$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft File: gDB5urLx9rO5qsQR30qCw_BqZXE.mft (raw, json) Hash identifier: vb2Mw8fh3+RJHitOtFP7N0Xs5Eg6fB4vx6AFZCcsmZE= Subject key identifier: B4:47:C6:44:C5:CD:C8:CC:73:58:A6:FC:49:EB:23:D8:A9:CF:05:BE Authority key identifier: 80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 Certificate issuer: /CN=A91E5642/serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Certificate serial: 09A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft Manifest number: 0995 Signing time: Fri 16 May 2025 20:22:39 +0000 Manifest this update: Fri 16 May 2025 20:22:38 +0000 Manifest next update: Fri 23 May 2025 20:22:38 +0000 Files and hashes: 1: gDB5urLx9rO5qsQR30qCw_BqZXE.crl (hash: dKIUUgN7lMdpI2WZZOBuFIPu/qTZojP3IakCUsqEQws=) 2: E09840C4D5B511EFB22A647DC4F9AE02.roa (hash: UUua9CtlmlNUMxfEXymhiloAwqTpKtC9fDGIWh1Bzk8=) 3: CFD6E5708AFA11EAAACB392AC4F9AE02.roa (hash: +YzJrYGnbGLCjVsOBK3rhph4HgKiBqVFBpU2hsaMvKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 20:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2465 (0x9a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5642, serialNumber=803079BAB2F1F6B3B9AAC411DF4A82C3F06A6571 Validity Not Before: May 16 20:22:38 2025 GMT Not After : May 23 20:22:38 2025 GMT Subject: CN=68279e8e-52f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2c:b1:88:3e:0f:9a:e5:7c:06:2d:76:b9:28: 39:02:8c:61:fe:b5:6b:a6:8c:f4:5f:4c:b9:7c:03: fe:a2:13:5c:6e:53:18:ba:7e:03:82:8d:2a:f0:9d: 2d:fc:da:1d:1b:13:d7:d4:8b:22:78:aa:90:ba:91: 83:3e:7e:4f:f4:d1:5e:b5:b0:b3:ab:e7:95:15:ac: 81:38:0b:ec:1b:18:5f:57:cd:dc:e4:7a:60:4c:a9: 64:9b:8c:25:fc:ff:d0:2b:a6:37:05:d7:c4:4f:43: 16:cf:2a:b9:45:a0:ce:58:59:a7:29:f5:d7:58:b7: ad:6c:c0:72:14:71:25:ed:c1:67:39:d8:76:85:e4: 4d:79:45:48:12:f2:fd:e5:d8:27:b4:e4:13:44:09: 0f:9a:37:f1:c8:56:a6:7f:1f:e5:bb:a0:91:7c:34: f3:95:ec:37:00:25:79:10:6a:05:a4:ba:c3:c5:aa: b6:e6:4e:01:04:b0:7a:e3:79:bd:c4:f7:5e:9a:ac: b5:1b:aa:a9:2b:0d:8b:03:26:99:fe:11:43:ec:7a: fa:3f:c3:07:d2:12:83:71:b6:86:76:36:f3:cc:a9: 78:99:81:65:d3:6c:aa:cd:89:ae:e8:02:4b:43:86: 13:e8:74:cf:c9:73:94:7d:b6:2f:3a:3e:dc:d7:b8: ba:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:47:C6:44:C5:CD:C8:CC:73:58:A6:FC:49:EB:23:D8:A9:CF:05:BE X509v3 Authority Key Identifier: keyid:80:30:79:BA:B2:F1:F6:B3:B9:AA:C4:11:DF:4A:82:C3:F0:6A:65:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDB5urLx9rO5qsQR30qCw_BqZXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5642/1040F32C8AFA11EA9B28A929C4F9AE02/gDB5urLx9rO5qsQR30qCw_BqZXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:9a:50:7b:80:36:1c:fd:d8:bc:95:a7:8c:f7:b0:51:a7:24: df:87:49:cc:82:4a:4f:a5:22:47:02:7c:66:19:7e:63:de:ee: e9:45:0e:40:7f:3b:7a:b3:5a:0f:15:92:58:92:84:63:7c:a2: 3a:98:c2:0e:d8:3e:93:fa:2d:c7:e1:fb:a5:92:96:c5:49:be: 3f:a1:c3:b9:dc:16:a5:99:a0:2e:72:b9:9d:ea:15:4c:82:19: 7c:ee:0d:7f:f0:8a:52:7f:da:93:a8:6c:e1:0a:22:10:c4:80: 68:e0:c0:ab:4f:74:84:db:d3:c2:bb:f4:72:a4:f4:f5:61:25: fc:aa:f4:f2:e9:71:b5:b9:87:82:ce:3f:54:82:94:ae:65:83: e5:f0:70:70:4e:8b:a1:67:ac:e9:ce:cf:2e:f2:79:ec:2d:37: 26:7b:c0:65:76:04:a1:70:0a:44:60:3f:6c:e2:1b:9e:3c:53: 5b:44:bb:49:0a:8e:c7:f1:22:11:65:fe:7d:fd:a4:cf:7c:be: 3c:98:04:bd:da:62:81:8c:9b:f4:5f:6c:ae:58:a0:91:6a:62: 35:14:a8:cc:c3:06:f6:4c:8a:05:10:0e:57:7b:00:7e:63:93: 53:5b:21:28:2a:2a:f0:b6:20:49:9e:92:7d:53:46:44:91:51: 32:1d:49:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU2NDIxMTAvBgNVBAUTKDgwMzA3OUJBQjJGMUY2QjNCOUFBQzQxMURGNEE4MkMz RjA2QTY1NzEwHhcNMjUwNTE2MjAyMjM4WhcNMjUwNTIzMjAyMjM4WjAYMRYwFAYD VQQDEw02ODI3OWU4ZS01MmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyyxiD4PmuV8Bi12uSg5Aoxh/rVrpoz0X0y5fAP+ohNcblMYun4Dgo0q8J0t /NodGxPX1IsieKqQupGDPn5P9NFetbCzq+eVFayBOAvsGxhfV83c5HpgTKlkm4wl /P/QK6Y3BdfET0MWzyq5RaDOWFmnKfXXWLetbMByFHEl7cFnOdh2heRNeUVIEvL9 5dgntOQTRAkPmjfxyFamfx/lu6CRfDTzlew3ACV5EGoFpLrDxaq25k4BBLB643m9 xPdemqy1G6qpKw2LAyaZ/hFD7Hr6P8MH0hKDcbaGdjbzzKl4mYFl02yqzYmu6AJL Q4YT6HTPyXOUfbYvOj7c17i65wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRHxkTF zcjMc1im/EnrI9ipzwW+MB8GA1UdIwQYMBaAFIAwebqy8fazuarEEd9KgsPwamVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTY0Mi8xMDQwRjMyQzhB RkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDlyTzVxc1FSMzBxQ3dfQnFa WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEQjV1ckx4OXJPNXFzUVIzMHFDd19CcVpYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTY0Mi8xMDQwRjMyQzhBRkExMUVBOUIyOEE5MjlDNEY5QUUwMi9nREI1dXJMeDly TzVxc1FSMzBxQ3dfQnFaWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAImlB7gDYc/di8laeM97BRpyTfh0nMgkpPpSJHAnxmGX5j3u7pRQ5A fzt6s1oPFZJYkoRjfKI6mMIO2D6T+i3H4fulkpbFSb4/ocO53BalmaAucrmd6hVM ghl87g1/8IpSf9qTqGzhCiIQxIBo4MCrT3SE29PCu/RypPT1YSX8qvTy6XG1uYeC zj9UgpSuZYPl8HBwTouhZ6zpzs8u8nnsLTcme8BldgShcApEYD9s4huePFNbRLtJ Co7H8SIRZf59/aTPfL48mAS92mKBjJv0X2yuWKCRamI1FKjMwwb2TIoFEA5XewB+ Y5NTWyEoKirwtiBJnpJ9U0ZEkVEyHUll -----END CERTIFICATE-----Generated at Sat May 17 00:14:28 2025 by rpki-client