$ rpki-client -vvf rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft File: GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft (raw, json) Hash identifier: zgHjZxuhHOHuVfT/u3IFf2qMhfoyt9VSunPXkxSwauY= Subject key identifier: 86:08:9E:51:CE:7E:9E:65:87:4E:67:B8:1F:1A:68:46:13:C3:4C:D4 Authority key identifier: 19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA Certificate issuer: /CN=A917B83F/serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Certificate serial: 14E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft Manifest number: 14DB Signing time: Fri 30 May 2025 17:01:14 +0000 Manifest this update: Fri 30 May 2025 17:01:13 +0000 Manifest next update: Fri 06 Jun 2025 17:01:13 +0000 Files and hashes: 1: GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl (hash: Er7SqpwzvFMd/SB/x9gq7l/QfC6jFbZDy95dVB2Qno4=) 2: 0964A56EF35511E8AC1ECA17C4F9AE02.roa (hash: ts6CuXT017m+Eo1tnvA5GQ371D5wqgoVWLN1l6w+WmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5349 (0x14e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B83F, serialNumber=1980355299B6C2237B4235000F723597BFEB33DA Validity Not Before: May 30 17:01:13 2025 GMT Not After : Jun 6 17:01:13 2025 GMT Subject: CN=6839e459-cdaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9d:ed:bc:8c:09:c8:7c:90:71:9a:cc:5b:a8: 9e:21:e6:6b:64:98:e4:5c:80:7d:14:30:cb:64:b0: 76:51:04:ca:58:02:87:7f:5e:bd:74:15:b6:bd:07: 39:6a:2e:97:56:08:d2:15:86:1d:a6:66:bf:ff:b0: 51:43:2c:fe:bd:8f:fd:b3:f8:4c:a4:6b:12:47:ed: 81:39:99:28:cd:50:26:24:e2:e7:e1:78:f7:69:50: 29:e5:4b:1d:a4:68:71:57:8f:fd:9a:bf:d7:25:af: 00:57:93:3b:b3:5f:86:ed:8a:01:a0:9f:df:71:7f: e3:a5:81:eb:0f:7f:ee:34:96:93:8d:c2:a1:c1:62: d4:89:bf:1f:9e:6a:3f:c8:8b:18:e8:5c:6b:78:50: 3e:5c:69:80:43:bb:66:a8:0b:5f:07:a6:e2:ed:0f: e1:a3:6a:18:82:93:ec:a4:8d:42:13:04:f5:d4:fb: b7:4f:4e:3c:6a:bb:c5:82:f4:d1:8a:2f:6c:76:ad: f0:98:d1:a6:bd:0c:ec:40:82:95:6a:97:69:e5:a4: 44:bc:4a:0d:6d:0c:bf:f1:7d:86:67:0f:3f:61:f1: 86:c5:80:58:18:8a:a0:6e:06:4e:c8:f9:10:df:01: 99:b0:32:5a:bf:e6:cc:5f:68:af:98:26:29:a6:62: d6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:08:9E:51:CE:7E:9E:65:87:4E:67:B8:1F:1A:68:46:13:C3:4C:D4 X509v3 Authority Key Identifier: keyid:19:80:35:52:99:B6:C2:23:7B:42:35:00:0F:72:35:97:BF:EB:33:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYA1Upm2wiN7QjUAD3I1l7_rM9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B83F/3DB3DBEA554F11E89BC2E857C4F9AE02/GYA1Upm2wiN7QjUAD3I1l7_rM9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:bc:55:b1:58:62:8d:08:e3:a4:1f:56:bd:be:15:a0:c5:fc: 9d:9a:0b:6c:08:0c:55:a4:f2:4d:45:82:19:28:14:9d:3a:d0: 95:e3:41:44:d4:3f:32:ed:e3:7a:90:f8:fb:4b:59:a4:f8:47: 93:ae:59:04:5f:e2:0e:97:fe:c3:60:0c:b9:9f:a0:4c:57:b3: bb:d7:ad:41:ce:bb:a0:32:b9:da:f7:e7:fd:b7:4a:04:f0:10: a2:36:b6:b2:61:e9:d8:dc:33:10:07:37:eb:5f:27:1e:61:02: ad:f0:b7:b8:94:0e:ae:12:08:04:21:eb:6e:9e:bf:40:b0:4e: 67:ed:98:b8:5e:ed:2a:d4:56:12:7a:94:09:0d:5b:27:65:4d: 4e:61:e5:a4:e2:4d:86:2b:74:61:8e:74:46:3c:17:72:21:83: 20:e2:e6:00:6e:99:0e:9e:67:de:a8:8d:2f:56:bf:ec:6b:23: 12:36:0e:36:28:62:32:b6:46:b7:83:c7:07:69:b0:d0:86:ab: 6d:da:fe:80:a8:40:44:a2:10:2c:9d:ed:86:8c:b0:2e:d6:bd: ff:84:d7:e0:df:c5:e0:70:83:0a:9f:b1:03:e2:d8:6a:12:a2: 57:ec:9b:7f:5a:46:71:ed:1d:45:be:fb:2e:e2:7b:eb:90:ed: d3:40:4f:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I4M0YxMTAvBgNVBAUTKDE5ODAzNTUyOTlCNkMyMjM3QjQyMzUwMDBGNzIzNTk3 QkZFQjMzREEwHhcNMjUwNTMwMTcwMTEzWhcNMjUwNjA2MTcwMTEzWjAYMRYwFAYD VQQDEw02ODM5ZTQ1OS1jZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm53tvIwJyHyQcZrMW6ieIeZrZJjkXIB9FDDLZLB2UQTKWAKHf169dBW2vQc5 ai6XVgjSFYYdpma//7BRQyz+vY/9s/hMpGsSR+2BOZkozVAmJOLn4Xj3aVAp5Usd pGhxV4/9mr/XJa8AV5M7s1+G7YoBoJ/fcX/jpYHrD3/uNJaTjcKhwWLUib8fnmo/ yIsY6FxreFA+XGmAQ7tmqAtfB6bi7Q/ho2oYgpPspI1CEwT11Pu3T048arvFgvTR ii9sdq3wmNGmvQzsQIKVapdp5aREvEoNbQy/8X2GZw8/YfGGxYBYGIqgbgZOyPkQ 3wGZsDJav+bMX2ivmCYppmLWUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYInlHO fp5lh05nuB8aaEYTw0zUMB8GA1UdIwQYMBaAFBmANVKZtsIje0I1AA9yNZe/6zPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjgzRi8zREIzREJFQTU1 NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndpTjdRalVBRDNJMWw3X3JN OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZQTFVcG0yd2lON1FqVUFEM0kxbDdfck05by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjgzRi8zREIzREJFQTU1NEYxMUU4OUJDMkU4NTdDNEY5QUUwMi9HWUExVXBtMndp TjdRalVBRDNJMWw3X3JNOW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOvFWxWGKNCOOkH1a9vhWgxfydmgtsCAxVpPJNRYIZKBSdOtCV40FE 1D8y7eN6kPj7S1mk+EeTrlkEX+IOl/7DYAy5n6BMV7O7161BzrugMrna9+f9t0oE 8BCiNrayYenY3DMQBzfrXyceYQKt8Le4lA6uEggEIetunr9AsE5n7Zi4Xu0q1FYS epQJDVsnZU1OYeWk4k2GK3RhjnRGPBdyIYMg4uYAbpkOnmfeqI0vVr/sayMSNg42 KGIytka3g8cHabDQhqtt2v6AqEBEohAsne2GjLAu1r3/hNfg38XgcIMKn7ED4thq EqJX7Jt/WkZx7R1Fvvsu4nvrkO3TQE8k -----END CERTIFICATE-----Generated at Sat May 31 16:59:20 2025 by rpki-client