$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft File: GSl33aoJW0B37g12I4Rj8bb0Cu4.mft (raw, json) Hash identifier: H0Fab7KD0e9Twaq2n9rRGYr/JplBr0X8nkVf/a/1wX0= Subject key identifier: AA:7A:D4:37:7F:EB:89:0B:26:0A:EA:AC:A6:DF:03:BF:70:9E:EC:86 Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 03AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft Manifest number: 03A2 Signing time: Fri 25 Apr 2025 00:31:09 +0000 Manifest this update: Fri 25 Apr 2025 00:31:09 +0000 Manifest next update: Fri 02 May 2025 00:31:09 +0000 Files and hashes: 1: GSl33aoJW0B37g12I4Rj8bb0Cu4.crl (hash: efyMmSBVfsSRZi60u4LvcUkyS8bv5R0uDkPuJKsTeqI=) 2: AEFCCA501F5A11F0BA7E6961C4F9AE02.roa (hash: oAqMSF81/AVYaU8nGd+cBMsrnw20XyD/T/zdIoEB4NE=) 3: 9FC8CE38936E11EC92AF8421C4F9AE02.roa (hash: uVo2rPhsS7W1KbzxX340wlAGRoyErXUypsSK5B5R8HQ=) 4: AFDE92321F5A11F0BA7E6961C4F9AE02.roa (hash: S2zfaKcticTwAxwJXdMxgXbdbp4SN51y6QSWO83OIuc=) 5: AF6BB6C21F5A11F0BA7E6961C4F9AE02.roa (hash: 7DU3GXxB2biRDfFfxqVKJQEvwzXZf1dP2MF5wRULxe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 939 (0x3ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9, serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Apr 25 00:31:09 2025 GMT Not After : May 2 00:31:09 2025 GMT Subject: CN=680ad7cd-c9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b9:f5:33:14:eb:10:a3:f3:d6:45:73:6c:71: e6:e9:56:82:a3:19:b9:a6:0e:de:67:36:5b:71:3d: 57:4b:88:89:c8:ab:7b:11:d3:65:05:a9:e9:5f:6b: af:a0:9f:4b:44:cf:56:26:cb:df:6d:2d:85:56:6b: b4:fe:ad:4b:12:94:5b:7a:53:47:5f:ef:06:4e:2e: d1:97:23:65:30:b2:28:7f:1d:c4:24:a1:0f:86:09: 74:32:2f:33:3b:87:05:3f:b3:d9:59:e7:94:78:2b: d7:f2:e5:f4:b2:22:48:63:c9:5c:37:bc:de:30:ee: de:3f:6f:92:80:31:0d:54:44:3f:0e:4f:13:4e:db: 77:80:97:31:72:69:b9:30:d7:bf:39:a0:1e:12:63: 91:41:9f:72:6b:e9:04:be:25:0b:46:94:9f:08:b5: d0:b5:fd:b6:3c:96:90:b9:fb:4b:73:54:06:b7:69: 87:21:22:5d:6e:7d:4d:aa:c2:36:24:7d:4c:ec:9a: 06:eb:6a:a2:35:8a:25:8c:46:75:db:0a:dd:ec:bc: bf:fd:79:7d:bb:21:d4:89:dc:4c:32:7e:4f:a3:cb: 17:77:65:4c:17:55:14:a5:a2:2f:6f:a6:24:5a:76: df:db:3e:24:4e:54:5e:3c:5a:a1:d8:da:ba:13:6b: 2d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7A:D4:37:7F:EB:89:0B:26:0A:EA:AC:A6:DF:03:BF:70:9E:EC:86 X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:f5:fd:ef:53:f6:d3:85:61:22:af:10:b2:ec:ef:62:06:b3: d2:cc:0b:16:5d:e6:aa:2e:d2:ce:56:44:b4:03:3f:70:66:1e: c4:1e:e5:fc:f8:a0:44:06:82:f3:1f:bc:3b:5d:2d:cd:c5:68: 74:57:db:82:b7:49:55:e0:f0:e1:10:2f:7c:d7:31:05:e9:f5: b1:16:55:df:27:1c:3c:52:b7:eb:33:b7:ce:86:78:d6:09:c5: e7:c9:49:35:ee:88:f3:8a:46:e2:3f:b7:74:54:64:1e:bc:8e: 32:c2:9a:0c:fd:19:bc:77:2e:72:97:fa:18:01:6a:c8:8d:14: 34:c5:60:2f:ac:b9:cf:3d:d0:34:fa:8b:a0:eb:a1:12:b9:7f: 09:cb:31:11:58:42:34:dc:53:4b:5f:6e:8c:58:37:1a:ff:5b: 36:31:5a:a3:b8:5c:6e:bb:06:d6:cf:54:59:05:e6:70:33:47: c4:4c:36:6c:db:be:05:67:8a:da:91:66:e7:f3:3c:10:49:f6: 60:0c:6b:5e:2d:6c:89:7f:28:d1:25:32:10:b5:bd:ed:1d:75: a1:c0:7b:16:a9:10:34:f3:6f:53:71:4d:00:9f:ac:61:d3:70: ff:e9:a3:9c:78:ba:e3:24:d4:7b:2e:f4:88:01:07:f7:f3:27: 54:96:29:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjUwNDI1MDAzMTA5WhcNMjUwNTAyMDAzMTA5WjAYMRYwFAYD VQQDEw02ODBhZDdjZC1jOWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrn1MxTrEKPz1kVzbHHm6VaCoxm5pg7eZzZbcT1XS4iJyKt7EdNlBanpX2uv oJ9LRM9WJsvfbS2FVmu0/q1LEpRbelNHX+8GTi7RlyNlMLIofx3EJKEPhgl0Mi8z O4cFP7PZWeeUeCvX8uX0siJIY8lcN7zeMO7eP2+SgDENVEQ/Dk8TTtt3gJcxcmm5 MNe/OaAeEmORQZ9ya+kEviULRpSfCLXQtf22PJaQuftLc1QGt2mHISJdbn1NqsI2 JH1M7JoG62qiNYoljEZ12wrd7Ly//Xl9uyHUidxMMn5Po8sXd2VMF1UUpaIvb6Yk Wnbf2z4kTlRePFqh2Nq6E2stHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKp61Dd/ 64kLJgrqrKbfA79wnuyGMB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NThDOS80MEUwQzBFRTkzNkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcw QjM3ZzEySTRSajhiYjBDdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx9f3vU/bThWEirxCy7O9iBrPSzAsWXeaqLtLOVkS0Az9wZh7EHuX8 +KBEBoLzH7w7XS3NxWh0V9uCt0lV4PDhEC981zEF6fWxFlXfJxw8UrfrM7fOhnjW CcXnyUk17ojzikbiP7d0VGQevI4ywpoM/Rm8dy5yl/oYAWrIjRQ0xWAvrLnPPdA0 +oug66ESuX8JyzERWEI03FNLX26MWDca/1s2MVqjuFxuuwbWz1RZBeZwM0fETDZs 274FZ4rakWbn8zwQSfZgDGteLWyJfyjRJTIQtb3tHXWhwHsWqRA0829TcU0An6xh 03D/6aOceLrjJNR7LvSIAQf38ydUlilv -----END CERTIFICATE-----Generated at Sat Apr 26 12:34:00 2025 by rpki-client