$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft File: GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json) Hash identifier: HUCpzOeGuhhxLMDEIJf6tQTqXxjVYyO2mwPLGnT2FQs= Subject key identifier: 36:CC:BD:B1:18:71:4E:E2:07:9D:05:1D:64:3F:10:B3:BA:52:78:29 Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C Certificate issuer: /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Certificate serial: 0426 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft Manifest number: 0422 Signing time: Sat 29 Mar 2025 00:37:42 +0000 Manifest this update: Sat 29 Mar 2025 00:37:41 +0000 Manifest next update: Sat 05 Apr 2025 00:37:41 +0000 Files and hashes: 1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: X588z0ST0KsPF2SK+NOIRRMiZwk0Lpw0THR5sUwjDqc=) 2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: Y2D4bZVCWRU0pKNmh7gUDg+LE8MSxtojGL7g4PBL1wE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09DE Validity Not Before: Mar 29 00:37:41 2025 GMT Not After : Apr 5 00:37:41 2025 GMT Subject: CN=67e740d6-fdad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:81:60:d5:fa:8f:06:37:94:0c:94:bb:cc:39: 7e:2b:1f:74:75:e2:27:a0:c5:15:cf:b8:0e:c7:e1: 37:04:68:62:a8:d4:fc:a5:2f:6c:78:dd:3f:10:25: a1:b5:b4:30:ed:39:e5:33:b9:3a:18:9a:c0:b2:22: ff:df:d9:94:ac:14:4a:70:25:cc:70:f3:8e:cc:59: 8e:13:50:ea:d2:bc:10:6c:06:0b:36:c4:02:ad:1c: aa:d1:7e:d7:ce:e1:a2:8c:d9:0f:c2:6a:9f:d0:70: 23:81:36:85:e0:ea:ff:86:96:29:f3:88:a1:e6:62: 3a:74:b8:11:31:09:dd:e7:74:a0:ae:7e:44:9a:0d: b0:79:65:b5:95:ef:a4:c5:e0:94:1b:3c:50:04:67: 87:5e:d3:65:40:c5:82:08:b2:39:bc:ab:8a:82:c0: 8d:38:cf:04:14:91:a6:c6:e2:ef:14:e1:71:15:de: c8:0a:f1:ec:37:78:19:35:2b:21:70:95:d1:fd:95: 91:e5:f5:3c:14:f2:dd:5d:1e:5d:c2:4a:d9:62:65: c1:58:fb:ba:3f:fb:96:6e:da:35:25:e8:ee:ed:fa: b8:e0:ad:b1:c4:e4:8d:0c:4c:85:07:82:41:39:26: 31:12:aa:6f:6f:ad:4d:b9:eb:1a:02:54:ae:43:38: 79:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:CC:BD:B1:18:71:4E:E2:07:9D:05:1D:64:3F:10:B3:BA:52:78:29 X509v3 Authority Key Identifier: keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:0b:ab:43:d8:f6:9d:2f:ad:0a:c8:ef:2c:72:ca:e9:8e:20: a3:15:e3:63:e8:60:6b:4a:34:9c:14:b4:12:79:aa:3e:c8:e9: e8:02:a8:42:af:12:29:64:48:57:0e:f0:68:f2:05:a7:cf:12: 00:07:52:46:05:f1:29:4d:fe:98:86:af:a0:b9:45:29:d7:72: 88:c4:a5:80:da:9d:35:0b:46:f1:a5:dd:91:c7:5c:f2:71:2b: 41:3e:07:5b:5c:9f:b3:4e:3c:11:d0:90:cb:01:c2:ed:d4:23: 31:a2:84:c8:88:7d:23:66:78:78:4c:19:9a:7e:e1:9a:a7:6d: ba:48:c1:a2:8e:80:06:70:0b:f4:d8:c8:ff:fb:ff:52:10:d7: d9:05:0f:94:4e:6c:3b:be:b5:b7:ca:92:1e:bb:aa:93:e4:d8: 80:a9:f3:9e:69:7a:ac:90:bd:00:3e:b0:a5:26:20:45:16:b4: 0f:91:d5:e8:89:6c:c9:32:f7:a4:cd:e4:43:98:22:e6:fc:18: 76:6f:02:9b:45:d0:bf:6c:6a:79:d0:e1:b8:bf:98:70:15:15: b7:b2:f5:40:f7:31:66:16:62:44:9e:60:38:89:06:8c:65:94: 49:ac:3d:89:d5:64:8d:96:d2:98:00:b6:10:83:51:82:05:5e: da:7f:42:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5REUxMTAvBgNVBAUTKDE4Mzk4OEZDMERFRTlEQkI4MTExNUU4MkJGREM5NTQx MjU2MTQxM0MwHhcNMjUwMzI5MDAzNzQxWhcNMjUwNDA1MDAzNzQxWjAYMRYwFAYD VQQDEw02N2U3NDBkNi1mZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIFg1fqPBjeUDJS7zDl+Kx90deInoMUVz7gOx+E3BGhiqNT8pS9seN0/ECWh tbQw7TnlM7k6GJrAsiL/39mUrBRKcCXMcPOOzFmOE1Dq0rwQbAYLNsQCrRyq0X7X zuGijNkPwmqf0HAjgTaF4Or/hpYp84ih5mI6dLgRMQnd53Sgrn5Emg2weWW1le+k xeCUGzxQBGeHXtNlQMWCCLI5vKuKgsCNOM8EFJGmxuLvFOFxFd7ICvHsN3gZNSsh cJXR/ZWR5fU8FPLdXR5dwkrZYmXBWPu6P/uWbto1Jeju7fq44K2xxOSNDEyFB4JB OSYxEqpvb61NuesaAlSuQzh5cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbMvbEY cU7iB50FHWQ/ELO6UngpMB8GA1UdIwQYMBaAFBg5iPwN7p27gRFegr/clUElYUE8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlERS84QjMyMDc1QzU5 N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5idUJFVjZDdjl5VlFTVmhR VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dEbUlfQTN1bmJ1QkVWNkN2OXlWUVNWaFFUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlERS84QjMyMDc1QzU5N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5i dUJFVjZDdjl5VlFTVmhRVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOC6tD2PadL60KyO8scsrpjiCjFeNj6GBrSjScFLQSeao+yOnoAqhC rxIpZEhXDvBo8gWnzxIAB1JGBfEpTf6Yhq+guUUp13KIxKWA2p01C0bxpd2Rx1zy cStBPgdbXJ+zTjwR0JDLAcLt1CMxooTIiH0jZnh4TBmafuGap226SMGijoAGcAv0 2Mj/+/9SENfZBQ+UTmw7vrW3ypIeu6qT5NiAqfOeaXqskL0APrClJiBFFrQPkdXo iWzJMvekzeRDmCLm/Bh2bwKbRdC/bGp50OG4v5hwFRW3svVA9zFmFmJEnmA4iQaM ZZRJrD2J1WSNltKYALYQg1GCBV7af0Ir -----END CERTIFICATE-----Generated at Fri Apr 4 18:34:03 2025 by rpki-client