$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft File: GJHVTO9qkMIy_KiR45n5eDhnEe4.mft (raw, json) Hash identifier: X0xK7ksTJt53fF/4B+EC3VsmRQinyqLnlFzqLU/6ZUA= Subject key identifier: C6:B0:1D:36:67:64:83:4C:B0:19:59:F0:A5:75:1A:FF:AB:80:67:4E Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft Manifest number: 3D Signing time: Sat 17 May 2025 06:59:11 +0000 Manifest this update: Sat 17 May 2025 06:59:10 +0000 Manifest next update: Sat 24 May 2025 06:59:10 +0000 Files and hashes: 1: GJHVTO9qkMIy_KiR45n5eDhnEe4.crl (hash: buwMwsG0E7PrRmWAk064EG5f88qhQLeO1D3JCZx/Sb4=) 2: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (hash: Fo5VkT431J+zLy9igbQ3SFfIsb+FgMetIU9BycrAICA=) 3: C9B06ECCD7A411EF9AB81933C4F9AE02.roa (hash: ftkSUsDxtIg6s2jX13CXTFZ0keaCV5YjPDUyQbqNBxE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: May 17 06:59:10 2025 GMT Not After : May 24 06:59:10 2025 GMT Subject: CN=682833be-0b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8b:83:07:b4:8a:2a:a3:61:ee:65:c8:3f:a0: bc:ec:40:e9:94:4f:47:36:42:3b:8b:c6:f6:ce:fa: 6a:5c:09:7a:f8:9f:f2:8d:b5:96:fe:c0:cc:33:20: 4a:62:af:29:32:96:b2:14:eb:f1:48:f3:d8:69:42: a3:e1:17:87:ea:55:4f:26:d6:3c:1d:42:10:21:0e: 9a:e4:e0:75:29:f6:71:e0:c7:f4:dd:0d:9e:90:99: 36:43:cf:ce:24:13:64:7e:6f:e3:26:75:ec:4a:ff: 4f:fb:b3:39:19:50:a1:f5:33:49:ad:5b:d8:f1:1e: bd:6e:a0:f9:6f:c2:dc:3a:56:bd:3c:5a:b3:6f:ee: fc:b8:4a:6e:28:20:21:de:68:0b:7a:8f:6a:59:7b: 60:8d:24:ec:62:8a:1c:72:a7:35:fb:22:b2:31:d7: 76:ac:7b:48:7e:c9:4a:9d:d9:e0:f4:21:43:a3:a8: 36:ba:f4:0f:f1:95:bf:01:a9:ba:a5:2f:f9:75:9e: 03:5e:77:95:21:ff:e1:09:fb:0a:fd:d8:9b:a8:5f: c6:e1:2e:08:14:92:54:52:cf:22:03:95:ed:8b:bf: 82:db:22:3e:60:a0:f0:a1:bf:64:1b:14:eb:d0:a3: 6a:10:69:d4:2e:14:ae:67:69:63:5c:5e:e3:4c:b1: ab:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B0:1D:36:67:64:83:4C:B0:19:59:F0:A5:75:1A:FF:AB:80:67:4E X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:56:7e:33:71:84:9f:97:7a:91:b0:d4:de:53:a9:5d:f6:50: e5:67:8c:c9:5e:3e:ca:04:eb:f1:ad:59:9d:fb:c0:95:bb:5f: c2:82:b8:6f:8b:bf:61:fa:4e:96:0a:72:6a:da:0a:da:cf:3d: e0:0a:a3:c1:ca:82:3d:a7:e3:65:a4:a8:9c:58:a3:2c:29:c4: 6d:48:ea:b6:e6:ff:60:0d:f8:e9:de:dd:ac:ae:ce:ba:c5:64: 76:e1:0a:bd:5c:69:e3:7d:8d:95:71:d1:dd:73:b4:e9:bb:0c: f3:89:51:70:ff:06:6a:a1:b9:31:10:82:06:14:a5:01:10:b3: f9:66:3b:6f:f4:a6:b6:0d:f5:10:d1:1a:0c:5b:c4:e5:f7:60: 01:d0:95:dd:b4:c4:b8:9c:66:fe:4f:42:c3:be:d3:8d:f5:80: c9:4b:f3:d2:04:1d:ac:41:9b:a3:5e:f7:a1:a4:08:28:b2:30: 9b:40:16:8e:7e:90:4d:bd:24:59:4d:d2:31:14:bf:ab:07:33: 35:39:b0:56:6b:e1:30:3d:c0:a6:d0:0b:2d:69:87:c2:5d:ae: 0b:96:76:84:fe:ce:9d:4a:06:e0:53:b6:3d:18:9d:b1:ef:9f: 41:48:40:da:a1:58:a3:1e:bd:7f:93:0a:f8:dc:04:ef:5b:a5: 69:a9:6b:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy ODU3NjExMC8GA1UEBRMoMTg5MUQ1NENFRjZBOTBDMjMyRkNBODkxRTM5OUY5Nzgz ODY3MTFFRTAeFw0yNTA1MTcwNjU5MTBaFw0yNTA1MjQwNjU5MTBaMBgxFjAUBgNV BAMTDTY4MjgzM2JlLTBiOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbi4MHtIoqo2HuZcg/oLzsQOmUT0c2QjuLxvbO+mpcCXr4n/KNtZb+wMwzIEpi rykylrIU6/FI89hpQqPhF4fqVU8m1jwdQhAhDprk4HUp9nHgx/TdDZ6QmTZDz84k E2R+b+MmdexK/0/7szkZUKH1M0mtW9jxHr1uoPlvwtw6Vr08WrNv7vy4Sm4oICHe aAt6j2pZe2CNJOxiihxypzX7IrIx13ase0h+yUqd2eD0IUOjqDa69A/xlb8Bqbql L/l1ngNed5Uh/+EJ+wr92JuoX8bhLggUklRSzyIDle2Lv4LbIj5goPChv2QbFOvQ o2oQadQuFK5naWNcXuNMsat9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxrAdNmdk g0ywGVnwpXUa/6uAZ04wHwYDVR0jBBgwFoAUGJHVTO9qkMIy/KiR45n5eDhnEe4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4NTc2LzJERTk0QTlBRDdB NDExRUY5NjRENkQ3Q0M0RjlBRTAyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVl NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0pIVlRPOXFrTUl5X0tpUjQ1bjVlRGhuRWU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4 NTc2LzJERTk0QTlBRDdBNDExRUY5NjRENkQ3Q0M0RjlBRTAyL0dKSFZUTzlxa01J eV9LaVI0NW41ZURobkVlNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADlWfjNxhJ+XepGw1N5TqV32UOVnjMlePsoE6/GtWZ37wJW7X8KCuG+L v2H6TpYKcmraCtrPPeAKo8HKgj2n42WkqJxYoywpxG1I6rbm/2AN+One3ayuzrrF ZHbhCr1caeN9jZVx0d1ztOm7DPOJUXD/BmqhuTEQggYUpQEQs/lmO2/0prYN9RDR GgxbxOX3YAHQld20xLicZv5PQsO+0431gMlL89IEHaxBm6Ne96GkCCiyMJtAFo5+ kE29JFlN0jEUv6sHMzU5sFZr4TA9wKbQCy1ph8JdrguWdoT+zp1KBuBTtj0YnbHv n0FIQNqhWKMevX+TCvjcBO9bpWmpa1Q= -----END CERTIFICATE-----Generated at Sat May 17 09:29:57 2025 by rpki-client