$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.mft File: GVL9OFMmo9kd2kXDemIlOWPD9jg.mft (raw, json) Hash identifier: 1+ad4S52Dn0/+nsMcEvuIQWjB8IiUYTHcc2IQxALc8Y= Subject key identifier: D2:42:DF:1C:0E:71:65:3C:69:75:3F:0F:D1:B3:15:EC:F6:0C:32:73 Authority key identifier: 19:52:FD:38:53:26:A3:D9:1D:DA:45:C3:7A:62:25:39:63:C3:F6:38 Certificate issuer: /CN=A91DD00E/serialNumber=1952FD385326A3D91DDA45C37A62253963C3F638 Certificate serial: 1561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVL9OFMmo9kd2kXDemIlOWPD9jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.mft Manifest number: 1558 Signing time: Thu 24 Apr 2025 16:49:01 +0000 Manifest this update: Thu 24 Apr 2025 16:49:01 +0000 Manifest next update: Thu 01 May 2025 16:49:01 +0000 Files and hashes: 1: GVL9OFMmo9kd2kXDemIlOWPD9jg.crl (hash: NRpDx9kmm1DuzlUe5NqcSUkLzvv5rfK8Eh/bgaQiGqc=) 2: 7482AB4A3DC511EB8276EA19C4F9AE02.roa (hash: gEvklT75Gk6RX/nO8dPcZCY87nihSKVb8/0u+SUGEUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.crl rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVL9OFMmo9kd2kXDemIlOWPD9jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5473 (0x1561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD00E, serialNumber=1952FD385326A3D91DDA45C37A62253963C3F638 Validity Not Before: Apr 24 16:49:01 2025 GMT Not After : May 1 16:49:01 2025 GMT Subject: CN=680a6b7d-bb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b6:ba:08:20:0a:e6:f4:f9:81:4e:8d:5d:ad: e6:92:c4:c3:20:ed:cc:8c:6c:ab:7a:25:b2:94:5b: d0:e5:d4:00:84:5a:f6:41:08:be:eb:f8:e9:d6:39: c7:5c:1c:d3:9e:4e:8a:5c:23:67:bf:33:b9:e3:4c: 84:d8:c9:51:34:2d:4f:c7:07:0c:d6:5b:00:c4:5b: c4:8f:b9:65:78:68:4c:1e:cd:f2:f8:ee:f7:e1:5e: 25:ba:5b:b6:25:63:16:5a:bf:4b:7f:ea:ea:92:fc: ca:30:39:f1:9c:9d:cc:7e:d3:5f:e4:0c:99:e4:54: 34:fa:25:99:46:ac:d1:38:70:ff:92:8d:c5:69:9a: 88:18:dd:b5:54:c6:d2:d6:f5:60:d4:57:36:67:76: b4:49:fe:fe:76:14:bb:6b:ea:38:b1:ce:f8:1a:9f: 91:76:65:a7:be:32:52:11:36:6b:7f:be:2f:cf:32: bd:b4:94:f6:9b:6b:88:d4:5c:b3:40:43:08:80:23: 80:0d:71:d6:fc:75:65:e5:16:b6:bc:75:85:e1:db: 36:4d:59:e6:6f:eb:83:f0:3d:dc:68:9a:82:d5:31: 5c:be:58:61:43:4e:02:85:4f:59:58:4a:af:20:42: 22:39:82:15:ff:56:bc:97:3b:6e:28:2d:72:0c:26: 38:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:42:DF:1C:0E:71:65:3C:69:75:3F:0F:D1:B3:15:EC:F6:0C:32:73 X509v3 Authority Key Identifier: keyid:19:52:FD:38:53:26:A3:D9:1D:DA:45:C3:7A:62:25:39:63:C3:F6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVL9OFMmo9kd2kXDemIlOWPD9jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD00E/800E3F7238E311E88977FB0FC4F9AE02/GVL9OFMmo9kd2kXDemIlOWPD9jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:fb:b8:62:a8:e3:11:35:c6:dd:a9:6c:05:d5:90:f5:b6:3d: aa:35:ba:11:3b:5d:14:f2:53:8a:56:c6:84:0c:06:45:28:75: 57:e0:28:4b:25:33:5c:9f:3a:2c:fb:fc:93:38:0f:1e:f3:80: 91:43:fa:26:b5:84:ce:65:bd:bd:e2:14:77:e7:15:c8:d3:f7: bf:61:d7:f4:02:eb:da:43:bc:c0:82:d9:d6:4c:49:20:fb:af: 21:a7:39:0a:ef:57:9a:4a:38:b6:07:31:27:a5:9a:f6:34:c5: 0e:ec:05:2c:7e:1c:71:4f:ea:0f:b8:54:6b:d4:a1:7e:c7:7e: a7:f4:8d:e6:4f:c4:31:fa:ea:0c:3a:4b:51:89:1c:76:71:91: e3:41:32:7f:35:33:7e:f1:03:85:99:c9:12:4a:f0:af:5c:e9: 49:16:57:dc:8d:8e:e4:d8:d9:3e:da:6b:0f:e0:b2:bd:f0:6b: a0:47:e7:dc:20:57:aa:b3:f2:ad:c8:a8:a6:df:78:cf:ba:87: 3e:0a:d9:9a:54:ca:c6:fd:87:15:45:7b:97:83:20:4c:b0:ff: d3:ce:e3:cf:28:a3:4c:7e:73:ac:2f:0f:03:da:8d:7a:1b:bf: 25:32:94:fd:8e:a4:bb:24:5a:b0:6d:15:7c:33:00:32:9a:d3: 8a:39:52:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwMEUxMTAvBgNVBAUTKDE5NTJGRDM4NTMyNkEzRDkxRERBNDVDMzdBNjIyNTM5 NjNDM0Y2MzgwHhcNMjUwNDI0MTY0OTAxWhcNMjUwNTAxMTY0OTAxWjAYMRYwFAYD VQQDEw02ODBhNmI3ZC1iYjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAora6CCAK5vT5gU6NXa3mksTDIO3MjGyreiWylFvQ5dQAhFr2QQi+6/jp1jnH XBzTnk6KXCNnvzO540yE2MlRNC1PxwcM1lsAxFvEj7lleGhMHs3y+O734V4lulu2 JWMWWr9Lf+rqkvzKMDnxnJ3MftNf5AyZ5FQ0+iWZRqzROHD/ko3FaZqIGN21VMbS 1vVg1Fc2Z3a0Sf7+dhS7a+o4sc74Gp+RdmWnvjJSETZrf74vzzK9tJT2m2uI1Fyz QEMIgCOADXHW/HVl5Ra2vHWF4ds2TVnmb+uD8D3caJqC1TFcvlhhQ04ChU9ZWEqv IEIiOYIV/1a8lztuKC1yDCY4pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJC3xwO cWU8aXU/D9GzFez2DDJzMB8GA1UdIwQYMBaAFBlS/ThTJqPZHdpFw3piJTljw/Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDAwRS84MDBFM0Y3MjM4 RTMxMUU4ODk3N0ZCMEZDNEY5QUUwMi9HVkw5T0ZNbW85a2Qya1hEZW1JbE9XUEQ5 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dWTDlPRk1tbzlrZDJrWERlbUlsT1dQRDlqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDAwRS84MDBFM0Y3MjM4RTMxMUU4ODk3N0ZCMEZDNEY5QUUwMi9HVkw5T0ZNbW85 a2Qya1hEZW1JbE9XUEQ5amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw+7hiqOMRNcbdqWwF1ZD1tj2qNboRO10U8lOKVsaEDAZFKHVX4ChL JTNcnzos+/yTOA8e84CRQ/omtYTOZb294hR35xXI0/e/Ydf0AuvaQ7zAgtnWTEkg +68hpzkK71eaSji2BzEnpZr2NMUO7AUsfhxxT+oPuFRr1KF+x36n9I3mT8Qx+uoM OktRiRx2cZHjQTJ/NTN+8QOFmckSSvCvXOlJFlfcjY7k2Nk+2msP4LK98GugR+fc IFeqs/KtyKim33jPuoc+CtmaVMrG/YcVRXuXgyBMsP/TzuPPKKNMfnOsLw8D2o16 G78lMpT9jqS7JFqwbRV8MwAymtOKOVKJ -----END CERTIFICATE-----Generated at Sat Apr 26 14:50:13 2025 by rpki-client