$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft File: 1gwwsan1nJWa1JZ_L21XKst1KZw.mft (raw, json) Hash identifier: YsnclGWSIslL+9b5ml1JtBU6MIKYhM4ZKs1GT0I3rcE= Subject key identifier: A2:0D:A5:76:1B:9F:6D:C5:93:57:63:67:D1:98:5E:25:B5:EB:91:F4 Authority key identifier: D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C Certificate issuer: /CN=A91E5EEA/serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft Manifest number: 3E Signing time: Sun 11 May 2025 06:15:51 +0000 Manifest this update: Sun 11 May 2025 06:15:50 +0000 Manifest next update: Sun 18 May 2025 06:15:50 +0000 Files and hashes: 1: 1gwwsan1nJWa1JZ_L21XKst1KZw.crl (hash: ZVUIepq4cTbDG/rbwk05X6wt2A8K5/17vLcVXOJdBVo=) 2: 2B6A4C480CDC11F0BAA65183C4F9AE02.roa (hash: BqSp/Te9KMd8YfouUPeFKU/cx03YQIHgdt5+594sWOw=) 3: A8495504D4D011EFB6100F2DC4F9AE02.roa (hash: Md7FVpdf2MqwxZW9/DFpDf2r/UivUhUhenoGocEe9lg=) 4: A7C0D96E0CDD11F0A8463D28C4F9AE02.roa (hash: QHLRTEx6Qgh4+lTDIbuuL3PGb+4V0jC1oeBCPhaLkPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Validity Not Before: May 11 06:15:50 2025 GMT Not After : May 18 06:15:50 2025 GMT Subject: CN=68204097-d527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0c:ec:4c:9b:17:a3:12:4f:e4:d0:cf:74:d6: 46:22:62:69:bb:d2:1c:9b:a9:b1:cd:50:b8:ce:77: 51:04:84:a3:57:a2:c4:da:b2:50:a9:15:fb:75:ae: 6a:bd:10:9c:11:3b:6b:79:b9:ab:51:08:10:a0:b1: cd:3a:ec:72:12:7a:c2:fa:dd:e5:c2:ab:1a:2b:0c: 3b:c5:32:01:42:2b:a4:0e:10:bf:b2:9b:f6:17:fc: 97:07:6e:ec:0d:cb:45:99:a3:02:56:f1:2c:cb:00: 7e:f9:c1:ac:c9:cc:b3:f5:71:1c:ec:e5:d8:fd:85: da:65:87:57:c0:a4:f3:60:61:77:2c:b8:1a:56:cd: 42:1f:95:a6:cf:28:cb:28:f5:fb:85:58:9f:b2:d6: 45:68:5c:c1:4c:7c:14:cb:d1:75:ce:3b:45:88:55: 62:69:33:bd:e1:80:83:75:7e:64:49:bb:b8:e7:7c: 41:83:1b:c0:21:0c:4f:24:4e:9a:91:c8:d2:77:d3: 30:af:1c:7b:56:6f:a2:c5:e5:22:83:39:ef:86:37: b8:d5:7f:86:c5:64:80:5e:52:af:9e:19:5c:84:18: cc:d3:2a:0c:5a:fc:dc:0f:d8:19:f0:ec:56:d6:e1: d1:d9:47:c2:ea:41:02:93:f2:f7:5c:6d:e3:0c:b1: eb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0D:A5:76:1B:9F:6D:C5:93:57:63:67:D1:98:5E:25:B5:EB:91:F4 X509v3 Authority Key Identifier: keyid:D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:3a:f1:95:47:bd:55:c0:c5:4a:94:2d:1b:3e:f3:8c:2d:7a: a9:c8:e3:39:75:31:7b:6a:57:85:d9:14:bd:c0:30:22:b3:2c: 6e:aa:2c:62:57:00:ff:4a:40:10:2a:51:f0:4f:4b:6e:0e:0d: a6:bb:81:02:a0:ff:fe:49:ba:bb:66:a1:8f:76:3d:c8:a7:48: ce:fa:f7:ff:01:d0:ec:c9:a4:d2:9d:e8:31:bc:71:20:b9:09: eb:4f:4d:5d:0d:93:e9:29:b2:30:fb:06:22:60:98:75:86:79: 88:26:f4:09:fb:7b:cb:4e:ce:4e:ee:73:75:df:ed:3f:50:aa: 78:52:c4:da:84:1d:d5:af:3e:45:72:5e:61:e2:5f:d3:40:12: 8f:36:2e:17:f8:19:f3:a5:d1:a1:90:cd:32:24:b6:80:8d:0b: 2d:0b:24:84:8c:7b:6a:85:e2:40:c0:86:8b:31:5c:1b:42:56: fb:1d:2e:f2:56:cb:d0:5b:ad:68:a6:ff:7d:1a:bb:7b:0f:0a: fb:59:be:e1:d3:6b:a8:50:e2:17:05:0a:02:95:57:78:69:f8: eb:e3:b3:eb:c7:12:5b:7d:d6:69:d6:ca:58:65:b8:86:b9:c1: 53:33:70:89:d7:e8:54:7e:e1:da:65:01:97:75:71:97:96:d2: d9:ce:50:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoRDYwQzMwQjFBOUY1OUM5NTlBRDQ5NjdGMkY2RDU3MkFD Qjc1Mjk5QzAeFw0yNTA1MTEwNjE1NTBaFw0yNTA1MTgwNjE1NTBaMBgxFjAUBgNV BAMTDTY4MjA0MDk3LWQ1MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYDOxMmxejEk/k0M901kYiYmm70hybqbHNULjOd1EEhKNXosTaslCpFft1rmq9 EJwRO2t5uatRCBCgsc067HISesL63eXCqxorDDvFMgFCK6QOEL+ym/YX/JcHbuwN y0WZowJW8SzLAH75wazJzLP1cRzs5dj9hdplh1fApPNgYXcsuBpWzUIflabPKMso 9fuFWJ+y1kVoXMFMfBTL0XXOO0WIVWJpM73hgIN1fmRJu7jnfEGDG8AhDE8kTpqR yNJ30zCvHHtWb6LF5SKDOe+GN7jVf4bFZIBeUq+eGVyEGMzTKgxa/NwP2Bnw7FbW 4dHZR8LqQQKT8vdcbeMMsetbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUog2ldhuf bcWTV2Nn0ZheJbXrkfQwHwYDVR0jBBgwFoAU1gwwsan1nJWa1JZ/L21XKst1KZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0UzRkNEMTQ0RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyLzFnd3dzYW4xbkpXYTFKWl9MMjFYS3N0MUta dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMWd3d3NhbjFuSldhMUpaX0wyMVhLc3QxS1p3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0UzRkNEMTQ0RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyLzFnd3dzYW4xbkpX YTFKWl9MMjFYS3N0MUtady5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJI68ZVHvVXAxUqULRs+84wteqnI4zl1MXtqV4XZFL3AMCKzLG6qLGJX AP9KQBAqUfBPS24ODaa7gQKg//5JurtmoY92PcinSM769/8B0OzJpNKd6DG8cSC5 CetPTV0Nk+kpsjD7BiJgmHWGeYgm9An7e8tOzk7uc3Xf7T9QqnhSxNqEHdWvPkVy XmHiX9NAEo82Lhf4GfOl0aGQzTIktoCNCy0LJISMe2qF4kDAhosxXBtCVvsdLvJW y9BbrWim/30au3sPCvtZvuHTa6hQ4hcFCgKVV3hp+Ovjs+vHElt91mnWylhluIa5 wVMzcInX6FR+4dplAZd1cZeW0tnOUOQ= -----END CERTIFICATE-----Generated at Mon May 12 18:54:10 2025 by rpki-client