$ rpki-client -vvf rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft File: gyAF3EXYwTKohRVcQx0zMZrPbY0.mft (raw, json) Hash identifier: z1seF/RB0tdpGvhKayN2AfVkhXQBK32BLqwuufWY7Kk= Subject key identifier: E6:C2:B2:22:02:7C:FB:5D:02:F9:B0:32:E3:89:39:20:9B:3D:07:27 Authority key identifier: 83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D Certificate issuer: /CN=A91362A0/serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Certificate serial: 1C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft Manifest number: 1C36 Signing time: Wed 14 May 2025 16:16:59 +0000 Manifest this update: Wed 14 May 2025 16:16:58 +0000 Manifest next update: Wed 21 May 2025 16:16:58 +0000 Files and hashes: 1: gyAF3EXYwTKohRVcQx0zMZrPbY0.crl (hash: TyCzMgdt6kNqJmeQa8N7bmNsg18Nc5PuRq8/31MRBMI=) 2: B21D3C5AE21311E8B9660E3EC4F9AE02.roa (hash: X/4GCRMZ/gVyKNef6s/CyH3yqYjWWcRQZHTiFuRUpcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7238 (0x1c46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91362A0, serialNumber=832005DC45D8C132A885155C431D33319ACF6D8D Validity Not Before: May 14 16:16:58 2025 GMT Not After : May 21 16:16:58 2025 GMT Subject: CN=6824c1fa-8b5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9f:cd:df:a6:ce:8e:de:ec:78:d9:c5:f1:b8: 9a:90:ba:9a:41:7f:34:41:20:89:c7:21:f5:a6:70: 8b:6e:31:7b:c3:76:95:35:36:8a:db:a3:1a:81:d1: 8f:8f:9a:b1:71:29:62:63:1d:f0:8e:bd:2e:44:31: 86:3d:ad:ce:ff:04:fe:a0:e4:59:2b:0d:36:93:d5: 4d:f2:11:a1:36:e6:93:5c:f1:5c:fe:07:48:91:c1: cd:aa:1f:1c:38:5c:66:64:21:1b:ab:cc:7e:dd:30: c5:79:ce:28:2d:6f:c3:5d:0e:41:2d:10:9c:d3:b9: 78:84:90:af:c5:b7:3d:8c:db:2f:d7:d7:48:e0:04: 37:25:28:b7:b4:c7:41:aa:ff:0a:53:2e:03:97:bc: 82:fe:31:4a:dc:51:8d:9d:d0:9b:bf:9d:ec:ac:66: 97:3e:f2:6a:3f:f6:54:83:72:48:4b:85:f5:0f:d9: 85:3a:ad:c4:8a:a7:78:84:99:e4:9d:7b:fe:c4:bb: 6d:b8:ca:5f:38:4c:a9:f1:8f:83:f6:99:74:23:b3: 8b:40:0b:85:97:06:09:0f:6d:bf:3e:75:f8:dc:34: f8:ad:d5:97:5e:f0:8a:e2:c1:6e:69:e6:35:7d:07: 3e:44:b7:e2:a0:1f:30:e6:e1:53:4e:7d:05:12:e5: 05:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:C2:B2:22:02:7C:FB:5D:02:F9:B0:32:E3:89:39:20:9B:3D:07:27 X509v3 Authority Key Identifier: keyid:83:20:05:DC:45:D8:C1:32:A8:85:15:5C:43:1D:33:31:9A:CF:6D:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyAF3EXYwTKohRVcQx0zMZrPbY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91362A0/8032CBF0E3A111E6BF3B0068C4F9AE02/gyAF3EXYwTKohRVcQx0zMZrPbY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e3:bf:88:0a:00:56:f6:01:8b:e4:70:97:3e:b7:38:72:ad: 36:38:bf:7a:a9:e4:89:e6:b0:ee:7f:0c:17:e7:0d:55:e1:31: 2d:cd:79:fa:0f:de:78:e0:48:cd:c3:b0:cb:06:eb:bd:19:4e: 8c:4e:7b:a4:10:d5:45:33:99:08:89:56:80:1e:87:0d:2b:a9: 32:bc:ee:67:e4:9b:e8:62:c9:10:d7:31:a3:7f:50:68:0b:08: fe:bf:7e:34:d7:82:5c:c3:53:ea:3d:46:e3:fc:fc:d2:f5:69: e9:02:57:b9:71:e9:da:13:02:f7:a1:c7:59:f9:6f:c3:27:f9: 38:39:6b:5d:61:ba:e7:81:c1:cc:f1:20:28:1d:4e:a0:d0:d0: b4:b5:90:ec:4f:cd:11:86:6e:53:34:9e:5d:8e:1c:3d:69:f2: 7a:98:b2:d8:af:0d:1a:bf:44:89:f3:ce:7a:43:81:48:33:19: 60:bc:b2:19:60:7a:0f:6e:0c:a6:c8:79:7c:8a:8d:0b:a6:86: 93:3a:1d:d4:53:5a:08:60:95:7f:2d:a3:7b:d2:19:fe:9d:f5: 31:df:71:67:03:12:04:87:92:16:e6:f3:75:36:44:49:c2:0c: 49:27:92:84:c7:94:5d:62:31:83:af:7d:fd:77:9d:1e:ba:45: 01:8d:20:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYyQTAxMTAvBgNVBAUTKDgzMjAwNURDNDVEOEMxMzJBODg1MTU1QzQzMUQzMzMx OUFDRjZEOEQwHhcNMjUwNTE0MTYxNjU4WhcNMjUwNTIxMTYxNjU4WjAYMRYwFAYD VQQDEw02ODI0YzFmYS04YjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqp/N36bOjt7seNnF8biakLqaQX80QSCJxyH1pnCLbjF7w3aVNTaK26MagdGP j5qxcSliYx3wjr0uRDGGPa3O/wT+oORZKw02k9VN8hGhNuaTXPFc/gdIkcHNqh8c OFxmZCEbq8x+3TDFec4oLW/DXQ5BLRCc07l4hJCvxbc9jNsv19dI4AQ3JSi3tMdB qv8KUy4Dl7yC/jFK3FGNndCbv53srGaXPvJqP/ZUg3JIS4X1D9mFOq3Eiqd4hJnk nXv+xLttuMpfOEyp8Y+D9pl0I7OLQAuFlwYJD22/PnX43DT4rdWXXvCK4sFuaeY1 fQc+RLfioB8w5uFTTn0FEuUFCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObCsiIC fPtdAvmwMuOJOSCbPQcnMB8GA1UdIwQYMBaAFIMgBdxF2MEyqIUVXEMdMzGaz22N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjJBMC84MDMyQ0JGMEUz QTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdUS29oUlZjUXgwek1aclBi WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5QUYzRVhZd1RLb2hSVmNReDB6TVpyUGJZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjJBMC84MDMyQ0JGMEUzQTExMUU2QkYzQjAwNjhDNEY5QUUwMi9neUFGM0VYWXdU S29oUlZjUXgwek1aclBiWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK47+ICgBW9gGL5HCXPrc4cq02OL96qeSJ5rDufwwX5w1V4TEtzXn6 D9544EjNw7DLBuu9GU6MTnukENVFM5kIiVaAHocNK6kyvO5n5JvoYskQ1zGjf1Bo Cwj+v34014Jcw1PqPUbj/PzS9WnpAle5cenaEwL3ocdZ+W/DJ/k4OWtdYbrngcHM 8SAoHU6g0NC0tZDsT80Rhm5TNJ5djhw9afJ6mLLYrw0av0SJ8856Q4FIMxlgvLIZ YHoPbgymyHl8io0LpoaTOh3UU1oIYJV/LaN70hn+nfUx33FnAxIEh5IW5vN1NkRJ wgxJJ5KEx5RdYjGDr339d50eukUBjSDH -----END CERTIFICATE-----Generated at Wed May 14 20:56:17 2025 by rpki-client