$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft File: gUM6Y8LXXQAyVSxCbENTPsrINRU.mft (raw, json) Hash identifier: PPoPaBjTfA2AnSsec1PuKr8/KY/lhXsoz9m3F6s/jgA= Subject key identifier: 08:51:6E:38:B3:3B:16:F9:1A:31:18:4C:34:5A:62:53:0A:5F:81:9B Authority key identifier: 81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 Certificate issuer: /CN=A91F1AF5/serialNumber=81433A63C2D75D0032552C426C43533ECAC83515 Certificate serial: 0705 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft Manifest number: 0700 Signing time: Wed 02 Apr 2025 21:55:04 +0000 Manifest this update: Wed 02 Apr 2025 21:55:03 +0000 Manifest next update: Wed 09 Apr 2025 21:55:03 +0000 Files and hashes: 1: gUM6Y8LXXQAyVSxCbENTPsrINRU.crl (hash: XlsupXtRUtbHupeY561kCbf0aqFyJqXDS5sHf/u0c/8=) 2: DDFEB10C385E11EB8E85F467C4F9AE02.roa (hash: vYc0h4qvjuE88FDf7yqk3rmrIjWt9VABoOzgwIDoM5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1797 (0x705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1AF5 Validity Not Before: Apr 2 21:55:03 2025 GMT Not After : Apr 9 21:55:03 2025 GMT Subject: CN=67edb237-9b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:57:e8:ac:b5:a1:94:91:f5:b2:98:fe:0f:b8: f3:4f:7f:fc:d0:a1:a2:48:dd:11:d5:e6:e5:4d:00: 10:ab:d3:64:a3:c7:7c:2c:7e:e7:bc:d1:33:c0:ed: f6:17:d8:d7:5e:ab:58:44:17:10:d4:51:2f:d0:67: 1b:e0:c7:fe:98:43:dd:17:7a:fc:e9:40:9e:a1:5f: b2:c4:e7:ac:29:c5:ae:ce:f4:2b:1e:4b:a7:81:1a: 8a:c2:f3:cc:f5:17:e2:47:c6:8a:9d:48:ae:67:a9: 4d:ea:4c:42:77:b1:46:62:35:6c:c1:cc:f9:99:ab: e6:22:8c:28:85:55:2b:2b:01:5d:dd:5f:79:e7:17: 92:fc:3f:ff:92:d1:00:c7:a0:fa:52:01:c9:f5:56: bf:5e:37:b2:a7:80:72:c0:b9:88:50:b5:2a:c2:07: a3:68:9c:d3:c9:eb:ae:ba:03:86:8b:21:57:3b:16: 4f:ca:70:31:7c:d5:37:0a:97:da:0f:34:fb:74:97: d5:e4:e8:2f:a1:f2:bc:4a:82:21:65:d1:d8:4a:4c: b3:d8:a8:9d:2f:89:8f:12:ae:f9:12:b0:b1:d6:bf: 67:9c:61:cb:01:e8:9b:ce:95:b8:53:b0:2c:91:29: fd:98:7c:ff:49:7f:f1:25:73:c7:a2:f9:99:d0:d5: 5d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:51:6E:38:B3:3B:16:F9:1A:31:18:4C:34:5A:62:53:0A:5F:81:9B X509v3 Authority Key Identifier: keyid:81:43:3A:63:C2:D7:5D:00:32:55:2C:42:6C:43:53:3E:CA:C8:35:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUM6Y8LXXQAyVSxCbENTPsrINRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1AF5/1510FB5C385D11EBBCB20463C4F9AE02/gUM6Y8LXXQAyVSxCbENTPsrINRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:2b:f6:22:8e:fa:63:88:f2:bb:d6:44:c1:6e:6c:56:7c:9d: 81:64:a2:8b:68:e6:06:be:df:fd:c4:c3:31:9c:35:f5:74:5e: ed:9a:e9:3c:a4:1e:58:7c:84:cd:1c:09:fc:07:9a:9a:b7:a7: 42:ae:1e:6e:a0:b8:53:55:4b:e2:17:3a:93:84:09:03:a6:a8: c8:c4:c8:13:c0:0d:c6:f7:4a:4b:f7:a4:19:04:ec:21:1c:73: 84:7c:96:06:06:f4:25:56:1b:2b:66:ee:d2:aa:18:6c:1f:9d: e6:e8:a2:9c:c1:19:fd:6a:af:d8:fb:d6:b9:5a:a6:0d:f0:59: da:52:09:c1:bf:1f:af:75:71:29:d7:72:c7:44:ed:3a:a1:0e: 38:b7:85:d5:5d:24:46:1c:84:a9:fc:da:e0:6f:bb:42:35:6d: e4:5d:49:f2:64:a3:82:b4:13:93:6d:19:63:ea:24:e8:d7:f9: 72:7d:e5:0b:2d:40:6c:41:74:d9:47:de:0f:1a:a5:01:cc:52: 46:d1:7d:5e:08:86:92:9c:4b:ca:39:e5:a5:92:d4:a4:6b:36: 51:b3:74:c8:93:4b:a6:1d:c2:b4:36:e4:be:7d:2e:c8:43:a1: 34:6a:3a:a4:ca:66:e1:d4:60:89:57:d8:48:28:a3:dd:42:45: d7:ef:9c:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFBRjUxMTAvBgNVBAUTKDgxNDMzQTYzQzJENzVEMDAzMjU1MkM0MjZDNDM1MzNF Q0FDODM1MTUwHhcNMjUwNDAyMjE1NTAzWhcNMjUwNDA5MjE1NTAzWjAYMRYwFAYD VQQDEw02N2VkYjIzNy05YjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1forLWhlJH1spj+D7jzT3/80KGiSN0R1eblTQAQq9Nko8d8LH7nvNEzwO32 F9jXXqtYRBcQ1FEv0Gcb4Mf+mEPdF3r86UCeoV+yxOesKcWuzvQrHkungRqKwvPM 9RfiR8aKnUiuZ6lN6kxCd7FGYjVswcz5mavmIowohVUrKwFd3V955xeS/D//ktEA x6D6UgHJ9Va/Xjeyp4BywLmIULUqwgejaJzTyeuuugOGiyFXOxZPynAxfNU3Cpfa DzT7dJfV5OgvofK8SoIhZdHYSkyz2KidL4mPEq75ErCx1r9nnGHLAeibzpW4U7As kSn9mHz/SX/xJXPHovmZ0NVd3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhRbjiz Oxb5GjEYTDRaYlMKX4GbMB8GA1UdIwQYMBaAFIFDOmPC110AMlUsQmxDUz7KyDUV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUFGNS8xNTEwRkI1QzM4 NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhRQXlWU3hDYkVOVFBzcklO UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dVTTZZOExYWFFBeVZTeENiRU5UUHNySU5SVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUFGNS8xNTEwRkI1QzM4NUQxMUVCQkNCMjA0NjNDNEY5QUUwMi9nVU02WThMWFhR QXlWU3hDYkVOVFBzcklOUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBK/YijvpjiPK71kTBbmxWfJ2BZKKLaOYGvt/9xMMxnDX1dF7tmuk8 pB5YfITNHAn8B5qat6dCrh5uoLhTVUviFzqThAkDpqjIxMgTwA3G90pL96QZBOwh HHOEfJYGBvQlVhsrZu7SqhhsH53m6KKcwRn9aq/Y+9a5WqYN8FnaUgnBvx+vdXEp 13LHRO06oQ44t4XVXSRGHISp/Nrgb7tCNW3kXUnyZKOCtBOTbRlj6iTo1/lyfeUL LUBsQXTZR94PGqUBzFJG0X1eCIaSnEvKOeWlktSkazZRs3TIk0umHcK0NuS+fS7I Q6E0ajqkymbh1GCJV9hIKKPdQkXX75yF -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:41 2025 by rpki-client