$ rpki-client -vvf rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft File: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft (raw, json) Hash identifier: z7DG4Q0lahC63ALcm3LkXleKMVSkxoAu1tdimIsxLIs= Subject key identifier: D9:FB:9F:18:1B:68:31:7B:FE:A0:AE:18:31:E6:70:54:42:7D:64:2D Authority key identifier: 19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D Certificate issuer: /CN=A913E0D7/serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft Manifest number: 01F2 Signing time: Thu 15 May 2025 02:03:29 +0000 Manifest this update: Thu 15 May 2025 02:03:28 +0000 Manifest next update: Thu 22 May 2025 02:03:28 +0000 Files and hashes: 1: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl (hash: nGKVdnD6iu6e8Qzu8SNxvMYFcfo9SGbc1D5xsB2EEfA=) 2: 12326B1E3ED211EDAE00DB18C4F9AE02.roa (hash: zW5H6X8uqPfx0Xsy4TR9o3a+IpV9YO9mu4z+ktesoLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E0D7, serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Validity Not Before: May 15 02:03:28 2025 GMT Not After : May 22 02:03:28 2025 GMT Subject: CN=68254b71-fd77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:bf:8f:fe:8e:db:cc:e3:4d:8b:83:74:6f:21: 29:a2:be:53:81:58:c6:72:b0:c3:76:1f:ee:22:c0: f5:c4:35:1b:06:5c:e3:31:87:4a:dc:ec:db:bb:6f: 21:e0:a1:c1:7d:7c:8a:c9:e8:92:c0:e0:9a:c5:dc: 7d:52:52:22:7f:de:49:25:29:ec:5d:37:31:7e:dc: 3c:1c:83:32:64:8f:23:ec:e5:96:a8:65:5a:ef:1c: ad:7e:ee:18:62:cc:e1:b5:db:53:fc:51:74:d3:fc: 77:f5:76:6d:0d:0b:24:d7:5e:8d:f6:0a:c6:7e:45: 54:72:b1:cc:35:02:a9:6c:71:d7:a4:b0:fb:19:ad: 28:78:95:6b:48:d0:4d:71:1e:e9:b2:ad:ed:25:f1: d1:ef:b4:b5:57:ef:a3:6d:5e:26:ba:5c:10:6c:cf: 0b:47:cf:90:99:b8:ed:d0:26:9c:44:d2:ae:b5:1e: 36:bd:76:d1:91:4d:a8:a0:0a:ba:df:cc:2f:7d:bb: 7d:dc:8d:f2:f4:ac:32:b7:3d:14:77:57:4e:d2:e3: e4:53:f0:60:68:f1:fe:21:29:36:16:23:9a:6a:f2: 9c:0c:1d:7f:4a:14:65:d0:0a:34:e1:62:29:82:08: 30:d2:a7:c2:4a:5e:dd:fb:3b:60:d7:e9:96:66:28: be:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FB:9F:18:1B:68:31:7B:FE:A0:AE:18:31:E6:70:54:42:7D:64:2D X509v3 Authority Key Identifier: keyid:19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:0c:24:ce:ef:68:e4:4b:bd:44:25:b6:f3:27:11:69:3a:cb: a4:66:a2:20:0f:ac:26:e2:e5:ed:ec:bd:2b:cc:45:9f:cf:71: bd:a6:1f:ea:2b:f8:61:ff:05:23:cb:15:17:89:93:63:04:84: dd:a1:97:b7:fd:6e:1e:a0:22:71:7c:f3:f8:ea:6f:89:ea:f6: 5c:68:ea:b1:92:b2:a5:9c:70:8b:36:92:61:9b:6e:25:ba:b4: eb:78:d2:ae:0f:77:3e:94:d6:a6:e7:f2:4c:dc:50:1f:49:52: fa:c0:03:e6:4e:8d:ed:a4:ac:c8:fb:98:00:47:9f:d6:40:ae: ee:ca:b5:cf:72:03:23:91:e2:57:0f:e5:ff:44:c4:0a:8b:8b: 16:bb:47:89:e2:c1:3b:e7:90:af:50:05:d3:bb:7f:9b:f6:03: d7:a0:fb:5b:4d:48:84:02:25:3c:6b:be:3c:79:c3:16:84:ae: f7:ae:e3:3c:7d:c5:4d:14:e2:46:f2:b1:36:98:3a:d8:1b:ee: fc:44:e6:c2:d4:97:23:6d:bc:da:60:c5:cc:70:ae:c3:1e:db: f7:a1:c6:1c:68:68:60:4a:9e:56:ab:90:7a:3e:92:27:ea:cf: e0:d0:b5:39:29:cf:65:31:6e:51:dd:2f:94:bf:53:7b:13:2e: 79:5a:e9:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwRDcxMTAvBgNVBAUTKDE5QkFCQkNGNEM5OTk5MzAwQUMwNTlDNjUzQzI5MDg0 MkY2QTY2MEQwHhcNMjUwNTE1MDIwMzI4WhcNMjUwNTIyMDIwMzI4WjAYMRYwFAYD VQQDEw02ODI1NGI3MS1mZDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6r+P/o7bzONNi4N0byEpor5TgVjGcrDDdh/uIsD1xDUbBlzjMYdK3Ozbu28h 4KHBfXyKyeiSwOCaxdx9UlIif95JJSnsXTcxftw8HIMyZI8j7OWWqGVa7xytfu4Y YszhtdtT/FF00/x39XZtDQsk116N9grGfkVUcrHMNQKpbHHXpLD7Ga0oeJVrSNBN cR7psq3tJfHR77S1V++jbV4mulwQbM8LR8+Qmbjt0CacRNKutR42vXbRkU2ooAq6 38wvfbt93I3y9Kwytz0Ud1dO0uPkU/BgaPH+ISk2FiOaavKcDB1/ShRl0Ao04WIp gggw0qfCSl7d+ztg1+mWZii+CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNn7nxgb aDF7/qCuGDHmcFRCfWQtMB8GA1UdIwQYMBaAFBm6u89MmZkwCsBZxlPCkIQvamYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTBENy84RkVGODQwNDNF Q0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1UQUt3Rm5HVThLUWhDOXFa ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dicTd6MHlabVRBS3dGbkdVOEtRaEM5cVpnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTBENy84RkVGODQwNDNFQ0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1U QUt3Rm5HVThLUWhDOXFaZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWDCTO72jkS71EJbbzJxFpOsukZqIgD6wm4uXt7L0rzEWfz3G9ph/q K/hh/wUjyxUXiZNjBITdoZe3/W4eoCJxfPP46m+J6vZcaOqxkrKlnHCLNpJhm24l urTreNKuD3c+lNam5/JM3FAfSVL6wAPmTo3tpKzI+5gAR5/WQK7uyrXPcgMjkeJX D+X/RMQKi4sWu0eJ4sE755CvUAXTu3+b9gPXoPtbTUiEAiU8a748ecMWhK73ruM8 fcVNFOJG8rE2mDrYG+78RObC1JcjbbzaYMXMcK7DHtv3ocYcaGhgSp5Wq5B6PpIn 6s/g0LU5Kc9lMW5R3S+Uv1N7Ey55Wun9 -----END CERTIFICATE-----Generated at Fri May 16 19:28:15 2025 by rpki-client