$ rpki-client -vvf rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft File: -_gSoLmqiu1iGHbIkgH_8QQytpc.mft (raw, json) Hash identifier: 0SoGfq0cwhC/dNY8PWb6jqppdTxOnPwg5Ja5W+608G0= Subject key identifier: 21:9C:D0:39:19:BE:2E:AD:19:3F:B6:A9:E2:E4:FE:C6:A3:02:0F:48 Authority key identifier: FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 Certificate issuer: /CN=A915A330/serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft Manifest number: 14 Signing time: Fri 25 Apr 2025 07:00:48 +0000 Manifest this update: Fri 25 Apr 2025 07:00:48 +0000 Manifest next update: Fri 02 May 2025 07:00:48 +0000 Files and hashes: 1: -_gSoLmqiu1iGHbIkgH_8QQytpc.crl (hash: 8m2LkOUUzyU/MFFjsnORDzUhti+UUaey8O4LFQMiGik=) 2: 5F2F693A061211F0BA5A2029C4F9AE02.roa (hash: ti/+dlDrn7n64hxfzOvr4hnKhT6sYm889q99u/P1yZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A330, serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Validity Not Before: Apr 25 07:00:48 2025 GMT Not After : May 2 07:00:48 2025 GMT Subject: CN=680b3320-529e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:2d:d8:d8:1c:63:d0:c5:16:51:5a:6d:e0:2f: 51:74:0a:df:45:a5:83:94:9f:24:e6:78:33:b0:de: 26:76:4f:26:03:07:68:80:62:fc:bf:7d:bb:68:fb: ae:34:75:0a:2c:98:b5:d7:97:24:05:ab:27:c3:3f: 0a:3e:96:87:6a:8b:40:25:be:03:2a:14:ea:f0:29: bc:9c:a2:ea:8a:8f:57:24:d8:32:f9:ad:01:fc:da: 21:e2:8d:b5:50:cb:e4:5f:b9:87:e2:1c:87:ab:d4: 3b:3e:c1:44:f1:f5:e5:13:1b:65:cc:9b:25:be:15: 0e:bf:49:9b:bd:e5:8c:68:e4:3e:42:88:3c:18:fe: 3b:82:9e:47:35:e5:14:ab:b5:56:61:bc:21:ba:ce: 01:8e:0c:94:68:96:8d:00:84:7d:ff:ea:dc:f5:69: 7e:2a:a8:ed:63:7f:7d:84:a6:e2:18:42:f5:4a:af: fd:db:d8:bf:0c:50:a1:91:cb:29:5a:a5:f0:60:21: 90:e1:64:02:e5:79:31:d5:51:e3:ab:38:38:1d:00: 48:4a:b2:8f:7e:16:a9:86:51:f5:73:d7:ba:10:a3: 85:45:a7:b4:30:13:ff:1a:34:22:fe:1d:ef:53:df: 76:1e:e2:75:ae:8a:fa:6a:be:ff:43:64:53:ab:90: f8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:9C:D0:39:19:BE:2E:AD:19:3F:B6:A9:E2:E4:FE:C6:A3:02:0F:48 X509v3 Authority Key Identifier: keyid:FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:f0:fc:c8:38:58:9a:c7:89:22:79:47:f5:7c:54:ee:a1:e0: 06:0c:d8:98:e9:ac:49:15:bf:09:b1:11:90:f6:56:37:81:35: 09:1f:e1:a6:7a:85:23:ff:99:17:cf:98:c3:b5:62:77:a2:c3: 56:ed:81:e6:10:c3:02:51:13:5c:56:49:22:f8:ae:cd:d8:21: 5e:c9:a1:4c:11:97:ad:f8:a2:92:c7:44:af:99:8d:31:75:34: 66:82:15:fb:6a:3f:5e:13:3f:da:03:f4:50:da:f7:1f:89:22: 2d:b1:09:91:c7:40:6f:82:09:bf:9f:11:fc:84:81:26:93:2e: a8:a5:03:f2:0e:6a:0f:65:a5:c3:ca:c9:87:a1:13:f3:bf:91: 3d:90:a8:22:32:de:9a:67:ea:86:3c:1e:b9:b8:fa:68:57:85: 85:16:68:42:4e:6f:24:dc:89:26:49:46:05:8c:8b:17:e1:f7: 50:c4:12:4a:16:02:cb:dd:ff:bd:31:aa:40:27:f5:c7:b5:ea: 4d:c9:50:09:c1:ad:8e:10:06:6f:3d:47:2d:ab:e4:d6:17:4c: 6e:e3:6b:aa:87:e1:e2:b5:dc:f7:e2:61:40:df:06:cf:0f:ef: 47:6c:df:fc:c5:67:16:63:ab:24:0a:80:d3:0f:fa:d5:bd:e1: f8:b0:29:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTMzMDExMC8GA1UEBRMoRkJGODEyQTBCOUFBOEFFRDYyMTg3NkM4OTIwMUZGRjEw NDMyQjY5NzAeFw0yNTA0MjUwNzAwNDhaFw0yNTA1MDIwNzAwNDhaMBgxFjAUBgNV BAMTDTY4MGIzMzIwLTUyOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0LdjYHGPQxRZRWm3gL1F0Ct9FpYOUnyTmeDOw3iZ2TyYDB2iAYvy/fbto+640 dQosmLXXlyQFqyfDPwo+lodqi0AlvgMqFOrwKbycouqKj1ck2DL5rQH82iHijbVQ y+RfuYfiHIer1Ds+wUTx9eUTG2XMmyW+FQ6/SZu95Yxo5D5CiDwY/juCnkc15RSr tVZhvCG6zgGODJRolo0AhH3/6tz1aX4qqO1jf32EpuIYQvVKr/3b2L8MUKGRyyla pfBgIZDhZALleTHVUeOrODgdAEhKso9+FqmGUfVz17oQo4VFp7QwE/8aNCL+He9T 33Ye4nWuivpqvv9DZFOrkPi3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIZzQORm+ Lq0ZP7ap4uT+xqMCD0gwHwYDVR0jBBgwFoAU+/gSoLmqiu1iGHbIkgH/8QQytpcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBMzMwL0FBRTQ5QTM4MDYw RjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUxaUdIYklrZ0hfOFFReXRw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLV9nU29MbXFpdTFpR0hiSWtnSF84UVF5dHBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB MzMwL0FBRTQ5QTM4MDYwRjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUx aUdIYklrZ0hfOFFReXRwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMjw/Mg4WJrHiSJ5R/V8VO6h4AYM2JjprEkVvwmxEZD2VjeBNQkf4aZ6 hSP/mRfPmMO1Yneiw1btgeYQwwJRE1xWSSL4rs3YIV7JoUwRl634opLHRK+ZjTF1 NGaCFftqP14TP9oD9FDa9x+JIi2xCZHHQG+CCb+fEfyEgSaTLqilA/IOag9lpcPK yYehE/O/kT2QqCIy3ppn6oY8Hrm4+mhXhYUWaEJObyTciSZJRgWMixfh91DEEkoW Asvd/70xqkAn9ce16k3JUAnBrY4QBm89Ry2r5NYXTG7ja6qH4eK13PfiYUDfBs8P 70ds3/zFZxZjqyQKgNMP+tW94fiwKXI= -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:55 2025 by rpki-client