$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: WF/z0CJWXqYJWzYxlBTIghprdDdzOzoR+9USyb9tsvk= Subject key identifier: F7:D4:35:76:C3:A8:AA:D7:A6:1B:98:7F:F7:5B:26:5B:BA:F8:8C:5F Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 1E Signing time: Sat 17 May 2025 07:22:59 +0000 Manifest this update: Sat 17 May 2025 07:22:58 +0000 Manifest next update: Sat 24 May 2025 07:22:58 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: n9q2lhL3whKPBCvBCvcwjPazlA4zbwbG2C13W8i+GZo=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: FyXjLRCgkRt49xci/u6DJz1qKlOyAWBczjrKc036O0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 07:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: May 17 07:22:58 2025 GMT Not After : May 24 07:22:58 2025 GMT Subject: CN=68283952-de08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f2:6d:85:1f:b3:56:e0:48:e3:07:3b:41:bf: 34:32:31:5b:be:31:45:41:85:16:cf:85:95:72:2b: d2:c8:7f:2d:05:84:e5:89:b8:fc:a6:32:55:4f:54: e3:49:0e:2f:61:63:49:db:3e:35:6d:87:b1:8b:8b: b3:be:d2:40:f6:c7:64:db:62:2c:b6:03:34:3f:3f: 75:6c:43:d9:50:5c:a8:9a:5f:eb:c7:50:ac:d2:9a: b1:c8:04:60:a1:59:12:a7:19:e8:81:fa:29:58:a0: d0:1d:83:15:77:0c:16:ae:8b:5e:84:9d:9e:e0:bc: 70:59:89:c3:15:da:00:85:b2:be:38:04:6b:1e:89: 0e:4f:74:00:b1:5e:ee:5f:41:53:4d:0d:67:3b:74: 80:ad:c0:93:82:71:80:51:4d:eb:2e:7c:be:75:1d: 5d:e7:ce:e6:b7:b7:8f:dc:0b:50:e9:0a:6b:34:c5: 7a:d5:79:d4:49:10:50:58:c0:0c:f8:b3:88:00:59: 08:f7:2f:c8:de:aa:2b:86:5a:a7:bc:14:08:c8:a1: 25:cf:00:c3:18:b8:52:a7:4a:6c:8c:b6:c2:55:15: bb:16:fc:5e:99:4d:ce:26:19:50:9f:e8:e4:98:c4: ce:b2:ed:f5:16:d0:8e:39:f1:f9:82:e7:5f:d8:f8: d5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D4:35:76:C3:A8:AA:D7:A6:1B:98:7F:F7:5B:26:5B:BA:F8:8C:5F X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:68:0c:c7:5d:b3:72:58:6a:9c:36:c4:a8:5c:f3:10:25:ab: 89:b8:57:40:a7:d9:3c:2e:82:87:26:14:0d:f6:36:1c:dc:f4: c4:11:e1:c1:7e:67:4f:4b:4c:34:1c:ad:e7:7d:71:3d:bd:6f: e0:98:d4:d7:42:a2:55:b6:c3:31:d1:4f:34:0c:1d:75:f4:7f: 74:6e:f1:52:86:02:58:f6:bd:76:b5:40:99:a2:98:c1:3c:df: e8:27:80:04:1b:81:97:4b:da:b7:53:fd:7e:d8:cc:16:40:92: 4c:72:4a:8f:56:34:5e:0f:4e:cb:0a:ac:f8:40:a2:f0:8d:de: 86:2e:b4:53:e2:8e:51:d7:91:6f:52:96:a1:9d:27:fc:c6:54: 3e:ea:ef:54:9e:04:35:9e:c4:8e:e4:73:84:bd:12:e0:0e:5a: 76:f6:14:7b:db:d5:27:78:ba:71:2b:cf:37:be:46:1d:b6:28: 36:e2:ab:68:5e:ac:f5:e7:8e:00:a0:99:07:68:7a:66:67:90: 67:8a:86:82:b6:d8:25:5b:c4:05:38:42:ab:d1:47:7c:4f:43: d7:20:29:99:ad:e9:bb:10:8a:34:01:51:6e:5a:72:6d:b8:ac: 5d:ba:b4:f3:d2:6e:ad:a2:34:1f:33:05:c5:c1:a3:42:40:db: 00:ea:07:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTA1MTcwNzIyNThaFw0yNTA1MjQwNzIyNThaMBgxFjAUBgNV BAMTDTY4MjgzOTUyLWRlMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC8m2FH7NW4EjjBztBvzQyMVu+MUVBhRbPhZVyK9LIfy0FhOWJuPymMlVPVONJ Di9hY0nbPjVth7GLi7O+0kD2x2TbYiy2AzQ/P3VsQ9lQXKiaX+vHUKzSmrHIBGCh WRKnGeiB+ilYoNAdgxV3DBaui16EnZ7gvHBZicMV2gCFsr44BGseiQ5PdACxXu5f QVNNDWc7dICtwJOCcYBRTesufL51HV3nzua3t4/cC1DpCms0xXrVedRJEFBYwAz4 s4gAWQj3L8jeqiuGWqe8FAjIoSXPAMMYuFKnSmyMtsJVFbsW/F6ZTc4mGVCf6OSY xM6y7fUW0I458fmC51/Y+NW/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU99Q1dsOo qtemG5h/91smW7r4jF8wHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 OUNBL0E5RjI3MjJFMDhBMDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZ V2U2T24xeVU4ZGhZeG9vMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAloDMdds3JYapw2xKhc8xAlq4m4V0Cn2TwugocmFA32Nhzc9MQR4cF+ Z09LTDQcred9cT29b+CY1NdColW2wzHRTzQMHXX0f3Ru8VKGAlj2vXa1QJmimME8 3+gngAQbgZdL2rdT/X7YzBZAkkxySo9WNF4PTssKrPhAovCN3oYutFPijlHXkW9S lqGdJ/zGVD7q71SeBDWexI7kc4S9EuAOWnb2FHvb1Sd4unErzze+Rh22KDbiq2he rPXnjgCgmQdoemZnkGeKhoK22CVbxAU4QqvRR3xPQ9cgKZmt6bsQijQBUW5acm24 rF26tPPSbq2iNB8zBcXBo0JA2wDqB48= -----END CERTIFICATE-----Generated at Sat May 17 12:35:23 2025 by rpki-client