$ rpki-client -vvf rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft File: GwdUmyUM_APdrXtURD2oOIkYEco.mft (raw, json) Hash identifier: za0v/giCb9jDNrmrBwCLcrMOCuHzaP8cukigcW2gLRI= Subject key identifier: EA:C6:B5:59:E9:5F:E8:AC:58:21:6D:D0:BD:95:5E:92:C8:E6:39:BE Authority key identifier: 1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA Certificate issuer: /CN=A91D18AC/serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft Manifest number: 52 Signing time: Sat 29 Mar 2025 06:28:30 +0000 Manifest this update: Sat 29 Mar 2025 06:28:29 +0000 Manifest next update: Sat 05 Apr 2025 06:28:29 +0000 Files and hashes: 1: GwdUmyUM_APdrXtURD2oOIkYEco.crl (hash: DTao7QvKaA3C31nKdGy4uYm1C8YiAvVFWjXvI/dILOc=) 2: 34BA37F6976E11EFAEB6A258C4F9AE02.roa (hash: dMptlIu2hEGUJL7wHDTpb5B0NGrE6jX2dVguRw6q6C4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D18AC Validity Not Before: Mar 29 06:28:29 2025 GMT Not After : Apr 5 06:28:29 2025 GMT Subject: CN=67e7930d-7976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a4:6e:6c:cd:27:a2:29:f9:f3:2e:a4:b3:b0: 03:c3:89:e1:e9:6e:0e:59:0a:75:84:30:ff:7f:a6: b6:a8:0c:99:21:8b:c0:02:ff:16:8d:5d:71:bd:33: e6:26:77:f5:0d:41:7f:28:a0:cf:37:4f:e6:c4:c3: e0:41:db:0e:2c:16:da:37:2e:d1:c8:a7:f1:f6:74: af:ad:59:17:9f:4e:38:16:f3:8a:18:5e:b5:fd:2f: 44:74:1e:e3:05:79:27:8b:28:a3:e6:e4:a4:45:f7: 07:42:bd:9f:d7:e8:7e:8a:54:66:9e:20:a6:93:e7: e8:b1:7d:fb:4f:a6:39:c5:95:b3:77:36:a9:41:d8: 81:86:da:cb:51:c9:72:ff:ac:02:a4:a8:ae:c0:a2: ee:69:9b:81:f0:db:1a:47:bb:2a:5f:aa:e4:2e:09: 0f:63:ce:c4:a7:5c:cf:84:1a:07:60:ec:84:a4:29: ec:81:6e:46:f2:aa:12:91:b4:0b:3f:85:9d:82:c2: bf:ca:cd:39:57:05:3f:73:7c:17:9a:7e:82:8a:bc: 7f:59:e3:79:9a:51:76:28:52:c2:25:d9:84:04:2a: 41:65:27:41:7a:0b:84:9d:6a:c0:c9:19:03:19:80: f3:27:d0:9b:d3:ff:6a:68:5f:96:84:cd:e9:db:a2: 46:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C6:B5:59:E9:5F:E8:AC:58:21:6D:D0:BD:95:5E:92:C8:E6:39:BE X509v3 Authority Key Identifier: keyid:1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:21:15:bd:f0:fc:6c:c4:c5:dd:8e:73:fb:39:ba:a3:7c:40: a7:19:e4:c5:1c:7b:1f:61:57:d9:ed:a7:e2:cb:eb:83:ea:e4: db:65:5e:ed:e6:ae:b2:9d:dd:76:d6:b0:11:03:23:9e:93:09: 15:d4:14:28:2d:8d:2f:d8:12:ff:bc:87:5a:08:a6:d8:93:08: b8:b6:31:06:03:cc:7e:8a:2f:9c:6b:56:d8:8c:25:2a:49:df: 58:76:41:56:f4:81:a3:36:86:9d:d6:10:15:63:90:db:f3:a2: c1:75:3b:22:46:c2:f5:2b:8c:b2:56:cf:a4:ab:d3:df:c4:53: 01:17:aa:fe:c3:86:bc:84:fa:5f:64:38:f9:8f:89:9c:01:eb: c6:4c:45:13:3f:49:71:68:c1:76:58:67:22:f5:f3:ac:df:37: 97:03:9b:89:65:28:0a:42:20:30:26:74:3c:30:d3:db:54:e4: ba:15:c1:d9:d3:24:94:eb:04:f9:c1:da:30:d1:5d:a6:df:17: 5e:d9:86:04:d2:1b:60:22:f2:36:cc:bc:c7:71:31:70:2a:63: 0d:f9:d2:7a:25:56:6d:5b:98:46:f2:c3:e7:f4:e1:0e:27:57: c7:fe:44:9c:49:5d:d7:02:f0:ba:22:ef:1b:9c:59:48:dd:60: 44:19:81:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MThBQzExMC8GA1UEBRMoMUIwNzU0OUIyNTBDRkMwM0REQUQ3QjU0NDQzREE4Mzg4 OTE4MTFDQTAeFw0yNTAzMjkwNjI4MjlaFw0yNTA0MDUwNjI4MjlaMBgxFjAUBgNV BAMTDTY3ZTc5MzBkLTc5NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZpG5szSeiKfnzLqSzsAPDieHpbg5ZCnWEMP9/praoDJkhi8AC/xaNXXG9M+Ym d/UNQX8ooM83T+bEw+BB2w4sFto3LtHIp/H2dK+tWRefTjgW84oYXrX9L0R0HuMF eSeLKKPm5KRF9wdCvZ/X6H6KVGaeIKaT5+ixfftPpjnFlbN3NqlB2IGG2stRyXL/ rAKkqK7Aou5pm4Hw2xpHuypfquQuCQ9jzsSnXM+EGgdg7ISkKeyBbkbyqhKRtAs/ hZ2Cwr/KzTlXBT9zfBeafoKKvH9Z43maUXYoUsIl2YQEKkFlJ0F6C4SdasDJGQMZ gPMn0JvT/2poX5aEzenbokbbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6sa1Welf 6KxYIW3QvZVeksjmOb4wHwYDVR0jBBgwFoAUGwdUmyUM/APdrXtURD2oOIkYEcow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQxOEFDL0Q0QkEzRDk4OTZD QzExRUY4RUZDQjg0OUM0RjlBRTAyL0d3ZFVteVVNX0FQZHJYdFVSRDJvT0lrWUVj by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR3dkVW15VU1fQVBkclh0VVJEMm9PSWtZRWNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQx OEFDL0Q0QkEzRDk4OTZDQzExRUY4RUZDQjg0OUM0RjlBRTAyL0d3ZFVteVVNX0FQ ZHJYdFVSRDJvT0lrWUVjby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA0hFb3w/GzExd2Oc/s5uqN8QKcZ5MUcex9hV9ntp+LL64Pq5NtlXu3m rrKd3XbWsBEDI56TCRXUFCgtjS/YEv+8h1oIptiTCLi2MQYDzH6KL5xrVtiMJSpJ 31h2QVb0gaM2hp3WEBVjkNvzosF1OyJGwvUrjLJWz6Sr09/EUwEXqv7DhryE+l9k OPmPiZwB68ZMRRM/SXFowXZYZyL186zfN5cDm4llKApCIDAmdDww09tU5LoVwdnT JJTrBPnB2jDRXabfF17ZhgTSG2Ai8jbMvMdxMXAqYw350nolVm1bmEbyw+f04Q4n V8f+RJxJXdcC8Loi7xucWUjdYEQZgXI= -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:41 2025 by rpki-client