$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft File: GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft (raw, json) Hash identifier: vKoMBXDtvY5cKFMMln2E16H2slfCwCZSXqmbT0dzwpc= Subject key identifier: 02:FF:77:EE:26:33:01:B8:DD:A2:FE:36:6B:A7:54:F8:92:9C:EA:60 Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C Certificate issuer: /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Certificate serial: 043E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft Manifest number: 043A Signing time: Thu 15 May 2025 00:19:49 +0000 Manifest this update: Thu 15 May 2025 00:19:48 +0000 Manifest next update: Thu 22 May 2025 00:19:48 +0000 Files and hashes: 1: GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl (hash: DLEW/Y7PYMSE/tgnK0zl5X79P+tQ/sit8gUjBpgyJBo=) 2: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (hash: Y2D4bZVCWRU0pKNmh7gUDg+LE8MSxtojGL7g4PBL1wE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:19:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1086 (0x43e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09DE, serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Validity Not Before: May 15 00:19:48 2025 GMT Not After : May 22 00:19:48 2025 GMT Subject: CN=68253325-2a39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:0a:ab:bd:0e:7e:66:48:62:7b:df:01:89: 90:9f:f1:d9:d1:2c:6a:23:b3:c2:a1:0c:a6:e2:bf: 06:e9:1e:bd:27:ac:5b:98:7a:d6:ae:ea:30:85:26: 18:5a:7a:fd:8d:05:6c:bd:ba:14:6b:05:66:97:ca: 4b:6d:1d:de:ca:e4:72:3b:54:aa:70:9e:9f:42:43: 0d:bd:b4:3f:01:cc:2a:92:19:e4:2f:33:36:3c:70: 44:11:c0:f5:20:91:d7:bd:0e:46:65:22:b9:1a:ab: cf:48:ab:57:ae:a7:c1:ec:1b:59:70:91:e3:a0:6b: 07:c1:c0:fa:ef:ed:9c:67:45:8d:ab:ad:09:e2:10: 27:f2:20:d0:9e:d0:21:06:9c:24:f5:ad:e1:98:a7: 97:27:7a:ed:1b:3a:a8:b2:76:7a:51:1a:67:31:05: d3:94:7d:68:25:35:2f:bf:c4:ce:39:1d:62:67:f9: e7:48:3d:85:56:10:05:80:1a:10:b2:d4:42:36:d6: 0a:25:7c:7b:40:27:62:fb:6f:3f:2c:89:57:2c:6e: ee:fb:fc:d3:f4:7f:bb:5b:28:07:86:1d:00:e3:a1: d5:9d:ec:e0:9a:67:1c:fc:29:43:95:b1:ed:48:2e: 26:a0:29:6b:c9:70:9f:42:ce:e9:81:3e:59:61:8c: d6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FF:77:EE:26:33:01:B8:DD:A2:FE:36:6B:A7:54:F8:92:9C:EA:60 X509v3 Authority Key Identifier: keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:3c:0b:f7:ae:c3:81:df:54:f1:a8:2b:6d:59:7e:b5:e6:ef: 6b:4e:24:8f:f7:20:2f:0a:5d:cb:e2:59:99:d1:9a:65:7a:41: 12:f3:d9:ff:ca:f7:50:b7:b8:2e:cd:bd:1a:b9:f1:c4:48:38: 07:7c:19:4f:01:3a:5b:e3:14:e4:f4:1d:5b:94:92:90:38:7a: 07:b4:c9:ea:c6:bc:b7:46:2c:2d:52:ea:b4:94:ad:14:7d:58: fa:2c:29:20:9c:f6:73:1d:e2:49:21:3c:39:5b:8c:c9:75:ca: 29:55:6e:1d:5a:75:71:74:40:8b:a1:78:74:19:b0:c9:11:a1: fa:2e:ef:0a:b9:90:6f:90:0f:05:c6:b5:42:82:4e:bb:b3:52: b0:af:18:34:f7:dd:52:1c:e9:5f:5a:eb:6f:93:cf:61:97:6b: 43:8d:fd:27:60:0b:15:2e:62:0d:46:86:75:f6:10:c6:d8:d5: a4:ca:44:72:b6:64:f3:b6:2e:6f:ea:de:d4:e6:02:6e:dd:f5: b7:80:33:e0:b4:5e:83:03:40:b8:ae:f4:b3:90:5e:a0:51:1f: b6:13:14:25:b4:13:d2:4d:46:d7:5c:d9:0e:df:9b:5e:1a:ec: c9:aa:f2:c2:84:97:2c:5e:1a:ab:66:9f:c2:f0:d3:e8:24:37: 69:65:57:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5REUxMTAvBgNVBAUTKDE4Mzk4OEZDMERFRTlEQkI4MTExNUU4MkJGREM5NTQx MjU2MTQxM0MwHhcNMjUwNTE1MDAxOTQ4WhcNMjUwNTIyMDAxOTQ4WjAYMRYwFAYD VQQDEw02ODI1MzMyNS0yYTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwowKq70OfmZIYnvfAYmQn/HZ0SxqI7PCoQym4r8G6R69J6xbmHrWruowhSYY Wnr9jQVsvboUawVml8pLbR3eyuRyO1SqcJ6fQkMNvbQ/AcwqkhnkLzM2PHBEEcD1 IJHXvQ5GZSK5GqvPSKtXrqfB7BtZcJHjoGsHwcD67+2cZ0WNq60J4hAn8iDQntAh Bpwk9a3hmKeXJ3rtGzqosnZ6URpnMQXTlH1oJTUvv8TOOR1iZ/nnSD2FVhAFgBoQ stRCNtYKJXx7QCdi+28/LIlXLG7u+/zT9H+7WygHhh0A46HVnezgmmcc/ClDlbHt SC4moClryXCfQs7pgT5ZYYzWLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAL/d+4m MwG43aL+NmunVPiSnOpgMB8GA1UdIwQYMBaAFBg5iPwN7p27gRFegr/clUElYUE8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlERS84QjMyMDc1QzU5 N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5idUJFVjZDdjl5VlFTVmhR VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dEbUlfQTN1bmJ1QkVWNkN2OXlWUVNWaFFUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlERS84QjMyMDc1QzU5N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5i dUJFVjZDdjl5VlFTVmhRVHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQPAv3rsOB31TxqCttWX615u9rTiSP9yAvCl3L4lmZ0ZplekES89n/ yvdQt7guzb0aufHESDgHfBlPATpb4xTk9B1blJKQOHoHtMnqxry3RiwtUuq0lK0U fVj6LCkgnPZzHeJJITw5W4zJdcopVW4dWnVxdECLoXh0GbDJEaH6Lu8KuZBvkA8F xrVCgk67s1Kwrxg0991SHOlfWutvk89hl2tDjf0nYAsVLmINRoZ19hDG2NWkykRy tmTzti5v6t7U5gJu3fW3gDPgtF6DA0C4rvSzkF6gUR+2ExQltBPSTUbXXNkO35te GuzJqvLChJcsXhqrZp/C8NPoJDdpZVf/ -----END CERTIFICATE-----Generated at Fri May 16 17:48:41 2025 by rpki-client