$ rpki-client -vvf rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft File: GHJyN_a30WUlK_m9s4a24ergVXQ.mft (raw, json) Hash identifier: WielpdXu1YCU8FE0te08qoYx1rCdf9NXT8/w5wXnfgc= Subject key identifier: 30:E1:00:C8:DA:39:C2:25:29:97:7A:E9:7A:A5:DB:71:62:C2:BB:E6 Authority key identifier: 18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 Certificate issuer: /CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Certificate serial: 02DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft Manifest number: 02D7 Signing time: Sun 11 May 2025 00:54:48 +0000 Manifest this update: Sun 11 May 2025 00:54:47 +0000 Manifest next update: Sun 18 May 2025 00:54:47 +0000 Files and hashes: 1: GHJyN_a30WUlK_m9s4a24ergVXQ.crl (hash: urrW1IrJu/dKnx/8+rAXml/jcxsV5d1K4mA0pumAiTQ=) 2: FCA92EAAE4AD11EC839CED77C4F9AE02.roa (hash: wW4HCqhcoyo/dCvusJDIhbj+A+f9Rh4hUlMCJe2c3dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917418A, serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Validity Not Before: May 11 00:54:47 2025 GMT Not After : May 18 00:54:47 2025 GMT Subject: CN=681ff557-19f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:08:fe:ed:20:f9:46:66:1e:8f:44:9c:32:b5: 27:ca:87:46:0c:ad:d0:ee:65:ec:aa:7e:ef:34:da: 31:55:4f:94:39:bf:cc:5f:7f:5b:d6:43:8a:78:76: aa:81:6a:04:80:6c:01:88:63:ea:19:13:61:35:7b: a5:57:31:71:e9:8f:a7:3f:ab:a3:39:16:0f:43:27: 1f:47:d8:68:9d:92:7c:5d:15:4d:8b:f1:07:3f:81: f1:1c:b7:fc:03:9f:54:e2:8b:37:dd:4e:e9:72:1c: 1c:d1:47:0c:d7:9e:22:90:1b:20:74:b6:ce:eb:b7: 82:51:e9:35:83:43:3d:fc:19:73:17:e2:7b:cc:f9: bf:35:cf:04:b4:cb:76:bf:76:4e:6d:12:12:a9:af: 47:b4:7e:72:8b:10:d1:e6:0d:5f:ca:07:ee:c9:64: c6:42:16:e2:e3:50:fb:88:0a:c5:2e:53:9b:fa:b7: c5:da:b3:ff:8d:be:d6:5f:4c:22:73:0e:6e:63:1d: 29:e3:6b:6d:d7:57:00:b4:51:0c:0b:b6:b4:1e:0b: d7:60:43:26:39:79:1b:7d:6c:e5:c4:f5:31:79:6d: b2:7a:f7:09:9f:bb:0f:e6:98:db:bb:08:05:fe:34: b8:f1:9e:a8:32:ce:6d:18:18:94:da:93:f5:85:1f: cf:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E1:00:C8:DA:39:C2:25:29:97:7A:E9:7A:A5:DB:71:62:C2:BB:E6 X509v3 Authority Key Identifier: keyid:18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:9b:68:ca:ca:5f:8a:59:4c:f1:be:a0:5b:97:63:fd:27:68: 5e:c7:31:e9:b7:38:de:e5:f9:05:92:27:5c:8e:af:d8:b4:65: e9:ce:21:a3:d2:c0:a2:2d:e0:8f:29:73:37:30:11:19:c0:4c: e3:78:0f:99:9b:0c:77:7d:5e:92:ec:3d:84:ae:d8:bc:b5:f0: aa:b1:8e:4c:95:30:dd:bd:7a:5f:2f:3b:ae:99:d9:ce:c3:3f: b2:e9:a7:90:4b:62:e5:c1:c9:d7:04:78:86:76:7d:28:e6:0b: 6f:22:a1:e3:68:13:5c:c3:1f:30:ff:b1:ab:de:96:46:c3:18: a2:7a:a0:0a:b8:9d:e2:65:ce:c5:e7:1f:e9:7b:46:05:2a:b0: 4c:09:ea:30:08:60:69:de:fc:48:c8:b8:6e:44:60:45:d7:fd: db:48:2e:57:46:e6:9c:63:7b:48:8b:1e:0e:d9:9d:0a:1d:31: f0:72:68:22:86:c4:79:cc:70:59:13:9e:3e:79:b8:90:e8:1d: a4:d1:b1:3e:f2:7c:b0:f5:46:9c:d1:fb:08:0b:7e:f6:ad:e8: 37:da:d8:00:64:2f:41:bf:f7:d8:e9:9e:06:60:29:96:31:ea: d9:53:8b:cd:cb:9c:81:6c:d9:9f:6b:f2:77:6c:82:f9:0d:49: 7e:e6:1c:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOEExMTAvBgNVBAUTKDE4NzI3MjM3RjZCN0QxNjUyNTJCRjlCREIzODZCNkUx RUFFMDU1NzQwHhcNMjUwNTExMDA1NDQ3WhcNMjUwNTE4MDA1NDQ3WjAYMRYwFAYD VQQDEw02ODFmZjU1Ny0xOWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQj+7SD5RmYej0ScMrUnyodGDK3Q7mXsqn7vNNoxVU+UOb/MX39b1kOKeHaq gWoEgGwBiGPqGRNhNXulVzFx6Y+nP6ujORYPQycfR9honZJ8XRVNi/EHP4HxHLf8 A59U4os33U7pchwc0UcM154ikBsgdLbO67eCUek1g0M9/BlzF+J7zPm/Nc8EtMt2 v3ZObRISqa9HtH5yixDR5g1fygfuyWTGQhbi41D7iArFLlOb+rfF2rP/jb7WX0wi cw5uYx0p42tt11cAtFEMC7a0HgvXYEMmOXkbfWzlxPUxeW2yevcJn7sP5pjbuwgF /jS48Z6oMs5tGBiU2pP1hR/PbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDhAMja OcIlKZd66Xql23FiwrvmMB8GA1UdIwQYMBaAFBhycjf2t9FlJSv5vbOGtuHq4FV0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE4QS8wRTA5MDk2OEU0 QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBXVWxLX205czRhMjRlcmdW WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dISnlOX2EzMFdVbEtfbTlzNGEyNGVyZ1ZYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE4QS8wRTA5MDk2OEU0QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBX VWxLX205czRhMjRlcmdWWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApm2jKyl+KWUzxvqBbl2P9J2hexzHptzje5fkFkidcjq/YtGXpziGj 0sCiLeCPKXM3MBEZwEzjeA+Zmwx3fV6S7D2Erti8tfCqsY5MlTDdvXpfLzuumdnO wz+y6aeQS2LlwcnXBHiGdn0o5gtvIqHjaBNcwx8w/7Gr3pZGwxiieqAKuJ3iZc7F 5x/pe0YFKrBMCeowCGBp3vxIyLhuRGBF1/3bSC5XRuacY3tIix4O2Z0KHTHwcmgi hsR5zHBZE54+ebiQ6B2k0bE+8nyw9Uac0fsIC372reg32tgAZC9Bv/fY6Z4GYCmW MerZU4vNy5yBbNmfa/J3bIL5DUl+5hzO -----END CERTIFICATE-----Generated at Mon May 12 19:12:43 2025 by rpki-client