$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft File: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft (raw, json) Hash identifier: vNCtXgA8xharJkARUIgZNH2qNHMxCRG6L6wvW7ZIcdc= Subject key identifier: A4:E5:F2:45:83:EE:F4:44:FA:27:9C:C9:B1:04:40:07:B1:3E:58:62 Authority key identifier: 82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A Certificate issuer: /CN=A911DF8A/serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Certificate serial: 039E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft Manifest number: 038C Signing time: Sat 31 May 2025 01:03:39 +0000 Manifest this update: Sat 31 May 2025 01:03:39 +0000 Manifest next update: Sat 07 Jun 2025 01:03:39 +0000 Files and hashes: 1: gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl (hash: UxYtwmRQMwAtRRwzSKDOqugK0LvgnatRR4F49PaTkjY=) 2: 888790B6CD3A11EF87D85012C4F9AE02.roa (hash: AvFxWnXdXVRW4gSsV2SM184h5qE1FtXhjp3kh4Swn5U=) 3: 38E23C8AACAE11EEAD36566EC4F9AE02.roa (hash: WV0++0ZN/bagS69tHu4GzxXJWra/B4BQBtuEVcU79xQ=) 4: 39B38CD6ACAE11EEAD36566EC4F9AE02.roa (hash: CVz2Xf9+JNVQc+OnMj39alF6Xn/77a8odRw6ivgbb84=) 5: 2E8C1E00DD9C11ECA143AA87C4F9AE02.roa (hash: PSuOk5hKLAcVmpB6whliDPWrfFKAhRcAnnfVLoCffRg=) 6: 8CA353C4EF5E11EF9E61950EC4F9AE02.roa (hash: 5Blz9K5XE6h6oYg/gQUJxXMDOjmAua+CLgWpZB5MaIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 926 (0x39e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF8A, serialNumber=826007A4E3D14BB0B509BB969845D01EB809DD7A Validity Not Before: May 31 01:03:39 2025 GMT Not After : Jun 7 01:03:39 2025 GMT Subject: CN=683a556b-e0bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:27:c3:e7:96:1b:ba:ab:66:95:7a:2c:1e:8b: ff:e8:07:5b:5b:21:9e:cf:fc:65:97:ac:ae:a3:b7: 29:3f:ea:0c:36:5c:f2:9c:c9:64:63:f3:e8:6e:19: 0c:52:07:d5:9f:64:92:1c:ad:81:4e:d5:d1:98:d0: a2:0c:04:aa:49:e3:d4:77:d0:32:ec:d9:f2:2a:05: a4:ea:e4:4f:c2:86:c8:ba:20:2d:64:c9:c2:a0:35: 05:3d:b0:64:a3:ec:f7:dd:2a:18:0b:38:82:30:e3: d3:aa:be:f7:ce:cd:43:98:71:85:38:69:c4:e8:ae: f0:2d:7f:7e:78:2c:1f:cd:a1:db:0e:3e:77:be:60: 7f:9f:23:be:f4:8a:35:00:1f:bb:31:31:43:b8:c3: 4f:d2:d2:cb:73:e1:0a:e1:2b:d0:28:d7:5c:02:2f: 9a:e1:42:c0:07:68:b7:e4:87:0d:d1:d9:af:1b:b1: 84:f1:30:fa:c4:27:67:9a:b1:7a:fa:2e:82:06:85: 6c:2e:a1:6b:5c:7a:5c:6e:05:2a:ee:71:f1:9b:3f: 28:ea:d9:e7:5f:67:36:30:1e:a7:dc:37:06:80:27: 80:5c:be:80:4f:a0:63:6c:16:fc:c3:67:82:f6:e3: ff:19:e3:65:a3:f6:b5:f8:59:ae:55:4e:80:49:b6: af:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:E5:F2:45:83:EE:F4:44:FA:27:9C:C9:B1:04:40:07:B1:3E:58:62 X509v3 Authority Key Identifier: keyid:82:60:07:A4:E3:D1:4B:B0:B5:09:BB:96:98:45:D0:1E:B8:09:DD:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF8A/3553CFAAA37F11EC92D6FA5EC4F9AE02/gmAHpOPRS7C1CbuWmEXQHrgJ3Xo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:3f:87:43:be:3d:d1:ba:89:f8:72:a2:9b:c3:e3:12:6a:38: 5d:5a:86:91:eb:46:9b:9b:b7:c9:6d:c9:b7:71:ad:f3:55:d2: dc:a1:27:47:0a:9c:44:cd:da:e1:b1:fb:3d:76:51:55:46:34: 0d:d3:1f:bc:46:83:c2:9b:12:a0:1c:28:10:f2:b9:33:47:89: ec:4e:93:86:e7:b9:12:a6:f0:33:fe:2d:35:55:aa:a8:01:e3: d8:30:d7:78:2d:b7:e0:5d:ba:67:54:ce:93:9d:52:0a:f1:38: 60:2c:83:3f:7d:9e:20:16:e6:64:8b:f6:49:0f:30:2c:aa:24: 55:00:ca:e7:31:ac:6a:88:3e:68:da:ba:1d:91:11:60:5b:6e: c1:a9:82:e5:db:9d:95:c4:ca:54:ed:ec:81:81:99:9a:d8:e9: cb:61:00:db:53:4a:3e:1b:a8:e5:d8:35:89:a0:11:c3:1a:b8: 13:69:5a:b0:5e:a0:aa:21:b0:7f:d5:b1:e6:68:d5:f8:ec:7f: 48:0e:2b:6f:d9:be:70:98:49:de:66:b8:1d:a4:bc:e8:9a:19: ad:e8:fc:9c:a3:8d:04:86:e1:ac:e2:70:01:bd:89:a1:79:13: 07:6e:99:5d:54:97:87:f7:91:d2:5b:dd:af:5d:41:96:7d:12: 48:06:b5:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGOEExMTAvBgNVBAUTKDgyNjAwN0E0RTNEMTRCQjBCNTA5QkI5Njk4NDVEMDFF QjgwOUREN0EwHhcNMjUwNTMxMDEwMzM5WhcNMjUwNjA3MDEwMzM5WjAYMRYwFAYD VQQDEw02ODNhNTU2Yi1lMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSfD55YbuqtmlXosHov/6AdbWyGez/xll6yuo7cpP+oMNlzynMlkY/PobhkM UgfVn2SSHK2BTtXRmNCiDASqSePUd9Ay7NnyKgWk6uRPwobIuiAtZMnCoDUFPbBk o+z33SoYCziCMOPTqr73zs1DmHGFOGnE6K7wLX9+eCwfzaHbDj53vmB/nyO+9Io1 AB+7MTFDuMNP0tLLc+EK4SvQKNdcAi+a4ULAB2i35IcN0dmvG7GE8TD6xCdnmrF6 +i6CBoVsLqFrXHpcbgUq7nHxmz8o6tnnX2c2MB6n3DcGgCeAXL6AT6BjbBb8w2eC 9uP/GeNlo/a1+FmuVU6ASbavqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTl8kWD 7vRE+iecybEEQAexPlhiMB8GA1UdIwQYMBaAFIJgB6Tj0UuwtQm7lphF0B64Cd16 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREY4QS8zNTUzQ0ZBQUEz N0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3QzFDYnVXbUVYUUhyZ0oz WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtQUhwT1BSUzdDMUNidVdtRVhRSHJnSjNYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY4QS8zNTUzQ0ZBQUEzN0YxMUVDOTJENkZBNUVDNEY5QUUwMi9nbUFIcE9QUlM3 QzFDYnVXbUVYUUhyZ0ozWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMP4dDvj3Ruon4cqKbw+MSajhdWoaR60abm7fJbcm3ca3zVdLcoSdH CpxEzdrhsfs9dlFVRjQN0x+8RoPCmxKgHCgQ8rkzR4nsTpOG57kSpvAz/i01Vaqo AePYMNd4LbfgXbpnVM6TnVIK8ThgLIM/fZ4gFuZki/ZJDzAsqiRVAMrnMaxqiD5o 2rodkRFgW27BqYLl252VxMpU7eyBgZma2OnLYQDbU0o+G6jl2DWJoBHDGrgTaVqw XqCqIbB/1bHmaNX47H9IDitv2b5wmEneZrgdpLzomhmt6Pyco40EhuGs4nABvYmh eRMHbpldVJeH95HSW92vXUGWfRJIBrUR -----END CERTIFICATE-----Generated at Sat May 31 17:01:16 2025 by rpki-client