$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft File: GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft (raw, json) Hash identifier: ci0eQUhIW64TId2iMqJcL4P0hRezrylq18kov4MKFRw= Subject key identifier: C9:81:F3:F7:8E:E8:9E:00:9E:A4:89:0D:B9:DB:89:59:F8:6F:AE:63 Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 03D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft Manifest number: 03A7 Signing time: Sat 31 May 2025 01:06:58 +0000 Manifest this update: Sat 31 May 2025 01:06:58 +0000 Manifest next update: Sat 07 Jun 2025 01:06:58 +0000 Files and hashes: 1: GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl (hash: Mf6TtwDN1tTCiuVryRN8OnJ4qqT29ohycFf25vj6cjg=) 2: 3D3FCB5EC8F911EFA0603266C4F9AE02.roa (hash: 8BJmRiErzxldmGuPcVm3YUprnJm+HfKbTIGSnCrNI1I=) 3: F0223A56C8F711EFB2542D5FC4F9AE02.roa (hash: slEYVdAk6tIbZpblC8w7KpBF1oowZxGxHf1f2574AkA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 978 (0x3d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720, serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: May 31 01:06:58 2025 GMT Not After : Jun 7 01:06:58 2025 GMT Subject: CN=683a5632-109d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fc:c5:72:28:5b:c5:b3:9f:de:65:5d:f7:d8: 3f:31:70:46:b1:1c:0f:f6:5f:f8:c2:cc:12:45:48: 9c:c8:90:84:e6:0d:7a:cc:90:05:de:f8:31:d2:b1: 5b:0b:36:62:d5:d8:97:ba:f5:a6:87:a0:b6:32:8e: ab:c2:22:d9:db:ba:e6:06:26:9a:6e:45:18:ec:ac: cd:f5:f3:2a:0e:bd:5e:34:de:be:da:58:00:2d:d9: 96:4d:ed:77:2f:58:07:6f:24:62:6f:c5:53:d1:57: ef:dc:cd:9d:d7:ee:2c:34:32:5c:ea:43:89:63:3a: 19:ff:9b:c0:06:87:8e:e1:0f:d3:d9:49:ef:57:18: c1:42:6f:35:0b:ec:1f:bb:e8:ff:ed:61:2f:c7:b6: 59:43:04:77:74:46:79:3e:ad:0c:a2:b7:b0:a4:70: 29:5b:22:83:fc:5b:3c:87:1a:b5:34:c5:35:43:ce: d5:89:5c:3d:07:83:f8:9e:78:dd:66:7a:be:ec:c6: dd:c4:89:0a:79:65:1f:d7:d2:2d:ba:cc:a2:f4:95: 6c:73:31:87:cd:82:6e:98:fd:3f:92:fa:8b:49:2e: dd:5f:1b:25:e9:6c:26:68:79:36:62:28:65:e9:5c: 70:ea:c5:be:f1:42:71:1b:93:43:13:29:d0:1d:72: 4d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:81:F3:F7:8E:E8:9E:00:9E:A4:89:0D:B9:DB:89:59:F8:6F:AE:63 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:67:d4:c8:82:4c:3e:5f:0b:a6:49:eb:0f:b0:44:10:86:b3: 7b:3a:8d:ce:f3:23:a3:96:29:bc:b2:34:cb:aa:76:64:b9:78: 95:1d:c2:b7:6c:d4:44:26:51:44:d2:3f:fc:bb:e9:53:82:15: 1d:69:2b:dd:11:d3:b9:51:de:de:03:b3:12:00:7d:e8:d9:90: fe:0d:c0:22:74:08:d7:09:86:3a:51:6c:d6:31:79:44:ef:9f: f6:7c:1b:e6:51:ad:81:de:74:c1:50:d1:67:f9:13:5f:ae:11: 8f:4e:b3:db:ce:9c:92:05:e7:81:0c:c1:7d:85:83:15:cb:44: 3f:96:78:c9:24:7b:21:d7:8d:9d:11:fc:77:1f:e2:54:35:b6: 6d:e5:f8:90:33:db:0e:9c:e0:0f:3f:86:f0:cf:7b:65:77:2c: 54:59:08:fb:89:d3:88:84:95:73:ac:de:ee:c7:bf:5c:ad:af: df:43:ff:3b:31:b3:c6:41:30:a7:77:8d:31:b4:58:dc:3c:a8: 02:fa:cd:53:a5:67:81:5f:1d:fb:3a:cf:8a:60:33:ae:1f:15: 4b:50:7b:b9:ac:42:da:38:1e:71:ec:d9:eb:7d:90:71:7b:12: e1:6b:f0:1d:eb:63:8c:a1:b5:f5:dd:bd:15:6a:13:d5:53:df: df:78:e8:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjUwNTMxMDEwNjU4WhcNMjUwNjA3MDEwNjU4WjAYMRYwFAYD VQQDEw02ODNhNTYzMi0xMDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvzFcihbxbOf3mVd99g/MXBGsRwP9l/4wswSRUicyJCE5g16zJAF3vgx0rFb CzZi1diXuvWmh6C2Mo6rwiLZ27rmBiaabkUY7KzN9fMqDr1eNN6+2lgALdmWTe13 L1gHbyRib8VT0Vfv3M2d1+4sNDJc6kOJYzoZ/5vABoeO4Q/T2UnvVxjBQm81C+wf u+j/7WEvx7ZZQwR3dEZ5Pq0MorewpHApWyKD/Fs8hxq1NMU1Q87ViVw9B4P4nnjd Znq+7MbdxIkKeWUf19Itusyi9JVsczGHzYJumP0/kvqLSS7dXxsl6WwmaHk2Yihl 6Vxw6sW+8UJxG5NDEynQHXJN8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmB8/eO 6J4AnqSJDbnbiVn4b65jMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDcyMC8yMDlGOEI3NEE3OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZM X0c2UkkyeXdodFQtS3dtVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5Z9TIgkw+XwumSesPsEQQhrN7Oo3O8yOjlim8sjTLqnZkuXiVHcK3 bNREJlFE0j/8u+lTghUdaSvdEdO5Ud7eA7MSAH3o2ZD+DcAidAjXCYY6UWzWMXlE 75/2fBvmUa2B3nTBUNFn+RNfrhGPTrPbzpySBeeBDMF9hYMVy0Q/lnjJJHsh142d Efx3H+JUNbZt5fiQM9sOnOAPP4bwz3tldyxUWQj7idOIhJVzrN7ux79cra/fQ/87 MbPGQTCnd40xtFjcPKgC+s1TpWeBXx37Os+KYDOuHxVLUHu5rELaOB5x7NnrfZBx exLha/Ad62OMobX13b0VahPVU9/feOie -----END CERTIFICATE-----Generated at Sat May 31 17:45:05 2025 by rpki-client