$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: U9x7eZZBVuOStCV1oxpwaFDQbesEMxsmL/Il11rxWgg= Subject key identifier: 80:F3:DD:E2:6E:4A:3F:64:26:EC:1A:4B:E9:CA:8E:39:D0:B5:0D:14 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 347C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 3473 Signing time: Sat 12 Apr 2025 14:40:21 +0000 Manifest this update: Sat 12 Apr 2025 14:40:21 +0000 Manifest next update: Sat 19 Apr 2025 14:40:21 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: 9KJVHUG/ml3OD/jyHOZW5JcMaf14MMXGDM/kpxazfks=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 14:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13436 (0x347c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Apr 12 14:40:21 2025 GMT Not After : Apr 19 14:40:21 2025 GMT Subject: CN=67fa7b55-3404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:98:15:a3:c3:57:67:a1:87:87:b0:15:64:e1: 97:f2:de:ca:2e:82:ae:6a:4a:8a:0c:5c:00:4a:8e: 89:71:2e:2c:9d:96:95:d7:2e:f4:b6:99:8e:64:e5: c1:27:bd:33:31:34:76:8f:7a:f2:16:c8:aa:bc:50: 6f:b9:c8:45:88:d5:a9:c2:ee:99:92:77:0f:56:d3: 74:da:19:3d:25:d3:ba:8f:18:a5:34:2f:cc:84:a3: 69:61:31:f3:3e:67:17:04:6a:b9:03:0b:23:15:55: a9:69:3d:d2:54:11:f1:60:3d:e4:04:02:0c:ba:1e: 94:92:12:1b:4e:da:3f:3e:b6:2f:d9:1b:fb:f5:38: 49:fe:8d:7f:df:58:4a:ac:d0:e8:af:ea:85:3e:0e: 5d:67:df:68:c5:22:96:7c:f3:a8:77:fe:37:a4:f5: da:ba:2b:76:e2:7a:74:bc:e2:df:42:14:fd:b8:8c: 19:56:7d:af:3c:4a:5d:a8:61:31:56:00:e5:e9:17: 51:85:b1:29:41:e5:3a:27:9e:50:14:54:d8:41:32: 0e:ea:9b:e6:97:96:8a:66:3b:db:bd:26:aa:81:a9: 46:8d:78:67:ad:58:03:01:9b:67:0e:4c:52:31:53: 32:53:df:61:ab:8d:5c:30:b2:b3:3e:b6:0b:f4:0c: c6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F3:DD:E2:6E:4A:3F:64:26:EC:1A:4B:E9:CA:8E:39:D0:B5:0D:14 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f2:79:13:55:19:f6:a4:bb:a6:1f:de:75:f5:1e:74:60:54: 8d:07:8c:c6:06:92:b2:5a:17:c5:c1:50:bd:80:8a:7d:8b:71: dc:54:d3:a3:34:7b:b9:e6:da:db:28:e5:bd:f5:a8:c0:d0:ed: 10:0a:2b:b7:b9:08:72:18:0d:a6:56:8d:35:ea:96:14:3e:b9: a2:da:d7:66:b8:75:87:fb:ae:e6:57:33:6c:2b:d7:0d:57:34: 83:ab:1f:8c:6a:06:32:51:37:ba:7a:c7:a2:6c:bb:95:62:67: e2:2f:ec:9b:ae:ff:8c:b0:1e:76:c6:67:96:e4:a2:dc:83:7a: 2f:63:3d:da:56:9a:a4:a6:3e:54:99:03:0c:cd:b3:d1:3f:b6: 5c:9f:97:45:50:bf:12:f2:9e:89:f9:59:cd:79:1c:60:70:10: 74:0b:94:c7:cd:bf:42:ce:2a:5f:f9:30:45:9b:c0:bb:67:d0: 45:2a:79:c5:fb:21:42:77:00:ed:b1:81:6c:3f:7a:3e:ad:d9: 86:42:d5:e8:1b:ee:6e:26:fe:02:17:2f:54:b3:27:21:df:95: 4f:91:a3:8c:b8:38:db:ff:28:f6:11:d2:a1:94:a4:84:f8:2f: 97:6d:fb:eb:55:ef:76:c4:cd:83:49:0a:8a:86:09:ae:59:2b: 88:a6:11:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUwNDEyMTQ0MDIxWhcNMjUwNDE5MTQ0MDIxWjAYMRYwFAYD VQQDEw02N2ZhN2I1NS0zNDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5gVo8NXZ6GHh7AVZOGX8t7KLoKuakqKDFwASo6JcS4snZaV1y70tpmOZOXB J70zMTR2j3ryFsiqvFBvuchFiNWpwu6ZkncPVtN02hk9JdO6jxilNC/MhKNpYTHz PmcXBGq5AwsjFVWpaT3SVBHxYD3kBAIMuh6UkhIbTto/PrYv2Rv79ThJ/o1/31hK rNDor+qFPg5dZ99oxSKWfPOod/43pPXauit24np0vOLfQhT9uIwZVn2vPEpdqGEx VgDl6RdRhbEpQeU6J55QFFTYQTIO6pvml5aKZjvbvSaqgalGjXhnrVgDAZtnDkxS MVMyU99hq41cMLKzPrYL9AzG6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDz3eJu Sj9kJuwaS+nKjjnQtQ0UMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS8nkTVRn2pLumH9519R50YFSNB4zGBpKyWhfFwVC9gIp9i3HcVNOj NHu55trbKOW99ajA0O0QCiu3uQhyGA2mVo016pYUPrmi2tdmuHWH+67mVzNsK9cN VzSDqx+MagYyUTe6eseibLuVYmfiL+ybrv+MsB52xmeW5KLcg3ovYz3aVpqkpj5U mQMMzbPRP7Zcn5dFUL8S8p6J+VnNeRxgcBB0C5THzb9Czipf+TBFm8C7Z9BFKnnF +yFCdwDtsYFsP3o+rdmGQtXoG+5uJv4CFy9Usych35VPkaOMuDjb/yj2EdKhlKSE +C+XbfvrVe92xM2DSQqKhgmuWSuIphHw -----END CERTIFICATE-----Generated at Sun Apr 13 04:47:41 2025 by rpki-client