$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft File: GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft (raw, json) Hash identifier: gX5dK9I/2tu2HtXK2+ILwEN84SvYuBQYcvM3c7DyH4s= Subject key identifier: 32:15:F8:5B:4D:9C:40:BA:AA:00:3C:42:B1:00:24:74:2E:AB:72:D6 Authority key identifier: 18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A Certificate issuer: /CN=A91F8357/serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft Manifest number: 35 Signing time: Sun 11 May 2025 06:19:59 +0000 Manifest this update: Sun 11 May 2025 06:19:59 +0000 Manifest next update: Sun 18 May 2025 06:19:59 +0000 Files and hashes: 1: GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl (hash: Q+deWxNMYwggPt7E4Xy3U2QzYNvYeOiVQrtKeQDpOBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=180A3522E2050C5F1E0873539B12D6D2312A201A Validity Not Before: May 11 06:19:59 2025 GMT Not After : May 18 06:19:59 2025 GMT Subject: CN=6820418f-e07a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d9:00:2c:10:b5:2e:9c:b3:e4:ec:41:0a:bf: 44:77:08:d1:c7:06:48:25:a7:a3:c5:c4:f3:cf:a5: 3f:d2:cf:2e:ef:22:62:a5:20:fe:61:23:ad:36:ad: ec:dd:d1:80:07:a5:64:77:69:70:f0:f3:89:e5:c3: 50:1b:1f:83:aa:28:36:26:ca:6a:94:3e:8a:c6:d7: 79:2d:2f:a3:14:cd:6e:7f:a2:80:49:7d:03:c0:3b: dc:ce:12:65:c7:02:d1:2c:88:33:0e:21:0e:48:56: d9:6c:cc:55:21:ae:82:81:29:e8:7d:23:17:85:17: b0:f6:0b:40:ae:63:fe:1c:91:b5:ac:57:c2:c6:2c: cc:0c:00:3f:80:d3:c5:4b:b6:f6:80:7f:49:6b:e3: c4:66:f3:46:40:e0:d3:19:d8:e8:d5:93:9d:d5:84: 8c:d9:12:c4:18:4e:02:dc:5f:ca:0f:b8:34:d0:4d: c2:b5:46:e2:ab:06:4a:93:01:54:ac:c7:1c:28:61: 43:a8:13:05:89:e8:11:10:1c:31:70:ff:9f:12:ab: 8f:80:ec:eb:c4:02:c3:d7:cb:2d:77:f1:d9:d0:d8: 32:e3:31:e7:40:94:2e:ae:2d:be:b2:4c:b7:c2:ee: eb:ed:0a:f4:1d:5f:cc:d9:ab:5b:c3:1b:df:33:7b: 14:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:15:F8:5B:4D:9C:40:BA:AA:00:3C:42:B1:00:24:74:2E:AB:72:D6 X509v3 Authority Key Identifier: keyid:18:0A:35:22:E2:05:0C:5F:1E:08:73:53:9B:12:D6:D2:31:2A:20:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GAo1IuIFDF8eCHNTmxLW0jEqIBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/1DA5CC56DF8A11EF87472B74C4F9AE02/GAo1IuIFDF8eCHNTmxLW0jEqIBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:e8:02:7b:96:ea:b9:db:f6:28:86:05:4a:59:1e:91:ca:04: 02:f3:23:8f:62:be:88:bf:35:2c:60:b5:29:40:08:6e:82:e1: ac:bd:d4:31:94:2c:db:d3:dc:d8:a8:13:18:ef:7d:a7:73:95: c8:5e:cd:55:7f:aa:74:9f:31:b8:0b:55:11:f8:7d:0a:58:0e: a4:50:88:76:d0:26:3c:36:f0:90:08:d7:58:d9:e7:41:72:17: 1f:8c:00:c1:de:07:e0:30:15:4d:24:22:2d:92:28:bb:3c:56: 99:0e:ce:af:d9:c3:db:94:f8:f9:39:79:fe:78:42:4c:52:04: 7c:83:85:2c:55:d2:0d:7f:e0:26:25:cd:4b:9d:5d:1e:de:f4: 58:aa:7b:61:77:7e:70:cc:a4:1e:81:6c:38:f1:7f:39:a5:af: b5:9b:88:f6:19:1b:a1:77:7b:07:98:6d:86:4f:7f:6f:41:0b: 77:da:39:91:c0:98:a7:e6:75:3e:c5:d6:a0:95:22:d8:e6:61: 97:f3:45:c0:02:39:7c:23:e0:20:c1:1f:03:6f:7f:d1:76:34: bb:ac:90:38:96:ea:f5:fa:a9:8a:2d:80:82:68:bd:03:62:74: 2f:ec:1b:39:58:36:50:a9:53:1c:8a:40:e9:c7:db:dd:ee:cc: 61:66:77:82 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMTgwQTM1MjJFMjA1MEM1RjFFMDg3MzUzOUIxMkQ2RDIz MTJBMjAxQTAeFw0yNTA1MTEwNjE5NTlaFw0yNTA1MTgwNjE5NTlaMBgxFjAUBgNV BAMTDTY4MjA0MThmLWUwN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC62QAsELUunLPk7EEKv0R3CNHHBkglp6PFxPPPpT/Szy7vImKlIP5hI602rezd 0YAHpWR3aXDw84nlw1AbH4OqKDYmymqUPorG13ktL6MUzW5/ooBJfQPAO9zOEmXH AtEsiDMOIQ5IVtlszFUhroKBKeh9IxeFF7D2C0CuY/4ckbWsV8LGLMwMAD+A08VL tvaAf0lr48Rm80ZA4NMZ2OjVk53VhIzZEsQYTgLcX8oPuDTQTcK1RuKrBkqTAVSs xxwoYUOoEwWJ6BEQHDFw/58Sq4+A7OvEAsPXyy138dnQ2DLjMedAlC6uLb6yTLfC 7uvtCvQdX8zZq1vDG98zexR3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMhX4W02c QLqqADxCsQAkdC6rctYwHwYDVR0jBBgwFoAUGAo1IuIFDF8eCHNTmxLW0jEqIBow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzFEQTVDQzU2REY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4ZUNITlRteExXMGpFcUlC by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0FvMUl1SUZERjhlQ0hOVG14TFcwakVxSUJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzFEQTVDQzU2REY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL0dBbzFJdUlGREY4 ZUNITlRteExXMGpFcUlCby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACDoAnuW6rnb9iiGBUpZHpHKBALzI49ivoi/NSxgtSlACG6C4ay91DGU LNvT3NioExjvfadzlchezVV/qnSfMbgLVRH4fQpYDqRQiHbQJjw28JAI11jZ50Fy Fx+MAMHeB+AwFU0kIi2SKLs8VpkOzq/Zw9uU+Pk5ef54QkxSBHyDhSxV0g1/4CYl zUudXR7e9Fiqe2F3fnDMpB6BbDjxfzmlr7WbiPYZG6F3eweYbYZPf29BC3faOZHA mKfmdT7F1qCVItjmYZfzRcACOXwj4CDBHwNvf9F2NLuskDiW6vX6qYotgIJovQNi dC/sGzlYNlCpUxyKQOnH293uzGFmd4I= -----END CERTIFICATE-----Generated at Mon May 12 18:22:16 2025 by rpki-client