$ rpki-client -vvf rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft File: GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft (raw, json) Hash identifier: 7zEecGPr81EG5K3bjiI04UaU7M3Z8P3xII5szWLMRec= Subject key identifier: E9:48:FB:6B:07:6C:CB:E4:C2:14:05:EC:13:00:62:4C:0E:FC:BD:26 Authority key identifier: 18:3A:98:67:F2:E3:B3:73:16:2B:EF:A6:B8:6E:81:BD:8C:86:88:77 Certificate issuer: /CN=A912A5D4/serialNumber=183A9867F2E3B373162BEFA6B86E81BD8C868877 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft Manifest number: 2D Signing time: Sat 17 May 2025 07:11:03 +0000 Manifest this update: Sat 17 May 2025 07:11:02 +0000 Manifest next update: Sat 24 May 2025 07:11:02 +0000 Files and hashes: 1: GDqYZ_Ljs3MWK--muG6BvYyGiHc.crl (hash: CeIRx5askCrVJSKcPtI4mPtuNXPx11t9vjj4XAvyM/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.crl rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 07:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A5D4, serialNumber=183A9867F2E3B373162BEFA6B86E81BD8C868877 Validity Not Before: May 17 07:11:02 2025 GMT Not After : May 24 07:11:02 2025 GMT Subject: CN=68283687-a8cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9c:ac:5f:ae:d2:63:7d:ce:52:0e:7f:73:a1: 9b:44:a3:6b:5d:74:b1:fb:43:19:c0:fc:42:69:85: 2a:6e:16:79:75:0c:0f:7c:00:e6:e6:12:89:4a:ef: 0d:0b:d5:3d:b3:6f:d5:03:c5:2e:31:0b:71:27:14: f5:86:51:60:42:54:ff:d3:b4:93:ef:d4:3b:e2:76: 15:e6:c9:02:ed:61:16:f5:85:09:a2:6e:02:c9:75: e0:c3:92:8a:ca:bb:0d:ac:30:64:99:7c:18:98:e6: 3d:d0:e7:db:d5:5e:80:35:53:4e:ee:0e:9b:89:c6: 65:d5:7c:4a:51:71:a7:e7:19:c2:ef:f9:a7:83:b9: c4:d9:f9:36:83:aa:8c:fd:e3:87:7f:d9:0b:31:ad: 85:25:b0:ca:77:97:06:77:33:30:85:17:50:7c:e6: f6:06:60:0c:13:67:6f:e4:93:98:85:19:34:74:bc: 57:93:b5:e6:d0:8c:83:81:07:c5:c4:02:64:1a:87: bf:37:e0:9c:11:33:d6:94:7c:cf:10:b0:b5:ba:65: e3:21:c0:1f:53:ad:f2:67:af:8e:9c:8c:95:9a:04: da:7c:c3:a7:48:60:9d:3a:8b:a3:05:0e:ff:ed:1d: 0c:1b:b3:5a:aa:7d:36:3e:78:10:0b:3a:e4:e3:51: be:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:48:FB:6B:07:6C:CB:E4:C2:14:05:EC:13:00:62:4C:0E:FC:BD:26 X509v3 Authority Key Identifier: keyid:18:3A:98:67:F2:E3:B3:73:16:2B:EF:A6:B8:6E:81:BD:8C:86:88:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:94:82:05:3d:04:b9:c1:56:df:c2:7f:d6:06:d7:6c:79:a1: 11:7d:b7:ef:7d:d5:b6:e3:74:e2:40:35:24:05:a2:da:89:46: 8a:9a:d6:7a:dd:81:d5:3e:aa:36:2c:4a:b6:7b:85:b5:1c:f2: bb:dc:16:87:07:1c:5c:6e:c6:e0:8a:20:cd:54:d7:39:ee:5b: e3:f2:01:9a:4d:51:ca:90:77:0e:9e:58:0e:e4:61:90:d6:bb: 23:3b:8e:87:2b:55:ff:fb:38:98:06:81:40:dc:cf:cd:fd:b3: e9:e9:7f:fb:f6:bd:3e:52:26:55:3a:d1:8e:26:dd:5a:0b:1e: 97:47:1c:53:68:25:93:d2:b0:8c:89:57:f1:aa:21:b5:da:05: c1:a0:3e:b7:70:35:d1:ed:a6:64:34:f0:c6:17:ee:5a:6e:5d: 48:e3:c6:10:79:02:36:82:90:1d:d8:61:ac:58:44:ae:38:0b: b9:3a:3a:de:60:87:7c:0b:31:39:ca:ee:cc:bc:eb:d1:4d:9b: 3e:4d:60:28:35:a9:93:23:fe:6d:21:a8:45:9e:bf:a4:cf:e6: 3e:c8:1b:55:8f:8c:ec:44:45:67:1a:75:9e:69:e1:4f:59:7c: db:34:8d:ef:9c:6c:09:ca:06:cc:ee:bc:fe:32:14:ba:76:b8: 3a:ae:af:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTVENDExMC8GA1UEBRMoMTgzQTk4NjdGMkUzQjM3MzE2MkJFRkE2Qjg2RTgxQkQ4 Qzg2ODg3NzAeFw0yNTA1MTcwNzExMDJaFw0yNTA1MjQwNzExMDJaMBgxFjAUBgNV BAMTDTY4MjgzNjg3LWE4Y2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZnKxfrtJjfc5SDn9zoZtEo2tddLH7QxnA/EJphSpuFnl1DA98AObmEolK7w0L 1T2zb9UDxS4xC3EnFPWGUWBCVP/TtJPv1DvidhXmyQLtYRb1hQmibgLJdeDDkorK uw2sMGSZfBiY5j3Q59vVXoA1U07uDpuJxmXVfEpRcafnGcLv+aeDucTZ+TaDqoz9 44d/2QsxrYUlsMp3lwZ3MzCFF1B85vYGYAwTZ2/kk5iFGTR0vFeTtebQjIOBB8XE AmQah7834JwRM9aUfM8QsLW6ZeMhwB9TrfJnr46cjJWaBNp8w6dIYJ06i6MFDv/t HQwbs1qqfTY+eBALOuTjUb79AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6Uj7awds y+TCFAXsEwBiTA78vSYwHwYDVR0jBBgwFoAUGDqYZ/Ljs3MWK++muG6BvYyGiHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBNUQ0LzZFMEYyRUEwRjND RTExRUY5MTRFRjY0NEM0RjlBRTAyL0dEcVlaX0xqczNNV0stLW11RzZCdll5R2lI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0RxWVpfTGpzM01XSy0tbXVHNkJ2WXlHaUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJB NUQ0LzZFMEYyRUEwRjNDRTExRUY5MTRFRjY0NEM0RjlBRTAyL0dEcVlaX0xqczNN V0stLW11RzZCdll5R2lIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIqUggU9BLnBVt/Cf9YG12x5oRF9t+991bbjdOJANSQFotqJRoqa1nrd gdU+qjYsSrZ7hbUc8rvcFocHHFxuxuCKIM1U1znuW+PyAZpNUcqQdw6eWA7kYZDW uyM7jocrVf/7OJgGgUDcz839s+npf/v2vT5SJlU60Y4m3VoLHpdHHFNoJZPSsIyJ V/GqIbXaBcGgPrdwNdHtpmQ08MYX7lpuXUjjxhB5AjaCkB3YYaxYRK44C7k6Ot5g h3wLMTnK7sy869FNmz5NYCg1qZMj/m0hqEWev6TP5j7IG1WPjOxERWcadZ5p4U9Z fNs0je+cbAnKBszuvP4yFLp2uDqurw4= -----END CERTIFICATE-----Generated at Sun May 18 08:14:51 2025 by rpki-client