$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: 00zm893ZGjVJaHmp8tR8C0QNyVyAL9M76nILhNteygQ= Subject key identifier: CE:7D:1F:F9:24:AC:30:8A:94:2F:0B:1F:01:7C:69:FE:E2:FA:B1:B6 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0C3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0C30 Signing time: Thu 24 Apr 2025 18:27:55 +0000 Manifest this update: Thu 24 Apr 2025 18:27:55 +0000 Manifest next update: Thu 01 May 2025 18:27:55 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: AY89uG6cv2A89wcnu+bBibps+KiXYmadK01uFOKldOw=) 2: A473C9A008F311EE98719810C4F9AE02.roa (hash: XJVLx8NnT51CedP11E2S/7EWqPqU5YY70j5sKBFjL+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:27:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3130 (0xc3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: Apr 24 18:27:55 2025 GMT Not After : May 1 18:27:55 2025 GMT Subject: CN=680a82ab-5808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ad:f8:c5:52:ce:32:4e:65:5d:af:f3:8d:8f: ad:0b:ad:1f:8d:0a:4a:47:97:d9:6a:d1:4a:c9:ac: b3:cc:64:04:e6:8c:29:55:17:0e:cd:61:1d:c5:e4: f7:9c:f8:11:69:67:d1:bd:12:6a:e3:39:dc:88:68: 07:ff:5d:52:53:76:61:d9:e2:64:96:2e:da:b1:02: 8a:3e:a6:1b:b0:6c:e9:de:ff:56:f4:b3:e5:91:fd: fe:17:8b:69:8e:18:a9:a0:85:7b:df:11:ed:c6:80: 43:84:69:a6:b2:d8:08:0a:e8:a2:96:83:b5:44:bc: 00:42:28:1e:68:65:13:53:50:f9:e1:19:b0:41:ed: bd:ec:b0:f8:b6:f3:73:3d:43:ea:73:a7:6e:a7:5b: 99:48:60:25:91:09:f5:97:45:e8:df:b8:a8:00:20: ea:c2:c6:ab:07:f6:0b:be:59:18:7d:dc:bf:1e:6c: f6:6e:2b:a4:76:2b:2b:63:3e:bd:6d:e0:c7:97:3f: e9:35:f6:4c:46:f9:8e:6e:b6:e0:9a:c7:3e:fc:7d: cd:48:17:b5:86:48:c6:a7:92:97:bd:a5:0f:ed:1d: 73:ce:cf:87:9c:75:7a:f8:1b:67:93:58:32:cb:24: e8:00:16:ed:d3:a0:c3:29:be:97:95:26:d5:04:2f: 4b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7D:1F:F9:24:AC:30:8A:94:2F:0B:1F:01:7C:69:FE:E2:FA:B1:B6 X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:87:46:69:6a:28:e2:ae:a0:76:af:46:21:28:7f:0d:91:c5: d2:fd:63:ac:cd:d9:8b:da:39:36:7d:bf:26:ae:e9:2e:6c:bc: 8d:3a:b9:62:00:8f:cb:59:1a:61:00:58:7c:ea:63:20:66:9c: 4e:53:12:54:54:20:65:eb:0d:7a:87:d0:e4:45:b1:f5:c1:49: 6e:56:74:7a:8d:62:a8:96:20:df:5e:16:82:57:e0:fd:54:c9: 84:30:30:57:a0:60:8a:8f:3c:79:55:c8:8d:32:2a:a8:dd:4f: d9:c1:19:9b:68:37:5a:04:9b:de:1b:b4:c2:f1:ed:b8:22:10: 02:21:8f:25:5b:60:23:d8:db:ff:fb:0b:91:09:ef:c3:3b:cd: cb:f8:18:fe:0f:4b:48:64:85:29:bd:df:a0:c2:94:e3:23:1a: 1f:d3:ce:a9:7a:2d:39:79:f2:dc:30:a6:f7:86:da:06:05:e0: f9:53:b6:ad:d5:2a:71:1a:a5:60:e1:f7:b8:ab:7c:31:1d:c0: c7:4a:db:b1:3e:f9:de:22:78:17:d0:45:56:49:11:2f:2e:b2: a2:12:df:fe:f2:6a:74:86:73:86:2d:25:85:f3:0f:a0:fe:c6: cb:9d:df:dc:b6:57:6d:6c:2f:25:be:16:7a:1d:fd:f8:f3:a9: b0:ab:05:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjUwNDI0MTgyNzU1WhcNMjUwNTAxMTgyNzU1WjAYMRYwFAYD VQQDEw02ODBhODJhYi01ODA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK34xVLOMk5lXa/zjY+tC60fjQpKR5fZatFKyayzzGQE5owpVRcOzWEdxeT3 nPgRaWfRvRJq4znciGgH/11SU3Zh2eJkli7asQKKPqYbsGzp3v9W9LPlkf3+F4tp jhipoIV73xHtxoBDhGmmstgICuiiloO1RLwAQigeaGUTU1D54RmwQe297LD4tvNz PUPqc6dup1uZSGAlkQn1l0Xo37ioACDqwsarB/YLvlkYfdy/Hmz2biukdisrYz69 beDHlz/pNfZMRvmObrbgmsc+/H3NSBe1hkjGp5KXvaUP7R1zzs+HnHV6+Btnk1gy yyToABbt06DDKb6XlSbVBC9L1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM59H/kk rDCKlC8LHwF8af7i+rG2MB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWh0ZpaijirqB2r0YhKH8NkcXS/WOszdmL2jk2fb8mrukubLyNOrli AI/LWRphAFh86mMgZpxOUxJUVCBl6w16h9DkRbH1wUluVnR6jWKoliDfXhaCV+D9 VMmEMDBXoGCKjzx5VciNMiqo3U/ZwRmbaDdaBJveG7TC8e24IhACIY8lW2Aj2Nv/ +wuRCe/DO83L+Bj+D0tIZIUpvd+gwpTjIxof086pei05efLcMKb3htoGBeD5U7at 1SpxGqVg4fe4q3wxHcDHStuxPvneIngX0EVWSREvLrKiEt/+8mp0hnOGLSWF8w+g /sbLnd/ctldtbC8lvhZ6Hf3486mwqwUP -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:50 2025 by rpki-client