$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft File: g1GgqJRYpHQmpXCgKQH45lQuguI.mft (raw, json) Hash identifier: QZGo4MxB8CnMJw4nh4hPJm5cmZws7ygsKgYF7oFLjPw= Subject key identifier: 24:00:D6:1B:C0:13:F7:D1:C7:BF:CA:20:7D:54:DB:B8:C4:F8:E3:D0 Authority key identifier: 83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 Certificate issuer: /CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Certificate serial: 0442 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft Manifest number: 0433 Signing time: Sat 31 May 2025 00:34:47 +0000 Manifest this update: Sat 31 May 2025 00:34:46 +0000 Manifest next update: Sat 07 Jun 2025 00:34:46 +0000 Files and hashes: 1: g1GgqJRYpHQmpXCgKQH45lQuguI.crl (hash: O1kAjGADmWH9bqmQf4OGeSbeQaRMnldXQCZn/14k+S0=) 2: D516EA2AA1E611EDABFD7D7FC4F9AE02.roa (hash: bFGAY7gHkrvRuSHehHQRzFx9uBqTtWyMVWm0D4E7juI=) 3: D3E15ECEA1E611EDABFD7D7FC4F9AE02.roa (hash: lpjw5BWb1D28FIiM0Q0zwOopAGhOPre90gYeT7boapw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1090 (0x442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D3D, serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Validity Not Before: May 31 00:34:46 2025 GMT Not After : Jun 7 00:34:46 2025 GMT Subject: CN=683a4ea7-af19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:01:df:31:e3:e3:e8:29:7a:ec:e8:a0:4a:82: aa:6d:42:82:80:2d:22:36:fc:bb:a4:fd:38:5d:99: f1:e0:3f:02:85:af:9c:f1:9a:14:5a:b7:59:74:75: 07:7a:83:c0:60:6c:9a:44:7f:ea:d9:ba:db:21:d1: 34:ea:7f:7a:2d:54:98:a1:19:2a:7a:79:94:c4:49: c6:13:e4:b8:bc:9e:c0:91:e2:65:21:e9:61:8b:3c: b7:fa:52:f5:d3:b1:b5:ac:71:bd:a5:4b:f3:0c:19: e3:ce:3a:d5:f1:90:46:6f:4e:da:e6:73:63:28:69: e0:79:e0:d7:3a:74:27:ff:79:5a:f8:ca:32:1c:45: 1d:80:ed:04:62:f0:9b:cb:13:36:5a:1c:f1:8b:68: 35:8f:14:b6:93:26:7f:32:27:e9:5d:ef:42:d8:20: 8e:ec:b4:c3:44:f3:d2:bd:d3:98:50:64:05:81:71: 6a:fd:e1:db:85:06:3a:cf:45:d6:44:6a:c2:44:ee: dd:32:76:e5:63:dc:a6:28:24:3b:66:34:4e:94:4b: 9f:f8:b7:11:9c:3e:2a:fb:8a:e2:d5:86:e0:50:41: 4f:cc:b6:e8:48:55:84:2a:d9:19:fb:39:db:20:fd: 12:b9:58:a9:af:5d:7b:97:3d:37:6e:1d:80:8a:8d: d5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:00:D6:1B:C0:13:F7:D1:C7:BF:CA:20:7D:54:DB:B8:C4:F8:E3:D0 X509v3 Authority Key Identifier: keyid:83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:29:65:21:76:8f:37:1d:9b:a2:87:46:ab:79:e7:4b:09:45: d4:01:f9:ce:97:e3:1b:dc:7b:0b:35:ec:fa:d6:6b:b1:3a:b7: f3:73:20:79:a8:89:e1:55:ec:96:82:9a:35:bc:5b:0f:31:31: 74:51:28:bb:05:91:44:5d:db:02:e6:cb:70:3d:21:c6:5c:7d: 0a:5b:29:9e:bb:fa:68:31:b3:e8:60:8e:91:d4:6a:06:e0:b1: ac:5e:c9:33:54:aa:eb:0c:85:80:78:6f:1d:81:b6:f4:cb:76: 1d:56:a2:26:5c:de:d5:bf:a6:04:d8:e8:ba:60:30:75:5e:75: 41:de:71:c8:04:5e:f4:6a:27:20:55:da:d6:b8:40:2c:83:30: 6a:b8:5d:0c:d5:7e:b0:52:93:cd:ca:e6:58:9f:ae:ee:fa:a2: 1f:ff:e4:fc:34:74:6a:2f:b8:e1:2a:4b:e7:f0:0c:dd:e0:cb: 42:f9:2d:42:ff:27:32:0a:53:85:93:fa:41:7e:d6:6a:43:0b: 82:ae:f3:8a:1b:9f:b4:0f:49:83:52:c7:1b:18:45:c2:22:d9: 37:b4:b9:40:f6:00:7e:01:4b:14:2d:fa:65:9c:68:6c:92:3f: 8f:a0:58:e2:69:3c:a0:5d:cd:08:5a:33:0d:63:77:31:0b:db: 00:3d:18:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEM0QxMTAvBgNVBAUTKDgzNTFBMEE4OTQ1OEE0NzQyNkE1NzBBMDI5MDFGOEU2 NTQyRTgyRTIwHhcNMjUwNTMxMDAzNDQ2WhcNMjUwNjA3MDAzNDQ2WjAYMRYwFAYD VQQDEw02ODNhNGVhNy1hZjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQHfMePj6Cl67OigSoKqbUKCgC0iNvy7pP04XZnx4D8Cha+c8ZoUWrdZdHUH eoPAYGyaRH/q2brbIdE06n96LVSYoRkqenmUxEnGE+S4vJ7AkeJlIelhizy3+lL1 07G1rHG9pUvzDBnjzjrV8ZBGb07a5nNjKGngeeDXOnQn/3la+MoyHEUdgO0EYvCb yxM2Whzxi2g1jxS2kyZ/MifpXe9C2CCO7LTDRPPSvdOYUGQFgXFq/eHbhQY6z0XW RGrCRO7dMnblY9ymKCQ7ZjROlEuf+LcRnD4q+4ri1YbgUEFPzLboSFWEKtkZ+znb IP0SuVipr117lz03bh2Aio3V6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQA1hvA E/fRx7/KIH1U27jE+OPQMB8GA1UdIwQYMBaAFINRoKiUWKR0JqVwoCkB+OZULoLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QzRC8yMzNDMEI0NjYz QkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBIUW1wWENnS1FINDVsUXVn dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxR2dxSlJZcEhRbXBYQ2dLUUg0NWxRdWd1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QzRC8yMzNDMEI0NjYzQkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBI UW1wWENnS1FINDVsUXVndUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXKWUhdo83HZuih0areedLCUXUAfnOl+Mb3HsLNez61muxOrfzcyB5 qInhVeyWgpo1vFsPMTF0USi7BZFEXdsC5stwPSHGXH0KWymeu/poMbPoYI6R1GoG 4LGsXskzVKrrDIWAeG8dgbb0y3YdVqImXN7Vv6YE2Oi6YDB1XnVB3nHIBF70aicg VdrWuEAsgzBquF0M1X6wUpPNyuZYn67u+qIf/+T8NHRqL7jhKkvn8Azd4MtC+S1C /ycyClOFk/pBftZqQwuCrvOKG5+0D0mDUscbGEXCItk3tLlA9gB+AUsULfplnGhs kj+PoFjiaTygXc0IWjMNY3cxC9sAPRgR -----END CERTIFICATE-----Generated at Sat May 31 17:44:07 2025 by rpki-client