$ rpki-client -vvf rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft File: gmtVkqw4sBK358JzDdBgfhDbgQI.mft (raw, json) Hash identifier: 41bXJcAiu1civgAIX8Z4ZFpjET81KqWDbzJ+saOFAGs= Subject key identifier: AA:AC:93:7F:57:D3:86:D0:D0:39:73:A5:77:B8:F3:0B:9A:E3:4F:11 Authority key identifier: 82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 Certificate issuer: /CN=A91D23C7/serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Certificate serial: 052E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft Manifest number: 0528 Signing time: Fri 30 May 2025 23:44:21 +0000 Manifest this update: Fri 30 May 2025 23:44:20 +0000 Manifest next update: Fri 06 Jun 2025 23:44:20 +0000 Files and hashes: 1: gmtVkqw4sBK358JzDdBgfhDbgQI.crl (hash: ZH82kbtvqbDg5UM/WoaXExdXt9oogOa0ballG55YWdk=) 2: 25B713A4FE6B11EBB5DD176BC4F9AE02.roa (hash: DeWvXrtTOlNASLEtVwCRq5xJVs2BWXsb8zrs6Aq/kZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1326 (0x52e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D23C7, serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Validity Not Before: May 30 23:44:20 2025 GMT Not After : Jun 6 23:44:20 2025 GMT Subject: CN=683a42d4-75fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:54:b0:9c:1c:04:01:49:48:33:94:bd:e5:d7: d2:ea:67:bf:68:e9:de:ff:0a:0c:6f:75:e5:ba:6f: 3a:23:7e:1b:15:a8:31:34:dd:be:c1:9a:49:c1:f1: 3d:e3:20:fd:0d:48:e5:a6:4c:01:40:14:f4:86:1e: d2:26:96:3f:d7:ec:df:d8:f9:21:76:07:7e:3f:61: f9:38:a0:b0:80:7a:85:70:89:48:24:cf:80:1b:de: 70:fd:b2:10:b7:5a:cf:59:b7:d0:1b:a4:ab:ab:8b: d6:e2:69:44:d2:f9:ad:f8:1d:ab:5d:74:5d:64:47: 4f:a6:1a:c0:0e:5e:d7:28:93:13:83:c6:b2:04:97: 21:75:cd:66:df:d1:82:1f:4b:fa:df:e6:c5:f3:a5: 1f:48:fa:b0:a9:3f:ec:d4:4e:5d:c0:e2:01:1c:24: 67:6c:40:bb:13:7b:16:8e:0c:02:8e:02:d7:65:28: b4:fb:76:a0:78:a5:79:27:7e:41:95:d0:cb:71:4d: b4:47:13:a3:76:c4:2a:a8:98:8d:c0:ea:ff:2f:12: b1:3c:9a:26:ee:bb:f0:c0:53:18:b7:93:63:94:38: 25:4f:d3:8f:9b:55:9e:94:cc:32:b0:68:b4:3b:b3: fa:ae:21:2e:2b:2b:2e:d1:e1:6b:8b:db:fa:e4:2b: c3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:AC:93:7F:57:D3:86:D0:D0:39:73:A5:77:B8:F3:0B:9A:E3:4F:11 X509v3 Authority Key Identifier: keyid:82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:49:13:46:c2:a2:29:3d:da:4a:9f:3f:33:24:2b:f8:25:6d: 28:9e:f9:d9:0c:01:c1:b4:91:94:2c:0a:71:bd:8e:66:9d:d5: a8:d7:f1:73:d8:1d:11:1c:41:1a:46:96:94:95:b9:7a:e3:8d: 97:3d:6d:e9:96:84:0e:1e:d7:6a:23:9b:2d:72:c1:b6:10:2b: 17:b5:46:e3:f5:91:09:f0:3a:41:68:e3:09:18:c7:91:0b:f8: fa:fc:c2:e3:ad:58:55:a4:66:ff:07:0e:9c:05:30:e3:9b:8e: 66:c1:85:cf:b1:89:55:27:7a:eb:28:62:e6:57:64:a7:c6:07: a5:a3:1a:e1:81:f7:39:ea:3e:3a:1c:3a:fe:11:be:17:00:1b: a3:a8:74:2b:e5:bf:2e:3e:61:16:b9:93:be:c5:a7:ef:7c:d7: cf:86:59:ff:4b:c2:f3:b4:55:c0:59:01:d8:84:f5:f0:9b:6c: 2a:8f:e8:13:06:21:18:e7:7b:71:f3:98:37:ef:3c:7e:83:92: 15:d7:41:c0:e5:3c:13:f0:21:36:62:2f:24:c2:2b:f9:84:f3: 25:22:34:bd:2a:52:e3:a6:5f:57:a7:7d:ff:00:4f:8a:1a:07: 56:46:d9:03:86:a2:2a:ba:c4:c3:94:41:a5:27:f6:3c:1c:9b: 6c:cd:20:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIzQzcxMTAvBgNVBAUTKDgyNkI1NTkyQUMzOEIwMTJCN0U3QzI3MzBERDA2MDdF MTBEQjgxMDIwHhcNMjUwNTMwMjM0NDIwWhcNMjUwNjA2MjM0NDIwWjAYMRYwFAYD VQQDEw02ODNhNDJkNC03NWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVSwnBwEAUlIM5S95dfS6me/aOne/woMb3Xlum86I34bFagxNN2+wZpJwfE9 4yD9DUjlpkwBQBT0hh7SJpY/1+zf2Pkhdgd+P2H5OKCwgHqFcIlIJM+AG95w/bIQ t1rPWbfQG6Srq4vW4mlE0vmt+B2rXXRdZEdPphrADl7XKJMTg8ayBJchdc1m39GC H0v63+bF86UfSPqwqT/s1E5dwOIBHCRnbEC7E3sWjgwCjgLXZSi0+3ageKV5J35B ldDLcU20RxOjdsQqqJiNwOr/LxKxPJom7rvwwFMYt5NjlDglT9OPm1WelMwysGi0 O7P6riEuKysu0eFri9v65CvD5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqsk39X 04bQ0DlzpXe48wua408RMB8GA1UdIwQYMBaAFIJrVZKsOLASt+fCcw3QYH4Q24EC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjNDNy83QjJGNTM4QUZF NjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNCSzM1OEp6RGRCZ2ZoRGJn UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtdFZrcXc0c0JLMzU4SnpEZEJnZmhEYmdRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjNDNy83QjJGNTM4QUZFNjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNC SzM1OEp6RGRCZ2ZoRGJnUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5SRNGwqIpPdpKnz8zJCv4JW0onvnZDAHBtJGULApxvY5mndWo1/Fz 2B0RHEEaRpaUlbl6442XPW3ploQOHtdqI5stcsG2ECsXtUbj9ZEJ8DpBaOMJGMeR C/j6/MLjrVhVpGb/Bw6cBTDjm45mwYXPsYlVJ3rrKGLmV2Snxgeloxrhgfc56j46 HDr+Eb4XABujqHQr5b8uPmEWuZO+xafvfNfPhln/S8LztFXAWQHYhPXwm2wqj+gT BiEY53tx85g37zx+g5IV10HA5TwT8CE2Yi8kwiv5hPMlIjS9KlLjpl9Xp33/AE+K GgdWRtkDhqIqusTDlEGlJ/Y8HJtszSBU -----END CERTIFICATE-----Generated at Sat May 31 16:32:17 2025 by rpki-client