$ rpki-client -vvf rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft File: GHL5iLZXI3g3mSN-VU28xuSdFLA.mft (raw, json) Hash identifier: k0j8tkbbk1YZilbU/YqRCuOyRO7ilqe7Ly75zqxkbKo= Subject key identifier: 9E:24:70:D4:5B:BC:1D:DE:DD:3F:D1:AA:15:CD:4D:A8:CE:21:37:6D Authority key identifier: 18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 Certificate issuer: /CN=A919986F/serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Certificate serial: 0AE0 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft Manifest number: 0AE0 Signing time: Thu 24 Apr 2025 15:38:18 +0000 Manifest this update: Thu 24 Apr 2025 15:38:18 +0000 Manifest next update: Thu 01 May 2025 15:38:18 +0000 Files and hashes: 1: GHL5iLZXI3g3mSN-VU28xuSdFLA.crl (hash: 361BqJr/gRQ+8U6CDO5x7FV8fTTG++WnDl4TOB/1UNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2784 (0xae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919986F, serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Validity Not Before: Apr 24 15:38:18 2025 GMT Not After : May 1 15:38:18 2025 GMT Subject: CN=680a5aea-ec03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:da:61:32:07:74:4c:6c:2d:7c:51:9b:8b:71: 9d:e2:29:83:a1:ea:aa:de:bb:7c:ee:48:04:ca:ba: b5:79:b6:e4:6d:68:e1:28:9c:ee:00:01:5e:f5:9c: cf:91:8d:36:b6:ff:23:90:ea:c3:5e:35:ac:ee:ee: e0:f7:f5:78:33:20:c0:1b:9f:eb:a9:32:b4:c3:87: 6a:4e:ae:4e:6b:2b:33:98:c6:d5:97:fc:88:38:fe: 75:02:e3:21:61:9b:60:1f:06:1f:aa:da:2d:88:f4: 44:a6:4a:da:0d:2a:3a:6d:c9:77:96:26:60:23:56: 30:1d:d7:8c:73:05:a6:66:a2:c3:0f:8b:fa:4c:f6: c3:b2:9a:16:81:4c:3f:71:b4:97:3a:84:ed:0b:60: 86:8a:2c:07:bc:c7:41:d5:36:b2:f5:9c:f7:c4:ee: 94:9c:82:dc:a0:87:e2:76:a7:5b:38:59:f9:57:04: ef:68:8b:f6:f4:19:26:3f:e3:7b:83:7f:b4:d1:ab: b1:64:48:d8:a1:e4:5b:0e:8a:c6:84:3c:f6:d8:d1: 24:30:b5:73:9e:54:d6:fe:db:c8:e1:e1:02:7a:45: 92:e3:23:a2:ba:d8:c8:ed:e8:2d:c5:ec:6f:00:8d: d5:77:55:67:c0:0d:32:92:82:62:e6:99:a9:a3:4c: a5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:24:70:D4:5B:BC:1D:DE:DD:3F:D1:AA:15:CD:4D:A8:CE:21:37:6D X509v3 Authority Key Identifier: keyid:18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:27:22:1c:c3:8a:a1:8f:e7:d5:66:d6:38:52:33:38:73:97: 09:9b:e7:6b:8a:85:f7:5d:e0:64:2a:5f:4a:d9:e3:d9:b6:b3: a9:e5:91:16:01:a6:97:e4:56:51:af:c2:4d:9c:83:94:3f:07: 68:e7:e6:9c:1a:4d:8f:76:6c:0b:06:00:aa:5e:a7:48:67:5c: 78:fe:2e:32:3a:e3:fa:77:d3:92:0b:8c:ae:22:dd:1e:9e:af: ae:a2:1c:4a:f3:82:8c:df:7b:1b:50:0d:b1:f7:32:d8:ab:eb: 59:1b:ef:e7:d5:6f:46:c8:43:8a:22:5a:11:4f:f7:cc:86:0e: 2b:ef:c4:07:e7:b2:c5:0b:cf:9c:4e:14:c3:79:45:dd:33:00: 67:9a:de:8b:35:88:7e:4d:38:02:49:ac:be:6a:d6:c8:d0:66: b3:c5:73:3f:e0:e8:01:47:bf:58:0c:ed:3f:ed:1b:88:53:0b: 0d:37:cf:cb:ff:75:a2:51:82:4e:ab:0f:3e:c5:c3:ef:19:4d: 73:93:fc:c2:80:14:21:7b:9f:3e:b9:7a:3d:49:ab:11:fb:e0: ee:c1:c0:e7:19:e4:8c:9b:90:38:51:c8:2a:8a:c2:a8:51:d2: e5:ec:43:cc:bb:a6:b3:45:f8:95:43:8f:e2:ba:79:c0:e5:e7: b7:03:83:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4NkYxMTAvBgNVBAUTKDE4NzJGOTg4QjY1NzIzNzgzNzk5MjM3RTU1NERCQ0M2 RTQ5RDE0QjAwHhcNMjUwNDI0MTUzODE4WhcNMjUwNTAxMTUzODE4WjAYMRYwFAYD VQQDEw02ODBhNWFlYS1lYzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNphMgd0TGwtfFGbi3Gd4imDoeqq3rt87kgEyrq1ebbkbWjhKJzuAAFe9ZzP kY02tv8jkOrDXjWs7u7g9/V4MyDAG5/rqTK0w4dqTq5OayszmMbVl/yIOP51AuMh YZtgHwYfqtotiPREpkraDSo6bcl3liZgI1YwHdeMcwWmZqLDD4v6TPbDspoWgUw/ cbSXOoTtC2CGiiwHvMdB1Tay9Zz3xO6UnILcoIfidqdbOFn5VwTvaIv29BkmP+N7 g3+00auxZEjYoeRbDorGhDz22NEkMLVznlTW/tvI4eECekWS4yOiutjI7egtxexv AI3Vd1VnwA0ykoJi5pmpo0yl+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4kcNRb vB3e3T/RqhXNTajOITdtMB8GA1UdIwQYMBaAFBhy+Yi2VyN4N5kjflVNvMbknRSw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg2Ri9BNjFERjFEQTQ2 NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkzZzNtU04tVlUyOHh1U2RG TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL0dITDVpTFpYSTNnM21TTi1WVTI4eHVTZEZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg2Ri9BNjFERjFEQTQ2NkExMUVBQTAwN0VGMUZDNEY5QUUwMi9HSEw1aUxaWEkz ZzNtU04tVlUyOHh1U2RGTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmJyIcw4qhj+fVZtY4UjM4c5cJm+drioX3XeBkKl9K2ePZtrOp5ZEW AaaX5FZRr8JNnIOUPwdo5+acGk2PdmwLBgCqXqdIZ1x4/i4yOuP6d9OSC4yuIt0e nq+uohxK84KM33sbUA2x9zLYq+tZG+/n1W9GyEOKIloRT/fMhg4r78QH57LFC8+c ThTDeUXdMwBnmt6LNYh+TTgCSay+atbI0GazxXM/4OgBR79YDO0/7RuIUwsNN8/L /3WiUYJOqw8+xcPvGU1zk/zCgBQhe58+uXo9SasR++DuwcDnGeSMm5A4UcgqisKo UdLl7EPMu6azRfiVQ4/iunnA5ee3A4Nw -----END CERTIFICATE-----Generated at Sat Apr 26 13:43:29 2025 by rpki-client