$ rpki-client -vvf rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft File: GnpQ1SFaklkRBAawtpNvrhTqfYM.mft (raw, json) Hash identifier: z+xOtq1VFilc4f2uHfumzVCMAuHVzWM2t0gLRIXK4vA= Subject key identifier: 8A:CF:9B:94:33:B1:0F:47:1A:53:77:64:53:31:19:23:EA:E9:FE:6F Authority key identifier: 1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 Certificate issuer: /CN=A91944F8/serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Certificate serial: 04D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft Manifest number: 04CF Signing time: Sat 31 May 2025 00:00:08 +0000 Manifest this update: Sat 31 May 2025 00:00:08 +0000 Manifest next update: Sat 07 Jun 2025 00:00:08 +0000 Files and hashes: 1: GnpQ1SFaklkRBAawtpNvrhTqfYM.crl (hash: Rv+HeaOu9x4Rc/+iDlC/tS9+Jw9DVQYv/mQE508aql4=) 2: 6458CE6420F711EC896F8D43C4F9AE02.roa (hash: 40Tp9vYlwNjlXHzULzghK25QKYAH3IMjVH7JAvH5N/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1236 (0x4d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944F8, serialNumber=1A7A50D5215A9259110406B0B6936FAE14EA7D83 Validity Not Before: May 31 00:00:08 2025 GMT Not After : Jun 7 00:00:08 2025 GMT Subject: CN=683a4688-ab13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:36:92:c5:81:4d:7d:10:03:b6:85:c6:98:38: c9:d1:9a:ad:b1:a0:90:2d:ff:b8:f2:71:1c:38:c2: 32:f2:b8:9e:bb:44:87:a8:90:9c:89:63:88:7c:b7: 9b:e8:72:29:e1:f1:80:bb:c1:37:e5:6a:20:35:5b: 7a:a4:4e:46:f2:92:7c:48:39:90:4e:0a:79:2a:f4: d2:74:ad:7a:be:1f:6a:e2:17:04:4c:53:82:9f:cd: 0e:c1:b6:68:bb:23:9f:09:ce:3c:ff:20:cc:d2:9c: dd:16:dc:30:42:09:32:d1:d6:99:cd:9a:5b:25:d8: b9:72:21:9d:36:30:56:4a:5f:0c:40:24:75:61:57: 38:80:c3:a2:f0:1b:cb:cc:94:18:57:85:ce:e6:d1: 74:7f:cb:95:60:b3:f5:df:cb:99:b1:fc:16:25:83: c7:fe:6c:47:b1:18:33:6e:57:9f:91:ce:13:f5:15: c8:a7:5a:93:12:3e:97:e9:a4:26:3d:aa:80:29:3c: 6d:50:8d:3a:46:5b:f2:82:54:6e:e4:19:81:95:f4: 87:ee:8a:27:bd:9c:5f:d5:69:56:f3:99:29:73:b3: a6:f7:c5:99:8a:1e:62:ba:aa:d7:13:fb:ad:09:64: 42:1a:50:3c:61:ce:b9:af:4d:43:5f:a9:af:90:23: 08:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CF:9B:94:33:B1:0F:47:1A:53:77:64:53:31:19:23:EA:E9:FE:6F X509v3 Authority Key Identifier: keyid:1A:7A:50:D5:21:5A:92:59:11:04:06:B0:B6:93:6F:AE:14:EA:7D:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GnpQ1SFaklkRBAawtpNvrhTqfYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944F8/654861D820F511ECA675C442C4F9AE02/GnpQ1SFaklkRBAawtpNvrhTqfYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:9b:55:94:72:42:1f:2c:09:98:67:5c:44:f2:77:b0:5f:1c: 05:5c:11:1e:05:e9:ec:d5:24:fe:16:71:bb:86:34:7d:b1:26: 6e:ad:aa:21:3a:99:8e:c7:d2:d9:8a:48:e4:03:29:e0:70:28: f5:69:02:fe:51:29:26:4a:a1:af:e2:cd:71:3e:44:03:53:45: 7a:1d:00:a8:42:34:18:79:b2:7a:cf:a8:b5:a3:7e:62:b3:13: a7:81:cb:f1:12:b2:f2:3e:75:a8:7e:6f:32:42:66:a1:8a:58: 81:7e:db:6a:11:21:fb:94:c6:f1:f9:fc:95:d1:2d:d5:ff:eb: a2:93:bc:a4:df:9d:83:10:53:87:54:68:16:78:ce:07:bd:7a: 41:3b:2d:34:de:7c:6e:c1:17:d7:a6:53:41:16:aa:54:87:67: 1b:f7:64:11:c0:f1:c6:09:03:14:65:e1:ed:a1:80:a3:d0:8a: 23:8e:13:c2:fd:ca:fe:f9:56:86:b1:91:96:60:2f:c5:57:7a: 42:17:dd:4a:b1:b8:0d:83:13:71:0d:34:fe:e3:f4:d6:f7:06: 2a:cb:45:1c:c1:07:34:de:b4:e9:97:c2:83:43:fb:52:5e:6a: e1:38:f5:24:fa:6a:d8:d1:81:8c:7f:50:22:62:68:55:ac:2d: 19:92:00:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0RjgxMTAvBgNVBAUTKDFBN0E1MEQ1MjE1QTkyNTkxMTA0MDZCMEI2OTM2RkFF MTRFQTdEODMwHhcNMjUwNTMxMDAwMDA4WhcNMjUwNjA3MDAwMDA4WjAYMRYwFAYD VQQDEw02ODNhNDY4OC1hYjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDaSxYFNfRADtoXGmDjJ0ZqtsaCQLf+48nEcOMIy8rieu0SHqJCciWOIfLeb 6HIp4fGAu8E35WogNVt6pE5G8pJ8SDmQTgp5KvTSdK16vh9q4hcETFOCn80OwbZo uyOfCc48/yDM0pzdFtwwQgky0daZzZpbJdi5ciGdNjBWSl8MQCR1YVc4gMOi8BvL zJQYV4XO5tF0f8uVYLP138uZsfwWJYPH/mxHsRgzblefkc4T9RXIp1qTEj6X6aQm PaqAKTxtUI06RlvyglRu5BmBlfSH7oonvZxf1WlW85kpc7Om98WZih5iuqrXE/ut CWRCGlA8Yc65r01DX6mvkCMInwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrPm5Qz sQ9HGlN3ZFMxGSPq6f5vMB8GA1UdIwQYMBaAFBp6UNUhWpJZEQQGsLaTb64U6n2D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRGOC82NTQ4NjFEODIw RjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWtsa1JCQWF3dHBOdnJoVHFm WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducFExU0Zha2xrUkJBYXd0cE52cmhUcWZZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRGOC82NTQ4NjFEODIwRjUxMUVDQTY3NUM0NDJDNEY5QUUwMi9HbnBRMVNGYWts a1JCQWF3dHBOdnJoVHFmWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxm1WUckIfLAmYZ1xE8newXxwFXBEeBens1ST+FnG7hjR9sSZuraoh OpmOx9LZikjkAyngcCj1aQL+USkmSqGv4s1xPkQDU0V6HQCoQjQYebJ6z6i1o35i sxOngcvxErLyPnWofm8yQmahiliBfttqESH7lMbx+fyV0S3V/+uik7yk352DEFOH VGgWeM4HvXpBOy003nxuwRfXplNBFqpUh2cb92QRwPHGCQMUZeHtoYCj0IojjhPC /cr++VaGsZGWYC/FV3pCF91KsbgNgxNxDTT+4/TW9wYqy0UcwQc03rTpl8KDQ/tS XmrhOPUk+mrY0YGMf1AiYmhVrC0ZkgDs -----END CERTIFICATE-----Generated at Sat May 31 17:49:37 2025 by rpki-client