$ rpki-client -vvf rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft File: GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft (raw, json) Hash identifier: 9vNiAvS6qlwgeSjuGOPtlCjpR0UBzYQZnEvXCfELgOA= Subject key identifier: C2:A1:41:37:DA:46:9D:BE:F2:67:36:1C:E9:A8:55:95:60:9C:6B:69 Authority key identifier: 19:48:CC:14:F3:0E:D8:3C:AA:52:C8:EC:4B:08:C4:4C:A8:3A:62:9E Certificate issuer: /CN=A917C615/serialNumber=1948CC14F30ED83CAA52C8EC4B08C44CA83A629E Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUjMFPMO2DyqUsjsSwjETKg6Yp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft Manifest number: 0C3E Signing time: Wed 02 Apr 2025 18:24:42 +0000 Manifest this update: Wed 02 Apr 2025 18:24:41 +0000 Manifest next update: Wed 09 Apr 2025 18:24:41 +0000 Files and hashes: 1: GUjMFPMO2DyqUsjsSwjETKg6Yp4.crl (hash: gTIKhusqQ7lFGqJhUbjphUKjMktwrqTEwBZ5+i5Robs=) 2: 9A19DA76006E11EAA4A23169C4F9AE02.roa (hash: xXy4YLIIWobgpWskblv4qsKYOQzH1cx/NBVAIabfj3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.crl rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUjMFPMO2DyqUsjsSwjETKg6Yp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 18:24:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C615 Validity Not Before: Apr 2 18:24:41 2025 GMT Not After : Apr 9 18:24:41 2025 GMT Subject: CN=67ed80ea-dbab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d0:9d:e6:8d:3f:d5:04:17:ea:69:f0:b7:05: b1:36:22:14:56:17:db:e4:31:ae:bc:4b:85:82:6b: 86:6c:fa:ba:db:11:68:7c:14:4f:dc:15:d8:64:90: 99:96:0f:82:51:3d:8b:53:3b:c9:f8:e6:b9:50:14: 46:c4:79:5f:98:c6:05:84:bc:cf:14:6b:43:4b:c2: 01:5b:e3:e0:a9:86:bc:11:6f:31:ee:54:4f:6a:0e: a4:8d:cc:a1:e1:cc:ca:74:75:23:ba:d5:ff:1c:6a: 46:7d:9b:41:6c:ae:07:a7:a4:02:52:84:10:96:fc: 4d:f1:6e:21:ca:4d:93:78:91:c3:50:01:5a:b3:ea: fb:4a:93:1e:ef:8a:bf:95:c5:21:f0:7e:fc:4d:98: cc:1a:9d:0d:aa:31:9d:aa:e1:cb:35:b9:49:c3:19: c2:01:1f:6b:74:ec:ad:e4:b3:16:26:77:9e:8d:3f: 7d:e3:90:52:b8:48:0e:81:b3:47:25:8d:9d:d3:a8: b4:b7:9f:b0:d0:bc:8e:c3:2e:d9:17:c4:1a:6b:d1: d4:20:a5:6c:17:fc:a4:0f:08:29:23:f8:c4:90:e9: 3d:0c:3d:8a:cf:9d:49:f5:8e:ed:3a:1c:82:fd:4d: 89:0f:f6:34:16:3e:c2:b8:05:36:d1:03:ab:c3:d3: e7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A1:41:37:DA:46:9D:BE:F2:67:36:1C:E9:A8:55:95:60:9C:6B:69 X509v3 Authority Key Identifier: keyid:19:48:CC:14:F3:0E:D8:3C:AA:52:C8:EC:4B:08:C4:4C:A8:3A:62:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GUjMFPMO2DyqUsjsSwjETKg6Yp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C615/4200C9E6006C11EAA363C264C4F9AE02/GUjMFPMO2DyqUsjsSwjETKg6Yp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:5e:1b:4d:8d:ef:eb:df:46:8f:72:60:12:1d:9c:17:a2:09: 73:35:85:e7:9f:df:70:bb:02:c5:31:2e:2b:ab:23:f9:25:82: a1:52:e9:ff:1b:39:5e:34:06:7c:a9:b0:b1:54:a8:ba:2c:2e: 73:5b:d4:6d:ff:33:6a:97:4e:85:e3:1b:ab:fc:d6:ec:b9:c7: 6b:47:ec:c6:55:ac:ab:8c:d8:8a:00:e2:0f:74:31:38:0e:db: 8e:c1:07:1f:6f:07:26:66:90:9e:1c:d5:58:d2:a2:30:de:01: cb:d3:80:47:50:cc:18:49:59:48:5e:db:33:b6:12:a9:00:29: 08:d2:d7:4e:b9:6f:4e:0a:55:38:bd:c1:31:c0:ab:22:37:91: ee:d6:5f:3e:07:48:02:fb:be:cf:36:6e:c1:38:6b:e7:34:3b: b3:97:95:26:db:45:fe:78:55:09:4b:15:08:86:f0:87:88:1d: db:0d:5a:80:47:e8:69:f8:40:cb:43:bd:ff:63:af:f7:09:2e: ca:68:92:62:4c:94:80:fe:79:da:c8:74:7b:72:93:59:69:27: 14:dc:d6:19:39:ee:67:95:85:c5:fa:a7:5d:ab:9c:ad:82:13: d7:a0:3b:8e:ab:fd:ef:ab:7b:00:ad:ff:60:eb:5f:f0:56:4c: 17:41:7e:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2MTUxMTAvBgNVBAUTKDE5NDhDQzE0RjMwRUQ4M0NBQTUyQzhFQzRCMDhDNDRD QTgzQTYyOUUwHhcNMjUwNDAyMTgyNDQxWhcNMjUwNDA5MTgyNDQxWjAYMRYwFAYD VQQDEw02N2VkODBlYS1kYmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNCd5o0/1QQX6mnwtwWxNiIUVhfb5DGuvEuFgmuGbPq62xFofBRP3BXYZJCZ lg+CUT2LUzvJ+Oa5UBRGxHlfmMYFhLzPFGtDS8IBW+PgqYa8EW8x7lRPag6kjcyh 4czKdHUjutX/HGpGfZtBbK4Hp6QCUoQQlvxN8W4hyk2TeJHDUAFas+r7SpMe74q/ lcUh8H78TZjMGp0NqjGdquHLNblJwxnCAR9rdOyt5LMWJneejT9945BSuEgOgbNH JY2d06i0t5+w0LyOwy7ZF8Qaa9HUIKVsF/ykDwgpI/jEkOk9DD2Kz51J9Y7tOhyC /U2JD/Y0Fj7CuAU20QOrw9PnjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKhQTfa Rp2+8mc2HOmoVZVgnGtpMB8GA1UdIwQYMBaAFBlIzBTzDtg8qlLI7EsIxEyoOmKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzYxNS80MjAwQzlFNjAw NkMxMUVBQTM2M0MyNjRDNEY5QUUwMi9HVWpNRlBNTzJEeXFVc2pzU3dqRVRLZzZZ cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dVak1GUE1PMkR5cVVzanNTd2pFVEtnNllwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzYxNS80MjAwQzlFNjAwNkMxMUVBQTM2M0MyNjRDNEY5QUUwMi9HVWpNRlBNTzJE eXFVc2pzU3dqRVRLZzZZcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKXhtNje/r30aPcmASHZwXoglzNYXnn99wuwLFMS4rqyP5JYKhUun/ GzleNAZ8qbCxVKi6LC5zW9Rt/zNql06F4xur/NbsucdrR+zGVayrjNiKAOIPdDE4 DtuOwQcfbwcmZpCeHNVY0qIw3gHL04BHUMwYSVlIXtszthKpACkI0tdOuW9OClU4 vcExwKsiN5Hu1l8+B0gC+77PNm7BOGvnNDuzl5Um20X+eFUJSxUIhvCHiB3bDVqA R+hp+EDLQ73/Y6/3CS7KaJJiTJSA/nnayHR7cpNZaScU3NYZOe5nlYXF+qddq5yt ghPXoDuOq/3vq3sArf9g61/wVkwXQX77 -----END CERTIFICATE-----Generated at Fri Apr 4 18:32:02 2025 by rpki-client