$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: gg4Og2DhZ07LNBYJAvnPbRgODErJvgr1pfQzWFHSXWc= Subject key identifier: C5:03:27:AF:3E:6D:67:29:A1:B6:9E:8F:61:9F:9B:64:E6:C9:06:9A Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 0700 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 0700 Signing time: Thu 08 May 2025 14:49:25 +0000 Manifest this update: Thu 08 May 2025 14:49:25 +0000 Manifest next update: Thu 15 May 2025 14:49:25 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: 6e2EQ2SUWx8ew1ofy3u8fxdJm2ffsKAVkcKumKN2qzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 14:49:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: May 8 14:49:25 2025 GMT Not After : May 15 14:49:25 2025 GMT Subject: CN=681cc475-9555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e6:5a:b3:2d:fb:3c:03:a6:56:f8:f7:88:5a: ae:fa:77:49:85:16:b4:87:1d:05:ef:ce:3e:85:ee: fa:5c:da:13:14:3c:4c:eb:c6:a8:a9:c8:7d:be:e3: 74:1c:32:dd:d9:62:58:c6:71:a6:81:14:f9:33:23: 24:6d:e2:c4:2a:22:7b:79:f4:c0:24:06:68:2a:75: 7d:1e:bb:21:c4:6c:4b:0e:0d:cd:3c:01:da:df:71: 54:a1:9e:ff:2f:4c:9d:ca:a9:02:30:3e:c4:24:84: 05:28:ed:c9:3c:07:1c:23:6a:88:fa:08:0e:e0:6b: 98:a4:13:16:34:6e:ef:90:1e:17:d1:32:a2:0f:d0: 45:30:e2:13:53:7b:d7:d8:bb:2b:c1:f1:08:5a:e0: 5d:e0:cf:32:09:77:9a:7e:54:7f:4f:ec:bc:92:c7: 34:2c:76:ee:b7:03:e6:00:8a:fa:48:6d:80:d1:3d: 69:49:ae:18:bb:ad:c5:ad:9c:cd:a2:27:34:46:05: 6a:0d:8e:26:a4:49:f7:c6:1f:3e:15:07:55:3a:68: 2b:8e:33:40:a1:6d:35:9c:ed:63:ef:68:06:a0:62: df:50:02:87:4b:8c:50:5e:a3:f0:eb:c3:76:f8:a3: 16:43:59:0e:34:d9:20:73:3d:52:c7:53:ca:42:08: ee:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:03:27:AF:3E:6D:67:29:A1:B6:9E:8F:61:9F:9B:64:E6:C9:06:9A X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:10:5f:30:f1:14:06:af:1f:0e:80:59:33:1c:bb:08:22:b8: 7a:9b:79:aa:7f:28:24:34:c7:09:37:d5:63:e5:0b:ac:30:95: a1:10:e3:f5:b3:1c:43:5d:c3:9f:4a:08:fe:62:6f:3c:5f:aa: b8:31:1d:44:bd:80:8a:be:81:e3:56:45:14:f0:43:55:bd:4b: 67:1b:99:c3:15:c4:f8:c6:a3:d2:34:8f:46:a8:07:63:10:c7: 7f:32:59:2f:98:ab:86:20:b0:9d:47:df:8f:72:0e:3a:82:71: 04:53:df:bb:c9:6b:46:89:70:a0:ba:32:05:03:b7:ba:61:19: de:23:1b:fa:99:3b:2b:d8:85:4b:b8:eb:fc:7a:14:86:4e:bc: 91:7f:70:9f:74:82:1e:c5:23:24:71:10:f0:79:d4:3b:b2:1e: 0e:c2:8e:d7:d2:c0:25:86:83:37:f0:07:52:07:91:97:52:12: 83:bf:ef:03:e0:75:ad:63:90:e3:8d:68:f0:59:28:26:1e:ba: ef:8b:26:25:00:08:d4:2d:15:db:fa:df:d6:2e:29:ce:ca:e4: c1:c8:4b:46:58:aa:ba:98:8b:68:88:15:97:ca:44:6f:f0:68: 1c:f6:76:52:96:1a:78:10:c5:45:3a:76:37:4a:5c:34:6a:b8: 8f:05:a7:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUwNTA4MTQ0OTI1WhcNMjUwNTE1MTQ0OTI1WjAYMRYwFAYD VQQDEw02ODFjYzQ3NS05NTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuZasy37PAOmVvj3iFqu+ndJhRa0hx0F784+he76XNoTFDxM68aoqch9vuN0 HDLd2WJYxnGmgRT5MyMkbeLEKiJ7efTAJAZoKnV9HrshxGxLDg3NPAHa33FUoZ7/ L0ydyqkCMD7EJIQFKO3JPAccI2qI+ggO4GuYpBMWNG7vkB4X0TKiD9BFMOITU3vX 2LsrwfEIWuBd4M8yCXeaflR/T+y8ksc0LHbutwPmAIr6SG2A0T1pSa4Yu63FrZzN oic0RgVqDY4mpEn3xh8+FQdVOmgrjjNAoW01nO1j72gGoGLfUAKHS4xQXqPw68N2 +KMWQ1kONNkgcz1Sx1PKQgjuUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUDJ68+ bWcpobaej2Gfm2TmyQaaMB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgEF8w8RQGrx8OgFkzHLsIIrh6m3mqfygkNMcJN9Vj5QusMJWhEOP1 sxxDXcOfSgj+Ym88X6q4MR1EvYCKvoHjVkUU8ENVvUtnG5nDFcT4xqPSNI9GqAdj EMd/MlkvmKuGILCdR9+Pcg46gnEEU9+7yWtGiXCgujIFA7e6YRneIxv6mTsr2IVL uOv8ehSGTryRf3CfdIIexSMkcRDwedQ7sh4Owo7X0sAlhoM38AdSB5GXUhKDv+8D 4HWtY5DjjWjwWSgmHrrviyYlAAjULRXb+t/WLinOyuTByEtGWKq6mItoiBWXykRv 8Ggc9nZSlhp4EMVFOnY3Slw0ariPBafW -----END CERTIFICATE-----Generated at Fri May 9 18:47:04 2025 by rpki-client