$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: 9kU6OajQ73jiyC7EaYwihstSEQWLSNj8H0Z2B7dEdEo= Subject key identifier: F4:55:40:C8:A9:99:8D:A2:CC:11:88:65:B2:11:AB:38:95:57:BF:CB Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 09E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 09D5 Signing time: Thu 24 Apr 2025 19:50:33 +0000 Manifest this update: Thu 24 Apr 2025 19:50:33 +0000 Manifest next update: Thu 01 May 2025 19:50:32 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: +eoaw+jEiLE05bBEgS71JRLPUYnCsaU3OM4zViQuW1E=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: 8mDSez92eEkaglLsJMbn0fbrJK3EOKwOEODNJChdaCg=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: NFs1EDcO1yAz73VGI456tOjnaAawML/lh68ilrawz+Y=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: tW1tMolm5x3GeEA1HyFZqPW/WUluhI939ppCe/JxxEw=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: YrfvW4rspoah4qHdMhFX6/ILs8ePWmGD5xqevIlkW/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2530 (0x9e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Apr 24 19:50:33 2025 GMT Not After : May 1 19:50:32 2025 GMT Subject: CN=680a9609-3d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:2a:ce:a2:76:1d:34:78:6d:af:71:4f:16:c3: 95:12:b0:02:dc:d2:cc:cc:94:33:86:f8:da:16:55: d6:05:e9:93:c2:cb:4a:22:7c:04:70:03:33:1d:32: 82:59:0d:04:ed:bc:1d:90:e4:81:a0:bd:3f:8e:03: 3b:2d:e2:52:2d:6b:72:3a:c3:10:c8:c2:de:e2:79: d1:13:14:0d:29:f4:12:64:4d:b6:9a:0e:86:7c:09: 52:ef:e9:6e:d1:f9:8a:f2:96:72:e7:2c:cf:f9:3c: 35:07:df:7b:e1:7e:e7:3b:ff:b8:b6:5b:ef:84:09: 3f:70:97:a4:59:b7:e5:a9:73:d7:98:73:fb:df:da: da:dc:ae:e7:67:aa:48:5e:17:05:68:05:2b:62:5a: 18:f9:28:db:6e:5a:3d:93:9f:1a:e7:70:e7:8c:a9: 39:c5:75:18:34:ee:17:77:45:32:43:b9:f4:8a:c7: 6d:c1:85:3b:4b:98:99:28:85:a4:e8:d6:c6:7c:fd: 24:84:ef:02:e9:b6:50:ce:a5:30:31:c8:48:e0:e4: 7e:b5:98:bf:d2:5b:7f:92:b3:1a:05:c5:5e:c9:a4: 18:bf:71:9e:38:9a:06:c6:e7:76:e4:67:6d:a6:ca: 5b:f7:da:1b:f7:10:e3:65:83:23:ba:98:a5:31:d9: b2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:55:40:C8:A9:99:8D:A2:CC:11:88:65:B2:11:AB:38:95:57:BF:CB X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:64:6e:49:f8:b4:78:43:b6:93:71:2f:fd:73:cc:61:76:a0: 3f:2d:43:ca:07:42:ca:78:a0:6c:98:d0:60:bc:ab:20:37:70: 6d:db:b2:80:56:c9:60:6a:7b:ba:03:b7:45:1b:0e:a1:43:47: 09:b3:77:f5:f5:28:69:0f:14:cc:28:2f:1f:31:98:3f:14:7c: c2:bd:55:0c:9c:92:03:45:44:3e:96:7b:ef:24:6e:43:c0:48: e9:f0:cc:b9:02:6f:a1:c7:23:6a:ac:d0:a6:0e:10:d7:c6:94: 62:e7:08:a4:9f:85:e0:86:39:cf:9a:3f:98:de:e3:45:9f:67: 10:0c:20:65:2e:9a:a1:e6:a8:c4:1b:45:64:23:cb:e0:8d:56: 0c:bf:6f:b2:3e:c0:45:b0:19:bd:a6:73:db:0d:ef:b8:1c:40: 16:47:61:95:df:9c:3e:65:0f:64:61:b0:42:1f:c2:3d:3d:58: 27:89:ff:64:d0:a4:cf:b8:83:cc:5a:11:a0:3c:ac:3e:07:83: 61:3f:e4:a3:c8:6d:2a:c2:e2:2d:af:7f:6c:c2:1e:9e:75:9c: 16:d7:1d:93:59:24:2b:b1:62:2c:f4:0e:e5:4f:bb:d7:cd:51: 41:dc:2b:00:b1:da:11:5d:08:e6:c5:b2:b5:50:6b:28:f2:e9: 2c:d9:ab:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUwNDI0MTk1MDMzWhcNMjUwNTAxMTk1MDMyWjAYMRYwFAYD VQQDEw02ODBhOTYwOS0zZDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5irOonYdNHhtr3FPFsOVErAC3NLMzJQzhvjaFlXWBemTwstKInwEcAMzHTKC WQ0E7bwdkOSBoL0/jgM7LeJSLWtyOsMQyMLe4nnRExQNKfQSZE22mg6GfAlS7+lu 0fmK8pZy5yzP+Tw1B9974X7nO/+4tlvvhAk/cJekWbflqXPXmHP739ra3K7nZ6pI XhcFaAUrYloY+Sjbblo9k58a53DnjKk5xXUYNO4Xd0UyQ7n0isdtwYU7S5iZKIWk 6NbGfP0khO8C6bZQzqUwMchI4OR+tZi/0lt/krMaBcVeyaQYv3GeOJoGxud25Gdt pspb99ob9xDjZYMjupilMdmydwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRVQMip mY2izBGIZbIRqziVV7/LMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJZG5J+LR4Q7aTcS/9c8xhdqA/LUPKB0LKeKBsmNBgvKsgN3Bt27KA Vslganu6A7dFGw6hQ0cJs3f19ShpDxTMKC8fMZg/FHzCvVUMnJIDRUQ+lnvvJG5D wEjp8My5Am+hxyNqrNCmDhDXxpRi5wikn4XghjnPmj+Y3uNFn2cQDCBlLpqh5qjE G0VkI8vgjVYMv2+yPsBFsBm9pnPbDe+4HEAWR2GV35w+ZQ9kYbBCH8I9PVgnif9k 0KTPuIPMWhGgPKw+B4NhP+SjyG0qwuItr39swh6edZwW1x2TWSQrsWIs9A7lT7vX zVFB3CsAsdoRXQjmxbK1UGso8uks2ato -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:39 2025 by rpki-client