$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: nsh9PueZrfLIgv7LvojCdfapQ78PZtvBxk0HQT8BofQ= Subject key identifier: 0B:BC:7E:BB:84:45:69:98:FD:EA:11:0C:E1:5A:D6:97:CB:88:A2:CA Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 0622 Signing time: Fri 25 Apr 2025 00:08:14 +0000 Manifest this update: Fri 25 Apr 2025 00:08:13 +0000 Manifest next update: Fri 02 May 2025 00:08:13 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: ozZTU/Pfy7RmnIVoHRLAYV1NaF6oj03pUOP/owiQzGs=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: 6xK46XhJtyZvl0GV6Tg9wg5kNg7cdtZOaQsNEIc5Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Apr 25 00:08:13 2025 GMT Not After : May 2 00:08:13 2025 GMT Subject: CN=680ad26e-54b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a9:2b:c9:2c:cd:47:51:41:fb:9b:9b:38:23: f0:9d:93:ae:b4:71:ee:7d:eb:31:ad:27:dd:54:07: 37:d7:06:1f:05:55:8d:d6:1d:33:26:11:e5:bb:b7: 42:49:ae:ab:ff:9f:da:ec:78:61:1b:97:82:42:86: 63:e6:85:b9:24:ee:c3:d9:7c:3e:1e:7c:d4:60:06: a6:69:a6:3b:c5:c5:0a:3c:1e:ff:7d:68:61:52:72: db:98:13:46:24:bd:0f:9b:29:60:5e:2c:6a:6a:6d: dd:f6:cd:a3:06:c8:0b:9e:74:28:64:6a:f1:1e:d1: 3b:f3:be:da:96:5b:29:29:91:83:08:c4:13:f6:f8: 21:a9:19:b4:3d:71:a7:3c:fc:56:42:f9:53:ed:8a: 0a:36:62:5a:37:76:d9:3e:08:0a:4b:dd:39:74:f5: ca:ac:9b:a0:b1:f8:64:b8:6c:7c:1f:b4:3e:b5:99: 97:dd:21:95:73:58:a2:62:6e:04:8d:8f:e7:38:92: ba:a1:0c:b3:87:44:03:8d:79:ef:2a:f9:f2:d1:dd: 41:9f:25:4b:20:fc:72:83:b0:3b:03:62:6f:92:3f: 78:8e:3a:69:bf:b3:68:60:36:fb:94:88:b9:50:dc: 56:2a:34:4e:02:2c:cd:b1:ef:cd:cc:b3:70:fb:57: 12:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BC:7E:BB:84:45:69:98:FD:EA:11:0C:E1:5A:D6:97:CB:88:A2:CA X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:7b:a8:82:14:a8:96:78:04:b4:c4:b7:ab:6e:e3:57:0f:c6: 09:e1:8c:0d:25:d5:fc:8b:79:d5:d5:c7:35:04:20:da:5d:a9: eb:73:b2:60:4d:c0:1c:da:9b:5d:51:91:ae:a0:a1:ff:57:c1: 27:02:5e:25:d6:40:ec:54:8e:a5:75:64:e1:23:ae:8d:7e:1b: e5:77:1f:ad:e2:78:b8:71:73:d9:65:b4:06:c5:db:a9:b1:39: 78:02:50:1b:2e:fb:4b:22:94:a2:3a:10:e3:ca:5f:f2:4e:93: 47:80:27:e1:fd:92:c5:91:b6:0f:27:36:da:07:cb:17:da:b2: ef:d0:2c:51:d9:a5:68:a6:79:75:41:be:ea:10:f3:4b:20:d1: b5:f1:73:45:06:2e:5f:9e:d9:f7:69:de:8b:fa:40:fb:a9:fb: 50:10:f6:98:6a:e6:72:96:f0:c6:38:b4:e9:ee:9a:ad:dd:ad: 09:50:90:d6:15:d4:09:f2:bf:0f:b8:81:9d:34:93:b1:33:2a: ee:ac:27:ef:ab:58:e5:17:48:9c:b8:cb:5a:1f:3b:e6:c1:03: b3:8e:ea:3d:10:46:70:67:99:ab:71:f1:bd:25:1c:d6:89:b5: b9:ca:03:d8:0a:da:f5:9d:13:82:0b:f7:3b:5f:20:19:d6:2b: 62:f4:8b:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUwNDI1MDAwODEzWhcNMjUwNTAyMDAwODEzWjAYMRYwFAYD VQQDEw02ODBhZDI2ZS01NGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKkrySzNR1FB+5ubOCPwnZOutHHufesxrSfdVAc31wYfBVWN1h0zJhHlu7dC Sa6r/5/a7HhhG5eCQoZj5oW5JO7D2Xw+HnzUYAamaaY7xcUKPB7/fWhhUnLbmBNG JL0PmylgXixqam3d9s2jBsgLnnQoZGrxHtE7877allspKZGDCMQT9vghqRm0PXGn PPxWQvlT7YoKNmJaN3bZPggKS905dPXKrJugsfhkuGx8H7Q+tZmX3SGVc1iiYm4E jY/nOJK6oQyzh0QDjXnvKvny0d1BnyVLIPxyg7A7A2Jvkj94jjppv7NoYDb7lIi5 UNxWKjROAizNse/NzLNw+1cSwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAu8fruE RWmY/eoRDOFa1pfLiKLKMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAne6iCFKiWeAS0xLerbuNXD8YJ4YwNJdX8i3nV1cc1BCDaXanrc7Jg TcAc2ptdUZGuoKH/V8EnAl4l1kDsVI6ldWThI66Nfhvldx+t4ni4cXPZZbQGxdup sTl4AlAbLvtLIpSiOhDjyl/yTpNHgCfh/ZLFkbYPJzbaB8sX2rLv0CxR2aVopnl1 Qb7qEPNLING18XNFBi5fntn3ad6L+kD7qftQEPaYauZylvDGOLTp7pqt3a0JUJDW FdQJ8r8PuIGdNJOxMyrurCfvq1jlF0icuMtaHzvmwQOzjuo9EEZwZ5mrcfG9JRzW ibW5ygPYCtr1nROCC/c7XyAZ1iti9IuK -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:47 2025 by rpki-client