$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: lQpczZfcdqX/L7SMppSNfIOLxhj+h/GBzcGuUME7Ths= Subject key identifier: 32:5B:DC:CE:3B:53:DD:95:C2:BB:CA:5C:C4:58:36:83:69:26:05:CB Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 04F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 04F2 Signing time: Fri 16 May 2025 23:57:08 +0000 Manifest this update: Fri 16 May 2025 23:57:08 +0000 Manifest next update: Fri 23 May 2025 23:57:08 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: 8e1mX16rgxvo/nX0FFil/vL6ybOLQasMKgUxtHcKHWY=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PZxJfjzjdyZlmOEk3GHkckfVyABUkJWbSsSKrjPn2qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 23:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1270 (0x4f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: May 16 23:57:08 2025 GMT Not After : May 23 23:57:08 2025 GMT Subject: CN=6827d0d4-906a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:9a:6c:c1:38:bf:1a:42:08:ea:40:3c:62: 0b:a5:46:50:c6:c1:51:f8:49:c6:57:e0:3f:88:b2: 95:bd:f3:30:42:09:f7:ac:27:fd:c2:a0:02:d8:37: be:20:43:b5:eb:7b:10:36:11:4d:d1:0f:89:50:98: 89:f3:18:9d:50:70:25:cc:1a:a7:5f:d7:88:5f:5a: 41:ba:85:25:a9:a9:25:04:c5:26:3b:16:b1:24:6f: a3:e6:31:1d:72:ff:04:0a:20:21:5e:51:e9:59:71: 31:e5:a8:3c:24:49:af:9f:dd:3b:cb:dd:d1:6c:92: cf:15:2b:ec:79:2d:88:94:ee:99:5f:27:9f:e7:ca: 7d:81:02:65:fa:ff:a3:88:2a:ee:48:65:08:b6:55: 7b:76:8d:d2:07:2c:4a:fe:f3:47:38:a9:3d:45:d6: f5:24:dd:72:59:24:df:53:08:82:11:6c:a9:27:a2: 3b:8a:9c:76:73:7d:50:1a:9b:28:b1:7d:9c:06:f5: b7:17:0d:a5:4f:be:e0:66:83:29:fb:ee:90:dc:c7: 34:e4:f4:fd:67:7b:92:0e:ea:67:3c:b4:06:9a:53: 9e:dd:d8:81:72:0c:35:32:41:c3:a9:3a:6f:ee:18: 36:23:fc:79:ac:d8:30:9e:0d:48:23:42:e9:04:6b: b6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:5B:DC:CE:3B:53:DD:95:C2:BB:CA:5C:C4:58:36:83:69:26:05:CB X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:42:d3:82:03:cd:31:71:66:33:2a:33:73:aa:32:42:9c:cd: 2c:0d:c7:c3:c0:41:b0:85:56:09:cd:a9:0f:bf:be:f5:c9:58: c2:f9:54:db:e2:47:f3:6c:76:4f:dc:47:31:5f:39:13:a9:6a: da:43:1f:02:23:ab:01:06:1b:9e:61:46:49:b9:5d:ac:de:d7: 40:27:c1:51:0f:8d:3a:0e:7c:fb:6e:3b:dd:4f:df:6c:81:4c: 96:ae:07:07:b0:ef:39:e7:bc:ad:c9:42:93:19:da:3b:b4:25: 20:0d:a4:65:9a:d6:14:97:cb:a6:f1:06:dc:f9:67:ff:68:a0: f6:b4:fa:b7:7c:55:0f:5d:ca:67:d3:11:b5:1f:53:16:39:aa: 97:9e:84:3f:ae:4d:7b:02:e7:d3:e9:8d:07:47:11:db:af:e3: 5b:4b:c5:ea:86:95:0d:cf:3b:20:c6:5b:85:bc:9f:e3:0c:cb: d2:0c:71:69:f7:48:92:a1:28:3a:cf:e6:b7:f5:26:23:07:ad: 97:00:c7:d9:f1:66:96:bd:25:ed:e6:dd:79:07:14:df:31:14: 6e:34:4e:f6:b5:5a:00:46:bf:91:19:65:0d:c7:52:85:df:ce: 2d:c7:35:4e:41:0c:82:72:56:09:6b:19:01:7e:3c:a2:58:ee: 4f:c6:f2:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUwNTE2MjM1NzA4WhcNMjUwNTIzMjM1NzA4WjAYMRYwFAYD VQQDEw02ODI3ZDBkNC05MDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSOabME4vxpCCOpAPGILpUZQxsFR+EnGV+A/iLKVvfMwQgn3rCf9wqAC2De+ IEO163sQNhFN0Q+JUJiJ8xidUHAlzBqnX9eIX1pBuoUlqaklBMUmOxaxJG+j5jEd cv8ECiAhXlHpWXEx5ag8JEmvn907y93RbJLPFSvseS2IlO6ZXyef58p9gQJl+v+j iCruSGUItlV7do3SByxK/vNHOKk9Rdb1JN1yWSTfUwiCEWypJ6I7ipx2c31QGpso sX2cBvW3Fw2lT77gZoMp++6Q3Mc05PT9Z3uSDupnPLQGmlOe3diBcgw1MkHDqTpv 7hg2I/x5rNgwng1II0LpBGu2lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJb3M47 U92VwrvKXMRYNoNpJgXLMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6QtOCA80xcWYzKjNzqjJCnM0sDcfDwEGwhVYJzakPv771yVjC+VTb 4kfzbHZP3EcxXzkTqWraQx8CI6sBBhueYUZJuV2s3tdAJ8FRD406Dnz7bjvdT99s gUyWrgcHsO8557ytyUKTGdo7tCUgDaRlmtYUl8um8Qbc+Wf/aKD2tPq3fFUPXcpn 0xG1H1MWOaqXnoQ/rk17AufT6Y0HRxHbr+NbS8XqhpUNzzsgxluFvJ/jDMvSDHFp 90iSoSg6z+a39SYjB62XAMfZ8WaWvSXt5t15BxTfMRRuNE72tVoARr+RGWUNx1KF 384txzVOQQyCclYJaxkBfjyiWO5PxvKK -----END CERTIFICATE-----Generated at Sat May 17 12:29:29 2025 by rpki-client