$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: rHq2N2vaPBHHg+YBdHZjB763i8dLdooXF1HGiKc55SY= Subject key identifier: 79:DB:29:70:4E:E8:AC:60:46:2F:6E:41:48:58:AD:06:BE:FA:43:B6 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0222 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 0636 Signing time: Thu 15 May 2025 00:22:00 +0000 Manifest this update: Thu 15 May 2025 00:22:00 +0000 Manifest next update: Thu 22 May 2025 00:22:00 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: gnnIvQgtH3mCAxZMKysNcLIhGe4QcX/eE8FsV7l1r8o=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: 6xK46XhJtyZvl0GV6Tg9wg5kNg7cdtZOaQsNEIc5Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: May 15 00:22:00 2025 GMT Not After : May 22 00:22:00 2025 GMT Subject: CN=682533a8-b351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f5:b8:51:49:dd:a7:fa:63:05:7a:00:4c:02: 5d:d8:b1:ed:87:45:ee:fa:40:2b:e6:44:25:73:37: 49:50:51:8f:28:2a:3d:de:c6:0e:55:01:8d:97:db: 40:b3:f2:56:ad:d0:36:db:b2:6c:b7:97:c4:0c:ee: b5:12:4f:ad:d3:6a:2b:90:db:63:60:7b:e8:03:63: 70:40:7e:6d:63:a8:92:5e:ad:df:e8:a8:5f:87:3f: d9:5e:9b:1a:24:fd:ef:c9:ad:a8:b1:7d:2c:f5:10: d0:95:4d:f9:a0:c9:f5:24:b1:2e:93:43:ef:80:d2: 1e:b4:59:ae:43:83:5e:6d:89:3c:f2:c9:44:70:a4: 03:15:bb:fa:45:2e:0f:c9:7b:03:44:25:f0:a3:ee: bb:b5:cd:bc:b7:c4:f6:6b:de:a2:85:49:84:9e:b5: 3a:1b:8a:31:31:eb:b3:67:65:0f:74:2f:2e:33:0a: 59:27:49:7f:56:88:35:71:90:60:eb:39:27:59:9b: 3e:8f:e4:a0:ea:cb:4a:2d:8e:b3:e3:df:04:de:e9: e0:a5:d3:8c:00:69:f4:c0:60:ef:43:22:55:03:33: 53:a2:ab:b9:e9:12:86:51:36:18:a3:e8:1b:b6:ba: 31:1f:84:39:34:f7:cf:d9:1d:62:7f:fc:ff:81:e5: 59:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:DB:29:70:4E:E8:AC:60:46:2F:6E:41:48:58:AD:06:BE:FA:43:B6 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:26:fc:3b:62:1a:52:99:1c:15:12:9d:72:41:62:92:ab:7d: 6c:10:15:45:05:15:ca:92:77:91:ef:bc:9a:d5:53:80:5e:44: a1:ac:f4:e0:52:16:1b:2f:38:30:d0:b4:16:8e:3a:78:97:a7: 5f:d8:93:47:3b:d0:3c:a2:3e:81:cd:4f:9e:b8:5f:3f:6b:b0: d7:a9:f0:48:74:eb:37:23:ab:8e:8e:9a:df:34:44:e9:8e:b9: 6c:b0:45:1a:78:d6:14:f2:10:d7:e6:7d:a1:f1:e8:d5:1b:f5: 93:47:d3:e9:4f:dc:47:af:6c:48:eb:0e:a3:07:10:a9:57:5d: 16:67:c2:ef:2c:44:2c:5c:d3:25:cd:d2:77:3e:d5:73:b1:70: e9:83:b5:43:82:9b:67:c6:9f:39:93:b9:76:ee:5b:f1:ff:17: 8d:06:af:5a:d3:a7:40:27:49:e9:88:bf:73:f5:ec:87:c4:3d: 37:40:96:63:cf:f8:9b:cd:ce:b5:26:8a:a5:b1:48:53:5c:38: fd:33:05:a6:0b:f5:2c:40:0e:94:8d:0e:29:e2:10:36:c8:0b: 90:6a:f4:ef:00:99:cf:99:d4:23:b7:a0:ee:c1:5f:61:fd:e2: 31:f8:65:2d:21:b2:f5:0f:d6:23:62:93:6e:7d:56:4e:c5:88: 70:00:07:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUwNTE1MDAyMjAwWhcNMjUwNTIyMDAyMjAwWjAYMRYwFAYD VQQDEw02ODI1MzNhOC1iMzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfW4UUndp/pjBXoATAJd2LHth0Xu+kAr5kQlczdJUFGPKCo93sYOVQGNl9tA s/JWrdA227Jst5fEDO61Ek+t02orkNtjYHvoA2NwQH5tY6iSXq3f6Khfhz/ZXpsa JP3vya2osX0s9RDQlU35oMn1JLEuk0PvgNIetFmuQ4NebYk88slEcKQDFbv6RS4P yXsDRCXwo+67tc28t8T2a96ihUmEnrU6G4oxMeuzZ2UPdC8uMwpZJ0l/Vog1cZBg 6zknWZs+j+Sg6stKLY6z498E3ungpdOMAGn0wGDvQyJVAzNToqu56RKGUTYYo+gb troxH4Q5NPfP2R1if/z/geVZJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnbKXBO 6KxgRi9uQUhYrQa++kO2MB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAJvw7YhpSmRwVEp1yQWKSq31sEBVFBRXKkneR77ya1VOAXkShrPTg UhYbLzgw0LQWjjp4l6df2JNHO9A8oj6BzU+euF8/a7DXqfBIdOs3I6uOjprfNETp jrlssEUaeNYU8hDX5n2h8ejVG/WTR9PpT9xHr2xI6w6jBxCpV10WZ8LvLEQsXNMl zdJ3PtVzsXDpg7VDgptnxp85k7l27lvx/xeNBq9a06dAJ0npiL9z9eyHxD03QJZj z/ibzc61JoqlsUhTXDj9MwWmC/UsQA6UjQ4p4hA2yAuQavTvAJnPmdQjt6DuwV9h /eIx+GUtIbL1D9YjYpNufVZOxYhwAAfd -----END CERTIFICATE-----Generated at Fri May 16 11:33:44 2025 by rpki-client