$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft File: gUM6Y8LXXQAyVSxCbENTPsrINRU.mft (raw, json) Hash identifier: wf3nEYOLLuNka9LeRVKYkbcqAyqOk89QueHflWAmyMI= Subject key identifier: 09:9B:1A:B2:15:3C:8F:1C:AF:7F:77:94:A0:31:D1:51:81:6F:13:EF Authority key identifier: 81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 Certificate issuer: /CN=A91F1AF5/serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Certificate serial: 0710 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft Manifest number: 070B Signing time: Thu 24 Apr 2025 21:41:41 +0000 Manifest this update: Thu 24 Apr 2025 21:41:41 +0000 Manifest next update: Thu 01 May 2025 21:41:41 +0000 Files and hashes: 1: gUM6Y8LXXQAyVSxCbENTPsrINRU.crl (hash: XgFBX7QUjWRX108/1YBpBVHmRXIp/A2Zr1OBRrmyM+U=) 2: DDFEB10C385E11EB8E85F467C4F9AE02.roa (hash: vYc0h4qvjuE88FDf7yqk3rmrIjWt9VABoOzgwIDoM5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1808 (0x710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1AF5, serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Validity Not Before: Apr 24 21:41:41 2025 GMT Not After : May 1 21:41:41 2025 GMT Subject: CN=680ab015-03ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a1:33:e3:51:91:37:99:cd:65:8c:bb:ef:8c: 3a:6d:77:9b:27:25:00:6f:2c:7d:4c:2b:be:cd:52: 9a:6e:48:35:f6:9c:3f:ca:28:f7:64:d4:aa:c8:06: 33:88:9f:4c:38:db:72:fc:a2:27:36:ac:83:e9:7e: 11:d5:e9:f2:70:94:bd:0c:bd:e2:67:4a:37:17:55: 9c:aa:54:ae:96:a0:5a:46:a8:9d:a8:ff:87:72:90: 26:a9:e1:a5:07:01:ce:ea:e2:13:20:b6:58:45:e3: e0:a2:1c:bc:27:2c:ec:43:67:ef:05:a0:35:39:d0: 04:cc:e6:dc:2b:ec:0f:a5:64:fd:5a:70:a1:92:eb: 9a:c9:7b:28:61:fb:f2:39:5b:91:4b:31:8d:2f:ed: 83:37:37:b9:78:c7:d0:1c:fa:fe:4c:9e:4a:52:49: b5:fc:68:08:2c:e7:99:15:34:51:11:e5:da:46:75: f9:2d:31:43:2d:b5:37:cc:e3:fc:c9:86:bd:b7:ff: 98:64:0d:03:77:48:af:15:dd:51:c9:a3:c1:88:7b: 11:4e:2d:c3:6e:18:18:b8:3b:77:7f:59:62:7f:14: a9:fa:ff:6f:7b:64:d0:b2:31:8b:47:ff:a5:87:96: 45:ff:9d:a8:12:53:f8:a9:51:fb:0f:61:ee:2f:4c: 4b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9B:1A:B2:15:3C:8F:1C:AF:7F:77:94:A0:31:D1:51:81:6F:13:EF X509v3 Authority Key Identifier: keyid:81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:24:e0:b1:ae:96:43:25:a2:65:bd:57:ee:e0:5d:9d:04:07: bd:0e:41:a2:58:f4:4c:f5:1f:09:b5:b0:82:85:c4:1c:21:69: 90:94:2e:ce:30:85:96:c8:aa:89:4c:6e:a8:f9:90:18:a4:aa: 04:4e:5b:32:de:2c:f5:89:d8:c4:fc:e8:41:06:14:7c:62:f1: 11:db:f8:28:2a:ec:17:f2:20:a5:ce:61:e0:f4:d1:3a:cd:b3: 13:ff:a5:11:6e:8f:5a:a8:e6:f0:4a:15:57:35:f3:9c:6e:27: 97:31:f9:9d:b2:72:63:03:f3:e4:e3:56:8e:d6:a6:28:61:27: 97:37:3a:60:b0:09:3e:3c:8e:61:5c:87:8e:0c:a4:a2:46:0e: 2c:2f:40:56:2d:2e:a8:b9:77:de:73:23:e4:f0:cb:2a:fd:1a: bf:97:77:86:a9:f1:ab:c3:0f:87:e8:c3:8f:28:34:0c:bc:5f: 50:59:d6:25:9b:db:4e:5a:1c:4b:c4:5e:3e:84:a3:d1:6f:7e: 07:2b:e0:e0:1b:8f:fb:65:9f:1e:0f:20:db:c3:b5:35:0d:1a: 77:3e:04:2d:fc:29:0a:c8:2e:80:ad:35:ec:60:ea:04:75:34: 0a:76:98:dc:c1:72:9b:e3:98:f5:fe:7b:73:d7:99:f2:8d:2a: 0a:88:a3:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFBRjUxMTAvBgNVBAUTKDgxNDMzQTYzQzJENzVEMDAzMjU1MkM0MjZDNDM1MzNF Q0FDODM1MTUwHhcNMjUwNDI0MjE0MTQxWhcNMjUwNTAxMjE0MTQxWjAYMRYwFAYD VQQDEw02ODBhYjAxNS0wM2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6Ez41GRN5nNZYy774w6bXebJyUAbyx9TCu+zVKabkg19pw/yij3ZNSqyAYz iJ9MONty/KInNqyD6X4R1enycJS9DL3iZ0o3F1WcqlSulqBaRqidqP+HcpAmqeGl BwHO6uITILZYRePgohy8JyzsQ2fvBaA1OdAEzObcK+wPpWT9WnChkuuayXsoYfvy OVuRSzGNL+2DNze5eMfQHPr+TJ5KUkm1/GgILOeZFTRREeXaRnX5LTFDLbU3zOP8 yYa9t/+YZA0Dd0ivFd1RyaPBiHsRTi3DbhgYuDt3f1lifxSp+v9ve2TQsjGLR/+l h5ZF/52oElP4qVH7D2HuL0xL5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmbGrIV PI8cr393lKAx0VGBbxPvMB8GA1UdIwQYMBaAFIFDOmPC110AMlUsQmxDUz7KyDUV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUFGNS8xNTEwRkI1QzM4 NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhRQXlWU3hDYkVOVFBzcklO UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dVTTZZOExYWFFBeVZTeENiRU5UUHNySU5SVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUFGNS8xNTEwRkI1QzM4NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhR QXlWU3hDYkVOVFBzcklOUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTJOCxrpZDJaJlvVfu4F2dBAe9DkGiWPRM9R8JtbCChcQcIWmQlC7O MIWWyKqJTG6o+ZAYpKoETlsy3iz1idjE/OhBBhR8YvER2/goKuwX8iClzmHg9NE6 zbMT/6URbo9aqObwShVXNfOcbieXMfmdsnJjA/Pk41aO1qYoYSeXNzpgsAk+PI5h XIeODKSiRg4sL0BWLS6ouXfecyPk8Msq/Rq/l3eGqfGrww+H6MOPKDQMvF9QWdYl m9tOWhxLxF4+hKPRb34HK+DgG4/7ZZ8eDyDbw7U1DRp3PgQt/CkKyC6ArTXsYOoE dTQKdpjcwXKb45j1/ntz15nyjSoKiKPj -----END CERTIFICATE-----Generated at Sat Apr 26 04:32:18 2025 by rpki-client