$ rpki-client -vvf rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft File: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft (raw, json) Hash identifier: vYlpsoHK0T8Nxj6dD5tbKqaBfpTiULer58wc6R2mRE0= Subject key identifier: 95:37:13:14:10:66:6C:F7:E1:F0:55:28:DC:B3:DF:1A:0D:24:E6:71 Authority key identifier: 80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A Certificate issuer: /CN=A91936BE/serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Certificate serial: 07FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft Manifest number: 07EE Signing time: Thu 24 Apr 2025 20:49:39 +0000 Manifest this update: Thu 24 Apr 2025 20:49:38 +0000 Manifest next update: Thu 01 May 2025 20:49:38 +0000 Files and hashes: 1: gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl (hash: x6YPi1KbAbvOEMJhKuo+iFFYxv53EPl8dLL4nWhyTGE=) 2: 538866F6E44B11EAA31DD984C4F9AE02.roa (hash: muRqFTnS2+oQQUYzYuXwP+mAhzn5jlwAwgRQL1uNMII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91936BE, serialNumber=8021B16B92421F77B7260E97E6AD8C1D24BD299A Validity Not Before: Apr 24 20:49:38 2025 GMT Not After : May 1 20:49:38 2025 GMT Subject: CN=680aa3e3-25bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ea:35:76:7b:54:c7:f6:56:d3:1d:08:07:c1: 95:43:b4:bb:b6:53:70:f6:cf:fa:27:18:ae:af:d4: 73:f7:4b:bd:b6:f4:2b:42:a7:7d:98:8d:72:a7:11: e2:ba:bf:5d:2b:fa:30:27:25:3e:30:58:18:eb:81: 61:9d:11:8c:1d:7f:8b:c7:33:06:4e:9d:dd:d2:6f: 9b:70:68:56:e1:3a:ec:1e:d4:96:f6:d6:5f:04:ea: ce:b4:d8:9e:d4:2d:d0:62:12:7e:74:89:c2:12:00: 09:3d:cf:54:01:75:80:2d:89:67:de:02:d7:05:c2: 29:43:6e:bc:c1:2e:9d:68:5d:7d:3d:34:9a:62:87: ac:d0:e0:98:73:14:51:cf:e9:fe:44:79:16:13:41: fe:68:d4:fa:48:cc:29:34:d0:54:92:01:b0:e7:89: ff:04:6f:bc:91:ba:62:44:91:dd:b2:de:08:9a:dd: 27:85:90:52:90:01:7b:19:8a:a1:19:8d:39:86:74: e2:c0:00:96:70:ea:3b:95:f3:9c:cf:92:cf:64:df: 34:cf:e9:5c:4d:57:6e:96:3f:58:5b:19:6f:61:a7: 39:90:ac:2c:98:82:07:54:6f:85:0f:36:ff:a2:eb: 2b:23:0b:31:a1:fb:86:8b:65:33:46:37:3e:41:08: 4a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:37:13:14:10:66:6C:F7:E1:F0:55:28:DC:B3:DF:1A:0D:24:E6:71 X509v3 Authority Key Identifier: keyid:80:21:B1:6B:92:42:1F:77:B7:26:0E:97:E6:AD:8C:1D:24:BD:29:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91936BE/CA06668CE44811EA810B0380C4F9AE02/gCGxa5JCH3e3Jg6X5q2MHSS9KZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:35:2f:03:b6:4a:cd:80:3d:8a:56:5a:a6:3f:04:74:5a:80: 75:92:35:79:93:99:c8:96:18:9f:08:a0:e1:0b:84:3c:95:80: 70:40:11:ee:52:60:ce:47:e5:65:39:a8:ab:86:e7:d0:a7:9f: ae:1d:6c:57:b9:f0:2c:9a:11:98:03:ea:50:f1:56:fa:8e:84: cf:01:89:8c:6f:28:ec:ad:17:c4:7d:b7:f1:83:cc:40:7c:bc: 01:5c:39:fc:71:23:1c:be:cd:29:5e:9f:2f:57:23:c3:16:56: 83:39:a9:b1:88:38:57:fb:9c:c7:dd:78:1d:53:33:59:fe:61: 18:ef:22:9c:12:58:50:9d:42:1c:f7:ba:cf:49:34:91:03:a8: 10:6f:85:e4:60:6a:a5:50:89:5e:fb:06:f5:c6:69:6c:30:c5: 2f:82:31:1d:24:f6:b6:9e:27:1d:9c:6d:b4:09:5f:04:fe:07: 41:2f:75:d8:3d:8f:78:66:d2:fe:92:85:c8:27:54:f0:eb:e1: 6f:b1:2e:ae:47:49:36:1a:c2:cd:4b:69:73:67:69:49:16:6b: 60:4c:f0:6b:82:54:e6:d7:77:28:a1:2e:ef:7c:d6:9d:2a:e2: 01:ac:39:b2:f1:aa:96:cb:d4:ac:8c:82:0e:fb:49:31:40:21: ad:2e:29:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM2QkUxMTAvBgNVBAUTKDgwMjFCMTZCOTI0MjFGNzdCNzI2MEU5N0U2QUQ4QzFE MjRCRDI5OUEwHhcNMjUwNDI0MjA0OTM4WhcNMjUwNTAxMjA0OTM4WjAYMRYwFAYD VQQDEw02ODBhYTNlMy0yNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOo1dntUx/ZW0x0IB8GVQ7S7tlNw9s/6Jxiur9Rz90u9tvQrQqd9mI1ypxHi ur9dK/owJyU+MFgY64FhnRGMHX+LxzMGTp3d0m+bcGhW4TrsHtSW9tZfBOrOtNie 1C3QYhJ+dInCEgAJPc9UAXWALYln3gLXBcIpQ268wS6daF19PTSaYoes0OCYcxRR z+n+RHkWE0H+aNT6SMwpNNBUkgGw54n/BG+8kbpiRJHdst4Imt0nhZBSkAF7GYqh GY05hnTiwACWcOo7lfOcz5LPZN80z+lcTVdulj9YWxlvYac5kKwsmIIHVG+FDzb/ ousrIwsxofuGi2UzRjc+QQhKjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJU3ExQQ Zmz34fBVKNyz3xoNJOZxMB8GA1UdIwQYMBaAFIAhsWuSQh93tyYOl+atjB0kvSma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzZCRS9DQTA2NjY4Q0U0 NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gzZTNKZzZYNXEyTUhTUzlL Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDR3hhNUpDSDNlM0pnNlg1cTJNSFNTOUtaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzZCRS9DQTA2NjY4Q0U0NDgxMUVBODEwQjAzODBDNEY5QUUwMi9nQ0d4YTVKQ0gz ZTNKZzZYNXEyTUhTUzlLWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChNS8DtkrNgD2KVlqmPwR0WoB1kjV5k5nIlhifCKDhC4Q8lYBwQBHu UmDOR+VlOairhufQp5+uHWxXufAsmhGYA+pQ8Vb6joTPAYmMbyjsrRfEfbfxg8xA fLwBXDn8cSMcvs0pXp8vVyPDFlaDOamxiDhX+5zH3XgdUzNZ/mEY7yKcElhQnUIc 97rPSTSRA6gQb4XkYGqlUIle+wb1xmlsMMUvgjEdJPa2nicdnG20CV8E/gdBL3XY PY94ZtL+koXIJ1Tw6+FvsS6uR0k2GsLNS2lzZ2lJFmtgTPBrglTm13cooS7vfNad KuIBrDmy8aqWy9SsjIIO+0kxQCGtLilB -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:30 2025 by rpki-client