$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: c14ZJnlzIMAqOORNGKL241LT87WKoNqZ2A03IsiEpKs= Subject key identifier: 9D:EA:72:17:D8:14:32:DC:7F:F7:14:57:79:DB:5F:6C:4A:3B:6C:6D Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 07CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 07B9 Signing time: Thu 24 Apr 2025 20:58:46 +0000 Manifest this update: Thu 24 Apr 2025 20:58:46 +0000 Manifest next update: Thu 01 May 2025 20:58:46 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: H2Sv4J2AC4XaqfvHEdUq4rvLtqJ6cUiaVUyB36Ozv6U=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=) 4: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1995 (0x7cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Apr 24 20:58:46 2025 GMT Not After : May 1 20:58:46 2025 GMT Subject: CN=680aa606-53a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2b:66:f6:75:55:ec:69:6a:81:2a:c5:6c:9f: 28:92:73:e5:70:75:c1:79:bb:ae:55:e8:fc:dd:52: d0:99:17:c2:ad:14:be:52:5b:b0:4b:b2:5e:8f:a4: 4b:51:4a:ca:0f:6c:cd:9a:bd:01:64:52:01:2a:d2: e7:e2:a4:c8:01:a7:b4:78:fa:d4:76:19:fe:8c:d8: 07:01:b7:98:03:d4:89:73:62:af:c9:15:62:20:60: 37:81:11:79:19:41:ee:9d:7b:8f:92:8c:df:39:86: 3a:5b:e8:8e:e7:d6:f6:a1:6a:83:ee:a6:21:87:1d: a0:0f:7a:38:c7:40:43:47:c8:3c:a0:3a:f2:c6:72: 50:05:75:05:60:18:61:71:00:36:ad:13:7e:73:c1: 3b:94:d7:35:81:24:1f:5d:f9:27:22:eb:d5:d9:2f: bd:d5:fb:59:e5:85:e2:50:2f:9e:43:22:c3:7f:c8: dd:a4:c6:47:ae:87:4a:5d:c3:fc:88:91:38:33:54: 64:ca:26:de:e5:6a:73:ab:df:d1:b2:03:08:19:fe: 05:ce:fe:0a:63:1f:1e:68:bb:6d:dd:76:8b:cf:90: ed:a3:f1:96:79:99:3d:52:ce:b6:6c:34:d1:c7:c7: 17:35:5b:78:8f:29:9b:bd:2a:d4:2e:3f:ff:a5:f2: 2d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:EA:72:17:D8:14:32:DC:7F:F7:14:57:79:DB:5F:6C:4A:3B:6C:6D X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:fc:32:38:15:cc:40:40:88:50:a3:66:c4:bf:82:3b:7e:80: 44:8c:2f:00:ce:49:9d:a4:5b:39:09:d1:5b:2e:92:8a:66:3c: 33:d2:bd:2e:3d:32:07:88:74:6a:48:4d:ba:3f:91:39:5f:e6: 13:c7:2b:5a:30:eb:1e:da:d3:fc:71:f9:23:46:cc:ee:1c:40: 39:9b:7e:9c:83:ba:b9:ea:33:35:c4:47:07:fc:e9:4a:9d:41: 1d:d6:15:38:54:6f:ba:77:37:62:a6:03:96:77:9e:f4:be:fa: 45:70:b7:40:8e:7f:cc:72:b5:fd:35:e3:f0:57:e9:cb:27:9d: 95:0f:28:ba:77:e4:a0:52:c7:62:26:c1:ba:b5:9d:c7:04:64: f9:61:a6:e1:8a:c2:90:ac:a6:e4:56:80:00:a4:f9:55:d9:8e: 73:2a:c0:de:5d:3a:c8:e9:e7:90:57:ac:03:60:fb:50:07:e6: 80:d8:e6:fe:dc:7f:06:bf:a9:2d:b5:88:28:37:e0:5d:be:3f: 35:fe:3f:32:19:af:eb:43:37:5f:5b:b5:e5:b9:12:d5:44:ec: dc:91:b1:16:75:58:be:a5:d9:f3:c2:35:01:1c:3e:9d:c4:00: 30:b0:8b:bc:07:0c:12:ae:f5:ba:73:fd:96:7d:ab:fb:69:70: da:0a:b0:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjUwNDI0MjA1ODQ2WhcNMjUwNTAxMjA1ODQ2WjAYMRYwFAYD VQQDEw02ODBhYTYwNi01M2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvytm9nVV7GlqgSrFbJ8oknPlcHXBebuuVej83VLQmRfCrRS+UluwS7Jej6RL UUrKD2zNmr0BZFIBKtLn4qTIAae0ePrUdhn+jNgHAbeYA9SJc2KvyRViIGA3gRF5 GUHunXuPkozfOYY6W+iO59b2oWqD7qYhhx2gD3o4x0BDR8g8oDryxnJQBXUFYBhh cQA2rRN+c8E7lNc1gSQfXfknIuvV2S+91ftZ5YXiUC+eQyLDf8jdpMZHrodKXcP8 iJE4M1Rkyibe5Wpzq9/RsgMIGf4Fzv4KYx8eaLtt3XaLz5Dto/GWeZk9Us62bDTR x8cXNVt4jymbvSrULj//pfItnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3qchfY FDLcf/cUV3nbX2xKO2xtMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDR/DI4FcxAQIhQo2bEv4I7foBEjC8AzkmdpFs5CdFbLpKKZjwz0r0u PTIHiHRqSE26P5E5X+YTxytaMOse2tP8cfkjRszuHEA5m36cg7q56jM1xEcH/OlK nUEd1hU4VG+6dzdipgOWd570vvpFcLdAjn/McrX9NePwV+nLJ52VDyi6d+SgUsdi JsG6tZ3HBGT5YabhisKQrKbkVoAApPlV2Y5zKsDeXTrI6eeQV6wDYPtQB+aA2Ob+ 3H8Gv6kttYgoN+Bdvj81/j8yGa/rQzdfW7XluRLVROzckbEWdVi+pdnzwjUBHD6d xAAwsIu8BwwSrvW6c/2Wfav7aXDaCrAu -----END CERTIFICATE-----Generated at Sat Apr 26 16:08:22 2025 by rpki-client