$ rpki-client -vvf rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft File: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft (raw, json) Hash identifier: yLU2x+PDIHAAMKs8qs54XdzKhq9FctXfXVMa19nqdek= Subject key identifier: 22:AF:0B:C7:DF:8D:76:34:07:C1:1D:17:A6:8A:5F:26:38:A7:87:DA Authority key identifier: 19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D Certificate issuer: /CN=A913E0D7/serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft Manifest number: 01E8 Signing time: Fri 25 Apr 2025 01:51:37 +0000 Manifest this update: Fri 25 Apr 2025 01:51:36 +0000 Manifest next update: Fri 02 May 2025 01:51:36 +0000 Files and hashes: 1: Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl (hash: T0YKQqHF6QWiE0QSVuEoSGcav/eh3ZFQ9ghO5XNbDqU=) 2: 12326B1E3ED211EDAE00DB18C4F9AE02.roa (hash: zW5H6X8uqPfx0Xsy4TR9o3a+IpV9YO9mu4z+ktesoLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E0D7, serialNumber=19BABBCF4C9999300AC059C653C290842F6A660D Validity Not Before: Apr 25 01:51:36 2025 GMT Not After : May 2 01:51:36 2025 GMT Subject: CN=680aeaa8-a778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:79:7f:77:3d:13:64:bc:2b:7c:5c:4d:e8:11: e3:2a:33:80:37:a5:cb:92:15:f3:0e:09:69:bb:81: ed:b3:2a:11:f9:89:af:a5:c4:1a:f5:dd:18:f0:7f: 72:66:6c:19:21:c5:ae:ce:b3:3f:11:68:28:5b:ae: c3:f5:70:2b:5b:60:44:fb:96:2f:6e:64:7c:51:27: d6:07:d5:c9:10:ba:94:33:e0:c5:a4:d7:04:35:a2: e8:20:d6:a5:b4:19:51:c7:c4:31:3a:dc:d9:c1:db: 09:c0:76:d4:8e:f8:a0:51:69:05:76:9e:99:d9:91: c0:df:b3:4d:9e:ac:bc:71:dc:13:ec:10:1a:58:1b: 3c:69:59:f5:f9:86:01:f5:32:17:b0:41:12:e8:7d: 76:c6:83:33:6b:f6:c6:58:c4:11:b2:6b:85:a0:15: 95:08:80:7e:16:d8:ab:4b:71:e6:db:c2:c7:b0:02: 48:0a:50:bb:d6:f5:7e:96:23:bb:9f:c0:24:7a:9b: 68:fa:6e:b3:db:85:5c:61:91:31:70:d2:4f:d2:3c: b8:61:e3:bd:19:e4:01:26:19:a7:95:5d:ea:15:ca: 54:07:e2:c9:04:e3:3f:7b:d8:2e:1c:dd:a9:d8:a0: d5:46:b5:3f:71:ae:0d:cf:15:1e:f0:2f:55:72:28: c8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AF:0B:C7:DF:8D:76:34:07:C1:1D:17:A6:8A:5F:26:38:A7:87:DA X509v3 Authority Key Identifier: keyid:19:BA:BB:CF:4C:99:99:30:0A:C0:59:C6:53:C2:90:84:2F:6A:66:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E0D7/8FEF84043ECF11EDA5F1FA17C4F9AE02/Gbq7z0yZmTAKwFnGU8KQhC9qZg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:13:f3:8c:21:2f:4f:57:58:4a:c4:1c:46:02:f0:14:8d:7a: 80:bd:25:cc:a7:fd:23:7a:5b:82:49:14:35:ee:0f:21:b1:5f: 2e:d7:aa:ed:4a:7e:db:8f:ac:a3:0b:22:56:ec:e2:c0:26:db: 8b:9a:aa:d5:6d:ec:08:7d:b2:ce:06:10:96:e1:15:aa:e9:77: ec:72:37:33:0f:fc:c4:53:5c:02:5c:41:8d:8a:1a:34:8d:e8: 67:c4:b9:99:ef:69:c0:a2:4b:b5:69:82:4f:90:c4:bb:ea:fb: ad:0d:c6:3f:24:d5:35:eb:a9:66:8a:1a:e9:fd:ef:d6:50:33: f7:10:b8:e5:11:9f:0f:bd:20:34:bd:e3:45:f2:2a:76:27:89: 3e:63:13:e4:8d:45:e1:9d:8b:37:f0:a9:08:95:8a:d1:29:55: cc:40:76:6f:45:3c:29:c5:d4:36:4c:1c:af:be:c0:f1:d1:9f: f6:d9:5c:c7:83:a1:b1:09:d2:d1:4c:b5:30:80:31:05:22:d7: 6d:88:4d:df:f1:8a:19:25:f3:7b:ae:63:04:5d:97:62:91:91: e5:40:10:a4:ad:60:25:a2:ed:cd:ca:fc:7e:97:48:08:a3:3b: 38:39:ef:80:e3:da:c0:ce:6f:f1:4f:17:d9:6b:8d:08:43:40: a0:50:76:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwRDcxMTAvBgNVBAUTKDE5QkFCQkNGNEM5OTk5MzAwQUMwNTlDNjUzQzI5MDg0 MkY2QTY2MEQwHhcNMjUwNDI1MDE1MTM2WhcNMjUwNTAyMDE1MTM2WjAYMRYwFAYD VQQDEw02ODBhZWFhOC1hNzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3l/dz0TZLwrfFxN6BHjKjOAN6XLkhXzDglpu4HtsyoR+YmvpcQa9d0Y8H9y ZmwZIcWuzrM/EWgoW67D9XArW2BE+5YvbmR8USfWB9XJELqUM+DFpNcENaLoINal tBlRx8QxOtzZwdsJwHbUjvigUWkFdp6Z2ZHA37NNnqy8cdwT7BAaWBs8aVn1+YYB 9TIXsEES6H12xoMza/bGWMQRsmuFoBWVCIB+FtirS3Hm28LHsAJIClC71vV+liO7 n8Akepto+m6z24VcYZExcNJP0jy4YeO9GeQBJhmnlV3qFcpUB+LJBOM/e9guHN2p 2KDVRrU/ca4NzxUe8C9VcijISQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKvC8ff jXY0B8EdF6aKXyY4p4faMB8GA1UdIwQYMBaAFBm6u89MmZkwCsBZxlPCkIQvamYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTBENy84RkVGODQwNDNF Q0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1UQUt3Rm5HVThLUWhDOXFa ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dicTd6MHlabVRBS3dGbkdVOEtRaEM5cVpnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTBENy84RkVGODQwNDNFQ0YxMUVEQTVGMUZBMTdDNEY5QUUwMi9HYnE3ejB5Wm1U QUt3Rm5HVThLUWhDOXFaZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/E/OMIS9PV1hKxBxGAvAUjXqAvSXMp/0jeluCSRQ17g8hsV8u16rt Sn7bj6yjCyJW7OLAJtuLmqrVbewIfbLOBhCW4RWq6XfscjczD/zEU1wCXEGNiho0 jehnxLmZ72nAoku1aYJPkMS76vutDcY/JNU166lmihrp/e/WUDP3ELjlEZ8PvSA0 veNF8ip2J4k+YxPkjUXhnYs38KkIlYrRKVXMQHZvRTwpxdQ2TByvvsDx0Z/22VzH g6GxCdLRTLUwgDEFItdtiE3f8YoZJfN7rmMEXZdikZHlQBCkrWAlou3Nyvx+l0gI ozs4Oe+A49rAzm/xTxfZa40IQ0CgUHYn -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:14 2025 by rpki-client