$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft File: gCx1H6mENH35yTztuX7ZUalSgoY.mft (raw, json) Hash identifier: x5H61DkPXnNrFof/YrEDaaIAosudYurxvTUBWQ7Vt5k= Subject key identifier: 9B:C1:82:E5:E2:CC:3A:1F:82:86:C1:A2:E9:41:5E:BB:E7:EA:32:59 Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0D0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft Manifest number: 0CF5 Signing time: Thu 24 Apr 2025 18:04:09 +0000 Manifest this update: Thu 24 Apr 2025 18:04:09 +0000 Manifest next update: Thu 01 May 2025 18:04:09 +0000 Files and hashes: 1: gCx1H6mENH35yTztuX7ZUalSgoY.crl (hash: oRuUOl2SBRRjPm2KAV6WR0LpK/Ws8/nCTZ1rKbsI5aw=) 2: AF2CB5CE101E11ED9FA78415C4F9AE02.roa (hash: A3euC+JMbFaWVx5aIIYMhJy2o8x3eQCdnzPijIO/OPI=) 3: 677F3316E02711E9AB669750C4F9AE02.roa (hash: /lCYyr/ggNz4m2hSHph8iFrUwvAmVOifZgcsV4MIeXY=) 4: 9A735F54EBE611EC82C08A11C4F9AE02.roa (hash: dYlMryTZgDYlMwbzeqzaAmjgFNBL4klqki3/QbfzqsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3338 (0xd0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B, serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: Apr 24 18:04:09 2025 GMT Not After : May 1 18:04:09 2025 GMT Subject: CN=680a7d19-cfb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dc:bb:a0:07:3c:09:b2:1c:be:5c:6a:98:d3: a2:b9:21:a6:d5:0f:eb:8c:3e:6c:04:92:22:06:32: 84:99:ae:63:f6:d4:bb:8f:fd:33:eb:97:7f:2d:b2: 30:56:4f:cc:ec:f2:32:91:d3:a0:90:13:2a:0b:a0: a7:a8:7e:b4:03:b2:19:87:eb:41:b2:a5:2b:6d:1a: aa:b1:3a:31:d3:00:e6:2d:d0:52:e1:22:97:84:74: 27:2a:ab:af:0f:4a:87:78:d9:eb:ee:35:10:c1:a7: ad:d0:7d:7a:90:69:c8:0f:48:46:4b:8b:5c:e4:ae: e2:cf:86:69:40:96:2c:66:49:ef:c8:85:b5:f3:4a: 6e:fe:46:a1:06:55:92:ae:48:57:d6:fa:e8:4e:12: 9e:af:9b:d9:d4:7a:a8:20:e8:1e:b6:67:a1:95:30: 1b:33:0f:4f:7c:60:f4:fd:50:26:11:db:91:04:e5: 4d:69:00:f5:ce:4b:38:f4:c2:9c:40:e7:e9:45:c3: ad:ad:ff:f0:78:6e:49:3a:f2:f0:14:90:20:15:54: 85:1a:ff:0b:f6:59:07:77:c1:40:4a:0d:d6:0e:35: fb:87:4a:ef:8d:a3:42:59:fa:cf:7f:e3:7a:c3:5d: f9:8c:b5:55:47:2b:ff:bf:b5:45:86:aa:56:78:2e: fb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:C1:82:E5:E2:CC:3A:1F:82:86:C1:A2:E9:41:5E:BB:E7:EA:32:59 X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:2d:13:e9:e3:33:66:0f:2a:26:7a:b2:b7:0b:64:5f:eb:ba: a7:d9:1d:8a:e6:bf:b1:a2:e4:27:5d:7b:6f:25:97:9b:9d:b1: 89:c0:3b:ee:4b:18:76:2b:f0:92:46:e2:a5:aa:20:94:0e:1c: f1:19:48:4d:77:2c:b5:fa:44:56:02:28:81:74:57:ad:ed:f4: 2e:aa:a5:99:0b:f7:8a:9f:21:6f:13:20:54:a6:6d:cd:f9:6a: 31:8a:7d:10:6e:88:33:fd:72:84:f9:71:f1:2a:81:b5:80:b6: d7:cb:32:3c:c2:97:55:3a:07:7a:3d:a3:3f:91:f7:f2:97:2f: 42:cb:11:6d:ef:84:db:a8:96:71:f6:6f:a8:b1:00:29:d8:0b: 87:28:5f:96:79:24:dc:10:11:60:85:d6:89:a0:ff:4a:5a:df: 77:be:2d:82:35:a7:35:55:34:55:63:93:44:81:67:47:1c:56: dd:f4:6f:ff:63:9c:d8:34:5d:d0:91:b4:7c:c8:e3:79:7b:b5: 22:f7:d7:b1:5f:88:47:0e:7b:34:46:8a:4d:63:d4:5b:8e:f4: 20:9f:be:b6:4c:a5:7d:87:0b:78:8b:31:5e:09:2e:dc:4e:16: 7b:2c:42:6f:5f:f4:bd:02:d5:ff:0e:fc:5c:9e:00:42:05:d4: 0d:aa:88:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjUwNDI0MTgwNDA5WhcNMjUwNTAxMTgwNDA5WjAYMRYwFAYD VQQDEw02ODBhN2QxOS1jZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dy7oAc8CbIcvlxqmNOiuSGm1Q/rjD5sBJIiBjKEma5j9tS7j/0z65d/LbIw Vk/M7PIykdOgkBMqC6CnqH60A7IZh+tBsqUrbRqqsTox0wDmLdBS4SKXhHQnKquv D0qHeNnr7jUQwaet0H16kGnID0hGS4tc5K7iz4ZpQJYsZknvyIW180pu/kahBlWS rkhX1vroThKer5vZ1HqoIOgetmehlTAbMw9PfGD0/VAmEduRBOVNaQD1zks49MKc QOfpRcOtrf/weG5JOvLwFJAgFVSFGv8L9lkHd8FASg3WDjX7h0rvjaNCWfrPf+N6 w135jLVVRyv/v7VFhqpWeC77rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvBguXi zDofgobBoulBXrvn6jJZMB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUU4Qi9FQzI1N0NDNkUwMjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5I MzV5VHp0dVg3WlVhbFNnb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5LRPp4zNmDyomerK3C2Rf67qn2R2K5r+xouQnXXtvJZebnbGJwDvu Sxh2K/CSRuKlqiCUDhzxGUhNdyy1+kRWAiiBdFet7fQuqqWZC/eKnyFvEyBUpm3N +Woxin0Qbogz/XKE+XHxKoG1gLbXyzI8wpdVOgd6PaM/kffyly9CyxFt74TbqJZx 9m+osQAp2AuHKF+WeSTcEBFghdaJoP9KWt93vi2CNac1VTRVY5NEgWdHHFbd9G// Y5zYNF3QkbR8yON5e7Ui99exX4hHDns0RopNY9RbjvQgn762TKV9hwt4izFeCS7c ThZ7LEJvX/S9AtX/DvxcngBCBdQNqoik -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:35 2025 by rpki-client