$ rpki-client -vvf rpki.apnic.net/member_repository/A918F525/8242878494C911ED8B3D215EC4F9AE02/GLReQdo59jAuMWmWMNMihds9kxw.mft File: GLReQdo59jAuMWmWMNMihds9kxw.mft (raw, json) Hash identifier: ceOqMcP9WG8MN/REiZf1UtoadpxXC3y9JXH6Tt1asm8= Subject key identifier: 73:76:10:91:4B:D0:9C:82:C2:76:E0:1B:2F:42:14:B1:36:27:1F:95 Authority key identifier: 18:B4:5E:41:DA:39:F6:30:2E:31:69:96:30:D3:22:85:DB:3D:93:1C Certificate issuer: /CN=A918F525/serialNumber=18B45E41DA39F6302E31699630D32285DB3D931C Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLReQdo59jAuMWmWMNMihds9kxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F525/8242878494C911ED8B3D215EC4F9AE02/GLReQdo59jAuMWmWMNMihds9kxw.mft Manifest number: 01AA Signing time: Fri 25 Apr 2025 02:24:45 +0000 Manifest this update: Fri 25 Apr 2025 02:24:44 +0000 Manifest next update: Fri 02 May 2025 02:24:44 +0000 Files and hashes: 1: GLReQdo59jAuMWmWMNMihds9kxw.crl (hash: 9HTuuRaoget6N1LvsgjYfT6v+fwkIWsdbHyy0wJ78nY=) 2: 3062089A94CE11ED806CD364C4F9AE02.roa (hash: 5q8BGN7Hf8i2/RzifjmylO87f37u56OKRgIkUmDm+8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F525/8242878494C911ED8B3D215EC4F9AE02/GLReQdo59jAuMWmWMNMihds9kxw.crl rsync://rpki.apnic.net/member_repository/A918F525/8242878494C911ED8B3D215EC4F9AE02/GLReQdo59jAuMWmWMNMihds9kxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLReQdo59jAuMWmWMNMihds9kxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F525, serialNumber=18B45E41DA39F6302E31699630D32285DB3D931C Validity Not Before: Apr 25 02:24:44 2025 GMT Not After : May 2 02:24:44 2025 GMT Subject: CN=680af26d-5a77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:21:87:1d:3c:74:07:76:20:49:04:83:e0:4d: 2b:76:ac:46:17:a1:ab:c3:3e:f8:f5:6f:15:c6:83: 14:95:08:4c:07:2e:8c:88:a4:38:f8:c8:f3:30:72: db:c1:32:5a:a8:e4:02:67:ab:4a:1a:9a:97:20:2f: 88:b2:22:75:a5:c1:33:e8:0c:89:49:39:fb:eb:00: dd:7c:eb:65:92:16:bf:4d:ce:89:5a:95:a1:64:6c: 1d:7d:8a:b5:21:80:de:25:98:75:7e:4d:6d:f5:8e: 77:39:a4:b6:60:5e:ff:87:1e:fa:25:82:d8:d7:9e: 36:fe:b8:f3:97:43:5b:2c:35:11:8c:c4:55:bc:67: 3f:2a:49:3d:67:ee:3b:d8:83:ba:f9:22:c8:bd:74: 69:53:a3:b5:3a:e9:e1:75:7a:cb:c0:20:18:32:50: fe:cc:3d:aa:6b:b5:7f:16:20:3e:16:79:58:d0:09: 7c:3d:27:91:70:c2:c0:ad:1a:ec:ad:ab:37:dd:1a: 8f:12:36:80:66:49:5f:55:1f:22:86:d6:6f:66:38: 26:52:a3:68:d9:19:47:47:42:a8:e0:56:cf:fc:91: ff:28:38:78:c9:cf:3f:05:cd:de:02:b8:2e:52:36: 41:10:99:cb:48:60:12:40:d4:4d:3c:22:a0:81:f5: 44:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:76:10:91:4B:D0:9C:82:C2:76:E0:1B:2F:42:14:B1:36:27:1F:95 X509v3 Authority Key Identifier: keyid:18:B4:5E:41:DA:39:F6:30:2E:31:69:96:30:D3:22:85:DB:3D:93:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F525/8242878494C911ED8B3D215EC4F9AE02/GLReQdo59jAuMWmWMNMihds9kxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLReQdo59jAuMWmWMNMihds9kxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F525/8242878494C911ED8B3D215EC4F9AE02/GLReQdo59jAuMWmWMNMihds9kxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:b9:82:c7:d6:30:b3:08:90:d5:45:06:3f:07:88:7c:2e:39: d0:93:26:1b:4f:69:7e:7a:61:0f:59:e9:c5:e4:52:92:5d:29: 50:27:38:ba:d1:5c:52:65:53:bd:de:42:76:b0:17:7c:ce:d5: 60:f2:f3:68:af:ee:74:34:db:a5:b5:3f:17:93:5a:8e:a7:cc: 39:51:93:d6:e8:9f:c7:82:fc:49:99:46:36:4d:6c:51:f1:13: ad:1c:d5:d8:73:07:fc:0a:c9:80:be:0f:14:07:73:4c:c4:46: 43:f6:29:d0:ca:7a:d1:57:24:20:3f:29:d0:2a:19:b5:cf:7f: 9b:f3:3d:c4:f4:75:e4:04:8f:72:52:5a:f2:a4:78:80:b2:26: 19:a3:92:e3:25:7c:27:54:3a:3b:0c:f0:9b:50:11:95:b0:f5: e6:f1:72:26:b4:6c:a6:d5:60:60:7d:30:c3:19:14:c6:4a:f4: 53:d1:95:38:5a:f7:05:10:24:bf:c4:d6:d2:b8:f6:71:4f:bf: 5d:76:ef:0b:35:d3:0e:c2:0e:90:7d:9a:bf:96:dc:59:4b:10: c7:b2:9b:66:b6:c5:64:45:1b:06:02:ec:e8:cb:5e:d6:f3:70: ae:74:d2:5e:2d:a4:fd:40:76:0e:e4:b3:af:dd:5c:e9:c3:77: 9e:2c:01:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1MjUxMTAvBgNVBAUTKDE4QjQ1RTQxREEzOUY2MzAyRTMxNjk5NjMwRDMyMjg1 REIzRDkzMUMwHhcNMjUwNDI1MDIyNDQ0WhcNMjUwNTAyMDIyNDQ0WjAYMRYwFAYD VQQDEw02ODBhZjI2ZC01YTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CGHHTx0B3YgSQSD4E0rdqxGF6Grwz749W8VxoMUlQhMBy6MiKQ4+MjzMHLb wTJaqOQCZ6tKGpqXIC+IsiJ1pcEz6AyJSTn76wDdfOtlkha/Tc6JWpWhZGwdfYq1 IYDeJZh1fk1t9Y53OaS2YF7/hx76JYLY1542/rjzl0NbLDURjMRVvGc/Kkk9Z+47 2IO6+SLIvXRpU6O1OunhdXrLwCAYMlD+zD2qa7V/FiA+FnlY0Al8PSeRcMLArRrs ras33RqPEjaAZklfVR8ihtZvZjgmUqNo2RlHR0Ko4FbP/JH/KDh4yc8/Bc3eArgu UjZBEJnLSGASQNRNPCKggfVELQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHN2EJFL 0JyCwnbgGy9CFLE2Jx+VMB8GA1UdIwQYMBaAFBi0XkHaOfYwLjFpljDTIoXbPZMc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjUyNS84MjQyODc4NDk0 QzkxMUVEOEIzRDIxNUVDNEY5QUUwMi9HTFJlUWRvNTlqQXVNV21XTU5NaWhkczlr eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMUmVRZG81OWpBdU1XbVdNTk1paGRzOWt4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjUyNS84MjQyODc4NDk0QzkxMUVEOEIzRDIxNUVDNEY5QUUwMi9HTFJlUWRvNTlq QXVNV21XTU5NaWhkczlreHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7uYLH1jCzCJDVRQY/B4h8LjnQkyYbT2l+emEPWenF5FKSXSlQJzi6 0VxSZVO93kJ2sBd8ztVg8vNor+50NNultT8Xk1qOp8w5UZPW6J/HgvxJmUY2TWxR 8ROtHNXYcwf8CsmAvg8UB3NMxEZD9inQynrRVyQgPynQKhm1z3+b8z3E9HXkBI9y UlrypHiAsiYZo5LjJXwnVDo7DPCbUBGVsPXm8XImtGym1WBgfTDDGRTGSvRT0ZU4 WvcFECS/xNbSuPZxT79ddu8LNdMOwg6QfZq/ltxZSxDHsptmtsVkRRsGAuzoy17W 83CudNJeLaT9QHYO5LOv3Vzpw3eeLAHi -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:07 2025 by rpki-client