$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft File: gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft (raw, json) Hash identifier: ul/YGNP4OyMO5s1zRqZ632qsiGVUymBr/hflififynE= Subject key identifier: 7B:AD:24:C0:3F:3A:0D:81:2A:D9:84:91:32:23:2D:F7:4C:9D:B8:50 Authority key identifier: 80:FB:52:63:6A:9E:50:C0:88:68:E6:27:52:0A:1A:0D:8A:87:F0:46 Certificate issuer: /CN=A91B3EDE/serialNumber=80FB52636A9E50C08868E627520A1A0D8A87F046 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gPtSY2qeUMCIaOYnUgoaDYqH8EY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft Manifest number: 0D Signing time: Sat 29 Mar 2025 07:25:21 +0000 Manifest this update: Sat 29 Mar 2025 07:25:20 +0000 Manifest next update: Sat 05 Apr 2025 07:25:20 +0000 Files and hashes: 1: gPtSY2qeUMCIaOYnUgoaDYqH8EY.crl (hash: cvptlu6xZ2WVT5Y1bvhCDcIhEV9xmDzRuczJf51PxSg=) 2: BC66C474FB5C11EFB5FF765EC4F9AE02.roa (hash: AvVg/+A0MLB4qd4KAVoe6uLCEieXvb2jz5ivdG0pWoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.crl rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gPtSY2qeUMCIaOYnUgoaDYqH8EY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3EDE Validity Not Before: Mar 29 07:25:20 2025 GMT Not After : Apr 5 07:25:20 2025 GMT Subject: CN=67e7a060-b924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4e:4d:e8:3f:2d:36:1a:b9:e1:65:29:5a:dd: 18:44:79:22:d2:3e:f8:e0:15:6b:0d:8c:8a:14:03: 8e:a9:69:30:26:d9:f7:19:ec:55:7a:93:bb:e3:a8: 64:0c:62:75:1b:da:9a:e1:9b:5d:ec:8f:ff:a9:69: 66:8c:91:ab:60:e8:1a:fc:a2:83:c0:38:d0:19:11: 62:7e:1b:07:b0:d5:67:9b:0c:49:2b:d6:7d:30:21: 4d:c6:dc:c3:d5:85:91:77:92:98:dc:d0:28:57:40: e4:11:ab:ca:b1:3d:5f:6e:9a:0e:71:5a:db:61:3c: fd:8b:9c:ef:33:a0:43:5f:00:28:05:b0:11:82:6c: 56:00:50:29:12:7e:49:1e:50:f3:7d:bb:a3:8e:2b: 0d:c5:0a:c8:77:17:36:e9:08:62:98:26:a3:3b:28: ee:3f:d1:cc:e4:cf:24:01:44:96:1a:8f:50:2a:17: a3:bf:81:22:14:33:34:5c:41:1c:46:e0:30:8b:b4: 6e:91:50:cc:51:69:66:5e:ef:c3:9e:6b:ea:36:d3: e3:e2:78:a1:d7:f3:5e:5c:5f:fc:19:64:3a:93:0c: 5e:cb:74:f2:cd:8e:75:e6:79:90:28:19:f3:1c:2f: d2:80:20:90:29:6d:60:e1:1e:a1:bd:80:8f:8f:a9: 9f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:AD:24:C0:3F:3A:0D:81:2A:D9:84:91:32:23:2D:F7:4C:9D:B8:50 X509v3 Authority Key Identifier: keyid:80:FB:52:63:6A:9E:50:C0:88:68:E6:27:52:0A:1A:0D:8A:87:F0:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gPtSY2qeUMCIaOYnUgoaDYqH8EY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:1b:83:f0:29:5d:02:f7:13:20:a1:60:1f:26:f8:83:e4:f7: 4b:11:81:69:b2:cd:b3:26:f4:69:6e:24:93:d5:15:49:35:79: cc:46:10:e4:d8:54:ea:19:89:cf:e9:d9:14:b9:9f:99:6e:9b: 74:63:b6:bc:31:67:c5:92:d2:91:3e:e1:7b:f6:61:df:74:ce: 67:81:c8:cc:ae:d8:1a:4f:4d:a5:15:d6:30:d6:26:07:7b:e5: eb:91:26:5f:96:9b:ae:ee:92:e9:99:26:93:d8:8b:57:a1:bd: dd:5c:18:34:96:97:03:01:8e:da:ee:a0:02:c4:e0:c4:88:a5: 48:fd:8d:a8:fb:16:0a:43:fc:4f:da:3b:29:52:cb:18:98:8b: 38:86:39:70:fb:f5:27:ec:86:0c:20:3e:30:1c:a8:f2:ce:f4: e3:77:5f:c4:55:fa:bd:ad:2a:54:28:f3:c3:13:08:eb:16:d6: f3:25:8d:d8:68:7f:fe:87:dc:33:50:68:07:0e:22:3b:23:f4: 62:af:ea:0a:12:bd:70:ef:28:76:ce:2c:5e:18:01:34:7d:6c: 1a:6a:38:cf:2a:0e:e0:0e:38:48:24:48:7e:e7:75:6a:d2:0f: 6d:35:81:48:b9:3d:33:fb:cb:7c:8d:df:29:40:80:7c:fc:71: 92:6f:d4:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC M0VERTExMC8GA1UEBRMoODBGQjUyNjM2QTlFNTBDMDg4NjhFNjI3NTIwQTFBMEQ4 QTg3RjA0NjAeFw0yNTAzMjkwNzI1MjBaFw0yNTA0MDUwNzI1MjBaMBgxFjAUBgNV BAMTDTY3ZTdhMDYwLWI5MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJTk3oPy02GrnhZSla3RhEeSLSPvjgFWsNjIoUA46paTAm2fcZ7FV6k7vjqGQM YnUb2prhm13sj/+paWaMkatg6Br8ooPAONAZEWJ+Gwew1WebDEkr1n0wIU3G3MPV hZF3kpjc0ChXQOQRq8qxPV9umg5xWtthPP2LnO8zoENfACgFsBGCbFYAUCkSfkke UPN9u6OOKw3FCsh3FzbpCGKYJqM7KO4/0czkzyQBRJYaj1AqF6O/gSIUMzRcQRxG 4DCLtG6RUMxRaWZe78Oea+o20+PieKHX815cX/wZZDqTDF7LdPLNjnXmeZAoGfMc L9KAIJApbWDhHqG9gI+PqZ+tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe60kwD86 DYEq2YSRMiMt90yduFAwHwYDVR0jBBgwFoAUgPtSY2qeUMCIaOYnUgoaDYqH8EYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzRURFLzU5MDREOTcwRkI1 QzExRUY4RUFGMzExQ0M0RjlBRTAyL2dQdFNZMnFlVU1DSWFPWW5VZ29hRFlxSDhF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1B0U1kycWVVTUNJYU9ZblVnb2FEWXFIOEVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz RURFLzU5MDREOTcwRkI1QzExRUY4RUFGMzExQ0M0RjlBRTAyL2dQdFNZMnFlVU1D SWFPWW5VZ29hRFlxSDhFWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAsbg/ApXQL3EyChYB8m+IPk90sRgWmyzbMm9GluJJPVFUk1ecxGEOTY VOoZic/p2RS5n5lum3RjtrwxZ8WS0pE+4Xv2Yd90zmeByMyu2BpPTaUV1jDWJgd7 5euRJl+Wm67ukumZJpPYi1ehvd1cGDSWlwMBjtruoALE4MSIpUj9jaj7FgpD/E/a OylSyxiYiziGOXD79SfshgwgPjAcqPLO9ON3X8RV+r2tKlQo88MTCOsW1vMljdho f/6H3DNQaAcOIjsj9GKv6goSvXDvKHbOLF4YATR9bBpqOM8qDuAOOEgkSH7ndWrS D201gUi5PTP7y3yN3ylAgHz8cZJv1HI= -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:46 2025 by rpki-client