$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft File: gtgYhh3Upw93CNIF5LiehRTKH2w.mft (raw, json) Hash identifier: XAwedJrfRYsG1gH6jTRF3rMOmWM/IKv9Or7WUDZj6K8= Subject key identifier: BA:E5:23:91:53:FA:E1:68:A0:A0:6A:6D:0E:3E:44:52:07:E8:BD:6D Authority key identifier: 82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C Certificate issuer: /CN=A91C9A8D/serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft Manifest number: 0406 Signing time: Mon 05 May 2025 00:13:43 +0000 Manifest this update: Mon 05 May 2025 00:13:43 +0000 Manifest next update: Mon 12 May 2025 00:13:43 +0000 Files and hashes: 1: gtgYhh3Upw93CNIF5LiehRTKH2w.crl (hash: LjNr/GaqJStqwouwG5gerxZxZ7Xf6LFoOg10by3ewdY=) 2: D2A57AD8DDF111EF969ABC1CC4F9AE02.roa (hash: oVUb29+C/dpDmyrIQ/S9XmPyQiqyJJ84om1g2jTlU5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Validity Not Before: May 5 00:13:43 2025 GMT Not After : May 12 00:13:43 2025 GMT Subject: CN=681802b7-bd4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:65:b8:d2:8e:39:27:4a:13:51:2c:c0:a6:73: 09:9a:7a:bd:ef:47:d9:01:68:57:25:15:eb:72:38: 95:25:f5:21:dc:81:46:b4:22:51:f4:be:5f:c4:83: 27:12:90:47:c0:8d:92:f6:27:91:03:28:13:32:3e: 04:b7:3c:3e:52:ac:2e:c9:aa:88:1f:e1:e4:2b:02: 83:68:43:f1:64:a0:0b:93:7d:55:23:41:63:cf:bd: 05:c5:8e:91:ab:a2:d3:a5:42:8d:34:fa:fd:a8:3c: f3:54:60:75:70:85:12:c1:1f:f1:9b:c8:c3:9d:8e: f2:fb:2d:b9:9e:51:65:9a:9d:82:62:0b:7a:20:59: 5e:6f:fe:da:5d:c5:71:e4:e1:0f:aa:9f:9a:78:c2: 79:81:fc:78:7a:8b:d6:3f:e1:fe:bf:ec:ae:96:13: 02:0c:74:16:26:ed:ab:65:5c:47:35:e6:17:36:c6: ec:22:31:de:9f:6b:44:80:0a:9c:b6:b0:5a:9c:e1: 42:dd:33:d2:0f:29:05:06:96:48:f2:de:91:62:d6: c2:ad:a0:ff:14:62:6e:b7:19:7d:ec:e8:26:08:c7: 6e:62:42:a5:14:fe:9a:f9:3f:cb:be:85:52:4f:37: c6:a4:c6:ec:76:e2:a2:91:34:3e:35:10:01:c0:77: b5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E5:23:91:53:FA:E1:68:A0:A0:6A:6D:0E:3E:44:52:07:E8:BD:6D X509v3 Authority Key Identifier: keyid:82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:3d:8c:0e:78:92:0b:78:1b:5d:95:16:e4:ed:a3:a0:6e:77: eb:92:26:25:2f:bf:d8:d9:94:bb:47:66:8b:6f:e1:a2:85:3e: 98:c2:20:31:13:3a:03:e0:5c:2b:e5:a7:c2:34:b1:14:3f:a9: e9:6a:ee:73:bf:bd:1b:d7:0b:3c:68:aa:15:92:76:47:d6:16: d6:db:fa:a7:f9:56:3a:a2:d6:92:7d:8e:86:57:05:9e:9c:1b: b8:b6:d9:5e:40:8b:43:ce:d8:f4:aa:6d:48:fc:1f:9a:ed:9c: 80:9e:e0:4a:26:5c:62:f9:b9:47:e5:8f:30:fa:a0:26:ff:25: 0b:8d:9a:a0:2a:29:e7:d9:bf:24:1e:83:7d:5d:80:96:30:23: aa:45:60:bf:9d:e1:f6:cf:c8:aa:c6:bc:dc:5d:e1:a6:21:a8: fd:7d:97:13:cf:b5:dc:95:07:60:a5:0c:9b:88:94:dd:cd:8a: 80:1c:ed:a6:93:65:3e:7e:9f:59:18:54:df:03:f1:26:52:51: 49:3f:de:29:77:c5:14:4c:53:48:c9:46:e7:8e:e9:36:a6:02: 76:74:84:62:3d:85:c3:b7:07:77:1e:e6:fd:91:93:50:38:e5: 1d:e1:0f:2d:77:d8:4b:92:8d:95:9f:52:d9:11:79:64:75:3a: d3:2b:eb:d9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUE4RDExMC8GA1UEBRMoODJEODE4ODYxREQ0QTcwRjc3MDhEMjA1RTRCODlFODUx NENBMUY2QzAeFw0yNTA1MDUwMDEzNDNaFw0yNTA1MTIwMDEzNDNaMBgxFjAUBgNV BAMTDTY4MTgwMmI3LWJkNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiZbjSjjknShNRLMCmcwmaer3vR9kBaFclFetyOJUl9SHcgUa0IlH0vl/EgycS kEfAjZL2J5EDKBMyPgS3PD5SrC7Jqogf4eQrAoNoQ/FkoAuTfVUjQWPPvQXFjpGr otOlQo00+v2oPPNUYHVwhRLBH/GbyMOdjvL7LbmeUWWanYJiC3ogWV5v/tpdxXHk 4Q+qn5p4wnmB/Hh6i9Y/4f6/7K6WEwIMdBYm7atlXEc15hc2xuwiMd6fa0SACpy2 sFqc4ULdM9IPKQUGlkjy3pFi1sKtoP8UYm63GX3s6CYIx25iQqUU/pr5P8u+hVJP N8akxux24qKRND41EAHAd7UFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuuUjkVP6 4WigoGptDj5EUgfovW0wHwYDVR0jBBgwFoAUgtgYhh3Upw93CNIF5LiehRTKH2ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QThELzMyRjFGNEMyODNF OTExRUNCODczQzg3MUM0RjlBRTAyL2d0Z1loaDNVcHc5M0NOSUY1TGllaFJUS0gy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3RnWWhoM1VwdzkzQ05JRjVMaWVoUlRLSDJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QThELzMyRjFGNEMyODNFOTExRUNCODczQzg3MUM0RjlBRTAyL2d0Z1loaDNVcHc5 M0NOSUY1TGllaFJUS0gydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGE9jA54kgt4G12VFuTto6Bud+uSJiUvv9jZlLtHZotv4aKFPpjCIDET OgPgXCvlp8I0sRQ/qelq7nO/vRvXCzxoqhWSdkfWFtbb+qf5Vjqi1pJ9joZXBZ6c G7i22V5Ai0PO2PSqbUj8H5rtnICe4EomXGL5uUfljzD6oCb/JQuNmqAqKefZvyQe g31dgJYwI6pFYL+d4fbPyKrGvNxd4aYhqP19lxPPtdyVB2ClDJuIlN3NioAc7aaT ZT5+n1kYVN8D8SZSUUk/3il3xRRMU0jJRueO6TamAnZ0hGI9hcO3B3ce5v2Rk1A4 5R3hDy132EuSjZWfUtkReWR1OtMr69k= -----END CERTIFICATE-----Generated at Mon May 5 12:57:44 2025 by rpki-client