$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: W2tpN6adkbPh0rwN0rvBvcamRRuq9vignckjDCIjG0Q= Subject key identifier: 50:0B:3A:8C:46:C0:74:8E:0B:E0:75:1C:CB:02:3A:51:97:5C:EC:CB Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1B93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1B81 Signing time: Thu 24 Apr 2025 16:16:47 +0000 Manifest this update: Thu 24 Apr 2025 16:16:47 +0000 Manifest next update: Thu 01 May 2025 16:16:47 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: L2R72FnPQyX0QkrO/CMNnx2zsXdKNKIGFfm6gw8poDE=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:16:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7059 (0x1b93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Apr 24 16:16:47 2025 GMT Not After : May 1 16:16:47 2025 GMT Subject: CN=680a63ef-3bb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:eb:e6:6c:3e:de:b3:9d:5a:70:09:1c:7b:6e: 93:21:bc:23:03:5d:32:6f:9c:b9:80:e0:12:e8:63: d7:fd:20:dd:ca:aa:70:01:23:d7:87:b5:15:4d:29: 5f:59:d1:cc:c8:06:82:e1:69:ca:bd:2b:64:7f:3a: 90:d4:f4:5f:8c:90:53:17:39:ef:0e:3b:f2:f4:41: f6:e4:fd:59:c2:00:b3:d5:06:77:57:e6:87:6b:8f: 6d:66:03:97:5b:42:30:78:88:0d:59:a1:fb:3d:ad: ce:57:c5:1f:cb:a6:ce:26:ba:ea:a3:a6:1e:0b:99: ba:4a:15:0c:34:f6:60:bd:e3:0f:9e:69:d0:b3:7c: 96:b3:3b:b3:d8:52:bd:af:84:57:1f:b4:91:df:97: 2a:1e:b0:19:b2:de:e3:61:75:71:de:a0:44:84:54: 9c:67:05:a5:78:6a:0b:75:2b:51:7d:78:69:99:66: 99:90:99:1e:6a:16:b5:c3:b5:60:82:ea:ab:22:a8: c9:34:54:1e:9f:c0:21:e6:ac:14:af:e4:6a:53:36: 2f:50:94:29:2d:3f:7d:10:f4:02:3c:b4:45:22:a7: 79:73:7d:93:a7:be:96:07:22:3b:5e:02:09:db:f3: 1f:14:b5:e4:b9:06:ad:b2:bd:53:e7:d8:bc:b3:72: 18:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:0B:3A:8C:46:C0:74:8E:0B:E0:75:1C:CB:02:3A:51:97:5C:EC:CB X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:38:3e:e2:36:f1:8c:c2:6f:15:13:a4:04:62:4c:c8:3d:a8: 39:e5:d6:1d:74:06:db:74:49:dc:ed:c2:90:35:1b:c9:a3:49: b0:97:9f:27:03:bd:45:ea:0e:00:9a:3c:d3:86:a8:17:b9:7f: 67:83:46:f1:f0:e9:e6:31:af:2c:20:33:82:81:15:a0:d8:4a: 25:15:90:02:b2:f5:ab:25:07:73:5e:82:1c:37:b8:c9:ef:c1: dc:35:af:d1:ef:2a:e3:2f:5b:b2:7c:62:e1:f2:b7:5a:da:2b: a8:34:9a:de:ce:d9:1d:d9:b4:a3:cd:6e:64:6d:f7:fd:bb:7f: 2a:71:2e:74:6a:13:9a:00:28:b9:64:91:19:07:56:35:f3:66: c1:f6:7b:03:95:a3:ee:fd:41:67:d1:67:96:9c:1e:74:26:ad: a0:5c:c0:b0:04:9e:bf:da:c1:d7:91:c3:1a:25:2a:71:72:7b: 25:f7:c3:9a:e5:f3:a8:0e:16:85:96:ab:91:ab:79:8a:d7:c7: d8:ca:96:c8:6f:99:fd:2e:b8:48:97:58:bd:77:de:99:e5:b8: 19:b4:33:76:7b:be:a0:7c:de:c4:9e:c9:cb:ea:ab:c2:77:1f: e3:57:86:81:6c:df:da:fc:dc:05:e2:e0:54:8d:92:af:ba:ed: 3b:e3:09:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwNDI0MTYxNjQ3WhcNMjUwNTAxMTYxNjQ3WjAYMRYwFAYD VQQDEw02ODBhNjNlZi0zYmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOvmbD7es51acAkce26TIbwjA10yb5y5gOAS6GPX/SDdyqpwASPXh7UVTSlf WdHMyAaC4WnKvStkfzqQ1PRfjJBTFznvDjvy9EH25P1ZwgCz1QZ3V+aHa49tZgOX W0IweIgNWaH7Pa3OV8Ufy6bOJrrqo6YeC5m6ShUMNPZgveMPnmnQs3yWszuz2FK9 r4RXH7SR35cqHrAZst7jYXVx3qBEhFScZwWleGoLdStRfXhpmWaZkJkeaha1w7Vg guqrIqjJNFQen8Ah5qwUr+RqUzYvUJQpLT99EPQCPLRFIqd5c32Tp76WByI7XgIJ 2/MfFLXkuQatsr1T59i8s3IYRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFALOoxG wHSOC+B1HMsCOlGXXOzLMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKOD7iNvGMwm8VE6QEYkzIPag55dYddAbbdEnc7cKQNRvJo0mwl58n A71F6g4AmjzThqgXuX9ng0bx8OnmMa8sIDOCgRWg2EolFZACsvWrJQdzXoIcN7jJ 78HcNa/R7yrjL1uyfGLh8rda2iuoNJreztkd2bSjzW5kbff9u38qcS50ahOaACi5 ZJEZB1Y182bB9nsDlaPu/UFn0WeWnB50Jq2gXMCwBJ6/2sHXkcMaJSpxcnsl98Oa 5fOoDhaFlquRq3mK18fYypbIb5n9LrhIl1i9d96Z5bgZtDN2e76gfN7EnsnL6qvC dx/jV4aBbN/a/NwF4uBUjZKvuu074wnG -----END CERTIFICATE-----Generated at Sat Apr 26 05:44:30 2025 by rpki-client