$ rpki-client -vvf rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft File: G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft (raw, json) Hash identifier: Z2uoJGr37OcmS8vKaytvWVvsTGvtfvMRFC3dtI8UX34= Subject key identifier: 69:2F:88:A1:EF:05:4E:C1:5F:92:41:90:DC:15:EF:09:C3:51:6B:38 Authority key identifier: 1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E Certificate issuer: /CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft Manifest number: 0223 Signing time: Fri 25 Apr 2025 01:44:12 +0000 Manifest this update: Fri 25 Apr 2025 01:44:11 +0000 Manifest next update: Fri 02 May 2025 01:44:11 +0000 Files and hashes: 1: G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl (hash: gum4Ty4k3/pL4Bp/hPtP5qZ7H7ycP2/m5l1AHBKwOb8=) 2: BE608B1833DC11EF82BB2E27C4F9AE02.roa (hash: EWoN0iNcfOe+G9uyesPgbS2htYj/a8iGQkySadopce0=) 3: F2257AC0289011ED8AEEB43CC4F9AE02.roa (hash: Eg0ppNj4Rfn9XDDO2a6sOjdWSFXYTHKi+qKN2PGRgYA=) 4: BDDB04B633DC11EF82BB2E27C4F9AE02.roa (hash: 5c/qR2mpD5OqrfddW7wi4YgOjtRseskty4kGshoVWVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91340D8, serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Validity Not Before: Apr 25 01:44:11 2025 GMT Not After : May 2 01:44:11 2025 GMT Subject: CN=680ae8ec-c66e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:80:e4:fd:c5:5f:10:26:71:72:89:52:e4:cf: dd:1a:72:cb:88:8c:75:a1:07:9a:46:8c:df:9d:29: 51:e6:c5:60:f3:82:56:ea:ed:72:87:23:bb:37:ae: 2e:c9:32:b9:85:43:aa:4f:d6:e2:cb:90:f1:32:39: 16:95:53:3c:55:fe:9b:1e:42:f4:96:69:d4:a3:0f: 62:60:f3:d3:01:25:eb:2b:de:ba:7c:92:d8:ba:3b: 26:b8:7a:1a:7d:de:d7:16:91:6f:ee:ef:fa:26:76: c4:26:10:aa:56:8c:b3:65:fb:9d:81:99:8b:82:06: db:7f:ff:4c:d8:c8:e6:b5:1f:d7:96:bd:6e:a8:dc: 5b:32:8e:cf:08:ac:4a:13:fc:bd:73:a0:4e:93:59: 1c:6c:c6:da:38:b7:94:ee:6a:de:b1:ef:45:81:02: df:08:a1:62:b9:71:53:62:9f:db:f8:55:cb:17:c2: 94:c2:8a:87:2f:e1:0a:50:4a:d9:61:c3:37:88:16: 60:b7:1d:f7:ab:19:d3:07:2b:7b:94:6f:a3:7c:c0: 6d:29:f0:24:29:f1:68:81:01:cc:5d:94:31:7c:67: 74:7f:e4:ae:d3:88:25:63:45:91:9b:9f:f8:f5:ac: 50:07:91:10:37:01:9a:ca:66:01:a4:8a:f3:2a:47: 53:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:2F:88:A1:EF:05:4E:C1:5F:92:41:90:DC:15:EF:09:C3:51:6B:38 X509v3 Authority Key Identifier: keyid:1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:3b:db:60:a1:0a:1d:69:26:81:d1:0c:87:c8:a7:68:a2:87: 5b:4a:49:68:0a:68:86:fa:30:b9:07:e2:32:d4:55:10:5d:83: 3a:dc:74:cd:1f:7f:51:78:65:73:9f:da:01:a0:c1:19:5d:cb: b9:a8:4d:0c:00:9d:55:a7:4d:12:61:62:01:24:d6:9f:e3:ce: 42:52:27:02:66:05:e9:b9:b5:ae:ba:cb:3b:e5:34:f1:bf:48: df:9d:02:69:7f:db:7f:22:25:21:5e:2c:c6:fe:1e:d2:dc:4d: 0e:15:a6:a3:2a:29:e6:71:a6:60:98:00:c3:c9:c1:89:2c:43: fe:71:36:55:c5:35:d8:fa:9f:ed:97:a5:dc:43:f5:1f:fe:b6: 5a:a9:d1:7e:01:4f:0f:b0:a1:80:0f:d5:ff:51:59:37:18:05: 8a:36:10:b2:0b:3f:6d:b9:b1:eb:fa:f4:68:ea:6c:5f:fa:df: 62:2c:f9:40:68:58:e6:ce:18:73:6a:8c:1a:00:e3:37:23:bf: e2:e6:2e:5d:3d:51:22:a1:ba:c9:7d:9c:91:d7:77:b2:ce:06: 3b:09:ac:4b:80:38:80:1a:ce:4c:98:06:57:3e:3c:df:5c:95: e6:bc:80:82:6b:94:fa:66:a7:06:2a:6e:c2:9b:2e:ba:6e:28: 46:f2:59:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQwRDgxMTAvBgNVBAUTKDFCOEFFN0M3NDMwMTcyOUQ4NUMzMTU5NTI0OUMzQjQ4 RjFCOTE1MUUwHhcNMjUwNDI1MDE0NDExWhcNMjUwNTAyMDE0NDExWjAYMRYwFAYD VQQDEw02ODBhZThlYy1jNjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoDk/cVfECZxcolS5M/dGnLLiIx1oQeaRozfnSlR5sVg84JW6u1yhyO7N64u yTK5hUOqT9biy5DxMjkWlVM8Vf6bHkL0lmnUow9iYPPTASXrK966fJLYujsmuHoa fd7XFpFv7u/6JnbEJhCqVoyzZfudgZmLggbbf/9M2MjmtR/Xlr1uqNxbMo7PCKxK E/y9c6BOk1kcbMbaOLeU7mrese9FgQLfCKFiuXFTYp/b+FXLF8KUwoqHL+EKUErZ YcM3iBZgtx33qxnTByt7lG+jfMBtKfAkKfFogQHMXZQxfGd0f+Su04glY0WRm5/4 9axQB5EQNwGaymYBpIrzKkdTQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkviKHv BU7BX5JBkNwV7wnDUWs4MB8GA1UdIwQYMBaAFBuK58dDAXKdhcMVlSScO0jxuRUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDBEOC9CM0RFNUNFNDI4 OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNwMkZ3eFdWSkp3N1NQRzVG UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0cm54ME1CY3AyRnd4V1ZKSnc3U1BHNUZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDBEOC9CM0RFNUNFNDI4OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNw MkZ3eFdWSkp3N1NQRzVGUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADO9tgoQodaSaB0QyHyKdooodbSkloCmiG+jC5B+Iy1FUQXYM63HTN H39ReGVzn9oBoMEZXcu5qE0MAJ1Vp00SYWIBJNaf485CUicCZgXpubWuuss75TTx v0jfnQJpf9t/IiUhXizG/h7S3E0OFaajKinmcaZgmADDycGJLEP+cTZVxTXY+p/t l6XcQ/Uf/rZaqdF+AU8PsKGAD9X/UVk3GAWKNhCyCz9tubHr+vRo6mxf+t9iLPlA aFjmzhhzaowaAOM3I7/i5i5dPVEiobrJfZyR13eyzgY7CaxLgDiAGs5MmAZXPjzf XJXmvICCa5T6ZqcGKm7Cmy66bihG8llQ -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:21 2025 by rpki-client