$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: uDJuHt4AckzFndKZy28LrAAj/xAg+tlixPgv8lSHOj8= Subject key identifier: 4B:39:BC:0E:1C:BA:89:FB:A8:59:AA:A5:AD:65:DA:C9:D7:AA:89:2D Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 0483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 047F Signing time: Sat 31 May 2025 00:15:30 +0000 Manifest this update: Sat 31 May 2025 00:15:29 +0000 Manifest next update: Sat 07 Jun 2025 00:15:29 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: 6rHYdGFDFNfDtnK3JKDetrP2nfnOKVxc2stxddWUSbE=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1155 (0x483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: May 31 00:15:29 2025 GMT Not After : Jun 7 00:15:29 2025 GMT Subject: CN=683a4a21-a2de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fb:c7:36:c0:50:88:9e:07:73:ae:7e:f2:a8: 8a:6b:99:84:1d:67:7d:54:1b:bd:c9:e7:1d:06:22: 05:dc:7e:36:67:7b:25:af:1e:4a:bf:eb:4c:b8:37: 95:81:6a:cb:c3:f9:28:c0:2a:d1:e4:cb:eb:a9:27: ae:0b:8f:37:ac:b3:b9:be:8a:bb:21:85:14:a8:40: 07:ce:3c:13:9f:0a:11:90:7d:cf:4f:45:2a:a0:88: 0d:37:a6:71:4f:51:35:bd:d8:2b:33:56:80:d5:99: f0:39:a7:26:cc:36:2b:28:66:34:bb:1c:3c:32:83: c2:4e:a0:99:4d:e1:44:80:94:df:d7:94:49:88:3e: f4:4f:ed:37:7a:ce:4d:57:57:92:56:27:ef:76:5c: 52:15:dd:b2:c8:ef:85:7e:f7:4f:72:c2:6a:aa:67: 16:ab:28:78:6b:02:4b:96:e6:a0:b5:e9:1c:08:e8: a5:7d:f2:63:49:bf:f4:b6:06:5a:21:77:05:5c:11: 70:71:c5:5a:01:70:d0:a6:57:d3:f8:0d:52:0b:ad: ee:20:9c:39:66:57:99:03:6d:de:b5:d3:f0:68:5c: 00:99:aa:e2:43:87:ab:2a:f2:ac:fe:88:e1:1c:a7: 6e:3e:1b:7b:a7:ed:dd:e3:c2:fb:83:f0:bb:9a:83: 53:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:39:BC:0E:1C:BA:89:FB:A8:59:AA:A5:AD:65:DA:C9:D7:AA:89:2D X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:ff:f6:ec:50:f4:af:cd:7b:e7:78:05:38:b1:46:58:c4:8c: 58:74:c8:5b:21:e1:85:d4:0d:0a:03:e0:67:b7:17:b8:be:04: ec:f2:0e:03:44:4e:84:ba:c0:d3:34:78:52:f1:05:f1:85:d5: 9f:4a:aa:f2:6d:e9:ad:cb:1b:18:43:c2:57:60:3c:a7:61:24: 12:f3:d4:a2:b8:36:49:0c:5c:34:19:66:9d:3e:d6:16:77:ca: ff:9d:5e:d5:12:98:d6:d3:1f:5e:4a:a7:d9:4e:e7:f0:80:b3: 1b:b1:89:99:50:52:3e:28:79:64:1f:b3:b9:e9:02:f4:02:b0: c7:50:0f:f5:03:df:76:9d:97:2e:0e:c5:e8:51:9a:fe:4e:cd: 92:bc:3a:ec:48:ed:87:5b:17:60:25:9e:f9:71:8c:69:61:9b: 8e:52:01:e3:02:32:6b:27:5b:59:4a:7a:59:93:94:be:80:29: 06:de:26:68:43:56:e5:3f:d5:c9:6f:f0:07:99:c9:c1:b8:84: b6:15:32:0b:20:5e:41:b4:95:c4:74:48:3b:7b:42:3e:f5:ba: 33:32:95:6f:92:26:33:a3:7c:9f:38:1f:8f:33:df:25:b3:9b: be:0a:a7:dd:d6:8e:bf:65:6b:a9:af:2e:b6:c0:1a:31:4a:6d: ae:b8:b0:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUwNTMxMDAxNTI5WhcNMjUwNjA3MDAxNTI5WjAYMRYwFAYD VQQDEw02ODNhNGEyMS1hMmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPvHNsBQiJ4Hc65+8qiKa5mEHWd9VBu9yecdBiIF3H42Z3slrx5Kv+tMuDeV gWrLw/kowCrR5MvrqSeuC483rLO5voq7IYUUqEAHzjwTnwoRkH3PT0UqoIgNN6Zx T1E1vdgrM1aA1ZnwOacmzDYrKGY0uxw8MoPCTqCZTeFEgJTf15RJiD70T+03es5N V1eSVifvdlxSFd2yyO+FfvdPcsJqqmcWqyh4awJLluagtekcCOilffJjSb/0tgZa IXcFXBFwccVaAXDQplfT+A1SC63uIJw5ZleZA23etdPwaFwAmariQ4erKvKs/ojh HKduPht7p+3d48L7g/C7moNTJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEs5vA4c uon7qFmqpa1l2snXqoktMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl//bsUPSvzXvneAU4sUZYxIxYdMhbIeGF1A0KA+Bntxe4vgTs8g4D RE6EusDTNHhS8QXxhdWfSqrybemtyxsYQ8JXYDynYSQS89SiuDZJDFw0GWadPtYW d8r/nV7VEpjW0x9eSqfZTufwgLMbsYmZUFI+KHlkH7O56QL0ArDHUA/1A992nZcu DsXoUZr+Ts2SvDrsSO2HWxdgJZ75cYxpYZuOUgHjAjJrJ1tZSnpZk5S+gCkG3iZo Q1blP9XJb/AHmcnBuIS2FTILIF5BtJXEdEg7e0I+9bozMpVvkiYzo3yfOB+PM98l s5u+Cqfd1o6/ZWupry62wBoxSm2uuLCK -----END CERTIFICATE-----Generated at Sat May 31 16:25:52 2025 by rpki-client