$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: VdSGul5wzdUZFU/gAj1OmHtr+i0PORnXBjeMfmWjzVU= Subject key identifier: 55:F8:3B:66:25:90:CA:17:B9:62:1C:14:9C:AF:FE:E2:4E:75:B8:49 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1B9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1B89 Signing time: Sat 10 May 2025 16:11:40 +0000 Manifest this update: Sat 10 May 2025 16:11:40 +0000 Manifest next update: Sat 17 May 2025 16:11:40 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: sDsqPfhZRZfUlqO0RdkOGP+y1kzf3DjXoOMYOkkw42Q=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7067 (0x1b9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: May 10 16:11:40 2025 GMT Not After : May 17 16:11:40 2025 GMT Subject: CN=681f7abc-1a55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9f:b9:85:cc:3c:83:da:91:ea:9d:e8:17:c9: 2a:ef:11:f5:eb:d1:8e:a5:2c:8e:60:35:a9:0a:0c: 04:b0:37:9e:9b:10:ca:e5:78:40:d5:ed:45:2c:54: ff:6e:eb:07:09:c5:71:6f:8a:68:92:88:d3:4f:60: 64:04:dd:de:22:29:58:29:4a:a8:e2:96:1c:c4:34: 0f:49:38:a4:80:27:76:f9:72:21:6a:3b:ef:47:4a: 33:45:8d:16:04:a0:fa:23:fd:47:34:74:65:5d:a7: 0b:32:76:41:f8:31:9a:d4:1f:2f:a6:55:ec:8a:2e: 26:38:e7:bd:95:81:2f:c8:93:81:24:08:23:14:50: 31:a1:8b:c0:b9:3d:46:c8:72:04:b5:52:55:4f:c6: a0:de:f7:79:19:99:33:6c:0f:d1:18:12:47:bd:cf: 8f:17:3a:c1:b4:ac:b4:c5:e4:7d:46:a7:c4:9d:8e: f8:51:b5:3d:4f:c8:2a:b0:ab:7a:22:76:78:87:7f: e5:94:a3:fe:06:92:d0:df:70:de:d2:ed:9d:14:4b: 07:8e:6b:96:c9:99:1a:73:ff:f1:54:4f:37:62:bd: 4e:61:b2:4a:28:45:92:09:93:57:35:a0:58:ed:c0: 44:88:be:1d:3c:76:70:1d:fd:93:48:f1:78:a8:fc: 73:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F8:3B:66:25:90:CA:17:B9:62:1C:14:9C:AF:FE:E2:4E:75:B8:49 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:06:fb:4c:18:f7:66:ff:45:41:b9:4f:4a:be:1d:66:cc:b2: f9:76:f6:9d:2b:c0:8b:42:3b:05:a3:8b:70:b9:43:58:52:e6: 53:48:63:99:0d:90:ab:3f:25:1e:a8:45:67:12:0a:25:1c:2a: fb:f3:4c:80:75:bc:ee:50:19:0b:68:6b:6c:61:71:a9:3c:d7: 6c:49:dd:c5:43:1e:36:78:69:cf:55:d0:5a:ac:1a:bf:f8:d1: 82:b5:1c:e9:e0:ec:30:3e:66:d4:71:2a:b9:3d:c0:7e:31:d4: f8:0e:8c:46:24:65:8f:8f:0a:e5:d1:b1:cf:e5:bf:25:2e:be: eb:e7:e1:1c:18:7b:9a:8b:7c:1f:21:69:7b:c2:3a:e0:c0:89: 5a:a3:42:46:56:db:3a:d4:3e:69:f8:fb:39:7f:45:b2:24:ec: bc:04:47:eb:20:72:4c:55:ef:69:6a:3c:b4:f3:25:b8:82:42: 97:ad:6f:57:74:06:83:92:54:6b:d2:09:db:71:b3:c5:ce:4f: 1b:47:51:e7:0f:36:17:96:fd:b4:78:f2:e9:5b:44:07:c7:47: 86:21:fc:31:07:fd:5c:b8:d7:62:94:20:8f:e6:99:42:6f:8d: 62:6d:bc:71:0f:3a:73:41:c4:64:78:0e:d8:26:22:77:7c:1b: fb:b1:e9:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwNTEwMTYxMTQwWhcNMjUwNTE3MTYxMTQwWjAYMRYwFAYD VQQDEw02ODFmN2FiYy0xYTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZ+5hcw8g9qR6p3oF8kq7xH169GOpSyOYDWpCgwEsDeemxDK5XhA1e1FLFT/ busHCcVxb4pokojTT2BkBN3eIilYKUqo4pYcxDQPSTikgCd2+XIhajvvR0ozRY0W BKD6I/1HNHRlXacLMnZB+DGa1B8vplXsii4mOOe9lYEvyJOBJAgjFFAxoYvAuT1G yHIEtVJVT8ag3vd5GZkzbA/RGBJHvc+PFzrBtKy0xeR9RqfEnY74UbU9T8gqsKt6 InZ4h3/llKP+BpLQ33De0u2dFEsHjmuWyZkac//xVE83Yr1OYbJKKEWSCZNXNaBY 7cBEiL4dPHZwHf2TSPF4qPxz2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFX4O2Yl kMoXuWIcFJyv/uJOdbhJMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvBvtMGPdm/0VBuU9Kvh1mzLL5dvadK8CLQjsFo4twuUNYUuZTSGOZ DZCrPyUeqEVnEgolHCr780yAdbzuUBkLaGtsYXGpPNdsSd3FQx42eGnPVdBarBq/ +NGCtRzp4OwwPmbUcSq5PcB+MdT4DoxGJGWPjwrl0bHP5b8lLr7r5+EcGHuai3wf IWl7wjrgwIlao0JGVts61D5p+Ps5f0WyJOy8BEfrIHJMVe9pajy08yW4gkKXrW9X dAaDklRr0gnbcbPFzk8bR1HnDzYXlv20ePLpW0QHx0eGIfwxB/1cuNdilCCP5plC b41ibbxxDzpzQcRkeA7YJiJ3fBv7sekw -----END CERTIFICATE-----Generated at Mon May 12 11:33:32 2025 by rpki-client