$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft File: g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft (raw, json) Hash identifier: 9eMTThpQKrhxTtojJitBcKdJ/cAxW1fsEcyux6E2XLw= Subject key identifier: 22:D1:C9:F2:37:F3:72:57:29:03:47:28:17:4D:F6:AA:EE:56:00:1C Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft Manifest number: 06A1 Signing time: Thu 24 Apr 2025 22:32:58 +0000 Manifest this update: Thu 24 Apr 2025 22:32:57 +0000 Manifest next update: Thu 01 May 2025 22:32:57 +0000 Files and hashes: 1: g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl (hash: 6iU1CCXiuMLbDMFbaOF6B1aZqt+6AEGCcJuPZAhEsiY=) 2: 756E0BBCEAE711EE88CD8641C4F9AE02.roa (hash: XGyaR0ustoTHYGTHylMLu/5dtoppDHHQmGzCG+ndx/Q=) 3: 8A83E044AA5E11EF86EDC12AC4F9AE02.roa (hash: bTG0otEBv5pUF0uMZgR8QuZCzoXLSGz2eFHvXwQK5Yk=) 4: 993EAAD4522911EFA600C035C4F9AE02.roa (hash: FlAdyp5eoMvMr4EUAvrOqk0AMOfz/t2ORscVMWvVvIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756B7, serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Validity Not Before: Apr 24 22:32:57 2025 GMT Not After : May 1 22:32:57 2025 GMT Subject: CN=680abc19-cad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:02:9b:4e:d0:89:9b:6d:2d:6e:64:81:17:8d: c3:14:4b:81:e0:95:d3:7d:44:96:71:db:f2:3e:06: b6:e4:b4:7d:f3:79:33:71:54:bc:f5:0f:fd:07:d1: a5:44:00:2f:11:fd:5d:6f:14:8d:0f:d2:93:a1:84: 09:8f:fc:c5:89:c0:85:90:3b:13:a2:ff:4b:a3:0e: a1:58:d7:d0:d5:85:06:a3:2e:92:ce:69:15:eb:6e: 78:e1:3b:5b:84:b8:0b:ff:66:26:c1:89:8d:27:56: 25:d2:33:b1:af:f1:0c:f5:71:a0:03:e9:8d:0b:d6: d7:70:9e:c0:54:b1:ad:58:ed:4c:d8:c5:f1:3a:86: 23:0d:82:ca:8b:e6:cb:cb:89:a2:6f:43:8e:89:cf: 81:76:7a:f3:8d:dc:78:81:4b:45:50:c9:15:2a:f2: db:0b:5b:97:7b:10:8c:1b:f2:52:7d:ad:1c:18:fa: e8:a1:7b:4d:0f:c4:88:0b:ee:f1:fc:04:e2:6b:da: 9f:1e:cd:a8:27:40:0a:2e:e7:d0:77:73:2a:de:37: 91:13:69:f3:f8:43:2f:7f:39:9c:7f:cd:c1:9f:15: 13:e3:a4:44:0b:b7:fe:c3:0b:2b:f1:35:03:32:96: 0b:5d:4d:0d:cb:0b:be:12:d3:16:76:72:b5:90:fa: 5a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D1:C9:F2:37:F3:72:57:29:03:47:28:17:4D:F6:AA:EE:56:00:1C X509v3 Authority Key Identifier: keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:87:54:66:2c:ec:32:ee:5f:93:91:6f:26:9e:76:1e:42:d4: 20:36:34:a4:3b:c4:df:2d:70:01:23:29:5a:92:50:f9:64:ea: ef:42:d3:ef:7d:76:d5:be:f4:40:63:f4:8c:65:e1:40:86:61: 52:6d:64:08:4b:96:4f:69:85:f8:5a:e9:a1:6a:68:d8:a9:3e: 42:01:ea:eb:82:77:59:cb:fd:f3:bf:ab:dc:7a:85:d5:bb:0a: 35:ab:ec:ae:44:60:64:d8:27:70:1b:47:01:fb:22:57:9f:72: c6:cd:88:9a:a4:d6:cf:15:c0:ee:5b:44:95:56:cc:2b:65:69: fb:c3:7e:b6:73:be:c4:8b:b8:49:ad:cf:ae:39:61:02:f7:ec: e4:52:d1:3e:da:7a:88:2f:88:5d:ac:46:f3:c4:0c:c8:35:7f: 78:52:87:2d:1d:21:4c:9a:2e:f0:54:8b:f2:9e:96:de:32:45: 37:e9:1d:2d:b2:70:4b:ce:58:7b:80:bc:64:c3:3b:4a:59:63: a7:7c:9a:13:16:97:be:6c:23:ac:ae:02:9a:de:1f:f7:c1:1b: a1:9a:cb:6f:94:05:69:9e:9c:f3:16:33:91:40:3d:95:51:20: ff:cd:ea:ee:39:f4:d6:17:1e:ee:1c:46:b5:76:ed:a3:1b:96: c5:2d:6e:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QjcxMTAvBgNVBAUTKDgzRDk2RjFERUE3MkE5OUQyMzRCNDQ1NkQ2RjY2NzVE QzdFNjA2MUUwHhcNMjUwNDI0MjIzMjU3WhcNMjUwNTAxMjIzMjU3WjAYMRYwFAYD VQQDEw02ODBhYmMxOS1jYWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAKbTtCJm20tbmSBF43DFEuB4JXTfUSWcdvyPga25LR983kzcVS89Q/9B9Gl RAAvEf1dbxSND9KToYQJj/zFicCFkDsTov9Low6hWNfQ1YUGoy6SzmkV62544Ttb hLgL/2YmwYmNJ1Yl0jOxr/EM9XGgA+mNC9bXcJ7AVLGtWO1M2MXxOoYjDYLKi+bL y4mib0OOic+Bdnrzjdx4gUtFUMkVKvLbC1uXexCMG/JSfa0cGProoXtND8SIC+7x /ATia9qfHs2oJ0AKLufQd3Mq3jeRE2nz+EMvfzmcf83BnxUT46REC7f+wwsr8TUD MpYLXU0Nywu+EtMWdnK1kPpamwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLRyfI3 83JXKQNHKBdN9qruVgAcMB8GA1UdIwQYMBaAFIPZbx3qcqmdI0tEVtb2Z13H5gYe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZCNy85NUVGN0RCQTk2 N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFaMGpTMFJXMXZablhjZm1C aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c5bHZIZXB5cVowalMwUlcxdlpuWGNmbUJoNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTZCNy85NUVGN0RCQTk2N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFa MGpTMFJXMXZablhjZm1CaDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKh1RmLOwy7l+TkW8mnnYeQtQgNjSkO8TfLXABIylaklD5ZOrvQtPv fXbVvvRAY/SMZeFAhmFSbWQIS5ZPaYX4WumhamjYqT5CAerrgndZy/3zv6vceoXV uwo1q+yuRGBk2CdwG0cB+yJXn3LGzYiapNbPFcDuW0SVVswrZWn7w362c77Ei7hJ rc+uOWEC9+zkUtE+2nqIL4hdrEbzxAzINX94UoctHSFMmi7wVIvynpbeMkU36R0t snBLzlh7gLxkwztKWWOnfJoTFpe+bCOsrgKa3h/3wRuhmstvlAVpnpzzFjORQD2V USD/zeruOfTWFx7uHEa1du2jG5bFLW6y -----END CERTIFICATE-----Generated at Sat Apr 26 03:42:20 2025 by rpki-client