$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft File: _GiPuVzFIF4D5wpgXJlMXUlaszI.mft (raw, json) Hash identifier: +b7hkhssCz47i95VdDsMV/w5WcskmJU42RV9cu4c9cI= Subject key identifier: 4B:BF:DC:29:5E:B6:0C:6E:EA:B2:0C:05:18:14:01:ED:A8:AD:88:E8 Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 02DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft Manifest number: 02DB Signing time: Sat 05 Apr 2025 01:31:14 +0000 Manifest this update: Sat 05 Apr 2025 01:31:14 +0000 Manifest next update: Sat 12 Apr 2025 01:31:14 +0000 Files and hashes: 1: _GiPuVzFIF4D5wpgXJlMXUlaszI.crl (hash: 6yaaIC1mL/O7urtpV2NlaEUDbUztXubo7m9y2l5Kn+w=) 2: 4E8DA224547711EF9EDD014DC4F9AE02.roa (hash: befFFpozyGTTud2Z8wsHoOu5TcgcBDvFYmEhZzj+W4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:31:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43 Validity Not Before: Apr 5 01:31:14 2025 GMT Not After : Apr 12 01:31:14 2025 GMT Subject: CN=67f087e2-b3c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:22:54:50:df:38:28:65:f7:30:50:dc:36:6c: 5e:c1:79:ad:ea:ef:03:cb:72:e0:82:69:66:39:e5: 00:4f:f1:bc:08:a7:de:f8:6a:74:fd:4f:97:b3:cc: 2e:30:fd:12:0c:f0:40:4e:bb:8d:46:b6:eb:fc:d6: fa:ba:2b:4a:d0:a2:5d:b8:5b:8c:a3:d2:5a:5f:92: e8:8a:f8:20:ea:4e:f5:9e:1d:c5:eb:49:4f:29:b3: e6:cd:d0:25:7e:08:f9:7c:13:86:86:b0:7f:fc:4d: 68:a3:a6:95:21:90:fb:d2:dd:0a:57:61:c2:d4:e2: d4:80:e2:b0:8a:1c:85:5e:55:7c:fd:9e:dd:83:08: 02:51:33:3d:a5:79:f9:e1:e9:93:73:48:3e:94:98: e8:81:62:d3:87:96:d3:38:e2:ba:dc:30:05:ff:1b: 96:f3:16:74:96:3a:8f:05:ef:23:95:15:a2:f2:b9: 1b:38:30:b3:5d:43:a3:ec:e3:6b:c4:d7:4d:82:0d: c1:94:29:83:69:0f:42:e3:7a:c2:8d:43:6f:b9:22: 62:ac:b7:6d:c3:bb:a1:e9:f5:7c:63:5c:34:07:56: ea:d6:94:50:15:f3:30:39:55:a9:d7:21:ea:fc:ff: 4e:0d:21:7f:01:94:9c:07:4b:74:07:50:22:c2:5b: 6c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BF:DC:29:5E:B6:0C:6E:EA:B2:0C:05:18:14:01:ED:A8:AD:88:E8 X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:eb:dc:a6:55:78:dd:f5:f1:66:d2:34:7f:51:04:f8:16:c7: 42:85:48:80:01:2d:8b:64:54:b4:a8:f7:38:df:08:eb:de:e1: 1a:c3:86:82:ae:28:d9:f3:88:4f:9e:30:b2:29:00:2f:1f:c0: ce:5d:42:2b:7a:e0:5b:5b:fc:49:8f:7c:55:d1:9c:78:40:76: c9:dd:5a:eb:6b:99:96:4a:46:b0:e2:af:54:fd:ba:74:da:0e: e5:d3:0d:cd:f6:4b:50:17:2f:f0:9f:6b:5a:5c:3c:53:21:13: 18:e5:64:fc:11:1f:ec:f8:3c:b5:c6:7c:e7:fa:30:6d:b4:38: 6e:60:23:af:e0:e3:9b:42:8e:01:d2:0b:16:a0:4e:98:cc:7a: 98:c0:37:3c:56:32:f9:16:5f:10:bc:c0:80:47:e6:ef:1d:87: 0a:9b:15:b5:89:0e:dc:b7:1b:6a:ce:79:61:47:80:29:42:2f: 0f:1d:34:d6:b0:6e:fa:d3:fc:b0:db:f4:ec:0c:4a:57:f6:6b: 01:ba:ab:85:51:a0:3a:c3:ad:77:90:eb:83:0d:0a:a5:9b:31: 96:d9:ea:68:b3:bb:b8:b8:ac:55:ce:2a:3a:93:b6:40:6e:e2: b1:a0:06:6c:4a:4d:80:99:1d:f0:2a:e6:b7:3a:b3:07:21:ff: 1d:91:21:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjUwNDA1MDEzMTE0WhcNMjUwNDEyMDEzMTE0WjAYMRYwFAYD VQQDEw02N2YwODdlMi1iM2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSJUUN84KGX3MFDcNmxewXmt6u8Dy3LggmlmOeUAT/G8CKfe+Gp0/U+Xs8wu MP0SDPBATruNRrbr/Nb6uitK0KJduFuMo9JaX5Loivgg6k71nh3F60lPKbPmzdAl fgj5fBOGhrB//E1oo6aVIZD70t0KV2HC1OLUgOKwihyFXlV8/Z7dgwgCUTM9pXn5 4emTc0g+lJjogWLTh5bTOOK63DAF/xuW8xZ0ljqPBe8jlRWi8rkbODCzXUOj7ONr xNdNgg3BlCmDaQ9C43rCjUNvuSJirLdtw7uh6fV8Y1w0B1bq1pRQFfMwOVWp1yHq /P9ODSF/AZScB0t0B1AiwltsBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEu/3Cle tgxu6rIMBRgUAe2orYjoMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ0My83RDk5ODA3NkRDRDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklG NEQ1d3BnWEpsTVhVbGFzekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf69ymVXjd9fFm0jR/UQT4FsdChUiAAS2LZFS0qPc43wjr3uEaw4aC rijZ84hPnjCyKQAvH8DOXUIreuBbW/xJj3xV0Zx4QHbJ3Vrra5mWSkaw4q9U/bp0 2g7l0w3N9ktQFy/wn2taXDxTIRMY5WT8ER/s+Dy1xnzn+jBttDhuYCOv4OObQo4B 0gsWoE6YzHqYwDc8VjL5Fl8QvMCAR+bvHYcKmxW1iQ7ctxtqznlhR4ApQi8PHTTW sG760/yw2/TsDEpX9msBuquFUaA6w613kOuDDQqlmzGW2epos7u4uKxVzio6k7ZA buKxoAZsSk2AmR3wKua3OrMHIf8dkSHR -----END CERTIFICATE-----Generated at Sat Apr 5 11:34:16 2025 by rpki-client