$ rpki-client -vvf rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft File: GHJyN_a30WUlK_m9s4a24ergVXQ.mft (raw, json) Hash identifier: 2T7J46sSp4gPlApOSG0cFVug4zeOyiFMuAp8m8rVULg= Subject key identifier: 4B:7A:02:61:EC:1F:E6:ED:B9:C5:CB:82:07:7D:2D:7D:F6:04:0A:24 Authority key identifier: 18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 Certificate issuer: /CN=A917418A/serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Certificate serial: 02D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft Manifest number: 02CF Signing time: Fri 25 Apr 2025 01:09:02 +0000 Manifest this update: Fri 25 Apr 2025 01:09:02 +0000 Manifest next update: Fri 02 May 2025 01:09:02 +0000 Files and hashes: 1: GHJyN_a30WUlK_m9s4a24ergVXQ.crl (hash: oSJrvwvECOgmrQCMKUVaumkLbAVfhwpPrYHB+PMTGuU=) 2: FCA92EAAE4AD11EC839CED77C4F9AE02.roa (hash: wW4HCqhcoyo/dCvusJDIhbj+A+f9Rh4hUlMCJe2c3dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 723 (0x2d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917418A, serialNumber=18727237F6B7D165252BF9BDB386B6E1EAE05574 Validity Not Before: Apr 25 01:09:02 2025 GMT Not After : May 2 01:09:02 2025 GMT Subject: CN=680ae0ae-213d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:9e:b1:12:03:61:1a:67:a8:51:28:01:d3:40: 6c:8c:81:ef:0b:58:5d:40:f6:5d:d6:92:33:0b:00: c3:ed:a3:16:09:46:12:9d:58:bc:d9:00:a9:55:ef: e6:fc:98:55:52:71:4d:33:c7:ae:81:1c:e3:8e:b8: 7a:36:d8:21:1e:ad:b5:52:01:45:21:9f:dd:00:a8: 1c:3c:f8:99:ac:10:f0:4b:1e:b8:89:42:59:4d:7e: c3:2b:f3:cf:17:3b:3f:7f:25:c4:61:31:d0:5a:1e: c1:75:9a:6b:58:68:07:7a:f5:18:f4:b1:1c:83:44: 67:c2:3f:0f:57:b9:83:63:dd:9a:3d:32:c9:98:be: 82:97:15:e3:b5:1a:5a:02:c6:34:44:d9:3e:18:46: ab:fa:ce:cc:ec:63:ff:a1:8b:41:e7:78:0c:cb:24: ca:a0:c9:bb:57:93:92:bb:f5:53:86:64:ec:9f:2c: c1:60:33:08:92:90:6f:6e:20:ba:fa:a4:73:d8:d2: a2:df:e3:a7:89:d1:9b:87:e7:cc:2f:4c:04:0c:cf: b1:bf:d4:87:74:3f:cb:18:e9:82:cc:50:65:c3:65: da:aa:47:e0:5a:72:28:24:b0:ee:1c:f9:51:e7:d3: a8:d9:aa:96:fc:73:7c:1b:1a:54:06:11:51:da:e1: 30:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7A:02:61:EC:1F:E6:ED:B9:C5:CB:82:07:7D:2D:7D:F6:04:0A:24 X509v3 Authority Key Identifier: keyid:18:72:72:37:F6:B7:D1:65:25:2B:F9:BD:B3:86:B6:E1:EA:E0:55:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHJyN_a30WUlK_m9s4a24ergVXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917418A/0E090968E4A911EC93E50751C4F9AE02/GHJyN_a30WUlK_m9s4a24ergVXQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:92:4f:99:07:dc:d5:a4:66:7c:a3:9d:43:5e:75:41:81:f9: 8c:48:da:9d:b0:1d:0c:67:4d:f8:1c:e4:6c:5f:e8:f4:d3:33: 86:6b:10:22:5d:39:3b:29:c3:a7:85:f1:46:7f:5c:b0:c0:4a: 11:cb:5e:38:22:22:9a:4c:66:e3:56:b5:38:fc:8c:ae:78:3d: ad:8e:ed:ce:e8:f9:73:24:51:f2:8c:12:05:60:d4:72:3d:c0: 67:18:38:f1:7e:77:aa:2e:65:6d:17:f6:b5:db:48:9f:22:e9: 03:08:20:1e:24:dd:f3:1e:6a:ef:d5:41:3a:7d:5e:e0:96:89: 7d:8f:cd:f4:50:5b:b9:7d:cf:6c:b8:26:ff:34:6b:8f:8d:f9: 4a:b4:98:ef:b5:60:c8:49:c4:73:f5:11:33:93:f7:0e:fd:b3: 73:3d:16:a3:04:7d:93:5c:34:ac:2f:28:06:a2:8d:3d:38:82: 5a:8b:17:f9:01:d9:2c:2e:e4:bc:22:6a:27:a7:e5:2a:78:fb: 0e:0f:db:c6:1e:d5:fa:cf:75:1b:a1:03:03:89:64:97:d4:67: c4:11:b1:c1:7f:ed:fd:cb:21:02:4b:13:34:e6:62:46:6d:b4: c8:a3:aa:3f:8f:36:59:46:3e:69:0b:03:46:91:57:4d:b0:37: c1:c0:f0:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOEExMTAvBgNVBAUTKDE4NzI3MjM3RjZCN0QxNjUyNTJCRjlCREIzODZCNkUx RUFFMDU1NzQwHhcNMjUwNDI1MDEwOTAyWhcNMjUwNTAyMDEwOTAyWjAYMRYwFAYD VQQDEw02ODBhZTBhZS0yMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA656xEgNhGmeoUSgB00BsjIHvC1hdQPZd1pIzCwDD7aMWCUYSnVi82QCpVe/m /JhVUnFNM8eugRzjjrh6NtghHq21UgFFIZ/dAKgcPPiZrBDwSx64iUJZTX7DK/PP Fzs/fyXEYTHQWh7BdZprWGgHevUY9LEcg0Rnwj8PV7mDY92aPTLJmL6ClxXjtRpa AsY0RNk+GEar+s7M7GP/oYtB53gMyyTKoMm7V5OSu/VThmTsnyzBYDMIkpBvbiC6 +qRz2NKi3+OnidGbh+fML0wEDM+xv9SHdD/LGOmCzFBlw2XaqkfgWnIoJLDuHPlR 59Oo2aqW/HN8GxpUBhFR2uEwawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEt6AmHs H+btucXLggd9LX32BAokMB8GA1UdIwQYMBaAFBhycjf2t9FlJSv5vbOGtuHq4FV0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE4QS8wRTA5MDk2OEU0 QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBXVWxLX205czRhMjRlcmdW WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dISnlOX2EzMFdVbEtfbTlzNGEyNGVyZ1ZYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE4QS8wRTA5MDk2OEU0QTkxMUVDOTNFNTA3NTFDNEY5QUUwMi9HSEp5Tl9hMzBX VWxLX205czRhMjRlcmdWWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3kk+ZB9zVpGZ8o51DXnVBgfmMSNqdsB0MZ034HORsX+j00zOGaxAi XTk7KcOnhfFGf1ywwEoRy144IiKaTGbjVrU4/IyueD2tju3O6PlzJFHyjBIFYNRy PcBnGDjxfneqLmVtF/a120ifIukDCCAeJN3zHmrv1UE6fV7glol9j830UFu5fc9s uCb/NGuPjflKtJjvtWDIScRz9REzk/cO/bNzPRajBH2TXDSsLygGoo09OIJaixf5 AdksLuS8Imonp+UqePsOD9vGHtX6z3UboQMDiWSX1GfEEbHBf+39yyECSxM05mJG bbTIo6o/jzZZRj5pCwNGkVdNsDfBwPA/ -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:44 2025 by rpki-client