$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft File: gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json) Hash identifier: Vab388Xwhuk0JFhtoY5BsUJ0HHdGlZHDD6qtHQhXxw4= Subject key identifier: 2B:DA:98:A3:B8:E7:ED:09:B4:59:EC:44:1D:18:05:8B:4E:E0:D9:04 Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F Certificate issuer: /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft Manifest number: 018D Signing time: Fri 25 Apr 2025 02:39:57 +0000 Manifest this update: Fri 25 Apr 2025 02:39:57 +0000 Manifest next update: Fri 02 May 2025 02:39:57 +0000 Files and hashes: 1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: 2ZoQUy2CZr+XkmrGP2Fr2hQPnA/5euYPf5WX6LEx3AQ=) 2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: /+LBjF6lBPLxhQK10OGPQmB3GU8J3/dgM8FRgJhuXxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146DAA, serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Validity Not Before: Apr 25 02:39:57 2025 GMT Not After : May 2 02:39:57 2025 GMT Subject: CN=680af5fd-3b5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2d:21:16:31:37:77:ea:3e:ea:ef:a7:19:fc: 9b:bc:f4:10:51:ee:7b:a4:c7:67:08:80:c0:f7:ae: 3e:76:7e:29:2a:0c:48:b2:12:08:d2:f3:fd:a3:67: 57:22:e2:8f:2a:3b:e4:34:04:5f:05:6e:75:f4:0a: 20:77:d4:17:ad:80:e4:d8:10:55:ab:43:35:fd:3e: c8:7f:74:05:d3:ae:10:87:81:a7:30:cb:72:6a:3a: ac:aa:7c:8e:6f:1e:8c:9f:26:16:b3:61:cb:67:35: 7b:a7:99:7b:92:86:58:48:dd:f2:1c:db:bd:bd:fb: 8f:a4:6a:08:9d:c2:9f:7d:37:74:16:4c:91:f0:bb: 4b:00:41:73:e4:bc:ce:78:8c:7e:15:4f:d0:56:2f: ca:d1:91:e2:ab:5f:41:1c:9d:f5:79:e4:cf:fc:4d: 4e:56:99:55:8d:0f:6e:03:f5:81:1d:83:1d:4b:f8: ce:4c:91:53:62:80:47:93:89:8c:1c:8f:18:6a:7a: a3:a4:3e:22:a5:9f:d5:e9:a3:66:fb:ba:a9:9c:49: 56:b2:e2:62:ae:b5:1b:7f:23:21:cf:38:ab:38:c6: b0:bf:66:ec:f1:d3:c8:78:36:3c:70:8e:81:9e:3a: 4f:37:ab:25:8e:bb:50:fb:74:72:6b:07:78:16:35: 8e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:DA:98:A3:B8:E7:ED:09:B4:59:EC:44:1D:18:05:8B:4E:E0:D9:04 X509v3 Authority Key Identifier: keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:53:10:57:2f:35:69:04:2e:c1:24:36:78:07:34:ac:4f:5b: e5:3d:6b:2b:af:1b:68:4c:a7:0d:43:41:4b:a6:95:75:d2:36: bf:45:f7:b1:de:67:92:f1:93:62:20:a9:80:9c:69:41:49:5f: 15:69:39:3e:33:51:60:e5:d8:b4:80:4a:ac:74:05:ce:3a:b7: f6:6a:03:1b:95:c7:06:bb:ac:28:b4:66:65:6e:1a:56:b5:a7: fb:37:40:d5:a0:83:ca:be:56:30:78:a8:99:dd:aa:3f:26:48: 7d:b0:4e:51:60:48:11:4b:47:cf:86:46:f2:97:60:ce:87:c3: bd:cb:54:a3:1b:86:fd:cf:17:42:33:6d:e2:96:5b:dc:68:66: f6:aa:99:76:89:93:c0:c5:b9:df:d0:dd:23:64:61:db:98:0a: 05:bf:78:ec:b5:95:7e:41:9d:bc:7c:1f:0d:55:9c:fc:aa:1c: 97:72:9b:8e:ee:9b:f0:4e:8f:15:68:12:36:85:ea:96:25:75: 07:46:ba:eb:60:72:58:e8:6d:9b:c8:ac:94:04:53:4c:73:23: 2b:6d:c5:06:27:26:5e:c8:4e:ec:3f:38:9b:74:56:38:4a:17: 40:b9:4a:40:15:68:5e:e0:9f:29:63:56:bc:0b:91:a0:65:87: b8:15:f3:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEQUExMTAvBgNVBAUTKDgyMEY3MDMwQkVBQzZENDlGMTA5QkE4RUMyNUE2NUJG MjM2OUFEMkYwHhcNMjUwNDI1MDIzOTU3WhcNMjUwNTAyMDIzOTU3WjAYMRYwFAYD VQQDEw02ODBhZjVmZC0zYjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2i0hFjE3d+o+6u+nGfybvPQQUe57pMdnCIDA964+dn4pKgxIshII0vP9o2dX IuKPKjvkNARfBW519Aogd9QXrYDk2BBVq0M1/T7If3QF064Qh4GnMMtyajqsqnyO bx6MnyYWs2HLZzV7p5l7koZYSN3yHNu9vfuPpGoIncKffTd0FkyR8LtLAEFz5LzO eIx+FU/QVi/K0ZHiq19BHJ31eeTP/E1OVplVjQ9uA/WBHYMdS/jOTJFTYoBHk4mM HI8YanqjpD4ipZ/V6aNm+7qpnElWsuJirrUbfyMhzzirOMawv2bs8dPIeDY8cI6B njpPN6sljrtQ+3Ryawd4FjWORQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvamKO4 5+0JtFnsRB0YBYtO4NkEMB8GA1UdIwQYMBaAFIIPcDC+rG1J8Qm6jsJaZb8jaa0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkRBQS83MUVCN0M1QUMx OTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JVbnhDYnFPd2xwbHZ5TnBy UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnOXdNTDZzYlVueENicU93bHBsdnlOcHJTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkRBQS83MUVCN0M1QUMxOTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JV bnhDYnFPd2xwbHZ5TnByUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGUxBXLzVpBC7BJDZ4BzSsT1vlPWsrrxtoTKcNQ0FLppV10ja/Rfex 3meS8ZNiIKmAnGlBSV8VaTk+M1Fg5di0gEqsdAXOOrf2agMblccGu6wotGZlbhpW taf7N0DVoIPKvlYweKiZ3ao/Jkh9sE5RYEgRS0fPhkbyl2DOh8O9y1SjG4b9zxdC M23illvcaGb2qpl2iZPAxbnf0N0jZGHbmAoFv3jstZV+QZ28fB8NVZz8qhyXcpuO 7pvwTo8VaBI2heqWJXUHRrrrYHJY6G2byKyUBFNMcyMrbcUGJyZeyE7sPzibdFY4 ShdAuUpAFWhe4J8pY1a8C5GgZYe4FfOk -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:40 2025 by rpki-client