$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft File: gyJEswLRZc14vcOiErC35vkL_GA.mft (raw, json) Hash identifier: 0LGe/e8VOPk5BuXbVubWu3XcaErFbe+vSTcwNSAAHbw= Subject key identifier: CA:0E:E9:C4:D3:70:13:1D:BF:85:C2:1E:69:6B:31:3C:EA:82:FA:76 Authority key identifier: 83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 Certificate issuer: /CN=A91F5AAD/serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Certificate serial: 063E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft Manifest number: 0636 Signing time: Thu 24 Apr 2025 22:26:44 +0000 Manifest this update: Thu 24 Apr 2025 22:26:44 +0000 Manifest next update: Thu 01 May 2025 22:26:44 +0000 Files and hashes: 1: gyJEswLRZc14vcOiErC35vkL_GA.crl (hash: hDLMQpHZZ6GLzsg6k8qymxjxOcvByVQrLIzPRUX0tZA=) 2: D9A63D2E9D0711EBB708700BC4F9AE02.roa (hash: rIs0TSp/FOVS2yEmJo3gyqgsWO9NpZnz1xIrp85P4OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1598 (0x63e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAD, serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Validity Not Before: Apr 24 22:26:44 2025 GMT Not After : May 1 22:26:44 2025 GMT Subject: CN=680abaa4-f8e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b0:5e:90:88:b9:21:8a:fd:ee:03:04:99:65: 98:3d:07:cc:3a:ba:42:ae:41:d2:c0:0b:15:e5:bd: 42:f5:8f:61:08:f8:40:0e:e4:db:b8:cc:1f:12:e8: ce:a8:58:7f:8f:38:de:5b:50:0f:c8:ae:ef:b6:ee: bc:9c:73:34:e9:c6:80:79:e2:76:c7:5d:cd:ab:f5: ed:d8:5f:63:c8:b5:8c:78:bf:f9:87:f5:65:d7:ba: 40:a0:b9:c9:58:d0:ad:e0:0e:3b:fa:66:57:fc:10: c0:75:64:56:86:6f:66:d3:0d:f7:69:1c:d2:dd:cc: 3a:89:6c:ed:3c:02:d4:6f:a2:af:40:52:03:c8:ec: e9:1d:62:81:c1:2b:a8:8b:9e:15:ee:39:ca:83:c6: 06:ef:15:b7:3c:56:e3:85:4b:f2:b5:02:42:12:af: 88:c2:d1:60:db:c6:bf:ce:26:d4:82:cd:41:b3:23: 61:c4:1e:3c:93:c4:9c:dc:59:0e:69:26:45:c1:32: 8e:8c:cb:0b:92:30:98:79:e9:da:b2:c5:a6:f8:5b: 1f:8c:be:5a:44:9a:15:26:d1:02:37:22:d9:5b:62: d2:be:19:dc:db:85:0a:96:b3:fa:c3:b7:af:96:ba: 70:9a:61:37:a2:fd:14:b8:d6:25:ef:6e:92:b6:eb: 3c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0E:E9:C4:D3:70:13:1D:BF:85:C2:1E:69:6B:31:3C:EA:82:FA:76 X509v3 Authority Key Identifier: keyid:83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:d2:45:e6:43:fb:68:43:35:c4:16:55:cd:2d:cf:d2:f7:78: 2a:8c:84:6e:e6:0a:97:a1:96:26:62:c6:f3:1a:4d:8c:af:f1: 48:a4:f6:56:70:78:b0:6a:96:b7:48:bb:48:41:6d:c4:a6:e9: 83:56:50:b0:e9:1a:e4:45:9e:36:b8:fb:ef:16:ad:8f:80:a4: b5:89:4b:49:e7:01:c5:6c:5d:35:ac:3d:c4:3d:ac:2b:81:b8: 18:8d:49:79:d0:4b:0a:82:fe:ac:7c:ae:2b:73:2b:6c:a8:94: 3c:bf:a5:61:88:fb:44:d6:86:4f:be:cc:a4:78:a3:5b:68:31: 17:03:36:f6:04:49:66:35:51:c9:30:d8:4f:46:10:71:93:12: 06:9e:ce:63:12:57:5f:20:27:43:db:a9:8a:26:d0:6f:d5:ee: ba:ce:84:99:65:56:f6:80:8a:47:e4:b2:6e:1a:ed:63:e7:f3: 4f:ca:29:32:1a:f4:41:2d:17:8c:da:25:61:51:f8:1c:99:a3: 12:bc:bc:8b:a2:c4:82:da:0b:aa:ca:f6:d5:b9:78:27:31:9e: a0:29:b8:73:4a:3f:da:57:07:fd:75:f6:66:d0:5d:bc:d8:a4: 49:dd:17:fe:51:2c:15:6b:6c:73:2e:6c:95:ea:d6:bc:90:47: 7f:89:62:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUQxMTAvBgNVBAUTKDgzMjI0NEIzMDJEMTY1Q0Q3OEJEQzNBMjEyQjBCN0U2 RjkwQkZDNjAwHhcNMjUwNDI0MjIyNjQ0WhcNMjUwNTAxMjIyNjQ0WjAYMRYwFAYD VQQDEw02ODBhYmFhNC1mOGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rBekIi5IYr97gMEmWWYPQfMOrpCrkHSwAsV5b1C9Y9hCPhADuTbuMwfEujO qFh/jzjeW1APyK7vtu68nHM06caAeeJ2x13Nq/Xt2F9jyLWMeL/5h/Vl17pAoLnJ WNCt4A47+mZX/BDAdWRWhm9m0w33aRzS3cw6iWztPALUb6KvQFIDyOzpHWKBwSuo i54V7jnKg8YG7xW3PFbjhUvytQJCEq+IwtFg28a/zibUgs1BsyNhxB48k8Sc3FkO aSZFwTKOjMsLkjCYeenassWm+FsfjL5aRJoVJtECNyLZW2LSvhnc24UKlrP6w7ev lrpwmmE3ov0UuNYl726Stus8NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoO6cTT cBMdv4XCHmlrMTzqgvp2MB8GA1UdIwQYMBaAFIMiRLMC0WXNeL3DohKwt+b5C/xg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBRC80QjY1MDY1ODhE RTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpjMTR2Y09pRXJDMzV2a0xf R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5SkVzd0xSWmMxNHZjT2lFckMzNXZrTF9HQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBRC80QjY1MDY1ODhERTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpj MTR2Y09pRXJDMzV2a0xfR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL0kXmQ/toQzXEFlXNLc/S93gqjIRu5gqXoZYmYsbzGk2Mr/FIpPZW cHiwapa3SLtIQW3EpumDVlCw6RrkRZ42uPvvFq2PgKS1iUtJ5wHFbF01rD3EPawr gbgYjUl50EsKgv6sfK4rcytsqJQ8v6VhiPtE1oZPvsykeKNbaDEXAzb2BElmNVHJ MNhPRhBxkxIGns5jEldfICdD26mKJtBv1e66zoSZZVb2gIpH5LJuGu1j5/NPyiky GvRBLReM2iVhUfgcmaMSvLyLosSC2guqyvbVuXgnMZ6gKbhzSj/aVwf9dfZm0F28 2KRJ3Rf+USwVa2xzLmyV6ta8kEd/iWLd -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:49 2025 by rpki-client