$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: CrOq4zlqzMWUBWQfag+tqVIovkteNFP82cEDvM+Fo0I= Subject key identifier: 12:64:CB:8D:43:27:56:17:0D:4F:04:96:7D:E8:75:99:90:D9:C2:8A Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 349C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 3493 Signing time: Sat 14 Jun 2025 14:40:25 +0000 Manifest this update: Sat 14 Jun 2025 14:40:24 +0000 Manifest next update: Sat 21 Jun 2025 14:40:24 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: c/VcOyHbfDEQkozaGmmymSK7Ao4tYxQa9CcEETMg7tI=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13468 (0x349c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Jun 14 14:40:24 2025 GMT Not After : Jun 21 14:40:24 2025 GMT Subject: CN=684d89d8-0c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:11:c6:35:3d:80:19:d4:ea:bf:aa:3f:27:7b: b9:05:85:e8:85:73:76:8c:6d:79:f3:08:7c:dc:04: 3e:1b:3f:a5:37:de:1c:5b:51:14:f4:5a:51:5a:8b: 6e:4b:d2:52:98:f3:e5:31:2e:ee:65:32:88:62:a2: 5e:d0:a3:8e:67:70:90:ab:2d:4a:ed:e1:fb:26:8f: 44:c4:f9:7f:cf:e4:f1:4a:09:20:10:24:f2:cd:98: cb:53:b7:81:80:49:00:e1:1c:63:36:41:eb:83:77: de:31:ed:d3:e2:31:0d:c0:e8:10:5a:c5:cc:94:84: 3a:4d:e7:a6:58:5e:5b:8a:da:df:6b:c4:2b:cb:40: dc:19:41:a2:55:26:6d:4b:9a:c0:6e:63:35:a2:93: d7:fb:8f:6b:5c:af:7d:7b:46:5c:5a:36:cd:7f:fd: 17:97:0f:9c:f1:54:e8:f3:cd:24:2f:d4:e8:5e:f5: 18:44:c2:07:1f:a7:42:92:29:e7:f9:db:c7:24:24: 35:00:7a:ed:27:b4:66:20:3e:e0:86:a4:4e:1c:82: e8:5e:6e:7a:b5:cb:66:b0:4a:47:54:ce:b9:69:a4: 3e:7a:38:c5:a0:a2:7c:ca:5c:b8:61:bc:29:6d:85: 01:3e:ce:bc:99:ce:de:45:0b:e9:f7:5d:da:70:f8: 22:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:64:CB:8D:43:27:56:17:0D:4F:04:96:7D:E8:75:99:90:D9:C2:8A X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:97:03:17:a1:d8:84:87:e8:97:53:f4:e9:08:4a:4b:81:ad: 18:1e:37:c2:e5:90:1d:31:00:ff:be:0e:d5:8d:1c:ab:96:5f: 69:31:15:c8:5e:a8:b6:d1:6b:3c:b3:59:ce:4d:96:33:3b:6a: 98:72:87:dc:45:e6:53:81:91:80:16:b6:c4:88:28:17:8e:17: a0:f6:06:84:4a:cb:4c:0e:e7:d4:3f:8d:ff:bb:3e:64:ac:3f: 48:89:55:a8:67:32:cd:f8:ca:92:2f:8f:3e:44:c5:ef:c4:88: 49:e4:fe:30:04:02:58:9d:b5:71:1f:5f:2c:4a:8d:f5:3c:0d: 89:44:45:45:a5:03:63:ab:45:72:46:3a:8d:69:f7:a7:fa:7b: 58:7c:68:a8:e8:70:8f:ba:0a:ac:0c:56:34:3f:02:ab:5f:46: 06:a0:9a:e8:6d:33:25:16:2e:8c:08:89:4b:00:a6:db:8c:c6: 04:44:c2:2c:1e:b1:63:df:fe:bd:41:ab:8c:5f:92:d5:6b:34: a1:dd:d5:43:91:2c:16:34:8b:ba:4b:38:45:59:55:be:76:9b: 1f:59:b9:2c:ce:f8:c4:62:ee:4c:f3:d3:dd:62:3f:6b:4b:61: ae:6e:b8:be:88:dc:2e:3d:6b:a3:32:61:dd:ac:92:ac:45:51: a2:c4:f2:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUwNjE0MTQ0MDI0WhcNMjUwNjIxMTQ0MDI0WjAYMRYwFAYD VQQDEw02ODRkODlkOC0wYzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBHGNT2AGdTqv6o/J3u5BYXohXN2jG158wh83AQ+Gz+lN94cW1EU9FpRWotu S9JSmPPlMS7uZTKIYqJe0KOOZ3CQqy1K7eH7Jo9ExPl/z+TxSgkgECTyzZjLU7eB gEkA4RxjNkHrg3feMe3T4jENwOgQWsXMlIQ6TeemWF5bitrfa8Qry0DcGUGiVSZt S5rAbmM1opPX+49rXK99e0ZcWjbNf/0Xlw+c8VTo880kL9ToXvUYRMIHH6dCkinn +dvHJCQ1AHrtJ7RmID7ghqROHILoXm56tctmsEpHVM65aaQ+ejjFoKJ8yly4Ybwp bYUBPs68mc7eRQvp913acPgiUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJky41D J1YXDU8Eln3odZmQ2cKKMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWlwMXodiEh+iXU/TpCEpLga0YHjfC5ZAdMQD/vg7VjRyrll9pMRXI Xqi20Ws8s1nOTZYzO2qYcofcReZTgZGAFrbEiCgXjheg9gaESstMDufUP43/uz5k rD9IiVWoZzLN+MqSL48+RMXvxIhJ5P4wBAJYnbVxH18sSo31PA2JREVFpQNjq0Vy RjqNafen+ntYfGio6HCPugqsDFY0PwKrX0YGoJrobTMlFi6MCIlLAKbbjMYERMIs HrFj3/69QauMX5LVazSh3dVDkSwWNIu6SzhFWVW+dpsfWbkszvjEYu5M89PdYj9r S2Gubri+iNwuPWujMmHdrJKsRVGixPIu -----END CERTIFICATE-----Generated at Sat Jun 14 19:25:06 2025 by rpki-client