$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: t10Z+WTkhIv/nvpRjS1wcDWmcLB1Fggzh9kvDDCvNzs= Subject key identifier: 62:38:31:1B:57:38:A1:F7:CB:ED:CA:7C:CA:8A:C6:E1:B3:21:97:3B Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 02AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 02A6 Signing time: Fri 25 Apr 2025 01:17:20 +0000 Manifest this update: Fri 25 Apr 2025 01:17:20 +0000 Manifest next update: Fri 02 May 2025 01:17:20 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: hPdggs6y/KsQgmL8wPyYPuX6uOGH3iE7dTCqKObPWMk=) 2: 3785A958EF4711EF906AD167C4F9AE02.roa (hash: Xop4pF7LmPiWj4qFmNK9jXxRuc+SVOdI5Rsywj/dhPQ=) 3: 464B4494F7D911EF8EA69265C4F9AE02.roa (hash: kw7ZHY1axLvj55a+YPxHpHPEy1diN3j6tF6SRdvVlY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:17:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F, serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: Apr 25 01:17:20 2025 GMT Not After : May 2 01:17:20 2025 GMT Subject: CN=680ae2a0-b147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b6:22:ac:ce:96:e9:2c:3e:0d:7f:dd:17:b1: 8c:7a:e2:65:1d:19:b1:c0:09:af:85:8b:c4:18:eb: a3:af:52:f1:0f:3e:07:fd:51:5b:fe:4b:83:45:da: 26:07:2c:83:98:1d:ba:33:37:e1:45:a8:42:73:07: 34:f3:6a:10:90:88:9c:a2:1c:3d:d4:78:09:c1:b3: 0d:38:2f:d9:b0:cd:21:79:fa:a5:22:fb:47:00:e2: 87:ed:d1:1c:4a:83:9f:9c:9a:7a:88:b3:cf:8a:ca: 51:d5:5b:43:56:b3:69:c0:2c:53:e0:2e:6b:e8:27: a9:72:21:a7:b7:45:11:08:95:12:04:93:c0:11:d7: b7:a3:e5:5b:18:19:10:51:0f:db:b8:92:4d:ad:4a: 8c:d1:46:c5:12:fb:ed:10:f3:40:32:06:44:f7:31: e2:4a:b9:b8:89:6f:80:f4:ee:19:6f:dc:9d:ae:9d: 98:1a:4f:a6:c8:85:92:1f:cc:e1:5e:08:d0:75:84: e9:3c:2d:77:d0:39:22:28:bf:5c:77:f8:c0:6c:86: f6:82:a2:a7:15:80:45:0c:4f:b6:88:18:20:44:08: a5:72:dc:f5:cd:3b:0b:0b:93:ce:07:d9:90:aa:79: aa:a4:26:c2:03:c4:3f:d4:04:37:f7:7e:d7:62:c4: 09:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:38:31:1B:57:38:A1:F7:CB:ED:CA:7C:CA:8A:C6:E1:B3:21:97:3B X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:31:ed:59:bc:5c:8f:f1:05:5b:0f:3a:e6:54:27:7f:f5:ad: 5b:f0:5a:42:09:c7:9f:52:e9:fb:e3:9d:89:b6:f7:19:df:21: d5:4b:3a:a3:91:a9:2f:59:99:ae:3c:0f:dc:c3:46:f8:27:79: 92:16:36:09:52:91:3f:03:51:12:6e:ff:61:c9:92:35:5d:cb: 2a:b0:6a:ef:3e:32:39:8b:5e:07:29:3d:16:82:69:ed:66:ba: 59:45:4d:14:a4:87:07:9d:54:e1:ec:ac:6a:a4:a4:57:5b:be: 80:c0:5a:c2:92:23:79:27:82:8f:98:9f:ab:63:46:40:a3:11: 0a:8d:89:0c:89:89:0a:0c:cc:78:d5:d8:02:37:bd:69:b1:ad: 9d:bb:70:0d:22:0b:0f:c9:77:f8:bb:bc:0e:06:be:9e:7c:77: 5c:2e:fc:5c:f8:a4:65:10:c7:cd:62:26:3e:b9:67:25:8e:cf: 5d:64:86:00:b4:a6:6f:ac:7d:64:d4:ab:31:24:e0:c9:08:b1: b4:0d:d4:58:3c:7e:4e:cb:bc:a4:42:5d:fb:a6:40:93:74:f0: 24:95:55:dd:89:81:0c:fb:85:72:37:7c:67:38:99:6a:74:f4: fb:5a:6e:85:c2:8c:7a:cb:23:a3:cd:cc:25:84:d2:b2:e1:d4: c6:ce:50:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjUwNDI1MDExNzIwWhcNMjUwNTAyMDExNzIwWjAYMRYwFAYD VQQDEw02ODBhZTJhMC1iMTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrYirM6W6Sw+DX/dF7GMeuJlHRmxwAmvhYvEGOujr1LxDz4H/VFb/kuDRdom ByyDmB26MzfhRahCcwc082oQkIicohw91HgJwbMNOC/ZsM0hefqlIvtHAOKH7dEc SoOfnJp6iLPPispR1VtDVrNpwCxT4C5r6CepciGnt0URCJUSBJPAEde3o+VbGBkQ UQ/buJJNrUqM0UbFEvvtEPNAMgZE9zHiSrm4iW+A9O4Zb9ydrp2YGk+myIWSH8zh XgjQdYTpPC130DkiKL9cd/jAbIb2gqKnFYBFDE+2iBggRAilctz1zTsLC5POB9mQ qnmqpCbCA8Q/1AQ3937XYsQJewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGI4MRtX OKH3y+3KfMqKxuGzIZc7MB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkMe1ZvFyP8QVbDzrmVCd/9a1b8FpCCcefUun7452JtvcZ3yHVSzqj kakvWZmuPA/cw0b4J3mSFjYJUpE/A1ESbv9hyZI1XcsqsGrvPjI5i14HKT0Wgmnt ZrpZRU0UpIcHnVTh7KxqpKRXW76AwFrCkiN5J4KPmJ+rY0ZAoxEKjYkMiYkKDMx4 1dgCN71psa2du3ANIgsPyXf4u7wOBr6efHdcLvxc+KRlEMfNYiY+uWcljs9dZIYA tKZvrH1k1KsxJODJCLG0DdRYPH5Oy7ykQl37pkCTdPAklVXdiYEM+4VyN3xnOJlq dPT7Wm6Fwox6yyOjzcwlhNKy4dTGzlBM -----END CERTIFICATE-----Generated at Sat Apr 26 16:43:50 2025 by rpki-client