$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: u85l9E5N358K7A6Flg5hk7LffCm2C71DVCe03ibZbpI= Subject key identifier: E0:B2:4D:E7:0D:96:FA:5B:C8:94:0C:6A:EF:5A:2C:87:A8:E6:52:43 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 34A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 349C Signing time: Wed 02 Jul 2025 14:43:21 +0000 Manifest this update: Wed 02 Jul 2025 14:43:20 +0000 Manifest next update: Wed 09 Jul 2025 14:43:20 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: oLPpKbnI/vanwmrDierZ+LGPh0xi4d3rM6wwKmtIJ1s=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13477 (0x34a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Jul 2 14:43:20 2025 GMT Not After : Jul 9 14:43:20 2025 GMT Subject: CN=68654589-baec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:cc:5a:f6:67:50:6f:17:43:20:d7:a7:c0:18: ad:66:b5:8f:7a:24:4d:ba:da:dc:37:50:20:4e:95: 37:72:f8:b6:71:ec:51:83:cc:85:66:cc:28:23:38: 29:26:fe:84:0b:c2:e8:1a:69:7a:4d:ab:f5:69:7a: 1d:dd:7f:5f:14:42:fb:e5:4b:87:66:75:20:1a:04: 93:c6:89:d0:94:13:55:bc:0b:d7:5d:26:a2:81:fd: ce:6e:67:19:e5:97:3e:25:0b:f4:88:c6:34:9f:44: 11:80:83:dd:15:c6:b9:36:19:53:d4:57:a1:7e:9d: a3:33:40:b2:39:1a:40:f6:78:5a:75:6c:bb:32:74: 2e:d1:da:9e:aa:f2:58:52:ae:c0:ae:31:d3:6e:ae: 2f:f3:f6:01:b5:9b:1f:d3:52:35:88:8c:e7:10:4c: 96:b1:42:2e:ab:a4:d3:5e:04:59:35:25:91:7b:58: dc:3f:40:72:92:0c:1d:9d:80:91:f9:3f:3e:7b:68: 08:31:65:28:c2:1b:7a:a1:ad:4b:8a:6c:90:37:98: 72:67:ce:ab:5a:4c:f1:57:a8:c8:56:de:d3:d9:3a: a1:06:03:0e:5e:2b:fb:fc:af:7d:b0:57:dc:a3:28: a8:ee:5a:81:fb:0c:11:9c:09:49:f7:b5:58:af:da: 6a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B2:4D:E7:0D:96:FA:5B:C8:94:0C:6A:EF:5A:2C:87:A8:E6:52:43 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:29:ee:45:17:86:3e:2d:7a:66:f7:c8:11:85:23:95:b8:aa: 2f:d0:25:ef:86:7a:1a:b9:d2:36:f9:43:c4:05:b7:f3:75:5e: 55:e2:0f:a9:30:f1:aa:1f:63:42:61:c4:87:34:5f:6a:b7:b5: 04:30:71:b8:3e:cc:9a:8e:67:55:5e:49:52:db:22:f7:3f:f0: f4:ed:58:5a:2e:f3:69:ff:68:93:7e:bf:46:89:1f:4e:80:35: 94:e9:f7:a0:b6:e7:f2:1a:1e:24:7b:ec:23:e8:1e:d9:6e:d4: ca:d7:3e:51:48:62:82:ac:8d:7d:e5:c6:e6:09:af:c0:73:d3: 86:98:77:6a:99:7c:d1:8b:94:87:6f:bf:7d:e8:4a:fd:39:00: 60:e8:5a:c8:e8:bc:20:d1:b0:43:f7:9d:c2:de:d4:dd:0f:1a: 18:12:7d:0b:ac:64:de:9d:34:06:29:20:c6:c0:64:36:7a:d5: ab:0f:57:e8:30:d6:e3:bf:de:be:b8:92:a6:8d:29:6e:9c:42: 34:d4:07:4a:95:16:52:bc:53:ae:72:81:dc:ac:9c:1c:c6:15: 60:34:b2:be:9b:db:23:06:95:f1:fa:eb:8a:2c:bc:8f:04:46: ab:e7:1d:78:29:db:fc:8e:ac:5a:c8:c7:c9:f0:ed:15:df:91: 42:c2:d3:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUwNzAyMTQ0MzIwWhcNMjUwNzA5MTQ0MzIwWjAYMRYwFAYD VQQDEw02ODY1NDU4OS1iYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA78xa9mdQbxdDINenwBitZrWPeiRNutrcN1AgTpU3cvi2cexRg8yFZswoIzgp Jv6EC8LoGml6Tav1aXod3X9fFEL75UuHZnUgGgSTxonQlBNVvAvXXSaigf3ObmcZ 5Zc+JQv0iMY0n0QRgIPdFca5NhlT1Fehfp2jM0CyORpA9nhadWy7MnQu0dqeqvJY Uq7ArjHTbq4v8/YBtZsf01I1iIznEEyWsUIuq6TTXgRZNSWRe1jcP0BykgwdnYCR +T8+e2gIMWUowht6oa1LimyQN5hyZ86rWkzxV6jIVt7T2TqhBgMOXiv7/K99sFfc oyio7lqB+wwRnAlJ97VYr9pqUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCyTecN lvpbyJQMau9aLIeo5lJDMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPKe5FF4Y+LXpm98gRhSOVuKov0CXvhnoaudI2+UPEBbfzdV5V4g+p MPGqH2NCYcSHNF9qt7UEMHG4PsyajmdVXklS2yL3P/D07VhaLvNp/2iTfr9GiR9O gDWU6fegtufyGh4ke+wj6B7ZbtTK1z5RSGKCrI195cbmCa/Ac9OGmHdqmXzRi5SH b7996Er9OQBg6FrI6Lwg0bBD953C3tTdDxoYEn0LrGTenTQGKSDGwGQ2etWrD1fo MNbjv96+uJKmjSlunEI01AdKlRZSvFOucoHcrJwcxhVgNLK+m9sjBpXx+uuKLLyP BEar5x14Kdv8jqxayMfJ8O0V35FCwtOG -----END CERTIFICATE-----Generated at Fri Jul 4 07:51:01 2025 by rpki-client