$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: RzlZDHA/yH72UHikHDi/Axs3aAKCfAW7wFl+oQtefhk= Subject key identifier: 28:C2:33:F1:9C:E9:B0:C1:FD:A5:87:68:A1:F2:1E:D5:0C:70:43:56 Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 0608 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 0603 Signing time: Sat 10 May 2025 22:29:31 +0000 Manifest this update: Sat 10 May 2025 22:29:31 +0000 Manifest next update: Sat 17 May 2025 22:29:31 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: FXvTkbUwIxoYx/tOfNPdPdOw4IcpDmmJKutZTl8AsMU=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: ljHjZ6k7MiI2pN3VX1Cgx4pPDWP1h2Cokp04xup/nNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1544 (0x608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: May 10 22:29:31 2025 GMT Not After : May 17 22:29:31 2025 GMT Subject: CN=681fd34b-5204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:39:ee:d9:76:f4:6b:8d:2e:57:76:46:73:7a: f7:c3:a2:b4:d9:c0:84:57:a4:07:f7:73:86:90:67: 47:10:37:c6:d3:c8:15:e9:01:4c:ab:51:1c:41:c7: dd:30:94:32:f6:4e:c0:85:67:5f:4e:a9:1e:b7:8a: 9d:36:86:f7:cb:5e:94:8c:d1:b1:70:99:a1:3e:6a: 46:b5:d8:3f:65:ad:a2:bd:3c:b8:9c:a1:1a:a0:53: 99:6d:8c:64:cc:8c:1d:08:ab:59:40:ae:7a:c3:6a: f3:2b:e4:3d:f5:db:ef:db:66:af:14:cf:0c:97:95: 6e:da:6e:27:3e:ab:83:a6:8c:a8:98:02:a1:e1:ea: 5e:fc:fb:b5:2e:66:c0:c3:ae:0c:88:04:d4:f2:b5: 79:b3:eb:89:79:fb:b6:0b:23:45:a2:57:e6:02:cc: f8:dd:e9:14:34:1d:bb:83:e4:ab:a4:5b:fd:bf:43: 44:ea:8b:3d:e7:c3:2f:c8:f6:d5:9a:d6:14:a1:89: fe:24:d2:af:0c:d4:d6:51:1b:e3:24:45:a9:34:d3: 94:a0:d5:bd:64:42:bd:6f:c8:17:1b:ea:94:3b:bb: 9d:46:99:6c:6a:e9:cc:ec:78:f9:82:3c:7e:71:dd: 46:eb:33:72:fe:ce:91:01:95:06:55:c1:45:e7:a9: ab:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C2:33:F1:9C:E9:B0:C1:FD:A5:87:68:A1:F2:1E:D5:0C:70:43:56 X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:6a:10:ca:31:b2:c6:cf:b8:de:1f:b7:8d:0d:cc:e9:32:a6: 51:16:fd:3d:0c:61:6e:26:53:66:93:e5:ef:9a:13:5c:6e:16: e8:94:f7:8d:6d:cf:73:98:ff:21:b7:ae:d2:cd:1a:4e:46:a5: df:77:d8:d3:d8:28:c4:7f:77:5d:23:1f:07:f6:e7:46:cc:0c: dd:fb:b3:e2:14:a7:b4:4d:70:80:8d:7a:f8:11:13:a9:52:4d: bb:0c:cb:0d:70:18:a2:ec:ce:33:d4:33:1d:06:68:60:40:84: 90:b3:b3:b8:f8:22:66:0a:11:99:d4:8f:53:71:1f:53:69:ed: eb:31:34:e3:f3:cb:b5:ac:f6:f2:01:05:02:ef:15:08:7b:25: 4f:7d:ba:4a:e3:ac:38:6e:3f:c2:16:bb:06:1a:3c:3c:95:47: 2d:34:ad:43:8d:4f:9f:85:17:7d:ba:c4:0c:a1:ac:41:bd:ec: 50:30:72:42:72:8f:07:d7:e4:fc:d8:ca:aa:8c:c6:83:11:87: 31:ae:05:72:b0:3d:ea:69:c3:d1:00:00:88:10:29:3d:1e:95: a2:66:a6:26:84:1c:37:89:5e:19:e8:40:fe:8b:88:84:f3:c5: 11:c2:57:3b:15:a5:ef:31:49:24:98:b1:da:25:6d:40:04:b8: ed:c9:0a:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjUwNTEwMjIyOTMxWhcNMjUwNTE3MjIyOTMxWjAYMRYwFAYD VQQDEw02ODFmZDM0Yi01MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDnu2Xb0a40uV3ZGc3r3w6K02cCEV6QH93OGkGdHEDfG08gV6QFMq1EcQcfd MJQy9k7AhWdfTqket4qdNob3y16UjNGxcJmhPmpGtdg/Za2ivTy4nKEaoFOZbYxk zIwdCKtZQK56w2rzK+Q99dvv22avFM8Ml5Vu2m4nPquDpoyomAKh4epe/Pu1LmbA w64MiATU8rV5s+uJefu2CyNFolfmAsz43ekUNB27g+SrpFv9v0NE6os958MvyPbV mtYUoYn+JNKvDNTWURvjJEWpNNOUoNW9ZEK9b8gXG+qUO7udRplsaunM7Hj5gjx+ cd1G6zNy/s6RAZUGVcFF56mrWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjCM/Gc 6bDB/aWHaKHyHtUMcENWMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkahDKMbLGz7jeH7eNDczpMqZRFv09DGFuJlNmk+XvmhNcbhbolPeN bc9zmP8ht67SzRpORqXfd9jT2CjEf3ddIx8H9udGzAzd+7PiFKe0TXCAjXr4EROp Uk27DMsNcBii7M4z1DMdBmhgQISQs7O4+CJmChGZ1I9TcR9Tae3rMTTj88u1rPby AQUC7xUIeyVPfbpK46w4bj/CFrsGGjw8lUctNK1DjU+fhRd9usQMoaxBvexQMHJC co8H1+T82MqqjMaDEYcxrgVysD3qacPRAACIECk9HpWiZqYmhBw3iV4Z6ED+i4iE 88URwlc7FaXvMUkkmLHaJW1ABLjtyQpb -----END CERTIFICATE-----Generated at Mon May 12 08:14:45 2025 by rpki-client