$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/GvPInPFH8v61HarolX25nThyY7g.mft File: GvPInPFH8v61HarolX25nThyY7g.mft (raw, json) Hash identifier: lCJEbhZJZXJf+1IAC1dY7McTIhkdPBTerxzlXx37DyA= Subject key identifier: D7:25:F5:E7:22:28:E6:B9:CD:0F:DB:75:C2:0A:4B:B5:4C:A4:E1:94 Authority key identifier: 1A:F3:C8:9C:F1:47:F2:FE:B5:1D:AA:E8:95:7D:B9:9D:38:72:63:B8 Certificate issuer: /CN=A91AD09B/serialNumber=1AF3C89CF147F2FEB51DAAE8957DB99D387263B8 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GvPInPFH8v61HarolX25nThyY7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/GvPInPFH8v61HarolX25nThyY7g.mft Manifest number: 013E Signing time: Fri 09 May 2025 03:37:55 +0000 Manifest this update: Fri 09 May 2025 03:37:54 +0000 Manifest next update: Fri 16 May 2025 03:37:54 +0000 Files and hashes: 1: GvPInPFH8v61HarolX25nThyY7g.crl (hash: V/DUWEDd1KmpQ73a8sB6ryYWTbFTFZuka9cukXnDvlI=) 2: 3763B68C774C11EE81607E76C4F9AE02.roa (hash: 7xbva2x/2mRF/+1fr2KpL4N7Zq29lf7peyPdqH7ozvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/GvPInPFH8v61HarolX25nThyY7g.crl rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/GvPInPFH8v61HarolX25nThyY7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GvPInPFH8v61HarolX25nThyY7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 03:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD09B, serialNumber=1AF3C89CF147F2FEB51DAAE8957DB99D387263B8 Validity Not Before: May 9 03:37:54 2025 GMT Not After : May 16 03:37:54 2025 GMT Subject: CN=681d7893-cd90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:83:bd:f2:a6:d7:52:5c:ba:bf:a2:12:cb:ef: 28:3c:1d:b2:bb:98:cf:a5:22:96:5c:ed:e5:76:7f: b9:29:7b:ea:9c:62:ca:3d:2f:3d:94:f0:59:43:5a: 28:4f:66:f1:88:e7:b0:fe:f3:37:48:7d:7b:8f:f9: 31:27:6d:fb:01:ee:2a:b3:b8:b8:98:ab:bf:f6:63: 22:b5:b1:c7:38:40:d3:09:5f:2d:43:dc:07:3c:a5: c1:13:ca:57:a0:e2:d1:a3:e7:8c:8e:b0:8c:37:2d: e0:f1:72:1d:3e:1c:60:50:0d:66:d3:ac:b0:ad:5e: 20:26:b3:ff:07:5d:ee:88:c0:3b:cf:e7:5c:7c:87: 45:17:f5:58:d8:84:3f:dd:79:24:bc:6b:3c:43:ac: 88:9e:5c:c9:57:0c:1d:fd:0b:9e:1c:23:b5:9a:c4: 3f:eb:53:dc:78:dd:3e:2d:e0:a2:9f:3c:a3:89:f6: 60:87:c4:4a:d2:f9:ca:c8:c8:7e:9a:6a:ff:9f:78: 84:31:64:9b:82:21:0c:8a:8b:8f:a0:69:ec:5a:84: 4a:06:7e:28:6f:1b:cf:60:b3:0f:47:59:72:2f:a2: 32:04:1d:f5:72:13:b6:31:f3:66:1d:5e:11:50:88: cd:1f:f9:63:71:97:a7:00:9f:4e:23:ca:bc:3d:fa: 25:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:25:F5:E7:22:28:E6:B9:CD:0F:DB:75:C2:0A:4B:B5:4C:A4:E1:94 X509v3 Authority Key Identifier: keyid:1A:F3:C8:9C:F1:47:F2:FE:B5:1D:AA:E8:95:7D:B9:9D:38:72:63:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/GvPInPFH8v61HarolX25nThyY7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GvPInPFH8v61HarolX25nThyY7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/GvPInPFH8v61HarolX25nThyY7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:32:de:14:34:84:fa:bf:59:2f:c0:98:13:b0:df:c2:bf:41: 0f:4a:d8:2c:44:c7:c2:19:d5:0b:0c:45:04:46:e5:43:2b:2b: f5:7b:0e:37:f9:22:c9:0d:8f:37:88:86:db:fa:bd:b0:ce:8a: 1f:88:e4:93:8d:26:d7:18:4b:ec:59:3a:44:91:ef:4b:e7:39: c6:85:f8:13:2a:b3:80:d7:dc:0f:ff:b1:b2:5a:da:6d:48:f2: b4:44:e1:fe:da:1e:45:a4:e6:01:cd:28:b8:65:fe:bc:d1:11: 00:e9:bc:01:91:14:e1:2b:1c:03:b8:25:25:0d:5d:1d:5f:8e: ff:b2:de:51:b9:6f:32:22:12:d4:49:24:d8:c4:72:a2:18:4c: 20:2c:a2:96:90:37:5d:b0:5f:12:b8:94:97:27:a2:52:66:37: a4:a7:7f:7f:42:b6:d4:58:b4:45:e7:23:57:26:21:89:b7:e8: ee:0e:ad:84:e8:9c:e1:22:af:61:1f:d5:31:df:4a:05:35:ed: 6b:65:77:f1:f5:1e:15:a9:7c:53:be:e5:dd:42:7f:8d:4b:43: 3b:b5:cb:27:7f:12:2e:57:15:54:17:0a:b7:95:7b:b6:8a:a2: 1f:ab:5e:82:72:3c:a0:7f:ca:d8:ae:d9:bd:2e:de:5a:02:c0: df:3f:a0:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUQwOUIxMTAvBgNVBAUTKDFBRjNDODlDRjE0N0YyRkVCNTFEQUFFODk1N0RCOTlE Mzg3MjYzQjgwHhcNMjUwNTA5MDMzNzU0WhcNMjUwNTE2MDMzNzU0WjAYMRYwFAYD VQQDEw02ODFkNzg5My1jZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIO98qbXUly6v6ISy+8oPB2yu5jPpSKWXO3ldn+5KXvqnGLKPS89lPBZQ1oo T2bxiOew/vM3SH17j/kxJ237Ae4qs7i4mKu/9mMitbHHOEDTCV8tQ9wHPKXBE8pX oOLRo+eMjrCMNy3g8XIdPhxgUA1m06ywrV4gJrP/B13uiMA7z+dcfIdFF/VY2IQ/ 3XkkvGs8Q6yInlzJVwwd/QueHCO1msQ/61PceN0+LeCinzyjifZgh8RK0vnKyMh+ mmr/n3iEMWSbgiEMiouPoGnsWoRKBn4obxvPYLMPR1lyL6IyBB31chO2MfNmHV4R UIjNH/ljcZenAJ9OI8q8PfolgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcl9eci KOa5zQ/bdcIKS7VMpOGUMB8GA1UdIwQYMBaAFBrzyJzxR/L+tR2q6JV9uZ04cmO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRDA5Qi8xRTJGQkVENDVD NjQxMUVFQTU5QTgyMUVDNEY5QUUwMi9HdlBJblBGSDh2NjFIYXJvbFgyNW5UaHlZ N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d2UEluUEZIOHY2MUhhcm9sWDI1blRoeVk3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RDA5Qi8xRTJGQkVENDVDNjQxMUVFQTU5QTgyMUVDNEY5QUUwMi9HdlBJblBGSDh2 NjFIYXJvbFgyNW5UaHlZN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+Mt4UNIT6v1kvwJgTsN/Cv0EPStgsRMfCGdULDEUERuVDKyv1ew43 +SLJDY83iIbb+r2wzoofiOSTjSbXGEvsWTpEke9L5znGhfgTKrOA19wP/7GyWtpt SPK0ROH+2h5FpOYBzSi4Zf680REA6bwBkRThKxwDuCUlDV0dX47/st5RuW8yIhLU SSTYxHKiGEwgLKKWkDddsF8SuJSXJ6JSZjekp39/QrbUWLRF5yNXJiGJt+juDq2E 6JzhIq9hH9Ux30oFNe1rZXfx9R4VqXxTvuXdQn+NS0M7tcsnfxIuVxVUFwq3lXu2 iqIfq16Ccjygf8rYrtm9Lt5aAsDfP6AA -----END CERTIFICATE-----Generated at Sat May 10 10:31:30 2025 by rpki-client