$ rpki-client -vvf rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft File: gBf49rHsAjxINqRXp7BYQqBxnyg.mft (raw, json) Hash identifier: yhHwLM3JPUp71Jhe5Mu1X+1+S2z5Yc1fNnCP2HE1mRM= Subject key identifier: BE:3A:70:3F:B6:4A:18:CA:28:59:F1:60:5E:3D:08:74:06:E8:8C:AF Authority key identifier: 80:17:F8:F6:B1:EC:02:3C:48:36:A4:57:A7:B0:58:42:A0:71:9F:28 Certificate issuer: /CN=A913B088/serialNumber=8017F8F6B1EC023C4836A457A7B05842A0719F28 Certificate serial: 0B3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBf49rHsAjxINqRXp7BYQqBxnyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft Manifest number: 0B34 Signing time: Fri 16 May 2025 19:23:55 +0000 Manifest this update: Fri 16 May 2025 19:23:54 +0000 Manifest next update: Fri 23 May 2025 19:23:54 +0000 Files and hashes: 1: gBf49rHsAjxINqRXp7BYQqBxnyg.crl (hash: ZF5Vv61EhXn0Q4H+IrgySmi2FIZwHV2V/VCAYCvh3NM=) 2: 6DEDEF66387A11EA9450A37CC4F9AE02.roa (hash: o4u5Q2Jc2gCY8tVjsD1bgPzcbwwoDr6mqctN+7fPekU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.crl rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBf49rHsAjxINqRXp7BYQqBxnyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2875 (0xb3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B088, serialNumber=8017F8F6B1EC023C4836A457A7B05842A0719F28 Validity Not Before: May 16 19:23:54 2025 GMT Not After : May 23 19:23:54 2025 GMT Subject: CN=682790cb-f8f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b4:68:43:cd:bb:2d:94:9e:6d:60:03:f1:10: 2c:c8:e8:25:6c:0f:79:28:88:43:26:66:95:95:00: 4e:04:39:38:cd:e7:dd:b3:76:9d:8f:02:1d:44:bb: d3:39:a3:60:62:fc:99:9b:84:cb:37:fa:2c:88:55: a7:08:ab:8f:02:21:d2:73:09:a7:df:68:0f:20:31: 85:3e:c6:0f:dc:aa:b4:bd:db:61:73:8f:fa:23:92: 29:ca:e9:8d:2e:43:da:de:f1:b1:bb:bb:ad:81:f7: f9:c2:da:87:4f:12:a8:5e:89:1b:1b:e1:96:ce:63: f5:81:92:d3:93:a6:4e:25:41:a1:61:2d:67:2e:49: 34:29:ba:65:25:e1:44:a1:08:34:e9:07:be:d3:6b: bd:80:18:66:1b:0e:b9:b8:9e:97:50:ce:4d:7e:20: 2b:70:d9:75:53:f2:55:90:b0:09:6c:01:b9:7e:dc: fb:0a:ce:fb:6e:b2:df:b4:40:ae:7c:a3:7e:9e:6c: f1:57:e6:8b:d5:72:dc:21:9d:46:37:f8:8b:12:4d: d0:d7:79:41:7d:a2:05:7e:59:85:22:14:cc:e6:00: 20:80:e7:d5:eb:8b:81:77:39:71:28:2d:3d:cd:0c: 34:45:8c:dd:a7:63:2a:72:3b:85:8e:d6:3f:2a:7f: 02:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:3A:70:3F:B6:4A:18:CA:28:59:F1:60:5E:3D:08:74:06:E8:8C:AF X509v3 Authority Key Identifier: keyid:80:17:F8:F6:B1:EC:02:3C:48:36:A4:57:A7:B0:58:42:A0:71:9F:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gBf49rHsAjxINqRXp7BYQqBxnyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B088/F569CF76387711EA93695179C4F9AE02/gBf49rHsAjxINqRXp7BYQqBxnyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:e5:9b:cd:46:a5:f0:1b:a1:14:c4:bb:7c:8b:a3:c4:81:b5: 98:af:23:d1:c6:7e:62:8b:89:ee:dd:e3:69:7e:53:08:51:ce: 0d:65:d9:a7:07:86:d3:8e:cb:47:27:5b:b2:a7:8c:80:a5:66: 7f:e7:1e:75:a1:02:2c:f9:4e:b1:45:54:dc:36:eb:f9:da:71: a7:aa:d2:29:3d:8b:d7:22:8b:f7:5f:72:f8:20:ce:18:ac:eb: 93:14:4e:82:b1:0e:12:b0:5f:21:e8:a2:c6:75:fc:2f:89:3f: 2d:05:6f:ed:9f:26:d0:67:5c:4d:5d:1e:c6:e7:fa:62:44:38: b4:b7:b2:24:fc:e0:72:f1:12:a8:13:a0:ef:59:44:60:b4:84: 38:50:20:8c:e0:95:f4:e8:40:d6:40:82:0d:2f:9d:75:81:c9: 56:32:66:89:fe:5b:01:f0:4f:43:49:91:12:27:43:e1:57:39: 0b:09:d7:b6:9a:7c:43:b2:56:0a:bd:ab:2d:15:ed:78:22:34: 1b:5c:f4:81:12:86:7d:51:7d:f5:97:0a:7e:1d:b1:93:07:5d: 0d:e7:43:e3:86:25:52:f5:30:63:a8:a6:b6:92:f6:11:12:1f: f5:1e:fc:fe:a9:c0:8f:b6:ae:7e:81:4a:62:7b:34:9d:93:68: 6d:41:4d:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwODgxMTAvBgNVBAUTKDgwMTdGOEY2QjFFQzAyM0M0ODM2QTQ1N0E3QjA1ODQy QTA3MTlGMjgwHhcNMjUwNTE2MTkyMzU0WhcNMjUwNTIzMTkyMzU0WjAYMRYwFAYD VQQDEw02ODI3OTBjYi1mOGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7RoQ827LZSebWAD8RAsyOglbA95KIhDJmaVlQBOBDk4zefds3adjwIdRLvT OaNgYvyZm4TLN/osiFWnCKuPAiHScwmn32gPIDGFPsYP3Kq0vdthc4/6I5IpyumN LkPa3vGxu7utgff5wtqHTxKoXokbG+GWzmP1gZLTk6ZOJUGhYS1nLkk0KbplJeFE oQg06Qe+02u9gBhmGw65uJ6XUM5NfiArcNl1U/JVkLAJbAG5ftz7Cs77brLftECu fKN+nmzxV+aL1XLcIZ1GN/iLEk3Q13lBfaIFflmFIhTM5gAggOfV64uBdzlxKC09 zQw0RYzdp2MqcjuFjtY/Kn8CuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL46cD+2 ShjKKFnxYF49CHQG6IyvMB8GA1UdIwQYMBaAFIAX+Pax7AI8SDakV6ewWEKgcZ8o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjA4OC9GNTY5Q0Y3NjM4 NzcxMUVBOTM2OTUxNzlDNEY5QUUwMi9nQmY0OXJIc0FqeElOcVJYcDdCWVFxQnhu eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dCZjQ5ckhzQWp4SU5xUlhwN0JZUXFCeG55Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjA4OC9GNTY5Q0Y3NjM4NzcxMUVBOTM2OTUxNzlDNEY5QUUwMi9nQmY0OXJIc0Fq eElOcVJYcDdCWVFxQnhueWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW5ZvNRqXwG6EUxLt8i6PEgbWYryPRxn5ii4nu3eNpflMIUc4NZdmn B4bTjstHJ1uyp4yApWZ/5x51oQIs+U6xRVTcNuv52nGnqtIpPYvXIov3X3L4IM4Y rOuTFE6CsQ4SsF8h6KLGdfwviT8tBW/tnybQZ1xNXR7G5/piRDi0t7Ik/OBy8RKo E6DvWURgtIQ4UCCM4JX06EDWQIINL511gclWMmaJ/lsB8E9DSZESJ0PhVzkLCde2 mnxDslYKvastFe14IjQbXPSBEoZ9UX31lwp+HbGTB10N50PjhiVS9TBjqKa2kvYR Eh/1Hvz+qcCPtq5+gUpiezSdk2htQU0L -----END CERTIFICATE-----Generated at Sat May 17 23:44:32 2025 by rpki-client