw WgAmcKRPbI2y6C5NNfYfAPXgDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQtvMqP kEg1i6pbChRCQjC9vzJkMB8GA1UdIwQYMBaAFIGZSTrSZa0txzOW9roLbtbMQeEL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREMzMi8wRjA5Mjg1NDVB REUxMUVGQTVDOUEyNDBDNEY5QUUwMi9nWmxKT3RKbHJTM0hNNWIydWd0dTFzeEI0 UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dabEpPdEpsclMzSE01YjJ1Z3R1MXN4QjRRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REMzMi8wRjA5Mjg1NDVBREUxMUVGQTVDOUEyNDBDNEY5QUUwMi9nWmxKT3RKbHJT M0hNNWIydWd0dTFzeEI0UXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdg3YvkwJC/2d/jL0JBa47lIpsv9fjaDj7Vzv9FOQH+JZ1pJCDhkN5 +iPM3DqB3SOZUE93sxtsaURKHHTn1l9bkbNFm7V/bRx4e2cNnw9ggffdXJRyPOVS q5Yjew/VMZ7lThVKWJK6hQnvR0GJpfCayTDEkwgq4CRTzkuNwmpTvTwAsk889qPZ ND480BXCKS6srT+VsVvdKEv+JAVapSP1s8JWAH2H9Dmx2TUia958J0zQ09sEqbTe W66DMi2+u8RUaeUJ2Ft14Yby/pSWnzhU7N34FKC2Ehs6b0eFYaP8Wbd6QPcPsPBB Hel+D8HzlfirP8g2uqoRUf2YL+sy8agv -----END CERTIFICATE-----Generated at Sat Apr 26 14:15:45 2025 by rpki-client