$ rpki-client -vvf rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft File: gCfg71TQC2H3E28JcZv89MRTNAU.mft (raw, json) Hash identifier: c3dQCkUc4C8t2ldPgVsNekvBI3rN5Z3FzDwZl2FIiTc= Subject key identifier: F1:CC:5D:69:FA:A9:DF:00:5C:15:88:BB:5A:EB:CF:C1:2E:24:AB:B2 Authority key identifier: 80:27:E0:EF:54:D0:0B:61:F7:13:6F:09:71:9B:FC:F4:C4:53:34:05 Certificate issuer: /CN=A9182CFC/serialNumber=8027E0EF54D00B61F7136F09719BFCF4C4533405 Certificate serial: 34B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft Manifest number: 34A8 Signing time: Mon 12 May 2025 14:26:58 +0000 Manifest this update: Mon 12 May 2025 14:26:57 +0000 Manifest next update: Mon 19 May 2025 14:26:57 +0000 Files and hashes: 1: gCfg71TQC2H3E28JcZv89MRTNAU.crl (hash: VU4hwExN5eDnYHbxL8Y3Rn05RGx2Fs9VdDiLUzEbpU8=) 2: CFAE1776E7C811ECA2BF6554C4F9AE02.roa (hash: QARDRv4cItQzZWCbzQNYEiniGbYK33outlCobD5Vmvg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.crl rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13490 (0x34b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182CFC, serialNumber=8027E0EF54D00B61F7136F09719BFCF4C4533405 Validity Not Before: May 12 14:26:57 2025 GMT Not After : May 19 14:26:57 2025 GMT Subject: CN=68220531-8e0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d1:a4:18:56:af:7d:70:d4:25:e5:32:63:e1: 02:5b:0e:ba:3a:33:5c:82:2c:d5:82:36:66:e7:3f: 5c:62:99:bb:a4:ec:6d:46:28:25:06:fc:9d:d2:13: 56:36:aa:38:90:f0:c3:96:fd:9e:1e:de:4c:5b:ff: 16:fe:2f:22:b8:8e:6b:0f:c5:ce:2d:6a:cc:8c:1b: 78:f8:a0:46:6e:1d:46:0c:ed:03:c6:f1:a2:73:81: 97:4e:6f:0c:34:eb:b2:7a:eb:74:ca:0c:cb:b3:63: 90:11:e2:33:f7:f1:1b:8a:e7:f2:45:8b:40:05:0c: 08:4f:f1:3e:fc:8d:a6:28:1f:22:a5:7a:0a:ff:3e: 9d:60:2a:ae:0d:e5:5f:0b:60:47:29:57:c8:c3:76: e8:a6:a8:1e:b8:57:a2:68:94:9e:d5:7a:ed:34:9b: 61:5d:b6:83:84:49:3f:76:05:26:86:16:e4:ba:16: 68:ca:21:95:21:04:80:19:80:1f:ea:06:04:a8:95: fd:0a:6e:45:3f:9d:9a:f3:eb:8a:8c:36:31:b0:70: 92:8f:0e:86:60:6f:18:3c:ea:34:dc:65:17:5c:b5: cc:b8:b3:df:29:74:1e:b2:b8:1a:1d:1f:7d:5e:cd: da:38:5b:6f:9e:94:18:7d:2a:48:93:63:d7:1b:af: 14:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:CC:5D:69:FA:A9:DF:00:5C:15:88:BB:5A:EB:CF:C1:2E:24:AB:B2 X509v3 Authority Key Identifier: keyid:80:27:E0:EF:54:D0:0B:61:F7:13:6F:09:71:9B:FC:F4:C4:53:34:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:87:0d:6e:d9:55:8a:f8:c3:31:48:e4:3a:ab:d3:4e:10:e2: 37:fe:b4:51:30:de:0e:05:3f:e8:5d:bb:9f:4c:51:3c:c6:2c: 27:21:67:8b:67:fa:39:d0:e2:74:0f:8b:53:84:f3:36:17:7d: d3:90:e9:64:7a:6c:1f:8c:62:40:fb:e8:f5:78:25:34:de:30: 15:35:6d:21:2e:ce:d2:30:0f:73:fc:c8:68:1d:53:e2:bc:30: 77:63:b7:45:26:02:c3:c4:c5:9d:4f:9a:de:ae:78:f6:07:96: fa:d3:83:78:6e:da:97:c3:8a:34:7b:4b:0e:dc:54:c8:c8:82: f6:7a:1c:e5:db:d1:6d:f8:91:2f:2f:8e:a0:fb:ac:dc:00:e9: 66:87:05:35:8e:12:d5:d6:db:27:f2:76:22:b8:ff:01:e6:f1: 37:ce:0b:fd:f8:e6:50:31:0e:31:60:1d:ab:83:c6:95:f0:23: 69:d5:70:c1:c6:12:c6:94:ed:42:67:16:f1:c5:bc:49:2e:4c: 81:7c:dd:75:3e:de:3f:07:a6:8f:64:32:47:50:39:bb:8f:a6: ee:43:b5:57:6a:ef:4e:3f:5a:3a:11:69:66:66:36:17:4e:6c: 65:e9:a1:74:50:f8:ec:b6:45:da:d9:9b:0f:b2:7a:46:0c:4f: 9b:0b:b9:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJDRkMxMTAvBgNVBAUTKDgwMjdFMEVGNTREMDBCNjFGNzEzNkYwOTcxOUJGQ0Y0 QzQ1MzM0MDUwHhcNMjUwNTEyMTQyNjU3WhcNMjUwNTE5MTQyNjU3WjAYMRYwFAYD VQQDEw02ODIyMDUzMS04ZTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9GkGFavfXDUJeUyY+ECWw66OjNcgizVgjZm5z9cYpm7pOxtRiglBvyd0hNW Nqo4kPDDlv2eHt5MW/8W/i8iuI5rD8XOLWrMjBt4+KBGbh1GDO0DxvGic4GXTm8M NOuyeut0ygzLs2OQEeIz9/EbiufyRYtABQwIT/E+/I2mKB8ipXoK/z6dYCquDeVf C2BHKVfIw3bopqgeuFeiaJSe1XrtNJthXbaDhEk/dgUmhhbkuhZoyiGVIQSAGYAf 6gYEqJX9Cm5FP52a8+uKjDYxsHCSjw6GYG8YPOo03GUXXLXMuLPfKXQesrgaHR99 Xs3aOFtvnpQYfSpIk2PXG68UJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHMXWn6 qd8AXBWIu1rrz8EuJKuyMB8GA1UdIwQYMBaAFIAn4O9U0Ath9xNvCXGb/PTEUzQF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkNGQy9CRjg0QjU3NDFE ODYxMUUyQTc2MzQ0REUwOEIwMkNEMi9nQ2ZnNzFUUUMySDNFMjhKY1p2ODlNUlRO QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDZmc3MVRRQzJIM0UyOEpjWnY4OU1SVE5BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MkNGQy9CRjg0QjU3NDFEODYxMUUyQTc2MzQ0REUwOEIwMkNEMi9nQ2ZnNzFUUUMy SDNFMjhKY1p2ODlNUlROQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZhw1u2VWK+MMxSOQ6q9NOEOI3/rRRMN4OBT/oXbufTFE8xiwnIWeL Z/o50OJ0D4tThPM2F33TkOlkemwfjGJA++j1eCU03jAVNW0hLs7SMA9z/MhoHVPi vDB3Y7dFJgLDxMWdT5rernj2B5b604N4btqXw4o0e0sO3FTIyIL2ehzl29Ft+JEv L46g+6zcAOlmhwU1jhLV1tsn8nYiuP8B5vE3zgv9+OZQMQ4xYB2rg8aV8CNp1XDB xhLGlO1CZxbxxbxJLkyBfN11Pt4/B6aPZDJHUDm7j6buQ7VXau9OP1o6EWlmZjYX Tmxl6aF0UPjstkXa2ZsPsnpGDE+bC7mn -----END CERTIFICATE-----Generated at Tue May 13 14:15:08 2025 by rpki-client