$ rpki-client -vvf rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft File: gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft (raw, json) Hash identifier: /pvjcbl+XAw9ALZQM8zU0BeDssRzQq0u/bETMtFQI1Q= Subject key identifier: EA:8E:D7:A4:49:22:4E:DE:E8:91:58:A9:69:6D:CC:8E:7D:32:8A:35 Authority key identifier: 80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 Certificate issuer: /CN=A9134A42/serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft Manifest number: 34 Signing time: Thu 15 May 2025 06:57:58 +0000 Manifest this update: Thu 15 May 2025 06:57:57 +0000 Manifest next update: Thu 22 May 2025 06:57:57 +0000 Files and hashes: 1: gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl (hash: kGbRLr2CSL0EFWJfpUixPT8D9s9AzC9F42eS8Ds6d4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134A42, serialNumber=80B18B81D47B61771304E0F7610D11A7C3406123 Validity Not Before: May 15 06:57:57 2025 GMT Not After : May 22 06:57:57 2025 GMT Subject: CN=68259076-2060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f9:2d:71:d7:29:a3:e1:1b:d8:7a:03:1e:36: a5:19:15:1a:9f:89:eb:60:d1:95:2a:0a:13:9c:9b: 97:51:1a:85:8d:c3:d9:d3:8c:ea:72:21:cd:d1:38: 1d:da:8a:fe:61:02:ae:9f:96:c3:06:0b:57:11:58: f7:a1:29:be:e9:e0:e8:a6:20:6c:9f:9a:f0:e1:fc: 33:c7:53:28:6f:8f:6c:f6:48:8b:bc:af:6f:cb:f8: a4:c3:24:a4:96:11:6a:28:c8:42:73:f6:69:c8:ec: 7f:c2:95:d4:e8:c2:51:f2:de:4c:c0:24:e2:02:ed: 08:77:78:4c:f3:e6:ee:d3:17:12:cb:da:af:93:bf: 35:8e:a2:ca:79:71:3b:7e:72:a1:2c:77:28:d3:f3: 58:0a:a9:5c:e4:ec:c6:3c:5e:d7:3d:7c:89:1b:52: 57:a4:99:7e:9f:12:50:72:c4:ab:9e:9e:85:50:85: 3b:5a:ea:a5:52:7c:ae:70:55:41:a1:a4:ea:7f:a0: 83:36:81:3a:61:45:46:45:4a:91:99:fa:b5:77:5a: 0e:90:95:c5:4d:be:e5:a4:ad:92:7e:9d:57:17:3c: 81:83:ae:cc:5f:5b:5a:bc:b3:57:cc:5f:42:ef:1e: de:9c:ad:29:8c:82:5b:ec:08:70:28:c3:5a:5a:5b: d2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8E:D7:A4:49:22:4E:DE:E8:91:58:A9:69:6D:CC:8E:7D:32:8A:35 X509v3 Authority Key Identifier: keyid:80:B1:8B:81:D4:7B:61:77:13:04:E0:F7:61:0D:11:A7:C3:40:61:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134A42/1FB0F676EA8C11EF88C9085AC4F9AE02/gLGLgdR7YXcTBOD3YQ0Rp8NAYSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:c3:49:18:1f:73:60:4a:e3:c5:37:34:86:8a:db:01:e1:37: b8:f5:d2:1d:1d:aa:59:e6:8e:1a:a8:fa:3f:c5:c7:ba:67:fc: ad:51:20:ad:e1:00:b6:d8:13:0c:26:13:fb:59:35:ec:74:a0: 50:14:7c:08:2f:95:71:34:23:ec:ed:63:3a:e3:0a:ba:3a:5f: a4:85:e1:81:78:0a:c2:3c:45:bc:8b:3c:07:ca:34:86:8d:c0: d5:60:cb:35:2f:2a:85:57:65:87:29:07:9d:94:18:50:60:ea: 44:97:5a:c6:96:07:4c:50:50:2d:7c:42:6a:50:8e:b7:a3:f3: ef:90:20:c4:02:50:86:3f:7a:bf:3f:e4:68:05:64:98:a9:80: c2:0f:80:81:72:62:36:89:f1:15:36:57:be:fb:25:25:00:aa: 7b:9d:25:a1:a3:7e:bf:84:00:a8:d8:d2:ef:a3:d0:2f:98:e1: a1:28:79:75:45:4b:9b:af:76:54:d1:34:2b:35:a1:cc:a4:12: d3:8f:2f:29:b1:85:dc:4e:71:df:e5:c4:05:bf:9b:d1:19:79: 84:b6:45:56:31:e5:df:f8:dd:a2:2f:1c:38:0d:bc:51:d9:84: 7d:1c:8f:05:d3:d0:3b:a9:ff:f7:d2:d6:dd:6c:12:6b:25:f2: c9:9b:ff:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NEE0MjExMC8GA1UEBRMoODBCMThCODFENDdCNjE3NzEzMDRFMEY3NjEwRDExQTdD MzQwNjEyMzAeFw0yNTA1MTUwNjU3NTdaFw0yNTA1MjIwNjU3NTdaMBgxFjAUBgNV BAMTDTY4MjU5MDc2LTIwNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE+S1x1ymj4RvYegMeNqUZFRqfietg0ZUqChOcm5dRGoWNw9nTjOpyIc3ROB3a iv5hAq6flsMGC1cRWPehKb7p4OimIGyfmvDh/DPHUyhvj2z2SIu8r2/L+KTDJKSW EWooyEJz9mnI7H/CldTowlHy3kzAJOIC7Qh3eEzz5u7TFxLL2q+TvzWOosp5cTt+ cqEsdyjT81gKqVzk7MY8Xtc9fIkbUlekmX6fElByxKuenoVQhTta6qVSfK5wVUGh pOp/oIM2gTphRUZFSpGZ+rV3Wg6QlcVNvuWkrZJ+nVcXPIGDrsxfW1q8s1fMX0Lv Ht6crSmMglvsCHAow1paW9LDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6o7XpEki Tt7okVipaW3Mjn0yijUwHwYDVR0jBBgwFoAUgLGLgdR7YXcTBOD3YQ0Rp8NAYSMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0QTQyLzFGQjBGNjc2RUE4 QzExRUY4OEM5MDg1QUM0RjlBRTAyL2dMR0xnZFI3WVhjVEJPRDNZUTBScDhOQVlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0xHTGdkUjdZWGNUQk9EM1lRMFJwOE5BWVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0 QTQyLzFGQjBGNjc2RUE4QzExRUY4OEM5MDg1QUM0RjlBRTAyL2dMR0xnZFI3WVhj VEJPRDNZUTBScDhOQVlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEnDSRgfc2BK48U3NIaK2wHhN7j10h0dqlnmjhqo+j/Fx7pn/K1RIK3h ALbYEwwmE/tZNex0oFAUfAgvlXE0I+ztYzrjCro6X6SF4YF4CsI8RbyLPAfKNIaN wNVgyzUvKoVXZYcpB52UGFBg6kSXWsaWB0xQUC18QmpQjrej8++QIMQCUIY/er8/ 5GgFZJipgMIPgIFyYjaJ8RU2V777JSUAqnudJaGjfr+EAKjY0u+j0C+Y4aEoeXVF S5uvdlTRNCs1ocykEtOPLymxhdxOcd/lxAW/m9EZeYS2RVYx5d/43aIvHDgNvFHZ hH0cjwXT0Dup//fS1t1sEmsl8smb/2w= -----END CERTIFICATE-----Generated at Fri May 16 03:06:04 2025 by rpki-client