$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: Z/wn5Z7Scu4xM/JGdmyNvwFn0cis+2OY/XjzeF9uSFk= Subject key identifier: C5:EA:38:B3:B9:63:40:E1:A5:88:CB:B1:76:1A:C5:3A:B1:DA:9F:FC Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 348C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 3483 Signing time: Wed 14 May 2025 14:41:45 +0000 Manifest this update: Wed 14 May 2025 14:41:44 +0000 Manifest next update: Wed 21 May 2025 14:41:44 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: NqqeGAV7x6Xw+k51KFRrICrDzl7R9sTQA0ZwEj5Z5/M=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 14:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: May 14 14:41:44 2025 GMT Not After : May 21 14:41:44 2025 GMT Subject: CN=6824aba9-b2f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b4:78:98:e5:8a:09:ca:7e:36:5f:16:58:bb: ff:7a:c0:55:ff:47:dc:b4:ac:98:38:23:4d:7e:cd: 14:21:7f:3c:e0:df:1e:f1:ec:0b:fb:96:23:e2:46: 83:1c:0c:d6:dd:9d:86:5a:ca:9f:d9:8d:29:bb:a3: 58:c9:bd:2f:3f:47:2d:2e:9a:ab:45:32:de:8e:fc: 06:9c:94:e2:81:21:fb:96:50:18:e5:83:e2:39:bf: 22:08:53:5b:9b:11:93:95:6a:6f:27:86:3b:9a:0b: d0:73:bd:b5:11:05:de:2b:04:f5:4b:2d:6c:34:fc: a2:19:31:bb:c3:42:30:a8:dd:e1:21:dd:e4:c7:59: 7c:e8:59:b9:91:97:a9:f2:a0:14:c4:7d:af:fd:f4: 12:08:49:a0:60:65:59:25:3d:8f:5e:a0:e9:7f:0e: 8b:cd:eb:89:85:0f:9e:90:21:ae:c5:ec:34:87:69: 8a:a9:db:3b:28:19:bf:a9:c7:b3:c5:50:36:81:e1: 70:ee:4a:ef:4b:14:b7:7b:96:ed:ae:eb:a1:9b:06: 1a:32:a3:8d:81:84:90:1a:8e:8f:55:f5:9e:92:2b: d2:fa:df:ee:36:c9:fa:29:4f:8d:15:f5:fe:4d:17: c5:aa:74:88:37:6d:b7:fa:50:c1:dc:98:cd:c0:a5: 46:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:EA:38:B3:B9:63:40:E1:A5:88:CB:B1:76:1A:C5:3A:B1:DA:9F:FC X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:22:15:94:c0:d2:bf:86:27:75:ee:3c:d2:af:7d:02:b6:19: 37:3b:97:49:f5:44:80:1e:35:54:b5:41:20:3a:c2:8b:73:ad: c4:3c:5c:4d:0b:88:12:cb:7f:a2:85:25:23:04:e1:9a:79:60: 49:15:05:12:fe:e5:8d:87:0b:f6:ed:51:ad:16:12:51:c3:94: 7a:57:1c:47:23:94:32:52:93:78:0f:13:2e:f9:4a:f8:61:30: 56:5f:36:5f:37:f4:39:75:e6:b4:bc:1e:54:da:dc:ba:13:09: 5b:84:79:65:f3:84:04:3e:cd:ee:12:5f:bd:2a:76:75:aa:59: 2c:0c:3a:87:8d:e9:a2:e4:18:41:89:98:ec:15:e0:8a:72:13: 7b:27:55:07:c4:e7:3a:6d:66:2d:f8:0e:72:13:f0:ce:4a:c6: c3:cc:32:39:99:d5:a9:52:18:7a:87:28:0d:d6:59:da:aa:c4: 73:aa:ed:3c:87:75:32:49:42:e1:a2:8a:b3:60:ca:e4:68:9e: 93:d8:12:19:e0:cf:3b:a4:ca:3d:63:37:ae:1c:bf:e4:5f:72: 73:5c:6e:6f:3b:0a:4e:65:af:65:ca:95:36:7c:f3:00:7b:b5: bb:ca:47:d4:67:8e:a5:81:6a:12:c6:5c:db:d3:b4:56:ec:5f: 0a:f7:30:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUwNTE0MTQ0MTQ0WhcNMjUwNTIxMTQ0MTQ0WjAYMRYwFAYD VQQDEw02ODI0YWJhOS1iMmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrR4mOWKCcp+Nl8WWLv/esBV/0fctKyYOCNNfs0UIX884N8e8ewL+5Yj4kaD HAzW3Z2GWsqf2Y0pu6NYyb0vP0ctLpqrRTLejvwGnJTigSH7llAY5YPiOb8iCFNb mxGTlWpvJ4Y7mgvQc721EQXeKwT1Sy1sNPyiGTG7w0IwqN3hId3kx1l86Fm5kZep 8qAUxH2v/fQSCEmgYGVZJT2PXqDpfw6LzeuJhQ+ekCGuxew0h2mKqds7KBm/qcez xVA2geFw7krvSxS3e5btruuhmwYaMqONgYSQGo6PVfWekivS+t/uNsn6KU+NFfX+ TRfFqnSIN223+lDB3JjNwKVG9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXqOLO5 Y0DhpYjLsXYaxTqx2p/8MB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiIhWUwNK/hid17jzSr30Cthk3O5dJ9USAHjVUtUEgOsKLc63EPFxN C4gSy3+ihSUjBOGaeWBJFQUS/uWNhwv27VGtFhJRw5R6VxxHI5QyUpN4DxMu+Ur4 YTBWXzZfN/Q5dea0vB5U2ty6EwlbhHll84QEPs3uEl+9KnZ1qlksDDqHjemi5BhB iZjsFeCKchN7J1UHxOc6bWYt+A5yE/DOSsbDzDI5mdWpUhh6hygN1lnaqsRzqu08 h3UySULhooqzYMrkaJ6T2BIZ4M87pMo9YzeuHL/kX3JzXG5vOwpOZa9lypU2fPMA e7W7ykfUZ46lgWoSxlzb07RW7F8K9zBQ -----END CERTIFICATE-----Generated at Thu May 15 07:07:25 2025 by rpki-client