$ rpki-client -vvf rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft File: GiOYaENWXf_IAPgP8pa6sa03FOw.mft (raw, json) Hash identifier: 3Zz8sx5ye/iChQFDXc8wBt+XshFfhAMd0H5hipGWyVY= Subject key identifier: 3A:C0:5D:48:FA:D4:0C:3E:84:51:AE:60:BD:F8:75:3A:15:FA:AE:37 Authority key identifier: 1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC Certificate issuer: /CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Certificate serial: 033E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft Manifest number: 0336 Signing time: Sat 05 Apr 2025 01:13:10 +0000 Manifest this update: Sat 05 Apr 2025 01:13:09 +0000 Manifest next update: Sat 12 Apr 2025 01:13:09 +0000 Files and hashes: 1: GiOYaENWXf_IAPgP8pa6sa03FOw.crl (hash: WyYYSfNSOQO4+4U6Rs5Wt388ru0Yc30G33yT/3gnpaI=) 2: 96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa (hash: bwcKq1c0r2cXBrd25MLQlHFjWgMS2hGGf/FnvA7qj34=) 3: 977ED926B7AD11ECA2E94A7EC4F9AE02.roa (hash: M4NylbqODaGIV7jb3azGtcDcoPjVhzDh1zfYrf7L1aE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 830 (0x33e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F55D Validity Not Before: Apr 5 01:13:09 2025 GMT Not After : Apr 12 01:13:09 2025 GMT Subject: CN=67f083a5-a6df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dd:87:24:a0:e2:86:9b:29:94:b9:4f:02:57: ab:24:a4:3d:38:32:64:ac:12:1e:2e:fc:68:41:87: 38:d1:47:69:51:25:e5:b5:85:23:7b:90:eb:8b:55: 28:6e:f4:b8:a4:01:a3:3e:c9:bd:69:58:c6:37:9b: ba:ad:2d:30:34:c0:0a:7f:a4:a2:c6:99:6b:88:4c: c4:f6:9f:f2:ec:a6:bb:a9:29:fd:90:9a:0b:c2:17: 9e:0d:35:64:db:3f:ea:05:cb:a8:52:ec:36:ed:50: 5d:bb:23:fc:b8:c7:6e:50:d0:af:b0:8c:98:f5:15: 34:3f:da:bc:ed:2c:12:ee:e1:a9:89:92:bd:89:a2: d2:bd:9a:ce:f4:38:33:66:7e:45:68:89:6e:ce:d1: 0c:3c:52:1c:e5:61:32:9e:79:79:4d:95:2e:2b:6d: 17:29:b4:a1:56:08:0a:33:f3:5b:1c:b0:91:a1:d6: 00:00:ae:43:26:f0:13:fd:e1:8d:ca:61:cb:8c:6f: 43:35:8f:8a:7b:a4:1d:f4:92:71:8e:c7:e0:ba:e7: fe:22:3d:46:c0:f9:58:4d:26:66:61:1b:d5:ed:08: c8:a7:c7:d0:48:f5:c3:5e:81:5e:f3:77:1f:27:e7: f1:fd:77:74:ed:49:f8:bb:d7:a0:61:e2:d7:47:68: f9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C0:5D:48:FA:D4:0C:3E:84:51:AE:60:BD:F8:75:3A:15:FA:AE:37 X509v3 Authority Key Identifier: keyid:1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:0d:47:76:05:cd:12:ad:b4:ea:e6:70:4d:b4:2e:3a:9a:5e: 05:36:1b:83:3d:00:ec:68:85:77:50:9a:0c:2f:61:45:ae:9a: 20:88:da:43:0b:85:50:4d:06:2d:f6:ee:24:49:e6:fe:33:ba: 94:f1:8d:f5:ac:f5:15:18:96:51:b5:66:85:f3:cd:41:c4:11: df:d2:b6:f5:8a:23:60:05:4a:e4:e4:b7:dc:3d:53:77:da:45: 2f:26:a8:61:cf:ab:0a:af:b5:a4:d7:b5:10:93:29:4b:6b:79: 6b:0a:f7:0f:3e:f1:15:5a:e1:0f:7c:e6:ad:5c:8e:18:7b:12: 67:b3:9d:30:54:62:a3:d5:53:05:9f:d6:7c:18:ec:9c:29:c0: 1b:8c:93:92:b8:93:b5:7c:45:e4:e1:d7:ea:83:52:e3:d4:45: bb:16:02:f9:ea:6c:72:30:bc:04:6d:11:f7:91:6a:ac:cc:1b: 49:f9:b8:7c:9e:bd:cf:91:95:37:03:93:3e:8f:cb:63:98:c8: f9:fa:76:76:a3:ef:6d:90:e0:52:27:07:9e:20:ce:65:3b:70: 31:64:45:dc:79:02:f9:fd:7a:39:37:21:01:65:a9:62:2f:bb: 71:61:0c:c5:d2:e1:47:46:ee:d4:00:cc:a1:32:42:1f:e3:fc: ba:a3:9e:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1NUQxMTAvBgNVBAUTKDFBMjM5ODY4NDM1NjVERkZDODAwRjgwRkYyOTZCQUIx QUQzNzE0RUMwHhcNMjUwNDA1MDExMzA5WhcNMjUwNDEyMDExMzA5WjAYMRYwFAYD VQQDEw02N2YwODNhNS1hNmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvt2HJKDihpsplLlPAlerJKQ9ODJkrBIeLvxoQYc40UdpUSXltYUje5Dri1Uo bvS4pAGjPsm9aVjGN5u6rS0wNMAKf6SixplriEzE9p/y7Ka7qSn9kJoLwheeDTVk 2z/qBcuoUuw27VBduyP8uMduUNCvsIyY9RU0P9q87SwS7uGpiZK9iaLSvZrO9Dgz Zn5FaIluztEMPFIc5WEynnl5TZUuK20XKbShVggKM/NbHLCRodYAAK5DJvAT/eGN ymHLjG9DNY+Ke6Qd9JJxjsfguuf+Ij1GwPlYTSZmYRvV7QjIp8fQSPXDXoFe83cf J+fx/Xd07Un4u9egYeLXR2j5JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrAXUj6 1Aw+hFGuYL34dToV+q43MB8GA1UdIwQYMBaAFBojmGhDVl3/yAD4D/KWurGtNxTs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjU1RC80MEU0M0I4MEI3 QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hmX0lBUGdQOHBhNnNhMDNG T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dpT1lhRU5XWGZfSUFQZ1A4cGE2c2EwM0ZPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjU1RC80MEU0M0I4MEI3QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hm X0lBUGdQOHBhNnNhMDNGT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrDUd2Bc0SrbTq5nBNtC46ml4FNhuDPQDsaIV3UJoML2FFrpogiNpD C4VQTQYt9u4kSeb+M7qU8Y31rPUVGJZRtWaF881BxBHf0rb1iiNgBUrk5LfcPVN3 2kUvJqhhz6sKr7Wk17UQkylLa3lrCvcPPvEVWuEPfOatXI4YexJns50wVGKj1VMF n9Z8GOycKcAbjJOSuJO1fEXk4dfqg1Lj1EW7FgL56mxyMLwEbRH3kWqszBtJ+bh8 nr3PkZU3A5M+j8tjmMj5+nZ2o+9tkOBSJweeIM5lO3AxZEXceQL5/Xo5NyEBZali L7txYQzF0uFHRu7UAMyhMkIf4/y6o56f -----END CERTIFICATE-----Generated at Sat Apr 5 05:04:58 2025 by rpki-client