$ rpki-client -vvf rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft File: GiOYaENWXf_IAPgP8pa6sa03FOw.mft (raw, json) Hash identifier: R4YO7z8CaQitRRsSQvmP39KRjs/Aj7zHYJXnbrDTeAM= Subject key identifier: C1:EC:48:FD:8E:40:38:D6:32:C9:95:45:94:04:9B:E2:9E:AE:79:8F Authority key identifier: 1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC Certificate issuer: /CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Certificate serial: 0359 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft Manifest number: 0351 Signing time: Sat 31 May 2025 01:11:14 +0000 Manifest this update: Sat 31 May 2025 01:11:14 +0000 Manifest next update: Sat 07 Jun 2025 01:11:14 +0000 Files and hashes: 1: GiOYaENWXf_IAPgP8pa6sa03FOw.crl (hash: xNYl5li8t5cHHBoeIGbheBSNruw5IkurxnqlAUkZ7IY=) 2: 96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa (hash: bwcKq1c0r2cXBrd25MLQlHFjWgMS2hGGf/FnvA7qj34=) 3: 977ED926B7AD11ECA2E94A7EC4F9AE02.roa (hash: M4NylbqODaGIV7jb3azGtcDcoPjVhzDh1zfYrf7L1aE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F55D, serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Validity Not Before: May 31 01:11:14 2025 GMT Not After : Jun 7 01:11:14 2025 GMT Subject: CN=683a5732-785b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6f:c6:ea:16:c0:d6:99:7d:eb:54:f2:a2:3e: 05:2f:03:d9:1e:ad:46:79:5d:3e:70:cb:89:7d:d8: ba:36:37:55:ec:e6:02:ec:98:5c:48:8e:16:3d:ab: 2d:aa:5a:4a:5e:6f:ea:a2:f6:98:8b:45:52:e3:bb: ed:8b:7f:8b:06:1d:99:91:f3:fe:78:5f:8e:f5:2b: 3a:ea:79:98:b5:8a:a1:eb:fe:ca:f8:59:96:a5:ca: 72:93:36:4c:95:50:36:ad:7b:67:1a:71:d4:d9:24: 71:63:e9:a3:51:0f:7b:92:fb:64:79:f4:ec:5c:95: 11:9f:4b:90:2c:f5:98:de:f4:9b:c3:0d:54:b7:49: 9c:1b:ef:5d:8c:30:86:05:66:ff:55:92:ef:e2:29: 46:6c:0a:3d:1a:08:02:44:08:d2:75:95:3a:35:45: 3f:d6:c8:c1:2b:f3:7d:76:70:17:b4:5c:19:af:5a: ba:79:89:1a:01:56:dc:89:07:64:3d:41:55:04:24: 08:ce:06:6b:43:95:ae:71:33:b7:5a:64:58:60:68: 09:09:66:5d:15:b8:ed:c4:45:13:04:f9:3b:0f:0e: 6d:40:f4:e0:10:85:db:32:11:b3:4e:6b:7c:1f:92: 6e:77:1c:3d:03:53:de:df:3d:96:a2:28:84:79:ef: 38:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:EC:48:FD:8E:40:38:D6:32:C9:95:45:94:04:9B:E2:9E:AE:79:8F X509v3 Authority Key Identifier: keyid:1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:93:d1:c1:a7:e7:68:49:4b:c2:18:34:9f:2d:60:88:8b:77: 33:38:b2:c4:ea:4d:5b:72:3d:ef:eb:e9:1f:b9:21:41:09:b4: f4:14:f7:b4:98:7f:1f:f3:61:2a:4e:50:a5:4c:4f:37:78:06: 55:bb:f8:8f:e7:ce:c8:a7:6b:29:1a:9e:f3:fa:f9:bc:30:50: 88:95:a8:14:0c:36:be:33:d0:3d:64:c6:62:13:80:af:92:a2: 90:bc:10:52:02:10:2d:6f:57:47:66:6b:09:e2:46:ad:ac:e6: c7:04:c6:81:96:47:6a:d3:8d:51:c7:2f:51:0e:54:9b:04:f1: f1:f0:8c:4b:5a:06:09:00:5f:4f:12:98:ac:89:85:18:4b:8e: e7:38:f3:23:ff:3e:c6:b1:c6:7a:d7:21:e3:f3:40:1d:35:57: a6:df:4c:6a:2e:26:a5:32:64:ec:9d:6e:13:8e:94:68:34:84: 91:82:9f:10:e9:5a:48:52:50:8d:3b:f6:2d:c6:e6:bc:18:85: 6d:0c:91:0b:e2:1a:2b:5c:ff:14:99:94:9f:6b:54:d5:ec:2b: 60:d3:47:77:cc:c4:94:bd:3c:c7:39:37:f8:a9:60:c9:08:dc: 39:00:e5:d6:23:92:13:66:10:28:04:95:6c:96:55:17:33:33: de:2e:85:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1NUQxMTAvBgNVBAUTKDFBMjM5ODY4NDM1NjVERkZDODAwRjgwRkYyOTZCQUIx QUQzNzE0RUMwHhcNMjUwNTMxMDExMTE0WhcNMjUwNjA3MDExMTE0WjAYMRYwFAYD VQQDEw02ODNhNTczMi03ODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtG/G6hbA1pl961Tyoj4FLwPZHq1GeV0+cMuJfdi6NjdV7OYC7JhcSI4WPast qlpKXm/qovaYi0VS47vti3+LBh2ZkfP+eF+O9Ss66nmYtYqh6/7K+FmWpcpykzZM lVA2rXtnGnHU2SRxY+mjUQ97kvtkefTsXJURn0uQLPWY3vSbww1Ut0mcG+9djDCG BWb/VZLv4ilGbAo9GggCRAjSdZU6NUU/1sjBK/N9dnAXtFwZr1q6eYkaAVbciQdk PUFVBCQIzgZrQ5WucTO3WmRYYGgJCWZdFbjtxEUTBPk7Dw5tQPTgEIXbMhGzTmt8 H5Judxw9A1Pe3z2WoiiEee84+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHsSP2O QDjWMsmVRZQEm+KernmPMB8GA1UdIwQYMBaAFBojmGhDVl3/yAD4D/KWurGtNxTs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjU1RC80MEU0M0I4MEI3 QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hmX0lBUGdQOHBhNnNhMDNG T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dpT1lhRU5XWGZfSUFQZ1A4cGE2c2EwM0ZPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjU1RC80MEU0M0I4MEI3QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hm X0lBUGdQOHBhNnNhMDNGT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrk9HBp+doSUvCGDSfLWCIi3czOLLE6k1bcj3v6+kfuSFBCbT0FPe0 mH8f82EqTlClTE83eAZVu/iP587Ip2spGp7z+vm8MFCIlagUDDa+M9A9ZMZiE4Cv kqKQvBBSAhAtb1dHZmsJ4katrObHBMaBlkdq041Rxy9RDlSbBPHx8IxLWgYJAF9P EpisiYUYS47nOPMj/z7GscZ61yHj80AdNVem30xqLialMmTsnW4TjpRoNISRgp8Q 6VpIUlCNO/Ytxua8GIVtDJEL4horXP8UmZSfa1TV7Ctg00d3zMSUvTzHOTf4qWDJ CNw5AOXWI5ITZhAoBJVsllUXMzPeLoVg -----END CERTIFICATE-----Generated at Sat May 31 16:46:55 2025 by rpki-client