$ rpki-client -vvf rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft File: ggCxpefBdgW1czx0_sHvEnOz6iU.mft (raw, json) Hash identifier: 2nkl3t9x9OnJkmZlkCbSDFU4ZD5RepFjZQOTyksgqL8= Subject key identifier: 34:68:B0:9A:69:A0:3C:07:AD:89:4F:ED:16:FE:73:0A:28:46:B5:26 Authority key identifier: 82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 Certificate issuer: /CN=A911AD0C/serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Certificate serial: 3477 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft Manifest number: 3477 Signing time: Fri 16 May 2025 15:27:03 +0000 Manifest this update: Fri 16 May 2025 15:27:03 +0000 Manifest next update: Fri 23 May 2025 15:27:03 +0000 Files and hashes: 1: ggCxpefBdgW1czx0_sHvEnOz6iU.crl (hash: UukCmxcSZJktBLRc4Gal74MzJdiw5EGAdyybpgY/5j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13431 (0x3477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AD0C, serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25 Validity Not Before: May 16 15:27:03 2025 GMT Not After : May 23 15:27:03 2025 GMT Subject: CN=68275947-752b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6a:ab:a4:4d:9c:82:3c:22:b1:6f:64:7d:6c: b9:af:b5:60:de:96:a7:1e:5f:72:60:b8:1b:7a:50: e3:91:40:d2:53:7b:16:5b:a3:e0:54:54:52:22:3c: 3b:8c:98:d2:50:9b:d3:0d:ff:d2:c3:70:eb:fc:48: 46:fe:fc:bd:26:2e:4a:1b:38:96:0e:d8:d0:94:4f: 45:81:e6:10:87:c6:e9:a5:cf:bc:2f:2e:b9:e1:11: f0:17:f4:f6:2f:a8:34:a8:d6:e3:f8:a8:f1:f3:ce: 68:6b:8f:2f:d2:c0:a2:1a:41:12:f7:c9:ce:be:e3: 65:b7:c4:02:ae:97:44:88:6b:2e:9f:0f:68:91:93: e9:cf:67:63:7a:ce:cf:82:4a:e4:19:de:ef:99:5f: 7e:77:5b:65:c8:6b:b6:dc:22:70:1b:e8:d6:ae:67: d3:d8:ba:64:67:11:b2:8b:f8:87:db:1e:0d:44:b1: bd:dc:f4:73:77:c1:c6:7b:4f:cf:99:42:97:ae:12: 0a:37:70:36:54:3c:d1:a5:a5:58:2f:68:b4:10:1b: 4b:6e:94:94:99:e7:05:bc:70:32:bd:1d:ef:d8:d4: 9e:56:e8:a7:5a:07:c7:4a:ca:13:80:6f:87:c2:5b: 6f:0f:52:47:73:21:2a:ec:bf:4e:1a:af:5a:7e:42: ee:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:68:B0:9A:69:A0:3C:07:AD:89:4F:ED:16:FE:73:0A:28:46:B5:26 X509v3 Authority Key Identifier: keyid:82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:18:cb:0d:55:6d:25:cc:1c:f2:78:10:57:15:d6:8d:6e:2f: 2a:26:25:37:8f:5c:a4:bc:45:1d:9c:c5:f5:1d:d6:82:e5:8c: 55:7a:5c:da:ff:cf:ce:6b:fc:bd:b4:f3:4a:2d:e1:28:03:f1: 90:de:69:b0:69:4c:ae:d0:2f:46:7d:59:6f:3e:81:37:38:0e: e3:3e:49:f0:02:8f:2f:bc:dd:83:c8:6b:95:30:44:77:20:27: ce:91:7b:35:67:59:19:73:e3:c5:f1:6d:e9:5e:ea:71:4f:7e: f0:62:dc:8a:45:f1:b6:23:1d:ad:93:48:5c:08:29:05:b8:66: 38:22:3a:fc:fa:15:26:59:3f:f4:d3:3b:d9:4d:6c:0c:3c:be: 67:79:8d:f8:2c:db:13:e0:f8:e2:cf:64:17:b9:5a:6c:35:84: 9f:d1:9a:2d:1b:51:c8:6f:55:cd:1b:2b:d5:c9:bc:7d:57:0a: 5b:f0:1b:a3:18:96:dd:df:77:24:95:b4:10:3b:bd:24:18:07: b5:45:a6:39:8b:9c:f0:c7:1f:7d:82:78:d2:bd:6e:54:56:68: 59:d7:7f:32:e3:c5:8c:a4:a3:9b:f8:76:9d:59:47:41:6e:d6: bd:72:4c:b6:19:b7:aa:2e:82:74:5b:6e:5d:5d:25:f8:4e:ea: c1:a5:32:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFEMEMxMTAvBgNVBAUTKDgyMDBCMUE1RTdDMTc2MDVCNTczM0M3NEZFQzFFRjEy NzNCM0VBMjUwHhcNMjUwNTE2MTUyNzAzWhcNMjUwNTIzMTUyNzAzWjAYMRYwFAYD VQQDEw02ODI3NTk0Ny03NTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymqrpE2cgjwisW9kfWy5r7Vg3panHl9yYLgbelDjkUDSU3sWW6PgVFRSIjw7 jJjSUJvTDf/Sw3Dr/EhG/vy9Ji5KGziWDtjQlE9FgeYQh8bppc+8Ly654RHwF/T2 L6g0qNbj+Kjx885oa48v0sCiGkES98nOvuNlt8QCrpdEiGsunw9okZPpz2djes7P gkrkGd7vmV9+d1tlyGu23CJwG+jWrmfT2LpkZxGyi/iH2x4NRLG93PRzd8HGe0/P mUKXrhIKN3A2VDzRpaVYL2i0EBtLbpSUmecFvHAyvR3v2NSeVuinWgfHSsoTgG+H wltvD1JHcyEq7L9OGq9afkLuKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRosJpp oDwHrYlP7Rb+cwooRrUmMB8GA1UdIwQYMBaAFIIAsaXnwXYFtXM8dP7B7xJzs+ol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUQwQy8xQjBCMzU4RTFE QUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRnVzFjengwX3NIdkVuT3o2 aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnQ3hwZWZCZGdXMWN6eDBfc0h2RW5PejZpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUQwQy8xQjBCMzU4RTFEQUIxMUUyOEE3RjAwQTgwOEIwMkNEMi9nZ0N4cGVmQmRn VzFjengwX3NIdkVuT3o2aVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvGMsNVW0lzBzyeBBXFdaNbi8qJiU3j1ykvEUdnMX1HdaC5YxVelza /8/Oa/y9tPNKLeEoA/GQ3mmwaUyu0C9GfVlvPoE3OA7jPknwAo8vvN2DyGuVMER3 ICfOkXs1Z1kZc+PF8W3pXupxT37wYtyKRfG2Ix2tk0hcCCkFuGY4Ijr8+hUmWT/0 0zvZTWwMPL5neY34LNsT4Pjiz2QXuVpsNYSf0ZotG1HIb1XNGyvVybx9Vwpb8Buj GJbd33cklbQQO70kGAe1RaY5i5zwxx99gnjSvW5UVmhZ138y48WMpKOb+HadWUdB bta9cky2GbeqLoJ0W25dXSX4TurBpTKo -----END CERTIFICATE-----Generated at Sat May 17 16:30:05 2025 by rpki-client