$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft File: g8K1S2QeP_BuMaK0RQwVetrVm2g.mft (raw, json) Hash identifier: GFZf0QsReXH1tO0MfPP5Z3FP3rkbKtNZMhpjfZAAQEQ= Subject key identifier: 23:59:2D:7A:D4:72:AC:19:92:0A:2F:52:21:B1:CE:40:43:F2:19:87 Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft Manifest number: 7D Signing time: Fri 25 Apr 2025 05:41:37 +0000 Manifest this update: Fri 25 Apr 2025 05:41:36 +0000 Manifest next update: Fri 02 May 2025 05:41:36 +0000 Files and hashes: 1: g8K1S2QeP_BuMaK0RQwVetrVm2g.crl (hash: NbiutKKseVp9jI+bvFX9Kv6F4xX9yg11mVTWww3S+8U=) 2: 7114716A653911EFB61F430DC4F9AE02.roa (hash: bO/gfY3HBbGIQDRrLWr0PVEzkY2zoAiDv4q0XXDREo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F, serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: Apr 25 05:41:36 2025 GMT Not After : May 2 05:41:36 2025 GMT Subject: CN=680b2090-3ebd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d0:af:68:a6:12:4a:17:1b:7e:d6:5c:be:94: 02:75:05:f3:ce:60:23:58:be:7d:05:0d:b1:0f:2b: 15:09:61:bd:ac:3b:d5:3f:7a:cd:fb:6f:3e:01:45: 76:51:6f:48:13:29:bf:4a:c8:f3:c9:00:da:33:e4: 4a:6b:3e:b1:bf:9d:38:56:50:0f:68:02:40:e7:8f: 46:ad:db:e4:18:d1:d5:cb:b2:e3:77:7a:1d:00:59: 25:ba:ac:77:fa:62:3e:a7:9f:19:ec:d7:fc:60:cb: 21:09:f4:26:96:5a:da:9e:3d:3f:22:05:28:67:04: bb:59:7f:a0:a3:d3:87:cc:86:d9:56:2a:42:6c:da: 9d:81:18:e1:1b:19:58:59:b4:4a:80:fa:02:41:d4: a2:57:bb:6b:a6:36:dc:30:fd:35:31:d8:97:5a:01: f1:d6:9b:ae:14:75:e8:fc:37:01:58:b4:22:8c:ae: ab:e6:e5:22:3a:c4:ff:82:4e:cd:17:95:07:63:e8: 83:ec:63:de:d3:d0:11:c2:38:78:75:c9:5c:53:f6: fc:fc:51:d4:6d:6e:25:9b:ec:64:05:8c:2b:55:ed: c2:cc:b0:53:f7:89:88:bd:7f:e4:75:9d:47:55:a7: 00:2f:4c:ee:28:ac:84:b6:a3:51:b2:7d:fd:e0:5e: cb:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:59:2D:7A:D4:72:AC:19:92:0A:2F:52:21:B1:CE:40:43:F2:19:87 X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:67:56:f1:da:ff:c2:d9:8d:0e:52:02:41:20:35:b7:7a:19: 3a:89:f1:20:19:17:3f:0a:57:6d:e7:6b:9d:e7:27:1a:cd:b5: b2:4a:cc:d0:07:a1:c0:b9:39:6d:9e:19:fb:57:49:43:be:26: 6e:2d:8a:17:d9:13:97:c3:8e:08:07:90:8a:94:fd:94:d9:a0: b4:b1:13:d0:fe:3a:c4:0e:17:94:a6:2c:74:13:16:6d:a7:df: 34:22:d3:c2:aa:7d:28:b8:50:20:7b:00:db:c8:76:e7:ce:18: e4:90:9a:c4:53:22:ac:6d:10:cb:e5:17:0a:73:cb:7f:12:92: a8:00:30:a6:8f:51:a4:c6:aa:eb:d0:88:99:62:45:12:b4:01: 09:93:51:14:da:b1:46:05:56:e6:e7:7c:95:bd:e7:a1:e4:ac: 1f:cf:f3:52:71:f8:de:09:18:72:da:86:41:61:56:7e:67:21: 13:5c:ff:01:74:15:e1:bd:d0:c0:3b:71:19:f8:64:89:57:a9: 94:91:19:ac:4d:08:4d:b3:a8:44:60:1a:55:20:55:e7:da:2e: df:68:67:9d:bf:4c:62:47:04:1f:18:e4:2c:c7:7f:15:ac:58: d6:31:cd:70:3e:44:94:27:d7:eb:81:69:dd:44:fc:ea:63:86: c8:a5:f6:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz N0U1RjExMC8GA1UEBRMoODNDMkI1NEI2NDFFM0ZGMDZFMzFBMkI0NDUwQzE1N0FE QUQ1OUI2ODAeFw0yNTA0MjUwNTQxMzZaFw0yNTA1MDIwNTQxMzZaMBgxFjAUBgNV BAMTDTY4MGIyMDkwLTNlYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO0K9ophJKFxt+1ly+lAJ1BfPOYCNYvn0FDbEPKxUJYb2sO9U/es37bz4BRXZR b0gTKb9KyPPJANoz5EprPrG/nThWUA9oAkDnj0at2+QY0dXLsuN3eh0AWSW6rHf6 Yj6nnxns1/xgyyEJ9CaWWtqePT8iBShnBLtZf6Cj04fMhtlWKkJs2p2BGOEbGVhZ tEqA+gJB1KJXu2umNtww/TUx2JdaAfHWm64Udej8NwFYtCKMrqvm5SI6xP+CTs0X lQdj6IPsY97T0BHCOHh1yVxT9vz8UdRtbiWb7GQFjCtV7cLMsFP3iYi9f+R1nUdV pwAvTO4orIS2o1Gyff3gXsv3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI1ktetRy rBmSCi9SIbHOQEPyGYcwHwYDVR0jBBgwFoAUg8K1S2QeP/BuMaK0RQwVetrVm2gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3RTVGLzgwQzRCMzAwNjUz ODExRUY4QjQ2ODk2RUM0RjlBRTAyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0y Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZzhLMVMyUWVQX0J1TWFLMFJRd1ZldHJWbTJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3 RTVGLzgwQzRCMzAwNjUzODExRUY4QjQ2ODk2RUM0RjlBRTAyL2c4SzFTMlFlUF9C dU1hSzBSUXdWZXRyVm0yZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIBnVvHa/8LZjQ5SAkEgNbd6GTqJ8SAZFz8KV23na53nJxrNtbJKzNAH ocC5OW2eGftXSUO+Jm4tihfZE5fDjggHkIqU/ZTZoLSxE9D+OsQOF5SmLHQTFm2n 3zQi08KqfSi4UCB7ANvIdufOGOSQmsRTIqxtEMvlFwpzy38SkqgAMKaPUaTGquvQ iJliRRK0AQmTURTasUYFVubnfJW956HkrB/P81Jx+N4JGHLahkFhVn5nIRNc/wF0 FeG90MA7cRn4ZIlXqZSRGaxNCE2zqERgGlUgVefaLt9oZ52/TGJHBB8Y5CzHfxWs WNYxzXA+RJQn1+uBad1E/Opjhsil9iA= -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:48 2025 by rpki-client