$ rpki-client -vvf rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft File: GF_2ZH4elndQE3e1UVR5uelGEGc.mft (raw, json) Hash identifier: 4rCKyNhZqNiwm1VnRfAP8h7OY3A0Fu/ijHfxoN1nmQA= Subject key identifier: 06:0C:70:E3:A9:C3:51:AD:A1:09:E0:1E:CB:BE:74:40:04:BF:30:B5 Authority key identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 Certificate issuer: /CN=A9193C85/serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Certificate serial: 1189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft Manifest number: 117E Signing time: Mon 12 May 2025 17:09:57 +0000 Manifest this update: Mon 12 May 2025 17:09:57 +0000 Manifest next update: Mon 19 May 2025 17:09:57 +0000 Files and hashes: 1: GF_2ZH4elndQE3e1UVR5uelGEGc.crl (hash: zYjY+3wCB6VZAvN4qb4a8dOo88cKQmUc/ogQ3m3KXZU=) 2: A1E87910832A11ECA409521EC4F9AE02.roa (hash: pWwzKrBi4ex9pqtRPtIPRabSwqTwDTnYV8iW2v8i1Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:09:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4489 (0x1189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193C85, serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Validity Not Before: May 12 17:09:57 2025 GMT Not After : May 19 17:09:57 2025 GMT Subject: CN=68222b65-f0d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:69:b5:ee:39:27:62:84:1d:b4:20:04:5b:bb: 68:0e:e6:9d:1a:c8:b0:d7:8e:f8:56:2a:32:80:69: 1c:80:12:fd:85:e1:7e:66:4b:e1:ee:f5:c7:5f:16: 5b:0a:c0:2e:4f:63:e8:0c:ac:6d:bf:bb:97:dc:04: d6:e1:61:cd:86:5f:a5:77:22:58:8f:83:b8:90:04: 9f:e1:04:77:a7:1e:55:74:8e:9a:04:c0:ad:63:3d: 1d:39:f8:16:a9:8c:e9:d9:ed:2c:5f:65:89:f9:89: f4:95:b4:ad:fe:3a:a7:3e:48:28:c4:55:4f:9a:f5: 73:0e:d8:18:1a:55:a5:f5:a1:aa:35:36:55:4a:4c: 19:fa:02:8c:de:77:67:d4:65:5b:0e:81:5b:21:f1: 24:d3:7b:ea:90:14:8e:5a:2e:e7:08:4f:bb:7a:b6: 78:7a:f9:ca:14:c2:5e:dc:3e:a0:42:ed:ed:02:fe: db:ab:54:f3:07:0e:84:c0:3d:db:19:2a:8c:83:3d: 2f:e0:30:9e:71:72:8a:09:7b:c1:67:56:5d:0d:c3: df:a6:c2:92:0e:a9:83:58:c4:e1:7e:46:98:60:da: 09:1e:74:f2:ee:8d:c9:53:90:14:12:ac:f6:8f:ed: 47:97:52:3c:e9:2c:f0:84:40:e6:4a:b0:69:0b:86: 6d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:0C:70:E3:A9:C3:51:AD:A1:09:E0:1E:CB:BE:74:40:04:BF:30:B5 X509v3 Authority Key Identifier: keyid:18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:cc:bf:8b:64:46:59:7d:5a:03:35:b3:07:ae:c8:40:e4:d2: 76:d8:03:38:ec:39:24:28:a7:1d:4f:a8:31:c2:6a:ac:72:a6: a6:46:69:cc:da:3e:a9:ec:13:6a:d5:fc:40:bb:9c:72:71:68: a2:c6:39:14:3e:d4:b8:56:60:cb:c0:67:a0:a3:b7:ef:05:df: 38:4b:14:52:ea:6d:1b:7d:9d:07:c1:0c:d5:74:15:84:d1:49: 4c:9a:a1:da:a2:2f:75:19:5a:21:3a:8f:b6:5a:dd:38:35:c2: 95:87:7a:1a:c6:89:a8:9a:f5:ca:f9:a3:db:45:24:ab:61:df: d4:d4:42:fd:a8:0e:95:a2:98:4f:a3:7f:3e:6e:a1:16:e4:3e: 2f:2f:87:d2:09:8a:23:c6:b6:84:c2:9d:a6:35:49:d7:a6:3f: ce:12:50:ae:f5:e9:4b:90:f6:d3:a5:a5:55:02:a1:1f:d0:de: 24:d4:4c:7c:43:29:d0:63:76:e0:4e:00:bc:ef:76:51:4d:9b: 53:6c:52:63:13:98:58:c6:aa:30:2a:1f:b3:f4:4b:bb:6f:d9: 3d:a2:00:49:73:b0:2b:89:9b:9f:4e:fc:a5:d3:39:22:66:fe: 06:a6:86:09:1d:ed:cf:63:c9:d9:75:a6:0d:03:0d:54:b4:86: e2:96:97:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNDODUxMTAvBgNVBAUTKDE4NUZGNjY0N0UxRTk2Nzc1MDEzNzdCNTUxNTQ3OUI5 RTk0NjEwNjcwHhcNMjUwNTEyMTcwOTU3WhcNMjUwNTE5MTcwOTU3WjAYMRYwFAYD VQQDEw02ODIyMmI2NS1mMGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGm17jknYoQdtCAEW7toDuadGsiw1474VioygGkcgBL9heF+Zkvh7vXHXxZb CsAuT2PoDKxtv7uX3ATW4WHNhl+ldyJYj4O4kASf4QR3px5VdI6aBMCtYz0dOfgW qYzp2e0sX2WJ+Yn0lbSt/jqnPkgoxFVPmvVzDtgYGlWl9aGqNTZVSkwZ+gKM3ndn 1GVbDoFbIfEk03vqkBSOWi7nCE+7erZ4evnKFMJe3D6gQu3tAv7bq1TzBw6EwD3b GSqMgz0v4DCecXKKCXvBZ1ZdDcPfpsKSDqmDWMThfkaYYNoJHnTy7o3JU5AUEqz2 j+1Hl1I86SzwhEDmSrBpC4ZthwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYMcOOp w1GtoQngHsu+dEAEvzC1MB8GA1UdIwQYMBaAFBhf9mR+HpZ3UBN3tVFUebnpRhBn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0M4NS80RkY0Q0I3MkZE RTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxuZFFFM2UxVVZSNXVlbEdF R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dGXzJaSDRlbG5kUUUzZTFVVlI1dWVsR0VHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0M4NS80RkY0Q0I3MkZERTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0ZWxu ZFFFM2UxVVZSNXVlbEdFR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDzL+LZEZZfVoDNbMHrshA5NJ22AM47DkkKKcdT6gxwmqscqamRmnM 2j6p7BNq1fxAu5xycWiixjkUPtS4VmDLwGego7fvBd84SxRS6m0bfZ0HwQzVdBWE 0UlMmqHaoi91GVohOo+2Wt04NcKVh3oaxomomvXK+aPbRSSrYd/U1EL9qA6VophP o38+bqEW5D4vL4fSCYojxraEwp2mNUnXpj/OElCu9elLkPbTpaVVAqEf0N4k1Ex8 QynQY3bgTgC873ZRTZtTbFJjE5hYxqowKh+z9Eu7b9k9ogBJc7AriZufTvyl0zki Zv4GpoYJHe3PY8nZdaYNAw1UtIbilpdg -----END CERTIFICATE-----Generated at Wed May 14 09:35:49 2025 by rpki-client