$ rpki-client -vvf rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/g6pYiXoVH0rLc4TwtV8R7Z164X8.mft File: g6pYiXoVH0rLc4TwtV8R7Z164X8.mft (raw, json) Hash identifier: M4uw3Sy7BcMxPurFOYZv1CW5J8flY8eUFlutTvM1saw= Subject key identifier: 6A:29:A6:39:F3:7A:E8:82:39:03:40:EC:95:B7:57:A8:FF:4E:9B:77 Authority key identifier: 83:AA:58:89:7A:15:1F:4A:CB:73:84:F0:B5:5F:11:ED:9D:7A:E1:7F Certificate issuer: /CN=A915B3AE/serialNumber=83AA58897A151F4ACB7384F0B55F11ED9D7AE17F Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g6pYiXoVH0rLc4TwtV8R7Z164X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/g6pYiXoVH0rLc4TwtV8R7Z164X8.mft Manifest number: E4 Signing time: Fri 25 Apr 2025 04:32:31 +0000 Manifest this update: Fri 25 Apr 2025 04:32:31 +0000 Manifest next update: Fri 02 May 2025 04:32:30 +0000 Files and hashes: 1: g6pYiXoVH0rLc4TwtV8R7Z164X8.crl (hash: KgykFCQGdjQ4ESkjYZT1YQEPvxGK5TH9SenPf11cip4=) 2: 1AD9E28ECA9411EE9062590AC4F9AE02.roa (hash: ReL28hF+/x2h0RKcTZEQ3GcIbkXQcDw6s6esZ8caJwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/g6pYiXoVH0rLc4TwtV8R7Z164X8.crl rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/g6pYiXoVH0rLc4TwtV8R7Z164X8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g6pYiXoVH0rLc4TwtV8R7Z164X8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B3AE, serialNumber=83AA58897A151F4ACB7384F0B55F11ED9D7AE17F Validity Not Before: Apr 25 04:32:31 2025 GMT Not After : May 2 04:32:30 2025 GMT Subject: CN=680b105f-6f29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a5:6c:db:64:0e:1b:fd:66:98:d8:9d:e9:19: d9:43:6a:d5:31:e6:04:c9:72:34:55:c3:02:d3:d3: 65:e7:0c:af:ce:72:ca:16:5a:89:71:33:d4:d3:3a: 0c:1c:52:4e:96:79:19:7b:7f:31:55:db:ee:28:94: 77:41:21:f3:b1:18:c4:f0:b1:0d:7b:14:cd:32:30: 12:b4:ef:ad:9e:06:7f:20:4e:c9:d3:a9:e2:6b:72: 0b:ef:dd:bc:f7:28:aa:be:70:8a:2e:09:6a:05:f1: aa:cc:fc:9e:9a:39:0c:df:b3:38:a1:94:35:7a:95: 38:a6:13:18:48:93:f5:d0:61:d5:81:f3:2e:a9:26: 16:15:8a:bb:47:67:9a:dd:c7:2b:dc:59:a6:c8:67: 36:ad:1c:5c:35:c3:fd:d0:bb:bd:13:24:3f:3b:07: 92:b1:85:d3:d2:c4:1a:77:79:e8:6f:f7:b2:9b:31: 08:55:fe:d0:97:64:15:94:a2:c3:fd:33:77:55:f5: df:1b:14:a1:db:de:3a:53:98:a3:4a:f9:aa:60:b4: 05:51:24:74:a8:2a:de:da:0f:04:f9:14:36:12:13: c7:5d:00:55:4b:48:3d:1f:b8:60:f1:ee:a5:db:85: af:06:af:15:fa:d2:9c:eb:81:f7:88:78:4e:c6:b4: b2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:29:A6:39:F3:7A:E8:82:39:03:40:EC:95:B7:57:A8:FF:4E:9B:77 X509v3 Authority Key Identifier: keyid:83:AA:58:89:7A:15:1F:4A:CB:73:84:F0:B5:5F:11:ED:9D:7A:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/g6pYiXoVH0rLc4TwtV8R7Z164X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g6pYiXoVH0rLc4TwtV8R7Z164X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B3AE/C2D054F6CA9311EEA726CC09C4F9AE02/g6pYiXoVH0rLc4TwtV8R7Z164X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:f6:e8:c4:d2:5e:0a:f8:25:f6:05:c0:5d:08:bf:db:ab:5b: d0:21:f9:2d:15:03:54:b5:57:f6:eb:31:98:90:b4:0c:25:52: f1:d3:c3:10:a1:6e:f0:d0:3a:cc:45:5e:51:eb:f5:15:42:48: 28:77:8f:7f:1d:a5:99:ef:df:73:fc:99:13:2c:75:ff:3e:5c: 26:fd:bd:fb:de:b7:49:36:dc:bd:9f:9a:9a:23:0a:6a:95:f5: d7:2d:2b:a4:f1:ac:a0:a0:32:f6:3a:04:42:e3:7f:10:bb:23: 05:51:d9:1c:db:f6:e8:f2:b2:fc:23:ab:c8:e7:81:52:2b:fa: 60:0c:6c:d4:d9:fe:27:8a:43:76:fb:75:67:51:3c:e9:65:ad: f5:88:67:99:36:b1:86:2d:3e:f1:e7:f6:e6:82:b2:3f:d6:45: be:be:60:e7:e1:c7:9f:84:bf:10:47:11:80:32:98:3f:01:c8: 6e:2b:b7:fd:96:47:74:f8:f6:e2:c6:d6:41:31:da:18:f0:20: 94:53:c8:1d:17:14:a3:b6:5f:82:36:02:8d:92:bd:de:eb:b9: fa:4b:60:be:5b:b3:5f:9b:cb:8e:9e:40:30:bb:a6:31:84:ac: d4:d7:74:85:b9:ec:7b:91:ee:b3:36:4b:6b:19:fb:ad:ca:e6: d4:8a:86:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIzQUUxMTAvBgNVBAUTKDgzQUE1ODg5N0ExNTFGNEFDQjczODRGMEI1NUYxMUVE OUQ3QUUxN0YwHhcNMjUwNDI1MDQzMjMxWhcNMjUwNTAyMDQzMjMwWjAYMRYwFAYD VQQDEw02ODBiMTA1Zi02ZjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6Vs22QOG/1mmNid6RnZQ2rVMeYEyXI0VcMC09Nl5wyvznLKFlqJcTPU0zoM HFJOlnkZe38xVdvuKJR3QSHzsRjE8LENexTNMjAStO+tngZ/IE7J06nia3IL7928 9yiqvnCKLglqBfGqzPyemjkM37M4oZQ1epU4phMYSJP10GHVgfMuqSYWFYq7R2ea 3ccr3FmmyGc2rRxcNcP90Lu9EyQ/OweSsYXT0sQad3nob/eymzEIVf7Ql2QVlKLD /TN3VfXfGxSh2946U5ijSvmqYLQFUSR0qCre2g8E+RQ2EhPHXQBVS0g9H7hg8e6l 24WvBq8V+tKc64H3iHhOxrSytwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoppjnz euiCOQNA7JW3V6j/Tpt3MB8GA1UdIwQYMBaAFIOqWIl6FR9Ky3OE8LVfEe2deuF/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjNBRS9DMkQwNTRGNkNB OTMxMUVFQTcyNkNDMDlDNEY5QUUwMi9nNnBZaVhvVkgwckxjNFR3dFY4UjdaMTY0 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2cFlpWG9WSDByTGM0VHd0VjhSN1oxNjRYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjNBRS9DMkQwNTRGNkNBOTMxMUVFQTcyNkNDMDlDNEY5QUUwMi9nNnBZaVhvVkgw ckxjNFR3dFY4UjdaMTY0WDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDI9ujE0l4K+CX2BcBdCL/bq1vQIfktFQNUtVf26zGYkLQMJVLx08MQ oW7w0DrMRV5R6/UVQkgod49/HaWZ799z/JkTLHX/Plwm/b373rdJNty9n5qaIwpq lfXXLSuk8aygoDL2OgRC438QuyMFUdkc2/bo8rL8I6vI54FSK/pgDGzU2f4nikN2 +3VnUTzpZa31iGeZNrGGLT7x5/bmgrI/1kW+vmDn4cefhL8QRxGAMpg/AchuK7f9 lkd0+PbixtZBMdoY8CCUU8gdFxSjtl+CNgKNkr3e67n6S2C+W7Nfm8uOnkAwu6Yx hKzU13SFuex7ke6zNktrGfutyubUioZF -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:09 2025 by rpki-client