$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft (raw, json) Hash identifier: Hh28Fcf4JzZHdABDjC7jkdRDzH4C6N3jG2E5fzyVZPw= Subject key identifier: E8:31:47:07:0E:DF:C8:21:59:F2:30:8A:86:0E:87:86:D3:A5:F3:C1 Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft Manifest number: 68 Signing time: Fri 25 Apr 2025 05:57:04 +0000 Manifest this update: Fri 25 Apr 2025 05:57:03 +0000 Manifest next update: Fri 02 May 2025 05:57:03 +0000 Files and hashes: 1: RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl (hash: dGBw02vJK4T5fRUQa45DfVt+3D551fqhATEGznZmJWc=) 2: 88A6DB9086E211EF82ACA725C4F9AE02.roa (hash: Yh+9ZtLGM0yeId0yqsUGDk1PUuIX4Mo5I7LLnDotARk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: Apr 25 05:57:03 2025 GMT Not After : May 2 05:57:03 2025 GMT Subject: CN=680b2430-cca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:65:8d:8b:3c:6f:f8:26:c1:43:38:75:a7:0c: de:02:dd:a8:20:22:df:9b:db:61:ec:ca:8f:d2:8a: 0a:3b:cf:10:30:2f:cd:b9:59:74:b8:24:74:a0:5b: e0:9f:7f:81:98:65:68:39:6d:bd:a9:bc:1b:89:99: c3:12:23:90:a3:e4:16:ae:42:62:e5:c5:c4:af:4f: f7:a3:e7:4d:08:6f:f9:9b:0c:54:98:66:de:cc:dc: 37:2d:2f:b3:48:68:a8:49:2e:a5:a2:55:61:16:5b: 33:31:67:d7:e9:60:91:3f:6b:c9:0a:19:48:00:46: 21:84:5f:59:e1:ae:ff:92:6e:4f:3d:13:10:fa:1b: 68:69:8d:fa:df:4e:e3:3c:ba:69:34:30:1f:b1:38: c6:c2:d5:83:1e:9d:e2:94:22:6c:d3:78:e1:76:e4: 5d:19:56:32:d2:eb:e4:83:a3:55:52:85:62:0e:28: 68:45:e2:9c:40:22:7d:18:c7:29:7f:6e:4e:85:17: d6:2e:57:33:eb:31:31:16:8e:2d:27:29:03:57:2d: da:c9:c0:f8:1e:32:6e:81:fa:c0:d8:61:07:5c:f8: 14:c7:56:f3:ed:73:a2:6b:1b:31:1e:34:7a:e0:59: 17:ab:37:62:86:9c:45:50:0f:87:3f:04:59:dd:d5: 1d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:31:47:07:0E:DF:C8:21:59:F2:30:8A:86:0E:87:86:D3:A5:F3:C1 X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:16:b0:85:84:bf:96:43:69:a2:dd:59:7d:b2:e8:a1:fb:6e: 55:43:e0:b8:cf:ef:76:f6:9d:23:fc:52:14:98:d6:ab:48:1b: 63:cb:29:fd:58:cc:81:1b:ce:f6:45:6a:f7:c6:b8:03:db:2a: 63:25:a5:f0:b3:d7:e7:13:04:93:13:af:2f:dd:78:59:72:e3: 6a:40:4b:54:52:5c:df:bb:68:a2:ae:5a:9e:96:95:e6:2d:59: d2:28:47:da:db:73:a5:10:ca:9e:23:24:1a:7d:94:07:71:c4: 06:3c:5e:bf:f3:c0:2c:9a:ba:c8:07:02:c8:fc:c6:90:aa:ad: 0c:04:f2:29:03:e7:07:04:94:07:58:f9:4e:6c:ed:b6:ba:a6: 1a:82:c8:75:3c:f8:6c:66:83:c4:c6:26:f0:8b:c4:4b:bb:a0: 1e:bb:ad:e6:35:4a:2b:93:e4:51:4e:7d:09:6f:32:8b:c8:65: ab:4a:1e:ac:9e:7e:a2:7e:76:a2:5b:88:48:ec:ca:48:80:90: 0d:d7:34:4f:ed:55:b6:03:03:35:a8:ab:97:83:a3:d4:38:cd: f4:b2:ca:85:1f:d9:64:e2:8e:50:f4:69:53:08:19:d5:b9:59: 41:42:0f:35:61:22:42:35:2d:05:ea:95:7c:2c:af:b7:27:30: 15:1d:c9:81 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjQ3RjExMC8GA1UEBRMoNDY0MTkwN0ZFNUY0NzNGMTg5MDZENDZBQTIwMzA3RURF REExOUM5RDAeFw0yNTA0MjUwNTU3MDNaFw0yNTA1MDIwNTU3MDNaMBgxFjAUBgNV BAMTDTY4MGIyNDMwLWNjYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIZY2LPG/4JsFDOHWnDN4C3aggIt+b22Hsyo/Sigo7zxAwL825WXS4JHSgW+Cf f4GYZWg5bb2pvBuJmcMSI5Cj5BauQmLlxcSvT/ej500Ib/mbDFSYZt7M3DctL7NI aKhJLqWiVWEWWzMxZ9fpYJE/a8kKGUgARiGEX1nhrv+Sbk89ExD6G2hpjfrfTuM8 umk0MB+xOMbC1YMeneKUImzTeOF25F0ZVjLS6+SDo1VShWIOKGhF4pxAIn0Yxyl/ bk6FF9YuVzPrMTEWji0nKQNXLdrJwPgeMm6B+sDYYQdc+BTHVvPtc6JrGzEeNHrg WRerN2KGnEVQD4c/BFnd1R3rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6DFHBw7f yCFZ8jCKhg6HhtOl88EwHwYDVR0jBBgwFoAURkGQf+X0c/GJBtRqogMH7e2hnJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2NDdGL0I5MUFBQTc0ODZE QjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5K MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUmtHUWYtWDBjX0dKQnRScW9nTUg3ZTJobkowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 NDdGL0I5MUFBQTc0ODZEQjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19H SkJ0UnFvZ01IN2UyaG5KMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF4WsIWEv5ZDaaLdWX2y6KH7blVD4LjP73b2nSP8UhSY1qtIG2PLKf1Y zIEbzvZFavfGuAPbKmMlpfCz1+cTBJMTry/deFly42pAS1RSXN+7aKKuWp6WleYt WdIoR9rbc6UQyp4jJBp9lAdxxAY8Xr/zwCyausgHAsj8xpCqrQwE8ikD5wcElAdY +U5s7ba6phqCyHU8+Gxmg8TGJvCLxEu7oB67reY1SiuT5FFOfQlvMovIZatKHqye fqJ+dqJbiEjsykiAkA3XNE/tVbYDAzWoq5eDo9Q4zfSyyoUf2WTijlD0aVMIGdW5 WUFCDzVhIkI1LQXqlXwsr7cnMBUdyYE= -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:38 2025 by rpki-client