$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft File: gtgYhh3Upw93CNIF5LiehRTKH2w.mft (raw, json) Hash identifier: Tsr5dEsZuidCIBJbrLVYZyVLZKc6vA8AkSZUteeYaEY= Subject key identifier: 9F:75:E6:6E:33:8D:5C:B6:48:68:61:EA:16:75:A9:1F:74:54:9E:5A Authority key identifier: 82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C Certificate issuer: /CN=A91C9A8D/serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft Manifest number: 041E Signing time: Sat 31 May 2025 00:46:30 +0000 Manifest this update: Sat 31 May 2025 00:46:30 +0000 Manifest next update: Sat 07 Jun 2025 00:46:30 +0000 Files and hashes: 1: gtgYhh3Upw93CNIF5LiehRTKH2w.crl (hash: tEFotCovsTFV8HUm+mggHB6le22Fr5dn1BORDY7jkiQ=) 2: D2A57AD8DDF111EF969ABC1CC4F9AE02.roa (hash: oVUb29+C/dpDmyrIQ/S9XmPyQiqyJJ84om1g2jTlU5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Validity Not Before: May 31 00:46:30 2025 GMT Not After : Jun 7 00:46:30 2025 GMT Subject: CN=683a5166-02c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d4:80:f2:4e:7e:83:76:a5:0d:0b:5f:90:09: c0:af:0a:6c:98:31:46:72:cd:c1:75:dc:9b:2b:fd: 37:94:05:f2:25:c9:a0:98:7c:1c:79:d1:e1:9b:ba: e6:e8:2a:bc:7a:84:85:a3:9c:18:31:1e:70:6c:96: 4c:6d:ba:a3:0e:41:54:2e:bb:3c:1c:00:c7:80:cc: e6:8c:7d:ec:70:a8:0b:b0:d2:70:b0:77:4b:c4:29: 9e:45:a2:11:b1:63:c3:27:82:f0:95:17:f8:24:92: 4f:18:68:1a:ec:fa:71:21:bc:2c:cf:06:98:40:e7: b8:b9:7e:6a:79:55:58:33:0b:bc:bf:65:99:cb:af: f5:71:0b:c3:24:8e:ce:74:d3:08:50:3e:12:c4:43: 01:73:24:86:ea:7b:a1:9e:6b:c8:02:3e:dc:0f:49: 95:50:3c:77:1c:68:69:10:06:62:e5:3f:dd:84:75: d5:5b:4f:82:68:bd:05:d3:a4:ac:92:19:fd:f2:13: 65:52:d7:ee:53:61:2a:5b:c1:5a:c0:16:78:8b:90: f2:88:9c:3e:e0:6f:8f:b5:14:ec:3d:00:90:e1:69: 3c:f0:9f:3e:5b:a7:64:17:47:b1:81:83:41:b8:a1: f0:dd:d1:83:3c:03:83:68:56:5e:1b:6a:00:09:62: e9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:75:E6:6E:33:8D:5C:B6:48:68:61:EA:16:75:A9:1F:74:54:9E:5A X509v3 Authority Key Identifier: keyid:82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:33:31:95:61:df:79:a5:ab:06:39:b5:cd:27:04:3d:c9:13: 4b:a0:94:47:49:f6:6a:0b:65:f4:91:1b:18:ae:3f:6e:29:65: 2b:c3:bb:b0:0f:73:8f:2a:2e:df:5e:e5:da:a0:0a:f2:fb:b6: 20:a5:f9:49:05:78:61:8d:62:d1:8b:e5:46:d9:c2:10:e0:9a: f6:a3:ab:5a:6f:38:7c:ae:46:06:7c:22:91:16:84:27:cc:63: 7d:f6:00:d3:4c:5d:70:80:64:cf:48:a7:a4:c7:77:74:61:c3: 82:a0:8a:18:29:7e:2a:67:c6:c8:61:cd:59:26:96:72:ad:83: 09:74:07:c0:cd:e7:0b:e4:b5:88:7e:32:38:29:df:98:28:db: 97:b0:bc:7e:7b:e5:b7:b7:25:1c:33:9e:d9:75:f3:9a:85:14: a5:6a:de:82:97:ef:ef:fd:be:9c:bb:e7:57:df:95:e1:57:c8: 8f:ca:53:db:9c:ae:49:ad:c3:08:21:c4:a1:24:fd:3c:de:e8: ca:f7:ba:62:d7:99:aa:ec:f2:e9:b7:42:06:53:d4:9c:fb:c4: 9a:d1:2f:98:12:08:72:42:3a:90:e9:63:3a:45:a9:8f:92:66: ce:d0:84:63:fb:91:43:65:69:ae:86:ab:f5:5c:bd:50:65:6b: 4a:ef:86:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUE4RDExMC8GA1UEBRMoODJEODE4ODYxREQ0QTcwRjc3MDhEMjA1RTRCODlFODUx NENBMUY2QzAeFw0yNTA1MzEwMDQ2MzBaFw0yNTA2MDcwMDQ2MzBaMBgxFjAUBgNV BAMTDTY4M2E1MTY2LTAyYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn1IDyTn6DdqUNC1+QCcCvCmyYMUZyzcF13Jsr/TeUBfIlyaCYfBx50eGbuubo Krx6hIWjnBgxHnBslkxtuqMOQVQuuzwcAMeAzOaMfexwqAuw0nCwd0vEKZ5FohGx Y8MngvCVF/gkkk8YaBrs+nEhvCzPBphA57i5fmp5VVgzC7y/ZZnLr/VxC8Mkjs50 0whQPhLEQwFzJIbqe6Gea8gCPtwPSZVQPHccaGkQBmLlP92EddVbT4JovQXTpKyS Gf3yE2VS1+5TYSpbwVrAFniLkPKInD7gb4+1FOw9AJDhaTzwnz5bp2QXR7GBg0G4 ofDd0YM8A4NoVl4bagAJYulbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUn3XmbjON XLZIaGHqFnWpH3RUnlowHwYDVR0jBBgwFoAUgtgYhh3Upw93CNIF5LiehRTKH2ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QThELzMyRjFGNEMyODNF OTExRUNCODczQzg3MUM0RjlBRTAyL2d0Z1loaDNVcHc5M0NOSUY1TGllaFJUS0gy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3RnWWhoM1VwdzkzQ05JRjVMaWVoUlRLSDJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QThELzMyRjFGNEMyODNFOTExRUNCODczQzg3MUM0RjlBRTAyL2d0Z1loaDNVcHc5 M0NOSUY1TGllaFJUS0gydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF0zMZVh33mlqwY5tc0nBD3JE0uglEdJ9moLZfSRGxiuP24pZSvDu7AP c48qLt9e5dqgCvL7tiCl+UkFeGGNYtGL5UbZwhDgmvajq1pvOHyuRgZ8IpEWhCfM Y332ANNMXXCAZM9Ip6THd3Rhw4KgihgpfipnxshhzVkmlnKtgwl0B8DN5wvktYh+ Mjgp35go25ewvH575be3JRwzntl185qFFKVq3oKX7+/9vpy751ffleFXyI/KU9uc rkmtwwghxKEk/Tze6Mr3umLXmars8um3QgZT1Jz7xJrRL5gSCHJCOpDpYzpFqY+S Zs7QhGP7kUNlaa6Gq/VcvVBla0rvhlE= -----END CERTIFICATE-----Generated at Sat May 31 16:31:25 2025 by rpki-client