$ rpki-client -vvf rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft File: gmtVkqw4sBK358JzDdBgfhDbgQI.mft (raw, json) Hash identifier: NnryOGohtKO3aceXvrpJrskDNTC1fjDQD+Vdr0i4Lf8= Subject key identifier: 89:74:C7:86:27:7E:88:5A:54:C5:0E:24:F4:76:E3:D8:75:D0:29:08 Authority key identifier: 82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 Certificate issuer: /CN=A91D23C7/serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Certificate serial: 051D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft Manifest number: 0517 Signing time: Thu 24 Apr 2025 23:22:00 +0000 Manifest this update: Thu 24 Apr 2025 23:21:59 +0000 Manifest next update: Thu 01 May 2025 23:21:59 +0000 Files and hashes: 1: gmtVkqw4sBK358JzDdBgfhDbgQI.crl (hash: mOolySdTIW65+hukFcBxdJhIKwnWENLXYB6YrRWp1js=) 2: 25B713A4FE6B11EBB5DD176BC4F9AE02.roa (hash: DeWvXrtTOlNASLEtVwCRq5xJVs2BWXsb8zrs6Aq/kZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1309 (0x51d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D23C7, serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Validity Not Before: Apr 24 23:21:59 2025 GMT Not After : May 1 23:21:59 2025 GMT Subject: CN=680ac797-4643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8c:ae:1b:90:02:0e:cd:b7:ab:38:01:37:c4: 74:12:c4:24:39:2c:08:3b:4f:49:e0:b9:a8:ec:e4: de:3d:f4:58:d7:ce:2d:a7:16:c6:7b:d7:d8:cb:07: 40:ae:aa:69:e2:6c:34:20:1a:d9:a8:98:09:1a:e2: c8:17:44:f3:87:72:46:45:27:63:47:88:22:9a:9e: d8:f3:75:d5:8d:e8:89:3e:bf:e2:e5:d7:bd:38:a9: 63:8c:cd:3b:2a:d0:45:fe:67:74:6a:c8:1b:8c:25: b4:c7:fc:28:77:d7:0f:ba:95:78:53:d1:62:eb:27: 9f:41:aa:a5:b3:5b:9d:4a:98:4e:dc:1f:7f:c8:fa: fb:5c:12:21:71:fc:a6:d3:4b:83:0c:db:08:c5:24: 04:2a:58:6c:b5:4d:a8:fa:ef:97:43:88:32:93:63: d8:2e:ff:84:1f:6e:36:74:89:30:21:5c:40:63:84: 6c:32:09:00:3d:89:db:65:8e:6b:cf:cf:a3:ee:3a: 6e:68:d2:18:ea:cd:07:b8:34:76:2d:e7:40:4c:f0: a5:80:bd:6d:61:e7:a1:8e:71:47:74:f6:b9:57:a7: 30:27:90:b4:10:b1:3e:07:78:64:6c:bd:dc:61:50: bb:aa:40:6a:99:0e:8c:1d:d2:40:25:a0:67:8d:e8: 09:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:74:C7:86:27:7E:88:5A:54:C5:0E:24:F4:76:E3:D8:75:D0:29:08 X509v3 Authority Key Identifier: keyid:82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:42:a7:db:7b:78:28:3b:95:70:6f:5a:c4:d2:9b:fd:d3:53: c7:0c:99:14:83:13:d0:47:54:11:73:a7:36:4f:dd:90:c6:15: c7:2f:bd:7c:8a:d0:27:8f:65:d5:d5:77:c8:d0:9c:e7:62:fc: 23:82:7c:ca:61:8e:62:c4:63:f9:90:ee:08:dc:0a:2c:93:58: 18:e2:37:d5:17:25:67:70:4e:94:3b:c9:14:dd:19:10:fa:0a: 69:f1:b9:f2:9d:3a:f3:dd:23:24:70:bb:f8:7a:f7:0d:8f:0f: 90:9e:e0:40:e3:68:50:5f:83:af:00:26:c2:a2:ed:bf:1c:67: 28:0d:43:d6:92:3e:4e:f1:08:fc:cc:3e:12:f9:6f:5c:78:2b: 18:d0:c6:78:47:b2:bd:35:21:11:6f:ed:75:81:7a:13:22:d7: a5:60:23:98:ba:48:e1:ee:e9:ff:03:b8:47:44:23:81:3c:64: 57:ad:a8:54:df:fd:bd:94:fb:b0:42:a2:2e:b4:f3:3e:8b:ef: 74:46:3a:52:cb:7b:e5:52:18:ef:ef:21:44:be:69:66:a5:1a: 13:91:03:8a:10:e9:99:27:69:d6:ba:2b:29:bd:db:36:a7:b3: 41:b2:61:8d:16:06:ea:ce:dc:19:5b:06:db:f6:69:90:3d:4c: c6:7d:1d:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIzQzcxMTAvBgNVBAUTKDgyNkI1NTkyQUMzOEIwMTJCN0U3QzI3MzBERDA2MDdF MTBEQjgxMDIwHhcNMjUwNDI0MjMyMTU5WhcNMjUwNTAxMjMyMTU5WjAYMRYwFAYD VQQDEw02ODBhYzc5Ny00NjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIyuG5ACDs23qzgBN8R0EsQkOSwIO09J4Lmo7OTePfRY184tpxbGe9fYywdA rqpp4mw0IBrZqJgJGuLIF0Tzh3JGRSdjR4gimp7Y83XVjeiJPr/i5de9OKljjM07 KtBF/md0asgbjCW0x/wod9cPupV4U9Fi6yefQaqls1udSphO3B9/yPr7XBIhcfym 00uDDNsIxSQEKlhstU2o+u+XQ4gyk2PYLv+EH242dIkwIVxAY4RsMgkAPYnbZY5r z8+j7jpuaNIY6s0HuDR2LedATPClgL1tYeehjnFHdPa5V6cwJ5C0ELE+B3hkbL3c YVC7qkBqmQ6MHdJAJaBnjegJ5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIl0x4Yn fohaVMUOJPR249h10CkIMB8GA1UdIwQYMBaAFIJrVZKsOLASt+fCcw3QYH4Q24EC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjNDNy83QjJGNTM4QUZF NjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNCSzM1OEp6RGRCZ2ZoRGJn UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtdFZrcXc0c0JLMzU4SnpEZEJnZmhEYmdRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjNDNy83QjJGNTM4QUZFNjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNC SzM1OEp6RGRCZ2ZoRGJnUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATQqfbe3goO5Vwb1rE0pv901PHDJkUgxPQR1QRc6c2T92QxhXHL718 itAnj2XV1XfI0JznYvwjgnzKYY5ixGP5kO4I3Aosk1gY4jfVFyVncE6UO8kU3RkQ +gpp8bnynTrz3SMkcLv4evcNjw+QnuBA42hQX4OvACbCou2/HGcoDUPWkj5O8Qj8 zD4S+W9ceCsY0MZ4R7K9NSERb+11gXoTItelYCOYukjh7un/A7hHRCOBPGRXrahU 3/29lPuwQqIutPM+i+90RjpSy3vlUhjv7yFEvmlmpRoTkQOKEOmZJ2nWuispvds2 p7NBsmGNFgbqztwZWwbb9mmQPUzGfR1C -----END CERTIFICATE-----Generated at Sat Apr 26 04:57:25 2025 by rpki-client