$ rpki-client -vvf rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft File: GNdIiJK3LFSvZOLdI4thnIm3LWg.mft (raw, json) Hash identifier: DuxQTUOe+KS222iedzHl0mT83cFYvHukSFH5z8tozCE= Subject key identifier: F6:BC:E0:FC:89:F9:DB:34:C1:71:C7:2F:74:D3:36:E0:14:8F:AC:F6 Authority key identifier: 18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 Certificate issuer: /CN=A91E17BF/serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Certificate serial: 027D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft Manifest number: 0279 Signing time: Fri 25 Apr 2025 01:26:44 +0000 Manifest this update: Fri 25 Apr 2025 01:26:44 +0000 Manifest next update: Fri 02 May 2025 01:26:44 +0000 Files and hashes: 1: GNdIiJK3LFSvZOLdI4thnIm3LWg.crl (hash: 91n9HSTiRZHG5cJU+tFRjNCQpSW05D14ilue/etR2QY=) 2: 83D6FAEE077511EDBD013D37C4F9AE02.roa (hash: kMCJJ8NAnniqHWPJmFXYj+p1oepcYEa7mi3n3n8XfS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E17BF, serialNumber=18D7488892B72C54AF64E2DD238B619C89B72D68 Validity Not Before: Apr 25 01:26:44 2025 GMT Not After : May 2 01:26:44 2025 GMT Subject: CN=680ae4d4-bb72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2f:d6:df:77:28:06:56:4f:6e:4d:78:13:2b: ca:fc:eb:14:3d:21:68:77:de:19:bd:c4:91:ce:67: 9a:aa:e2:1b:00:b1:d7:1d:7c:63:80:c6:8c:13:23: bc:7c:52:dc:83:f1:92:56:73:d0:88:8d:2a:7b:19: a2:72:a1:a6:68:ab:79:5f:1b:b6:57:b1:3b:13:fe: 6f:a5:52:58:3d:45:6d:fc:17:8e:83:f7:7c:e1:9d: 9e:b4:15:79:64:8f:c8:60:1b:df:fe:cb:dd:7b:7b: e4:a7:e2:a8:92:6c:08:7a:03:37:f8:3b:f9:b0:05: 92:d7:8f:01:31:80:33:a0:d3:46:5b:22:3c:db:e6: bc:b6:da:ec:5c:38:e0:37:4b:ed:72:18:c8:79:f1: 4b:a1:6b:d6:20:62:47:23:f1:bc:86:cc:5a:52:f1: 32:8a:3d:ce:2b:27:21:a0:b8:41:40:9b:dc:bc:27: eb:60:b5:ff:3a:cb:82:f5:71:20:82:cf:12:fe:3c: 3b:0f:f7:6f:3d:62:67:96:04:d4:31:ab:83:f5:0b: db:54:67:10:1d:16:a0:95:f4:83:e9:8b:d7:7e:7c: 22:b6:81:19:58:9d:86:90:f6:ae:c9:c4:fe:2b:6c: a8:03:f1:fa:72:5c:09:2e:e9:21:57:71:fe:03:d9: 6f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:BC:E0:FC:89:F9:DB:34:C1:71:C7:2F:74:D3:36:E0:14:8F:AC:F6 X509v3 Authority Key Identifier: keyid:18:D7:48:88:92:B7:2C:54:AF:64:E2:DD:23:8B:61:9C:89:B7:2D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNdIiJK3LFSvZOLdI4thnIm3LWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E17BF/8D0DC096077211ED9EC45A31C4F9AE02/GNdIiJK3LFSvZOLdI4thnIm3LWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:a7:a1:63:85:cc:b8:5e:a7:63:14:e2:f7:46:25:22:92:5b: 48:e2:0d:57:54:c6:a5:4e:94:f4:11:1f:19:3e:1a:15:30:0d: 8e:94:ee:83:68:ea:92:ab:7e:c6:a5:6d:5a:f2:2c:12:be:b0: 06:2e:21:e8:27:7c:7f:42:32:63:de:67:8c:1d:0d:bb:95:35: a3:ec:29:5a:ed:66:bd:f9:70:f3:fb:88:aa:12:94:e6:f4:ae: cf:2b:aa:5e:bf:65:7b:e2:34:35:27:8c:52:de:72:b8:ec:e1: 39:f5:f1:cb:64:6c:30:b3:7f:7b:4e:72:0c:87:f4:5b:1a:6c: bc:f3:c0:1b:b5:a1:01:12:88:ef:67:fb:83:eb:c7:7d:a3:ff: af:5c:10:ee:fd:82:ca:5a:96:2b:23:8d:f6:dc:4b:8f:20:39: 31:58:22:7f:2e:42:0b:d2:bb:e9:26:64:e5:dc:1f:e9:9b:1b: 28:99:c2:d4:f6:ea:c6:1a:d9:6d:04:d1:07:bd:98:b1:df:a0: 9b:2d:66:bc:30:82:00:8f:35:a1:09:58:91:dd:cf:fe:f2:8c: 55:2b:79:41:76:3d:36:53:79:24:bf:38:89:e1:0d:f7:ed:5a: c0:08:d6:fb:1d:7d:48:ad:c3:73:68:76:30:b2:63:ea:c1:4f: ff:bd:89:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3QkYxMTAvBgNVBAUTKDE4RDc0ODg4OTJCNzJDNTRBRjY0RTJERDIzOEI2MTlD ODlCNzJENjgwHhcNMjUwNDI1MDEyNjQ0WhcNMjUwNTAyMDEyNjQ0WjAYMRYwFAYD VQQDEw02ODBhZTRkNC1iYjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAui/W33coBlZPbk14EyvK/OsUPSFod94ZvcSRzmeaquIbALHXHXxjgMaMEyO8 fFLcg/GSVnPQiI0qexmicqGmaKt5Xxu2V7E7E/5vpVJYPUVt/BeOg/d84Z2etBV5 ZI/IYBvf/svde3vkp+KokmwIegM3+Dv5sAWS148BMYAzoNNGWyI82+a8ttrsXDjg N0vtchjIefFLoWvWIGJHI/G8hsxaUvEyij3OKychoLhBQJvcvCfrYLX/OsuC9XEg gs8S/jw7D/dvPWJnlgTUMauD9QvbVGcQHRaglfSD6YvXfnwitoEZWJ2GkPauycT+ K2yoA/H6clwJLukhV3H+A9lvpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPa84PyJ +ds0wXHHL3TTNuAUj6z2MB8GA1UdIwQYMBaAFBjXSIiStyxUr2Ti3SOLYZyJty1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTdCRi84RDBEQzA5NjA3 NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xGU3ZaT0xkSTR0aG5JbTNM V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOZElpSkszTEZTdlpPTGRJNHRobkltM0xXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTdCRi84RDBEQzA5NjA3NzIxMUVEOUVDNDVBMzFDNEY5QUUwMi9HTmRJaUpLM0xG U3ZaT0xkSTR0aG5JbTNMV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMp6Fjhcy4XqdjFOL3RiUikltI4g1XVMalTpT0ER8ZPhoVMA2OlO6D aOqSq37GpW1a8iwSvrAGLiHoJ3x/QjJj3meMHQ27lTWj7Cla7Wa9+XDz+4iqEpTm 9K7PK6pev2V74jQ1J4xS3nK47OE59fHLZGwws397TnIMh/RbGmy888AbtaEBEojv Z/uD68d9o/+vXBDu/YLKWpYrI4323EuPIDkxWCJ/LkIL0rvpJmTl3B/pmxsomcLU 9urGGtltBNEHvZix36CbLWa8MIIAjzWhCViR3c/+8oxVK3lBdj02U3kkvziJ4Q33 7VrACNb7HX1IrcNzaHYwsmPqwU//vYnD -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:31 2025 by rpki-client