$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: Z/534aBBVNWKed2eOEyA6Ketb+1NWXR4vGl0qhvwINI= Subject key identifier: A8:56:FA:72:0E:F1:37:96:44:D2:2E:EF:B6:CE:78:A1:99:E5:41:BA Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 13 Signing time: Fri 25 Apr 2025 07:02:04 +0000 Manifest this update: Fri 25 Apr 2025 07:02:03 +0000 Manifest next update: Fri 02 May 2025 07:02:03 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: 2A5ZUe+spXogJXHW0EL5pHQrPeN3AO1OhxvqialTfwc=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: FyXjLRCgkRt49xci/u6DJz1qKlOyAWBczjrKc036O0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Apr 25 07:02:03 2025 GMT Not After : May 2 07:02:03 2025 GMT Subject: CN=680b336b-797a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b3:a4:94:ed:7e:c1:fd:0d:82:88:ca:61:b5: 65:08:89:29:93:7f:7a:b9:90:0a:53:50:06:e0:a5: e4:37:d8:88:e2:a1:ee:dd:d4:67:04:01:ed:de:88: e8:78:dd:03:43:80:41:c4:e8:25:9f:d5:00:fe:6e: 4e:f2:45:60:03:db:9b:d5:b1:e4:da:a0:14:55:20: 5a:39:2c:73:7c:71:39:4f:63:cc:a7:77:b2:95:3e: ba:87:67:f8:4d:e2:72:7e:cf:55:7b:d3:16:c2:dc: 8a:cd:a2:30:e2:f0:dd:3b:b7:8b:a3:ee:60:ea:6f: bf:88:9b:11:46:3f:6b:5c:ad:a8:78:48:64:0f:72: 53:2e:a2:f0:a6:bd:92:84:45:d5:4c:e7:7f:4b:5a: b3:c3:43:76:f4:15:d5:a2:13:80:01:2f:7f:e0:b6: 85:b8:95:8d:43:0e:cb:7e:f9:18:ba:4a:9b:ba:55: 2f:41:70:8d:8f:e6:82:8e:3c:d1:77:99:d1:4f:e1: 0b:ae:e8:69:e0:0d:dc:47:4e:da:b9:40:b1:27:34: b4:87:fb:08:4d:80:6c:06:f9:95:b1:98:d1:cf:1c: 15:3d:d9:a6:ad:e6:1f:14:d6:4d:c8:96:3a:2d:ba: d5:15:9e:81:cb:90:25:fe:9a:1f:1d:2d:77:b7:98: 55:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:56:FA:72:0E:F1:37:96:44:D2:2E:EF:B6:CE:78:A1:99:E5:41:BA X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:c0:a4:7a:f5:24:39:7d:80:fb:30:d1:75:11:4b:63:fa:57: 98:dd:a2:57:ef:dd:82:c0:d6:d8:cd:db:a6:a9:5a:db:dc:e5: 51:53:b6:16:f2:83:41:ed:7a:dd:ef:81:a9:98:dc:96:f9:48: 2b:d8:00:05:11:55:5b:26:ff:82:01:22:22:8e:7c:bd:71:6b: 53:5e:90:d0:bd:f1:91:b7:2e:72:d5:1c:45:00:09:6e:27:ee: 56:88:f4:2d:de:a3:f6:62:a5:e9:84:c9:49:3b:68:a8:87:ec: 20:ae:7d:00:38:49:5d:75:eb:59:7a:87:a0:40:2b:5c:f1:72: d3:09:7b:91:55:d8:63:2c:9e:0a:c9:51:41:96:d9:03:79:be: f0:0d:28:3e:21:79:4c:34:35:0c:ce:ef:ab:c5:78:15:c2:2a: 12:83:0e:41:cd:e1:f3:fb:ae:6a:98:6e:fb:e5:99:0e:d3:a4: 22:61:ce:74:f9:58:e1:46:52:6a:72:62:b5:fa:e3:5c:b5:c7: 61:8f:1a:86:95:0e:d1:7c:47:c0:e6:ff:ae:53:93:ab:cf:2b: c3:0b:a4:84:b8:41:67:c3:78:81:92:6b:d2:54:2d:85:33:ef: e6:41:e6:f0:07:01:7b:da:79:ec:49:2a:9f:a2:d8:74:b4:c5: 57:08:68:e9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTA0MjUwNzAyMDNaFw0yNTA1MDIwNzAyMDNaMBgxFjAUBgNV BAMTDTY4MGIzMzZiLTc5N2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8s6SU7X7B/Q2CiMphtWUIiSmTf3q5kApTUAbgpeQ32Ijioe7d1GcEAe3eiOh4 3QNDgEHE6CWf1QD+bk7yRWAD25vVseTaoBRVIFo5LHN8cTlPY8ynd7KVPrqHZ/hN 4nJ+z1V70xbC3IrNojDi8N07t4uj7mDqb7+ImxFGP2tcrah4SGQPclMuovCmvZKE RdVM539LWrPDQ3b0FdWiE4ABL3/gtoW4lY1DDst++Ri6Spu6VS9BcI2P5oKOPNF3 mdFP4Quu6GngDdxHTtq5QLEnNLSH+whNgGwG+ZWxmNHPHBU92aat5h8U1k3Iljot utUVnoHLkCX+mh8dLXe3mFX3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqFb6cg7x N5ZE0i7vts54oZnlQbowHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 OUNBL0E5RjI3MjJFMDhBMDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZ V2U2T24xeVU4ZGhZeG9vMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABfApHr1JDl9gPsw0XURS2P6V5jdolfv3YLA1tjN26apWtvc5VFTthby g0Htet3vgamY3Jb5SCvYAAURVVsm/4IBIiKOfL1xa1NekNC98ZG3LnLVHEUACW4n 7laI9C3eo/ZipemEyUk7aKiH7CCufQA4SV1161l6h6BAK1zxctMJe5FV2GMsngrJ UUGW2QN5vvANKD4heUw0NQzO76vFeBXCKhKDDkHN4fP7rmqYbvvlmQ7TpCJhznT5 WOFGUmpyYrX641y1x2GPGoaVDtF8R8Dm/65Tk6vPK8MLpIS4QWfDeIGSa9JULYUz 7+ZB5vAHAXvaeexJKp+i2HS0xVcIaOk= -----END CERTIFICATE-----Generated at Sat Apr 26 04:07:12 2025 by rpki-client