$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: jtjxB1IJBl5VY9jpbncX2Sa0VW0YmQwgjc/byh++rUs= Subject key identifier: F5:93:70:2F:7F:53:4B:43:A2:FF:5A:E2:76:55:3B:E6:6B:7D:A2:57 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 3482 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 3479 Signing time: Thu 24 Apr 2025 14:40:18 +0000 Manifest this update: Thu 24 Apr 2025 14:40:17 +0000 Manifest next update: Thu 01 May 2025 14:40:17 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: +FwT9VuNFJyfi2QuGBRZvtZuoIH4YfMOHfUA5Bl4rik=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13442 (0x3482) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Apr 24 14:40:17 2025 GMT Not After : May 1 14:40:17 2025 GMT Subject: CN=680a4d52-aa09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:77:2d:c1:aa:64:b8:cf:11:23:93:13:fd:3c: 48:ca:20:f7:e5:cd:72:ca:40:72:60:48:44:5e:ea: d8:f3:a1:e3:39:3e:07:12:56:5d:e6:89:80:31:1b: ca:32:0e:9e:2e:ce:a6:09:80:d9:51:3e:5b:16:e3: 38:88:50:ef:5a:dc:a8:ac:30:75:ad:6b:48:b8:f8: 31:5d:50:e1:67:d7:5e:2c:31:db:79:e6:44:0b:8a: 0a:66:43:b6:c9:54:9e:a1:22:23:5f:32:97:98:df: 64:3b:db:e7:9b:74:e6:9d:bb:99:d2:20:f1:5e:68: 59:1d:53:ab:f1:05:00:08:7e:77:0c:2d:11:e0:00: 68:f8:40:11:fc:a8:62:c9:b5:93:8d:07:01:f7:2b: 37:92:f0:f7:23:f3:05:ef:f7:8d:0e:ef:4e:bc:4f: 44:97:cb:b3:ca:d6:ca:2e:50:41:6d:40:7e:ac:65: d4:a1:bb:ac:48:15:1e:24:6f:ea:1a:65:9f:15:a1: 73:85:36:f0:c9:e6:95:d4:4b:3c:47:0f:f9:61:26: 2f:2e:95:ec:db:79:bd:46:46:60:6a:c2:3d:36:73: 49:f6:bb:c4:e6:94:af:44:89:41:f1:bb:b1:0a:ef: a8:90:62:85:e7:70:74:10:78:ac:ed:b7:d2:bc:3f: 6e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:93:70:2F:7F:53:4B:43:A2:FF:5A:E2:76:55:3B:E6:6B:7D:A2:57 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:dd:35:90:f5:ef:64:97:65:97:1f:ea:01:56:f2:f7:59:06: 24:f1:26:4a:36:30:84:63:ae:1a:e3:ae:c1:b5:ba:89:d5:d9: 7b:65:f1:0b:37:f4:41:d0:b1:ca:58:40:0d:4d:ce:36:4b:3a: b8:62:86:19:e3:d7:9e:6e:16:44:81:0e:67:b9:a9:e3:82:ae: f7:f5:7b:83:66:ac:5c:62:f5:4e:f8:30:cc:b4:ec:1d:8b:26: 89:9a:a4:c8:54:06:9e:e5:dc:ff:53:93:83:a7:2e:9f:e6:3d: 92:54:88:11:29:bb:f3:31:14:8c:e6:ea:95:c9:e9:7e:1f:5d: 0c:9e:df:2d:13:b3:ac:46:db:11:33:fd:0b:61:ef:ef:fc:7a: 50:32:52:ed:1c:4c:78:6e:59:e4:0f:15:22:21:c7:9a:2c:e2: 6c:e7:f4:5f:01:b3:a4:bc:ea:75:16:5a:60:5c:57:07:d6:10: 72:c5:4d:0e:0c:c1:ab:ac:ab:24:8c:3b:40:16:fb:f5:e7:a8: 9f:90:ce:24:61:72:f9:8e:ed:36:24:de:15:61:cc:27:ef:49: 10:ed:97:19:64:44:cb:ad:f4:31:bc:ea:6f:d3:b6:56:af:d1: 31:14:2b:88:5c:b0:d2:78:e1:6f:07:3c:08:c1:d0:a4:21:a9: c6:56:89:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUwNDI0MTQ0MDE3WhcNMjUwNTAxMTQ0MDE3WjAYMRYwFAYD VQQDEw02ODBhNGQ1Mi1hYTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3ctwapkuM8RI5MT/TxIyiD35c1yykByYEhEXurY86HjOT4HElZd5omAMRvK Mg6eLs6mCYDZUT5bFuM4iFDvWtyorDB1rWtIuPgxXVDhZ9deLDHbeeZEC4oKZkO2 yVSeoSIjXzKXmN9kO9vnm3TmnbuZ0iDxXmhZHVOr8QUACH53DC0R4ABo+EAR/Khi ybWTjQcB9ys3kvD3I/MF7/eNDu9OvE9El8uzytbKLlBBbUB+rGXUobusSBUeJG/q GmWfFaFzhTbwyeaV1Es8Rw/5YSYvLpXs23m9RkZgasI9NnNJ9rvE5pSvRIlB8bux Cu+okGKF53B0EHis7bfSvD9uEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWTcC9/ U0tDov9a4nZVO+ZrfaJXMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa3TWQ9e9kl2WXH+oBVvL3WQYk8SZKNjCEY64a467BtbqJ1dl7ZfEL N/RB0LHKWEANTc42Szq4YoYZ49eebhZEgQ5nuanjgq739XuDZqxcYvVO+DDMtOwd iyaJmqTIVAae5dz/U5ODpy6f5j2SVIgRKbvzMRSM5uqVyel+H10Mnt8tE7OsRtsR M/0LYe/v/HpQMlLtHEx4blnkDxUiIceaLOJs5/RfAbOkvOp1FlpgXFcH1hByxU0O DMGrrKskjDtAFvv156ifkM4kYXL5ju02JN4VYcwn70kQ7ZcZZETLrfQxvOpv07ZW r9ExFCuIXLDSeOFvBzwIwdCkIanGVons -----END CERTIFICATE-----Generated at Sat Apr 26 12:35:51 2025 by rpki-client