$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: Rn9D10H9wT1/C6xT1uy+dSciDJcw3OZ46826Ok/qcLM= Subject key identifier: 92:AF:2E:96:EF:FC:FE:F0:94:09:52:BA:34:E7:98:2C:F9:E6:4D:92 Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 0732 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 071F Signing time: Mon 12 May 2025 21:40:13 +0000 Manifest this update: Mon 12 May 2025 21:40:12 +0000 Manifest next update: Mon 19 May 2025 21:40:12 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: NDi/aFYWxnav0xP0fSHSh11XTQIGmkRQYH2CioxkEm0=) 2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1842 (0x732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834, serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Validity Not Before: May 12 21:40:12 2025 GMT Not After : May 19 21:40:12 2025 GMT Subject: CN=68226abd-b50e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a2:4c:9d:73:f2:f3:84:2c:69:51:ab:04:4e: b4:6d:0a:af:9c:c3:a0:44:fc:7c:01:81:c3:61:0f: cf:29:cd:d4:57:7e:1e:ce:16:a0:4d:8d:53:17:dd: f2:ae:7e:64:f5:87:13:75:54:6e:de:25:45:6d:0b: 85:e2:49:11:d7:a4:76:a6:fa:d4:91:90:71:b1:e5: 9b:4d:18:0a:d0:53:34:27:f6:3d:53:6f:19:5b:0f: 36:77:1d:e2:0a:8a:40:84:97:08:cd:b7:b4:02:6e: f5:d6:da:79:1e:48:57:92:c7:ae:f0:f4:21:7c:f8: 23:09:ee:05:61:9d:e4:2b:76:f1:68:87:8f:cc:e7: 7d:0c:95:73:a4:38:16:31:da:74:d6:b3:a4:20:bd: b8:64:1a:29:69:de:22:86:10:e2:0e:58:f2:32:82: e5:c8:01:31:96:34:e3:31:4b:e9:09:a9:ad:24:05: f7:99:a8:2b:e4:d4:f3:12:70:b3:18:17:6f:fb:1d: 75:a1:c9:59:35:63:8d:87:1d:4d:c5:72:18:36:c9: cd:4a:c8:75:e7:77:8a:68:e5:fe:e6:1d:c0:9e:8d: de:cc:90:4d:06:42:d0:f6:97:57:d3:90:0c:d2:e0: c4:c4:00:8c:35:1c:8c:ab:86:77:e2:0c:77:d3:87: 71:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AF:2E:96:EF:FC:FE:F0:94:09:52:BA:34:E7:98:2C:F9:E6:4D:92 X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:a9:77:e7:09:5f:07:b1:9d:c0:85:e3:71:54:1a:c8:b0:bd: 27:72:6a:76:a5:98:33:c9:eb:f8:67:a9:ba:39:cf:59:a8:2e: dd:7e:e4:42:f1:ae:d8:34:25:06:d6:c2:51:11:f9:da:6f:bb: 48:47:af:24:37:b6:a3:18:fc:b9:ac:9e:02:f2:bd:5e:21:92: bb:d2:8b:2d:fd:99:60:17:b3:f4:e5:06:0d:fa:8f:c4:e7:9a: 1c:dc:5b:60:03:c5:f0:72:7f:aa:1f:c6:1b:13:de:51:45:3f: c2:12:22:12:19:32:71:e5:98:7e:4e:41:86:7c:65:82:aa:f6: 85:4d:67:09:96:74:1b:48:fe:9d:55:c5:09:37:8b:b7:0f:a9: 42:f3:43:76:e8:60:dd:6c:45:40:65:93:57:d9:42:24:8d:29: 5e:c7:cf:94:31:50:60:46:2f:04:d3:1c:a9:b6:64:55:7b:e9: 38:cd:ed:05:bb:90:5e:66:9a:66:ca:b7:82:ed:a9:b2:4e:de: 66:5f:50:bd:1b:62:3f:ac:bd:3e:64:4a:ea:da:3b:e1:9b:c4: 6c:44:fe:dd:30:ff:98:1c:df:46:4a:e1:c8:09:b4:b4:21:47: 9b:cb:0a:c1:4f:ec:6b:fe:00:6b:27:96:de:06:d3:15:11:3d: c7:77:e7:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjUwNTEyMjE0MDEyWhcNMjUwNTE5MjE0MDEyWjAYMRYwFAYD VQQDEw02ODIyNmFiZC1iNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KJMnXPy84QsaVGrBE60bQqvnMOgRPx8AYHDYQ/PKc3UV34ezhagTY1TF93y rn5k9YcTdVRu3iVFbQuF4kkR16R2pvrUkZBxseWbTRgK0FM0J/Y9U28ZWw82dx3i CopAhJcIzbe0Am711tp5HkhXkseu8PQhfPgjCe4FYZ3kK3bxaIePzOd9DJVzpDgW Mdp01rOkIL24ZBopad4ihhDiDljyMoLlyAExljTjMUvpCamtJAX3magr5NTzEnCz GBdv+x11oclZNWONhx1NxXIYNsnNSsh153eKaOX+5h3Ano3ezJBNBkLQ9pdX05AM 0uDExACMNRyMq4Z34gx304dxUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKvLpbv /P7wlAlSujTnmCz55k2SMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5qXfnCV8HsZ3AheNxVBrIsL0ncmp2pZgzyev4Z6m6Oc9ZqC7dfuRC 8a7YNCUG1sJREfnab7tIR68kN7ajGPy5rJ4C8r1eIZK70ost/ZlgF7P05QYN+o/E 55oc3FtgA8Xwcn+qH8YbE95RRT/CEiISGTJx5Zh+TkGGfGWCqvaFTWcJlnQbSP6d VcUJN4u3D6lC80N26GDdbEVAZZNX2UIkjSlex8+UMVBgRi8E0xyptmRVe+k4ze0F u5BeZppmyreC7amyTt5mX1C9G2I/rL0+ZErq2jvhm8RsRP7dMP+YHN9GSuHICbS0 IUebywrBT+xr/gBrJ5beBtMVET3Hd+dG -----END CERTIFICATE-----Generated at Wed May 14 10:40:49 2025 by rpki-client