$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft File: g2LSOGrBMH7vi7_YdPc45tqjVXI.mft (raw, json) Hash identifier: ByuxexIs1atUTj68mAGzDuLQCPFoZiMm8AhBgelFpz8= Subject key identifier: 90:A4:53:39:25:44:16:0B:E7:E3:9C:F8:3F:C6:3F:CE:1E:18:20:08 Authority key identifier: 83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 Certificate issuer: /CN=A917C0F5/serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Certificate serial: 0D09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft Manifest number: 0D03 Signing time: Thu 24 Apr 2025 18:02:29 +0000 Manifest this update: Thu 24 Apr 2025 18:02:29 +0000 Manifest next update: Thu 01 May 2025 18:02:29 +0000 Files and hashes: 1: g2LSOGrBMH7vi7_YdPc45tqjVXI.crl (hash: w9e7s/TbRm7/xw04za3OaulNumLio75XiOrNXyD2Ess=) 2: D11C8B12DB7111E981104A54C4F9AE02.roa (hash: he3bY6Is5h9acipgiTdJz3mt+8HdFzcITDRaeiCVzu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3337 (0xd09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F5, serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Validity Not Before: Apr 24 18:02:29 2025 GMT Not After : May 1 18:02:29 2025 GMT Subject: CN=680a7cb5-9683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c5:f2:9d:5b:8f:ed:0d:bd:d3:b4:f6:13:c9: 1f:78:5d:0e:2e:2e:aa:dd:c3:97:fd:06:fa:9a:06: 29:df:a8:7c:2b:d6:11:88:f9:80:4a:5e:be:6f:ce: cb:38:41:c6:5c:f4:f6:eb:2e:45:75:ae:4d:39:ba: 8a:e2:d7:c6:c0:5b:94:cb:ef:13:8f:b8:29:4f:03: 13:21:a6:12:7b:77:7a:d1:ad:cd:7b:19:eb:3a:f5: 5b:fa:ae:a9:55:c2:e1:d9:98:ec:80:75:8f:db:e4: 76:75:5c:1d:42:16:11:23:5c:0b:b9:e1:bc:90:03: 35:9b:2f:e7:3f:c1:30:28:da:f3:91:80:1b:bf:7a: c9:23:b9:78:78:72:c7:25:a4:bc:c8:b5:8f:a6:ec: cf:3d:02:56:34:95:98:7d:ac:94:e4:2c:4e:f5:eb: 74:51:79:7b:06:34:2b:53:b1:32:4e:96:a9:d1:92: 52:25:71:32:2b:34:06:89:86:8c:ee:29:cb:aa:9e: 04:00:82:91:8d:1f:72:0a:b1:4d:2f:18:fe:b9:fa: cf:bb:4a:f2:1b:66:80:c1:72:6c:f0:f9:93:bd:7a: 8f:ed:93:e6:f5:0b:3a:e2:b0:e2:52:e2:92:46:3d: b9:71:9e:63:ea:23:79:a6:cb:16:ed:d0:38:1e:4b: 31:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A4:53:39:25:44:16:0B:E7:E3:9C:F8:3F:C6:3F:CE:1E:18:20:08 X509v3 Authority Key Identifier: keyid:83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:1d:14:7d:66:58:89:9a:a8:8e:fd:c2:f9:b3:52:51:3b:06: 30:b5:2a:d0:46:61:c2:1b:ba:f9:dc:48:77:22:ad:40:cb:45: ed:f7:5f:97:42:c6:23:d0:f5:b7:44:9b:58:4f:e8:f2:27:bb: 6d:9c:e9:1a:64:e4:1a:a1:b4:dd:d2:d0:ea:98:28:4a:df:b5: cb:a4:8d:ea:f4:c1:15:87:8c:02:b0:d1:d0:d2:20:c8:6a:47: 7a:be:f1:99:9e:81:bf:cb:8f:2d:36:e1:47:42:dc:79:fe:05: 63:f5:b5:87:6b:83:06:41:09:fd:85:4d:5a:f2:c7:3b:b0:d6: a8:6f:48:96:92:65:b7:f1:9c:c8:54:e1:08:ce:0c:ee:4c:47: f2:4c:b8:a5:da:44:26:4d:bb:c1:fe:fc:c8:81:f1:d9:84:29: 82:46:3c:52:68:0c:fa:a3:58:29:f7:ee:92:21:46:80:4a:3b: 8a:6b:14:f7:5e:cf:d2:4b:ce:06:ca:57:44:4b:1c:6f:12:47: 44:ee:6c:46:54:6b:24:bc:8d:42:d4:5b:80:a5:47:9d:b5:82: e7:61:1b:32:c6:0f:f7:1f:07:0f:bf:6a:d4:31:c6:ae:ea:d1: e7:59:98:04:7c:88:c1:d9:f0:61:c2:d7:0d:20:e3:57:c3:94: d5:5f:e7:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjUxMTAvBgNVBAUTKDgzNjJEMjM4NkFDMTMwN0VFRjhCQkZEODc0RjczOEU2 REFBMzU1NzIwHhcNMjUwNDI0MTgwMjI5WhcNMjUwNTAxMTgwMjI5WjAYMRYwFAYD VQQDEw02ODBhN2NiNS05NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcXynVuP7Q2907T2E8kfeF0OLi6q3cOX/Qb6mgYp36h8K9YRiPmASl6+b87L OEHGXPT26y5Fda5NObqK4tfGwFuUy+8Tj7gpTwMTIaYSe3d60a3NexnrOvVb+q6p VcLh2ZjsgHWP2+R2dVwdQhYRI1wLueG8kAM1my/nP8EwKNrzkYAbv3rJI7l4eHLH JaS8yLWPpuzPPQJWNJWYfayU5CxO9et0UXl7BjQrU7EyTpap0ZJSJXEyKzQGiYaM 7inLqp4EAIKRjR9yCrFNLxj+ufrPu0ryG2aAwXJs8PmTvXqP7ZPm9Qs64rDiUuKS Rj25cZ5j6iN5pssW7dA4HksxdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCkUzkl RBYL5+Oc+D/GP84eGCAIMB8GA1UdIwQYMBaAFINi0jhqwTB+74u/2HT3OObao1Vy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGNS8xRUM0RTA5QURC NzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1IN3ZpN19ZZFBjNDV0cWpW WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cyTFNPR3JCTUg3dmk3X1lkUGM0NXRxalZYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGNS8xRUM0RTA5QURCNzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1I N3ZpN19ZZFBjNDV0cWpWWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKHRR9ZliJmqiO/cL5s1JROwYwtSrQRmHCG7r53Eh3Iq1Ay0Xt91+X QsYj0PW3RJtYT+jyJ7ttnOkaZOQaobTd0tDqmChK37XLpI3q9MEVh4wCsNHQ0iDI akd6vvGZnoG/y48tNuFHQtx5/gVj9bWHa4MGQQn9hU1a8sc7sNaob0iWkmW38ZzI VOEIzgzuTEfyTLil2kQmTbvB/vzIgfHZhCmCRjxSaAz6o1gp9+6SIUaASjuKaxT3 Xs/SS84GyldESxxvEkdE7mxGVGskvI1C1FuApUedtYLnYRsyxg/3HwcPv2rUMcau 6tHnWZgEfIjB2fBhwtcNIONXw5TVX+cd -----END CERTIFICATE-----Generated at Sat Apr 26 05:04:23 2025 by rpki-client