$ rpki-client -vvf rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft File: gkVvIaH33yOGQR-g7REgZPbrw5o.mft (raw, json) Hash identifier: wWcGgZEWUOa34KbBoaqW3xoivZ1HyYGqYwMZxQ5Mldk= Subject key identifier: D0:94:D6:F2:B1:97:E8:3C:05:49:DE:34:E5:C1:0E:B4:DD:C4:27:87 Authority key identifier: 82:45:6F:21:A1:F7:DF:23:86:41:1F:A0:ED:11:20:64:F6:EB:C3:9A Certificate issuer: /CN=A91E94F0/serialNumber=82456F21A1F7DF2386411FA0ED112064F6EBC39A Certificate serial: 03C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft Manifest number: 03BC Signing time: Fri 25 Apr 2025 00:26:18 +0000 Manifest this update: Fri 25 Apr 2025 00:26:17 +0000 Manifest next update: Fri 02 May 2025 00:26:17 +0000 Files and hashes: 1: gkVvIaH33yOGQR-g7REgZPbrw5o.crl (hash: y7ykx3j3jwkpGZ57XWRSjK/PkEHnn/kWPp7GT1xpZx0=) 2: F15E709A880611ECAF18133AC4F9AE02.roa (hash: r+2gczfolioxdOOu1jOVrEWd+Ns5v4HYtipze2KFuFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.crl rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E94F0, serialNumber=82456F21A1F7DF2386411FA0ED112064F6EBC39A Validity Not Before: Apr 25 00:26:17 2025 GMT Not After : May 2 00:26:17 2025 GMT Subject: CN=680ad6a9-7ff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:35:ab:b4:ba:b3:97:f7:b8:7f:3a:84:a5:98: 85:ec:70:79:f0:1c:d2:8b:8f:2e:43:12:a4:b9:f3: f4:d9:e3:53:65:24:1d:2f:d5:4c:ad:6c:a9:09:df: 06:9b:03:43:5b:cd:8e:09:b9:46:23:ec:28:38:4e: ca:a9:f1:21:51:e7:bf:5d:73:0a:f4:43:a4:5c:e2: 53:b3:6b:f7:66:91:00:3e:ec:d4:4d:6c:96:0c:9e: 61:fe:de:20:30:74:fc:f4:e7:8f:e6:f1:ca:4c:c2: bb:7d:60:c4:d6:bf:56:4c:0a:c1:ac:75:86:a1:2e: 22:5e:83:90:4c:42:e5:e4:58:34:cd:13:1b:ae:1d: 72:b9:c8:2e:4c:2b:17:64:a6:65:d5:30:b0:dc:7e: 17:c2:6d:53:a0:56:cd:33:c1:63:8f:48:d6:34:3f: e7:fe:50:97:d7:af:f2:1b:90:fb:ec:3b:36:7c:b2: 79:8c:00:f3:a1:21:a5:2f:dc:b3:d6:0a:f1:81:01: 2c:e3:74:32:23:15:26:80:dc:94:98:28:26:ec:65: 00:7a:f2:66:4b:8e:cc:14:a0:4f:7d:b4:d5:ca:67: 40:6e:35:74:b4:8c:cd:d8:f0:47:84:b9:61:30:ef: f0:36:5a:96:f9:f3:5e:65:0b:7d:c1:4b:90:18:08: 4f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:94:D6:F2:B1:97:E8:3C:05:49:DE:34:E5:C1:0E:B4:DD:C4:27:87 X509v3 Authority Key Identifier: keyid:82:45:6F:21:A1:F7:DF:23:86:41:1F:A0:ED:11:20:64:F6:EB:C3:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gkVvIaH33yOGQR-g7REgZPbrw5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E94F0/E4B1BD38880211ECBF3C1D32C4F9AE02/gkVvIaH33yOGQR-g7REgZPbrw5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e6:f1:5f:b7:88:a7:52:b9:95:55:67:09:31:57:1e:aa:5d: 80:0b:a7:8c:b3:27:e4:6c:71:61:17:ad:18:8f:0e:7b:d0:64: 73:83:4a:72:42:04:3f:c3:ab:4c:70:2c:80:5f:6c:bf:07:d5: 8a:bf:ac:f9:34:94:70:06:52:84:93:09:8c:4d:cc:5a:fc:3b: 40:60:6b:d6:5d:ec:55:8b:0a:e9:e8:04:b6:1f:cf:90:01:93: 6f:36:84:5e:75:4b:5d:e6:2d:15:30:be:c2:d0:0a:2d:e4:fe: 82:0e:48:3c:18:39:b0:8b:34:20:62:4b:bf:0b:60:ae:fa:25: bf:fc:da:76:d0:a8:33:cc:43:5e:92:6a:cc:cc:e4:13:a8:ba: f8:ce:11:81:c1:b1:05:cf:ee:5b:de:2e:1e:07:95:00:66:19: be:0e:93:28:48:67:b7:5c:30:3a:39:b3:50:98:5a:fc:1d:79: 5b:ad:7e:d7:b3:c3:dd:01:fc:cf:75:fa:5d:07:e7:fe:a8:59: f6:70:b0:ee:9d:a6:61:06:b4:19:bd:7f:b9:30:3d:19:99:a9: 1d:67:73:d9:fc:3e:86:c0:41:b8:ab:72:95:54:22:fa:95:fa: ef:27:7d:96:67:31:18:40:bf:89:6f:77:69:e3:46:ab:e9:54: 37:3f:13:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0RjAxMTAvBgNVBAUTKDgyNDU2RjIxQTFGN0RGMjM4NjQxMUZBMEVEMTEyMDY0 RjZFQkMzOUEwHhcNMjUwNDI1MDAyNjE3WhcNMjUwNTAyMDAyNjE3WjAYMRYwFAYD VQQDEw02ODBhZDZhOS03ZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujWrtLqzl/e4fzqEpZiF7HB58BzSi48uQxKkufP02eNTZSQdL9VMrWypCd8G mwNDW82OCblGI+woOE7KqfEhUee/XXMK9EOkXOJTs2v3ZpEAPuzUTWyWDJ5h/t4g MHT89OeP5vHKTMK7fWDE1r9WTArBrHWGoS4iXoOQTELl5Fg0zRMbrh1yucguTCsX ZKZl1TCw3H4Xwm1ToFbNM8Fjj0jWND/n/lCX16/yG5D77Ds2fLJ5jADzoSGlL9yz 1grxgQEs43QyIxUmgNyUmCgm7GUAevJmS47MFKBPfbTVymdAbjV0tIzN2PBHhLlh MO/wNlqW+fNeZQt9wUuQGAhP7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCU1vKx l+g8BUneNOXBDrTdxCeHMB8GA1UdIwQYMBaAFIJFbyGh998jhkEfoO0RIGT268Oa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTRGMC9FNEIxQkQzODg4 MDIxMUVDQkYzQzFEMzJDNEY5QUUwMi9na1Z2SWFIMzN5T0dRUi1nN1JFZ1pQYnJ3 NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2drVnZJYUgzM3lPR1FSLWc3UkVnWlBicnc1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTRGMC9FNEIxQkQzODg4MDIxMUVDQkYzQzFEMzJDNEY5QUUwMi9na1Z2SWFIMzN5 T0dRUi1nN1JFZ1pQYnJ3NW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB05vFft4inUrmVVWcJMVceql2AC6eMsyfkbHFhF60Yjw570GRzg0py QgQ/w6tMcCyAX2y/B9WKv6z5NJRwBlKEkwmMTcxa/DtAYGvWXexViwrp6AS2H8+Q AZNvNoRedUtd5i0VML7C0Aot5P6CDkg8GDmwizQgYku/C2Cu+iW//Np20KgzzENe kmrMzOQTqLr4zhGBwbEFz+5b3i4eB5UAZhm+DpMoSGe3XDA6ObNQmFr8HXlbrX7X s8PdAfzPdfpdB+f+qFn2cLDunaZhBrQZvX+5MD0ZmakdZ3PZ/D6GwEG4q3KVVCL6 lfrvJ32WZzEYQL+Jb3dp40ar6VQ3PxPr -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:53 2025 by rpki-client