$ rpki-client -vvf rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft File: GaNgWeMX739niFziUq7bkZWPXmg.mft (raw, json) Hash identifier: X35P4nmlLoJ2qeLCaG55NvRGz0pNG2roKonY38iYjEs= Subject key identifier: 41:46:80:83:A1:F7:62:B1:E7:13:E4:57:0B:C7:2C:47:18:CB:A1:A0 Authority key identifier: 19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 Certificate issuer: /CN=A917D857/serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft Manifest number: 0131 Signing time: Fri 25 Apr 2025 03:35:29 +0000 Manifest this update: Fri 25 Apr 2025 03:35:29 +0000 Manifest next update: Fri 02 May 2025 03:35:29 +0000 Files and hashes: 1: GaNgWeMX739niFziUq7bkZWPXmg.crl (hash: eYw9C1GoBHTaJF5hOfAsz73oHMV0nygwc7i8eCrd0XA=) 2: BD9131004E2811EEBC65304DC4F9AE02.roa (hash: LEXF9HRhajbu2nLL2GIh97gP542YxXzyNibweT+ZgSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D857, serialNumber=19A36059E317EF7F67885CE252AEDB91958F5E68 Validity Not Before: Apr 25 03:35:29 2025 GMT Not After : May 2 03:35:29 2025 GMT Subject: CN=680b0301-3794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:83:21:3b:da:5c:94:32:ce:f5:49:83:58:63: c9:f0:4b:b2:a8:01:a5:d9:cf:c1:0f:15:a5:d7:e1: 7e:76:53:84:53:3a:4f:41:39:a2:73:e6:cb:4a:8d: ec:c8:5a:7e:13:77:2c:47:2f:bb:dd:23:bc:30:da: e4:77:8e:50:0a:3d:99:79:e0:4e:e3:29:0b:4c:fa: 8a:cc:d6:41:a3:23:6a:78:c7:bd:89:7a:da:82:c0: 37:5e:b1:03:23:b7:94:81:a3:78:1e:d6:6d:c3:34: 88:74:2f:c6:2f:dd:61:53:f8:3b:00:b7:47:7b:f5: b8:0a:b8:14:1d:3b:36:dc:f9:4a:e4:cc:43:cc:ee: c5:b1:22:42:40:24:b7:04:c9:a4:ff:bc:e1:0f:f5: 12:90:9e:74:c5:55:4c:49:b2:33:5f:f8:f6:bc:24: 0a:8b:71:65:14:0f:ca:bd:d3:66:f2:10:a3:44:14: 7a:f9:34:86:4d:79:ff:10:ff:a0:a6:d8:11:81:42: 2e:59:ee:fe:f3:8d:a4:78:b4:ef:ba:c2:16:fd:fb: cf:7c:c2:05:38:03:06:d5:23:5c:df:c0:74:35:2b: 87:13:19:f6:14:f8:dd:b0:ce:ef:89:32:8e:f1:c3: 80:8b:bd:4a:bc:4b:71:1e:62:97:c6:a6:40:3e:84: b3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:46:80:83:A1:F7:62:B1:E7:13:E4:57:0B:C7:2C:47:18:CB:A1:A0 X509v3 Authority Key Identifier: keyid:19:A3:60:59:E3:17:EF:7F:67:88:5C:E2:52:AE:DB:91:95:8F:5E:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GaNgWeMX739niFziUq7bkZWPXmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D857/61C5CDB84E2811EE94FDB34CC4F9AE02/GaNgWeMX739niFziUq7bkZWPXmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:a6:56:1a:25:77:23:ef:c7:79:37:e0:7e:a7:74:5e:52:eb: f5:36:bb:12:21:5b:8c:b5:a5:fc:d3:03:5d:2b:59:be:54:93: 62:9e:67:51:7f:c7:f3:06:43:a0:b0:bb:9f:db:82:11:a3:40: c1:d3:a2:14:d7:cc:79:a4:9d:c5:e7:9c:0b:98:a6:98:3e:c5: 54:6d:7d:0f:db:66:2d:c8:9d:2d:ba:c7:7f:65:33:ed:db:22: a3:6c:65:98:12:69:95:4d:89:cb:12:48:33:2e:82:6a:e6:54: 9b:90:9f:95:6b:65:a3:5f:4e:ae:a5:c5:0f:8b:09:a1:48:d2: ad:1f:3f:53:bb:b5:cb:96:e3:40:13:f7:9a:f3:36:e0:9d:d5: b8:35:0b:a5:5d:d8:93:4a:0a:16:b1:33:a0:35:f0:6c:48:2d: c1:c8:d5:82:29:c8:14:e6:6d:19:4c:3d:cd:16:a6:ad:7c:60: 4a:76:f2:ef:16:31:e5:ac:66:04:52:2f:88:a1:95:5b:ab:1e: 04:b0:11:1d:19:a4:d9:c6:ba:59:d1:7b:b1:5d:8a:d5:80:f2: 75:6c:a2:7b:ae:17:3f:83:07:5e:ab:cf:b3:78:d4:60:89:9f: 0d:c8:3a:24:83:89:45:4c:45:23:53:44:ef:4a:1a:44:6a:a1: 13:42:87:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q4NTcxMTAvBgNVBAUTKDE5QTM2MDU5RTMxN0VGN0Y2Nzg4NUNFMjUyQUVEQjkx OTU4RjVFNjgwHhcNMjUwNDI1MDMzNTI5WhcNMjUwNTAyMDMzNTI5WjAYMRYwFAYD VQQDEw02ODBiMDMwMS0zNzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYMhO9pclDLO9UmDWGPJ8EuyqAGl2c/BDxWl1+F+dlOEUzpPQTmic+bLSo3s yFp+E3csRy+73SO8MNrkd45QCj2ZeeBO4ykLTPqKzNZBoyNqeMe9iXragsA3XrED I7eUgaN4HtZtwzSIdC/GL91hU/g7ALdHe/W4CrgUHTs23PlK5MxDzO7FsSJCQCS3 BMmk/7zhD/USkJ50xVVMSbIzX/j2vCQKi3FlFA/KvdNm8hCjRBR6+TSGTXn/EP+g ptgRgUIuWe7+842keLTvusIW/fvPfMIFOAMG1SNc38B0NSuHExn2FPjdsM7viTKO 8cOAi71KvEtxHmKXxqZAPoSzcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFGgIOh 92Kx5xPkVwvHLEcYy6GgMB8GA1UdIwQYMBaAFBmjYFnjF+9/Z4hc4lKu25GVj15o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDg1Ny82MUM1Q0RCODRF MjgxMUVFOTRGREIzNENDNEY5QUUwMi9HYU5nV2VNWDczOW5pRnppVXE3YmtaV1BY bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dhTmdXZU1YNzM5bmlGemlVcTdia1pXUFhtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDg1Ny82MUM1Q0RCODRFMjgxMUVFOTRGREIzNENDNEY5QUUwMi9HYU5nV2VNWDcz OW5pRnppVXE3YmtaV1BYbWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0plYaJXcj78d5N+B+p3ReUuv1NrsSIVuMtaX80wNdK1m+VJNinmdR f8fzBkOgsLuf24IRo0DB06IU18x5pJ3F55wLmKaYPsVUbX0P22YtyJ0tusd/ZTPt 2yKjbGWYEmmVTYnLEkgzLoJq5lSbkJ+Va2WjX06upcUPiwmhSNKtHz9Tu7XLluNA E/ea8zbgndW4NQulXdiTSgoWsTOgNfBsSC3ByNWCKcgU5m0ZTD3NFqatfGBKdvLv FjHlrGYEUi+IoZVbqx4EsBEdGaTZxrpZ0XuxXYrVgPJ1bKJ7rhc/gwdeq8+zeNRg iZ8NyDokg4lFTEUjU0TvShpEaqETQocl -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:41 2025 by rpki-client