$ rpki-client -vvf rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft File: GwdUmyUM_APdrXtURD2oOIkYEco.mft (raw, json) Hash identifier: +QvgGrbpqaYfaQKNoDDInzqqVpRrvw3GUaL5WWp4nHU= Subject key identifier: 0E:30:07:33:C8:EC:15:20:D1:8B:DD:04:E6:1E:54:47:2C:7A:55:CB Authority key identifier: 1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA Certificate issuer: /CN=A91D18AC/serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft Manifest number: 60 Signing time: Fri 25 Apr 2025 05:58:16 +0000 Manifest this update: Fri 25 Apr 2025 05:58:15 +0000 Manifest next update: Fri 02 May 2025 05:58:15 +0000 Files and hashes: 1: GwdUmyUM_APdrXtURD2oOIkYEco.crl (hash: +PalG6Hq0FFerGaxDxGfltPDQPfHLi6DJrvXEJuqf6U=) 2: 34BA37F6976E11EFAEB6A258C4F9AE02.roa (hash: dMptlIu2hEGUJL7wHDTpb5B0NGrE6jX2dVguRw6q6C4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:58:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D18AC, serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Validity Not Before: Apr 25 05:58:15 2025 GMT Not After : May 2 05:58:15 2025 GMT Subject: CN=680b2477-ffc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:86:d2:a3:64:1b:95:13:50:79:f8:aa:fd:56: 7d:ea:d8:85:f5:55:54:d2:b3:cb:22:9b:f0:97:97: 3f:2e:49:72:c7:de:6c:e0:e5:88:87:db:e8:e1:28: 8d:c1:f9:0d:5e:76:5d:db:dd:73:92:1e:09:65:1b: d2:28:c4:dc:51:3d:11:7e:80:41:3e:63:62:9b:72: ab:ad:f4:ed:22:7a:17:d3:2e:83:d6:f6:45:5a:72: 4a:7d:ba:ca:a9:90:5a:53:d1:6f:29:2d:f6:6b:94: 5d:bb:76:4b:35:96:81:4c:ed:be:e9:41:b9:e0:dc: 00:d4:1d:52:71:e2:e2:f7:04:64:e1:d7:b0:b1:c5: 46:ef:3e:1a:2d:32:30:bf:d1:2a:b1:a3:84:33:f8: 6c:ee:7a:55:7c:c2:72:5a:42:5d:ad:7d:c3:e2:ad: 42:a0:1f:0c:83:4e:e0:6d:34:66:31:3e:7c:f7:40: 11:4f:63:0e:94:87:45:86:0f:f7:5d:39:ac:44:74: 74:5a:7a:0f:45:f5:b1:1b:6d:ed:de:ce:09:9c:8a: 99:8e:91:8f:82:77:bc:88:23:d7:a9:89:10:6a:c1: bc:d8:9d:e9:d8:4c:03:7a:57:41:42:26:8c:15:fd: ed:59:bb:ef:cc:18:bf:a1:e0:7c:71:17:69:01:06: 3b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:30:07:33:C8:EC:15:20:D1:8B:DD:04:E6:1E:54:47:2C:7A:55:CB X509v3 Authority Key Identifier: keyid:1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:08:91:87:f3:ec:02:5a:ee:20:d8:c0:8a:48:42:a6:88:c7: 20:bc:bd:f3:dc:8c:fa:33:be:a0:90:60:0d:21:f5:0d:66:17: 55:0c:4d:d7:dd:c3:3a:04:a4:ec:71:3a:1c:1c:e8:36:d2:aa: ac:56:99:d5:57:4b:7d:1b:4d:55:21:ef:18:20:cb:ee:69:c8: f5:ae:c4:92:b0:9a:9b:e3:e3:df:c2:9a:fc:fe:b1:81:84:fd: 87:41:31:31:02:24:c6:6b:a5:10:85:f8:b7:0f:ab:4e:fb:64: 74:57:a6:57:8e:f8:63:7a:4e:b7:4c:e9:6e:0b:e4:96:ce:09: 6f:ef:dd:0e:b6:08:ab:be:bd:19:ee:12:08:d3:0c:9d:56:f7: 43:fc:d4:33:fa:af:dc:7f:04:06:94:ba:7d:58:62:74:ba:00: e0:45:2d:51:6f:64:8a:ee:89:e3:7e:37:74:ca:fc:d2:24:f6: 98:ae:ae:9b:2f:53:c1:ba:5a:dc:af:9d:e1:39:c9:08:e0:30: ec:01:fe:37:bc:a1:87:29:26:03:38:d2:32:38:2f:85:44:3d: 8f:27:a5:37:91:26:fb:60:16:ec:4c:c0:3f:34:f6:6d:57:5f: bb:0d:8e:c5:b4:2c:54:bb:b4:89:83:20:ac:59:0e:ea:14:35: 31:ae:b9:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MThBQzExMC8GA1UEBRMoMUIwNzU0OUIyNTBDRkMwM0REQUQ3QjU0NDQzREE4Mzg4 OTE4MTFDQTAeFw0yNTA0MjUwNTU4MTVaFw0yNTA1MDIwNTU4MTVaMBgxFjAUBgNV BAMTDTY4MGIyNDc3LWZmYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCehtKjZBuVE1B5+Kr9Vn3q2IX1VVTSs8sim/CXlz8uSXLH3mzg5YiH2+jhKI3B +Q1edl3b3XOSHgllG9IoxNxRPRF+gEE+Y2Kbcqut9O0iehfTLoPW9kVackp9usqp kFpT0W8pLfZrlF27dks1loFM7b7pQbng3ADUHVJx4uL3BGTh17CxxUbvPhotMjC/ 0Sqxo4Qz+GzuelV8wnJaQl2tfcPirUKgHwyDTuBtNGYxPnz3QBFPYw6Uh0WGD/dd OaxEdHRaeg9F9bEbbe3ezgmcipmOkY+Cd7yII9epiRBqwbzYnenYTAN6V0FCJowV /e1Zu+/MGL+h4HxxF2kBBjtDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDjAHM8js FSDRi90E5h5URyx6VcswHwYDVR0jBBgwFoAUGwdUmyUM/APdrXtURD2oOIkYEcow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQxOEFDL0Q0QkEzRDk4OTZD QzExRUY4RUZDQjg0OUM0RjlBRTAyL0d3ZFVteVVNX0FQZHJYdFVSRDJvT0lrWUVj by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR3dkVW15VU1fQVBkclh0VVJEMm9PSWtZRWNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQx OEFDL0Q0QkEzRDk4OTZDQzExRUY4RUZDQjg0OUM0RjlBRTAyL0d3ZFVteVVNX0FQ ZHJYdFVSRDJvT0lrWUVjby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC4IkYfz7AJa7iDYwIpIQqaIxyC8vfPcjPozvqCQYA0h9Q1mF1UMTdfd wzoEpOxxOhwc6DbSqqxWmdVXS30bTVUh7xggy+5pyPWuxJKwmpvj49/Cmvz+sYGE /YdBMTECJMZrpRCF+LcPq077ZHRXpleO+GN6TrdM6W4L5JbOCW/v3Q62CKu+vRnu EgjTDJ1W90P81DP6r9x/BAaUun1YYnS6AOBFLVFvZIruieN+N3TK/NIk9piurpsv U8G6WtyvneE5yQjgMOwB/je8oYcpJgM40jI4L4VEPY8npTeRJvtgFuxMwD809m1X X7sNjsW0LFS7tImDIKxZDuoUNTGuuWo= -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:26 2025 by rpki-client