$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft File: GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft (raw, json) Hash identifier: oGxQW4CRrMu+05mjDfleMUcnh+p2yUDO9HXO9TWTGKc= Subject key identifier: CD:31:F4:94:CE:DD:A7:04:C5:85:74:72:7F:D4:F9:4A:44:79:2F:35 Authority key identifier: 18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A Certificate issuer: /CN=A91F8357/serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft Manifest number: 2D Signing time: Fri 25 Apr 2025 06:40:59 +0000 Manifest this update: Fri 25 Apr 2025 06:40:58 +0000 Manifest next update: Fri 02 May 2025 06:40:58 +0000 Files and hashes: 1: GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl (hash: RmgZT3qR2zR9VTfgT7uXZVvwk/7iHfUof/KOZtWZP/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Validity Not Before: Apr 25 06:40:58 2025 GMT Not After : May 2 06:40:58 2025 GMT Subject: CN=680b2e7b-ccc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a2:9a:48:67:22:f7:be:ee:30:ba:8f:c7:c1: 42:07:af:e2:ab:b8:36:b6:73:23:81:20:d9:34:a8: 29:01:6b:b0:d0:d2:47:63:db:59:58:f2:db:20:c2: 5a:db:21:24:ba:35:20:75:ce:3b:5e:ec:90:b3:b6: 97:81:b4:2a:42:48:f5:71:3e:ac:62:fe:91:a5:eb: d0:53:c7:41:3e:7c:62:f5:c3:cc:36:84:50:a8:d4: c5:f2:02:a0:2f:2e:53:a3:75:b3:b0:81:e4:5b:e0: 3d:6b:dc:5b:6c:82:4e:16:df:9c:4f:0c:81:71:f4: 27:59:84:64:72:85:38:dd:8f:84:98:ab:1f:7d:00: 4d:23:7b:82:a4:22:42:0e:d7:2f:39:57:bb:b7:d7: 17:da:08:35:5d:1d:3a:aa:65:89:dc:8c:4c:45:da: 34:4c:f6:27:a8:79:d3:ec:4c:ea:53:7f:53:48:ea: ba:14:27:5c:7e:90:e2:d2:93:af:fa:19:31:91:32: 38:e2:56:b5:45:8a:da:10:03:c5:7c:1b:0c:49:46: ab:45:db:93:77:47:9c:5c:b9:7b:6a:73:1d:04:55: 16:b4:22:51:60:dd:6a:36:d0:6d:42:90:20:c0:db: cf:55:2c:3d:d8:65:9a:4c:2e:f9:04:02:2a:02:e8: 99:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:31:F4:94:CE:DD:A7:04:C5:85:74:72:7F:D4:F9:4A:44:79:2F:35 X509v3 Authority Key Identifier: keyid:18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:25:2f:c1:62:1e:88:d4:0c:fa:11:2c:03:39:90:64:28:c3: 44:23:58:52:48:12:a9:75:03:56:6b:b0:b6:35:9e:91:e2:21: 47:18:3e:5d:9c:a7:7e:9b:2e:2a:e9:71:b0:b1:0b:3a:aa:62: 88:cc:0d:fc:81:87:3a:fe:66:b7:f6:85:20:38:b8:a0:79:50: fc:eb:1c:36:32:b6:dd:58:f1:62:7a:c3:16:fb:a9:b0:31:7f: 72:d8:59:3b:fa:b2:56:45:76:2c:a4:5b:59:5e:bd:2b:ed:02: 0a:d5:02:0a:63:a5:35:49:ec:b7:27:d6:40:9e:32:49:e5:38: e8:97:49:1b:c9:4f:c3:63:02:9c:57:bb:23:8d:fc:9b:d7:68: 2d:6b:24:e3:51:72:33:3b:d0:e6:48:1c:57:7a:68:45:89:9c: 5d:d4:11:13:09:b2:e0:e7:56:d1:fb:b6:85:48:c2:ff:7d:77: ea:05:22:ed:be:63:e4:e8:c1:34:ab:a2:3f:96:f4:35:9d:d3: ee:4a:6e:ed:ca:ae:30:f3:3d:e8:5f:29:43:d9:a3:38:59:f4: 96:3f:52:78:f1:27:25:f6:fe:d3:85:66:14:77:b5:0a:b5:d3: b2:d3:56:7e:ab:14:84:c9:1f:13:f7:23:db:bf:09:19:d9:03: 0d:bf:e3:3e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMTgwQTM1MjJFMjA1MEM1RjFFMDg3MzUzOUIxMkQ2RDIz MTJBMjAxQTAeFw0yNTA0MjUwNjQwNThaFw0yNTA1MDIwNjQwNThaMBgxFjAUBgNV BAMTDTY4MGIyZTdiLWNjYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxoppIZyL3vu4wuo/HwUIHr+KruDa2cyOBINk0qCkBa7DQ0kdj21lY8tsgwlrb ISS6NSB1zjte7JCztpeBtCpCSPVxPqxi/pGl69BTx0E+fGL1w8w2hFCo1MXyAqAv LlOjdbOwgeRb4D1r3Ftsgk4W35xPDIFx9CdZhGRyhTjdj4SYqx99AE0je4KkIkIO 1y85V7u31xfaCDVdHTqqZYncjExF2jRM9ieoedPsTOpTf1NI6roUJ1x+kOLSk6/6 GTGRMjjiVrVFitoQA8V8GwxJRqtF25N3R5xcuXtqcx0EVRa0IlFg3Wo20G1CkCDA 289VLD3YZZpMLvkEAioC6JlZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzTH0lM7d pwTFhXRyf9T5SkR5LzUwHwYDVR0jBBgwFoAUGAo1IuIFDF8eCHNTmxLW0jEqIBow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzFEQTVDQzU2REY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4ZUNITlRteExXMGpFcUlC by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0FvMUl1SUZERjhlQ0hOVG14TFcwakVxSUJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzFEQTVDQzU2REY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4 ZUNITlRteExXMGpFcUlCby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANElL8FiHojUDPoRLAM5kGQow0QjWFJIEql1A1ZrsLY1npHiIUcYPl2c p36bLirpcbCxCzqqYojMDfyBhzr+Zrf2hSA4uKB5UPzrHDYytt1Y8WJ6wxb7qbAx f3LYWTv6slZFdiykW1levSvtAgrVAgpjpTVJ7Lcn1kCeMknlOOiXSRvJT8NjApxX uyON/JvXaC1rJONRcjM70OZIHFd6aEWJnF3UERMJsuDnVtH7toVIwv99d+oFIu2+ Y+TowTSroj+W9DWd0+5Kbu3KrjDzPehfKUPZozhZ9JY/UnjxJyX2/tOFZhR3tQq1 07LTVn6rFITJHxP3I9u/CRnZAw2/4z4= -----END CERTIFICATE-----Generated at Sat Apr 26 04:26:31 2025 by rpki-client