$ rpki-client -vvf rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft File: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft (raw, json) Hash identifier: 1DyeyCcFiAVczA+GYXNPOEyKbCYGsM2R6CGBmcTx3V0= Subject key identifier: CC:19:EE:01:45:1B:8B:02:CA:92:F1:5E:22:E4:DA:BC:26:C3:BA:35 Authority key identifier: 80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A Certificate issuer: /CN=A9143A67/serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft Manifest number: 026F Signing time: Tue 13 May 2025 01:31:12 +0000 Manifest this update: Tue 13 May 2025 01:31:12 +0000 Manifest next update: Tue 20 May 2025 01:31:12 +0000 Files and hashes: 1: gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl (hash: n5abHhWUPL9MVVDzkORm3ada1tBGb1UQJRsEoTKhy1U=) 2: EE62A36A0D9F11EDB7631D1BC4F9AE02.roa (hash: 79mqc7tZF4tbIphjhbOXUthxD6els9a6zfI1+s7nFSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143A67, serialNumber=80E0AB189FCD701EEE42C92B93C15B6F7424826A Validity Not Before: May 13 01:31:12 2025 GMT Not After : May 20 01:31:12 2025 GMT Subject: CN=6822a0e0-79aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:28:cb:e7:05:4b:7d:b7:1f:9c:a2:3a:44:9e: 32:e7:03:3e:9c:b4:e4:cd:e4:e9:c9:f0:35:72:7b: 96:33:03:d4:41:dd:47:b0:34:c3:67:44:76:5d:16: 47:4c:d2:31:94:1e:20:d3:18:1e:9d:78:76:ac:ff: 40:d9:0e:ad:0d:c5:da:5b:d7:e4:13:cb:cb:a3:ab: 69:43:8f:8e:6b:4e:85:4e:73:e2:7a:76:fd:74:1c: 88:ea:50:07:21:0c:fb:71:62:e4:51:76:ec:72:d8: 08:1f:90:d6:af:ce:d2:a5:e2:cc:42:e6:8a:26:8c: 32:ee:d1:e9:c9:7d:5f:d8:4e:5c:0a:31:1d:59:70: dd:dc:2a:4e:f7:f8:fc:2f:b8:40:55:7c:20:a6:0c: bf:ef:25:8b:24:58:dd:f6:84:33:4b:5b:30:99:f8: d3:c2:16:c4:a7:e7:34:55:5f:38:2d:96:de:f7:e1: 42:cc:e0:95:7f:34:16:d4:52:14:62:c9:5f:14:59: 92:ad:95:89:ba:5b:22:54:c7:c0:a2:86:37:e4:50: d5:e2:04:0f:8a:fe:82:31:95:7e:ab:d3:27:1b:42: b2:ad:1e:c2:78:43:c3:1e:8e:29:01:2f:73:d6:4e: e6:e0:ee:31:ec:e6:90:35:11:ae:58:6b:01:08:b5: 02:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:19:EE:01:45:1B:8B:02:CA:92:F1:5E:22:E4:DA:BC:26:C3:BA:35 X509v3 Authority Key Identifier: keyid:80:E0:AB:18:9F:CD:70:1E:EE:42:C9:2B:93:C1:5B:6F:74:24:82:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143A67/C80697920D9C11EDB8F9B617C4F9AE02/gOCrGJ_NcB7uQskrk8Fbb3Qkgmo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:0b:7d:49:bd:d9:d3:e4:d9:fe:94:4c:d1:6d:73:d9:fa:dd: c5:52:53:1b:41:39:63:60:f0:57:ca:26:cd:7c:fb:fc:c1:d5: 43:0b:40:33:d1:51:c1:36:eb:ec:d5:69:a8:1b:7f:4d:d3:5f: 23:b8:1b:4a:0b:63:e4:33:9b:1b:fa:03:24:62:3d:bd:d2:f5: 8e:7a:3f:4d:7f:d4:15:32:dc:48:66:61:a1:1e:7d:e7:29:05: 5c:ba:ba:ca:86:bc:f6:ba:e1:8e:2e:fe:c1:a9:ad:64:17:62: ac:89:ff:d9:85:75:97:23:e0:34:c0:b2:3a:64:fb:c6:49:11: 6f:1c:89:0f:32:be:7c:ed:af:67:24:ae:c9:99:ce:b0:a6:4a: 8c:17:3c:51:fe:f5:5c:2f:5b:28:2d:c5:c8:ca:6b:35:2e:86: 52:73:8e:62:96:28:f5:fd:15:8f:5f:e1:12:6d:35:ee:98:c7: d5:49:40:d3:d1:d5:29:d3:f5:c7:cc:17:8a:34:7b:5c:81:e1: 25:ce:c2:8c:2d:90:c2:14:05:3c:d9:d5:63:5a:e5:bd:04:70: 46:a6:b4:bb:26:50:8c:54:a4:a6:35:42:44:9f:1c:69:36:db: 4f:3f:69:9f:d4:82:ba:d5:1b:40:96:94:e6:ff:cc:05:0b:87: 8e:e2:e5:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNBNjcxMTAvBgNVBAUTKDgwRTBBQjE4OUZDRDcwMUVFRTQyQzkyQjkzQzE1QjZG NzQyNDgyNkEwHhcNMjUwNTEzMDEzMTEyWhcNMjUwNTIwMDEzMTEyWjAYMRYwFAYD VQQDEw02ODIyYTBlMC03OWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCjL5wVLfbcfnKI6RJ4y5wM+nLTkzeTpyfA1cnuWMwPUQd1HsDTDZ0R2XRZH TNIxlB4g0xgenXh2rP9A2Q6tDcXaW9fkE8vLo6tpQ4+Oa06FTnPienb9dByI6lAH IQz7cWLkUXbsctgIH5DWr87SpeLMQuaKJowy7tHpyX1f2E5cCjEdWXDd3CpO9/j8 L7hAVXwgpgy/7yWLJFjd9oQzS1swmfjTwhbEp+c0VV84LZbe9+FCzOCVfzQW1FIU YslfFFmSrZWJulsiVMfAooY35FDV4gQPiv6CMZV+q9MnG0KyrR7CeEPDHo4pAS9z 1k7m4O4x7OaQNRGuWGsBCLUC/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwZ7gFF G4sCypLxXiLk2rwmw7o1MB8GA1UdIwQYMBaAFIDgqxifzXAe7kLJK5PBW290JIJq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0E2Ny9DODA2OTc5MjBE OUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNCN3VRc2tyazhGYmIzUWtn bW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPQ3JHSl9OY0I3dVFza3JrOEZiYjNRa2dtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0E2Ny9DODA2OTc5MjBEOUMxMUVEQjhGOUI2MTdDNEY5QUUwMi9nT0NyR0pfTmNC N3VRc2tyazhGYmIzUWtnbW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClC31JvdnT5Nn+lEzRbXPZ+t3FUlMbQTljYPBXyibNfPv8wdVDC0Az 0VHBNuvs1WmoG39N018juBtKC2PkM5sb+gMkYj290vWOej9Nf9QVMtxIZmGhHn3n KQVcurrKhrz2uuGOLv7Bqa1kF2Ksif/ZhXWXI+A0wLI6ZPvGSRFvHIkPMr587a9n JK7Jmc6wpkqMFzxR/vVcL1soLcXIyms1LoZSc45ilij1/RWPX+ESbTXumMfVSUDT 0dUp0/XHzBeKNHtcgeElzsKMLZDCFAU82dVjWuW9BHBGprS7JlCMVKSmNUJEnxxp NttPP2mf1IK61RtAlpTm/8wFC4eO4uWi -----END CERTIFICATE-----Generated at Tue May 13 20:47:04 2025 by rpki-client