$ rpki-client -vvf rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft File: gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft (raw, json) Hash identifier: XKFeH0+89hKJNsQoOr8D6U0pyfacZfBAZYszyfxC9MU= Subject key identifier: 98:4B:7B:7C:DA:71:5F:3A:CD:86:44:DC:F1:7D:BA:91:95:C1:89:7E Authority key identifier: 80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 Certificate issuer: /CN=A9114FD8/serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft Manifest number: 1A Signing time: Fri 25 Apr 2025 06:56:01 +0000 Manifest this update: Fri 25 Apr 2025 06:56:00 +0000 Manifest next update: Fri 02 May 2025 06:56:00 +0000 Files and hashes: 1: gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl (hash: zzu5ed6SJQLrjPBSODZXVgu8ejDAnvu5rKSvm0nqCKI=) 2: 691B3B36FCC611EF8337B652C4F9AE02.roa (hash: 9OScaduExEngNPz5wsuWcHvwLQIw8gltPcbBA5tFHWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114FD8, serialNumber=80463074D83F5E80354D1970586F54A8965E18D2 Validity Not Before: Apr 25 06:56:00 2025 GMT Not After : May 2 06:56:00 2025 GMT Subject: CN=680b3201-70dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4e:8c:66:f4:ee:34:d5:f0:79:80:d1:69:f3: c8:9c:3a:3c:92:43:f1:e8:b9:79:a3:77:57:bf:ed: 77:3c:ba:b8:0c:67:06:94:37:e8:61:72:63:58:e4: 0d:66:55:3a:0f:d0:45:64:07:ed:9d:6f:f9:f2:42: 47:c5:d0:4e:44:d7:77:f0:3c:1a:8f:21:c8:51:84: d5:3d:be:90:ca:72:fa:30:56:be:8b:2f:64:0e:e3: ee:fb:72:d4:99:5d:8d:a1:37:ad:6a:3c:8c:32:4d: 85:71:de:bb:56:3d:d1:27:67:b0:2e:5d:bc:0a:01: ca:1c:d2:c8:5c:7c:ef:7c:5f:36:ee:63:b3:31:f9: 9d:9a:9a:d8:02:cb:11:ef:98:a7:39:fe:68:bf:c1: 33:45:a5:b5:97:c8:16:04:48:8b:ed:14:d4:b0:74: 6e:e1:e3:eb:b9:ab:87:d5:97:f3:f6:b8:b3:a9:39: 3e:6a:03:0a:45:ae:8a:ae:10:e0:ff:a6:86:c0:77: 65:4a:77:2e:15:3e:7b:48:c4:34:b4:b4:b8:09:1c: 71:14:af:af:22:7a:67:3d:80:b8:ee:b3:f8:b1:c6: 1f:b1:12:28:a5:9d:e0:38:38:e7:72:83:9c:73:5d: 62:28:50:c2:df:32:d4:6a:55:d0:ce:a1:1d:d7:b5: 43:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4B:7B:7C:DA:71:5F:3A:CD:86:44:DC:F1:7D:BA:91:95:C1:89:7E X509v3 Authority Key Identifier: keyid:80:46:30:74:D8:3F:5E:80:35:4D:19:70:58:6F:54:A8:96:5E:18:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gEYwdNg_XoA1TRlwWG9UqJZeGNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114FD8/F3512A0AFCC511EFA9090852C4F9AE02/gEYwdNg_XoA1TRlwWG9UqJZeGNI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:d6:9f:0a:45:c7:06:53:19:3c:31:dc:e5:da:45:ec:a7:ec: bb:5f:73:6d:e8:5e:9e:39:74:a4:8a:00:8c:95:ea:af:e9:64: 05:83:f0:83:55:dd:ff:a4:43:24:a3:c5:b4:5a:e6:97:26:0e: db:8b:17:ec:39:67:84:00:8a:8d:1c:31:5c:1c:87:b1:43:4f: 25:96:ca:8f:ba:7a:18:f3:c6:4e:c2:a2:d8:c8:5a:bf:a1:ae: 8a:31:fe:fb:93:00:ae:c7:f2:76:53:ca:07:f0:32:b1:47:46: ec:39:13:42:73:0d:dc:e8:40:2d:f7:da:c8:6c:39:4f:82:f5: c1:33:7b:b1:66:a6:48:21:68:d4:1c:0c:35:f4:43:eb:1f:2c: 31:38:aa:24:57:9b:57:7a:37:fa:84:df:3b:87:2f:fa:ea:aa: 61:d3:d1:08:c4:ff:58:5f:61:6f:a3:7f:48:a4:ed:9e:01:48: 5c:d3:ff:a8:77:c5:11:db:b6:8e:a7:07:61:1b:71:f9:b5:ff: e8:62:41:fe:b8:38:e6:0f:ae:bd:a6:b0:54:ea:d8:f5:e6:d8: 23:72:5e:52:93:28:59:c0:e2:27:a3:d7:4d:95:6b:b0:32:24: b1:6f:4b:8c:be:9a:11:61:d8:a5:cb:d6:d9:9e:2e:0f:29:a6: d4:f8:4a:1b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NEZEODExMC8GA1UEBRMoODA0NjMwNzREODNGNUU4MDM1NEQxOTcwNTg2RjU0QTg5 NjVFMThEMjAeFw0yNTA0MjUwNjU2MDBaFw0yNTA1MDIwNjU2MDBaMBgxFjAUBgNV BAMTDTY4MGIzMjAxLTcwZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMToxm9O401fB5gNFp88icOjySQ/HouXmjd1e/7Xc8urgMZwaUN+hhcmNY5A1m VToP0EVkB+2db/nyQkfF0E5E13fwPBqPIchRhNU9vpDKcvowVr6LL2QO4+77ctSZ XY2hN61qPIwyTYVx3rtWPdEnZ7AuXbwKAcoc0shcfO98XzbuY7Mx+Z2amtgCyxHv mKc5/mi/wTNFpbWXyBYESIvtFNSwdG7h4+u5q4fVl/P2uLOpOT5qAwpFroquEOD/ pobAd2VKdy4VPntIxDS0tLgJHHEUr68iemc9gLjus/ixxh+xEiilneA4OOdyg5xz XWIoUMLfMtRqVdDOoR3XtUOrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmEt7fNpx XzrNhkTc8X26kZXBiX4wHwYDVR0jBBgwFoAUgEYwdNg/XoA1TRlwWG9UqJZeGNIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0RkQ4L0YzNTEyQTBBRkND NTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9BMVRSbHdXRzlVcUpaZUdO SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0VZd2ROZ19Yb0ExVFJsd1dHOVVxSlplR05JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 RkQ4L0YzNTEyQTBBRkNDNTExRUZBOTA5MDg1MkM0RjlBRTAyL2dFWXdkTmdfWG9B MVRSbHdXRzlVcUpaZUdOSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABLWnwpFxwZTGTwx3OXaReyn7Ltfc23oXp45dKSKAIyV6q/pZAWD8INV 3f+kQySjxbRa5pcmDtuLF+w5Z4QAio0cMVwch7FDTyWWyo+6ehjzxk7CotjIWr+h roox/vuTAK7H8nZTygfwMrFHRuw5E0JzDdzoQC332shsOU+C9cEze7FmpkghaNQc DDX0Q+sfLDE4qiRXm1d6N/qE3zuHL/rqqmHT0QjE/1hfYW+jf0ik7Z4BSFzT/6h3 xRHbto6nB2Ebcfm1/+hiQf64OOYPrr2msFTq2PXm2CNyXlKTKFnA4iej102Va7Ay JLFvS4y+mhFh2KXL1tmeLg8pptT4Shs= -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:40 2025 by rpki-client