$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: Av7gems991UDJD4kaPU8FFkLCPf9hpUCPiIDtCZzwb8= Subject key identifier: 0E:11:17:6A:3D:67:3D:7D:53:A9:81:CD:6F:81:EB:7B:2A:7A:1D:E5 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 0477 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 0473 Signing time: Sun 04 May 2025 23:42:57 +0000 Manifest this update: Sun 04 May 2025 23:42:56 +0000 Manifest next update: Sun 11 May 2025 23:42:56 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: w18p5/9zRpXfwXYmrxgvUmHMaKTRgDG4GSlCBViNr5M=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 23:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1143 (0x477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: May 4 23:42:56 2025 GMT Not After : May 11 23:42:56 2025 GMT Subject: CN=6817fb80-aa66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d6:5c:07:bb:9b:44:ee:c0:33:aa:d7:dd:03: 11:4d:71:4a:c8:aa:93:90:0a:7f:6b:a3:18:f8:b2: 1f:96:52:0f:e2:78:8c:61:60:c6:c2:56:78:76:d8: c9:c5:7a:e5:95:26:56:18:c0:ce:cf:cc:8a:16:94: 6b:13:3e:34:d3:26:38:9e:80:25:38:88:b9:c6:55: 40:ca:29:c3:64:9f:52:2b:35:93:cc:79:c0:ed:f1: b4:0e:89:a3:00:d4:a4:dc:ba:74:07:8d:66:e4:68: 06:81:14:de:49:28:5e:ae:f3:b2:f7:70:04:17:48: 25:f8:d3:41:ce:e5:60:0f:2f:d3:19:91:01:d5:5b: 19:f7:f4:41:d7:72:5b:98:ef:60:e6:02:40:50:04: f0:de:af:4f:48:a5:49:d5:13:dd:21:25:6f:77:60: 82:eb:c4:2d:71:53:49:13:df:b2:a3:8e:00:ab:01: c2:d5:b9:29:99:15:8b:54:96:d9:84:81:25:6e:a8: 80:86:50:10:0c:0c:e5:0b:5b:98:33:35:3a:eb:e3: 46:44:9e:48:3d:5c:d8:c7:d6:e6:61:a3:a1:05:62: e6:21:60:5d:d7:9b:8b:80:f5:87:de:f6:69:1b:11: 11:e7:7b:99:7e:81:06:ba:bd:e5:42:ac:e0:b0:98: 49:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:11:17:6A:3D:67:3D:7D:53:A9:81:CD:6F:81:EB:7B:2A:7A:1D:E5 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:5a:1a:f7:0c:7e:10:fe:be:42:41:4c:86:ad:93:b7:04:9f: 33:7c:4b:d9:9b:d8:46:82:db:0b:b7:ff:12:61:b3:04:fb:ad: 13:ce:70:f9:3b:88:d3:a0:c8:31:2d:c9:32:47:cb:f7:5a:ac: b2:80:73:c8:4f:d6:41:d6:7e:7a:53:76:b2:0d:65:c4:9d:f3: 23:41:20:50:7d:b1:84:aa:d5:b2:c4:8c:4b:03:3d:f1:0f:b8: 51:56:ca:ca:1a:97:c8:82:d1:65:ee:cd:00:8e:2e:88:b2:50: 8e:f1:52:96:0b:2d:0b:23:bc:c2:04:17:fb:d1:15:60:e7:a9: c3:bf:be:8e:5c:d8:73:c6:ff:75:6a:6c:9f:c6:cd:53:82:62: b8:53:51:9f:72:f6:34:52:b2:2d:ba:05:63:ad:fb:a3:87:d4: 7c:3e:f1:e2:ec:4e:e5:51:80:5e:33:51:a8:3c:83:23:7d:45: b6:06:e9:3f:79:a0:e3:c4:c4:a7:79:00:cd:57:2a:cf:1e:c2: b1:65:7c:5d:93:ab:70:0a:55:24:f2:70:2d:88:76:c8:f5:23: d3:99:19:b1:e2:fe:c4:4b:f7:4e:27:b5:4c:15:1a:3b:ca:5e: aa:81:28:5c:f4:d3:bb:c6:c8:02:fa:b0:c0:c0:c1:09:1c:a9: ff:59:ad:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUwNTA0MjM0MjU2WhcNMjUwNTExMjM0MjU2WjAYMRYwFAYD VQQDEw02ODE3ZmI4MC1hYTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNZcB7ubRO7AM6rX3QMRTXFKyKqTkAp/a6MY+LIfllIP4niMYWDGwlZ4dtjJ xXrllSZWGMDOz8yKFpRrEz400yY4noAlOIi5xlVAyinDZJ9SKzWTzHnA7fG0Domj ANSk3Lp0B41m5GgGgRTeSShervOy93AEF0gl+NNBzuVgDy/TGZEB1VsZ9/RB13Jb mO9g5gJAUATw3q9PSKVJ1RPdISVvd2CC68QtcVNJE9+yo44AqwHC1bkpmRWLVJbZ hIElbqiAhlAQDAzlC1uYMzU66+NGRJ5IPVzYx9bmYaOhBWLmIWBd15uLgPWH3vZp GxER53uZfoEGur3lQqzgsJhJ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4RF2o9 Zz19U6mBzW+B63sqeh3lMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHWhr3DH4Q/r5CQUyGrZO3BJ8zfEvZm9hGgtsLt/8SYbME+60TznD5 O4jToMgxLckyR8v3WqyygHPIT9ZB1n56U3ayDWXEnfMjQSBQfbGEqtWyxIxLAz3x D7hRVsrKGpfIgtFl7s0Aji6IslCO8VKWCy0LI7zCBBf70RVg56nDv76OXNhzxv91 amyfxs1TgmK4U1GfcvY0UrItugVjrfujh9R8PvHi7E7lUYBeM1GoPIMjfUW2Buk/ eaDjxMSneQDNVyrPHsKxZXxdk6twClUk8nAtiHbI9SPTmRmx4v7ES/dOJ7VMFRo7 yl6qgShc9NO7xsgC+rDAwMEJHKn/Wa1k -----END CERTIFICATE-----Generated at Mon May 5 04:00:50 2025 by rpki-client