$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: J4Kojy+K3AUXCwICpE0MeCQmpWO5G+o0r3/xY6UenZQ= Subject key identifier: D1:F2:07:CF:D5:FB:B7:BE:9D:31:60:2F:95:96:1C:AE:67:D3:5B:2A Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B0E Signing time: Thu 24 Apr 2025 19:10:21 +0000 Manifest this update: Thu 24 Apr 2025 19:10:21 +0000 Manifest next update: Thu 01 May 2025 19:10:21 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: yoevNIpWXtLHTDJ/jHKiR7EDXEyl8AtQQ4acFKF3DRg=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2843 (0xb1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Apr 24 19:10:21 2025 GMT Not After : May 1 19:10:21 2025 GMT Subject: CN=680a8c9d-696c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f2:0d:5d:e8:75:f6:dd:87:a9:de:52:30:2e: ad:ca:73:8e:bf:ca:83:72:f9:5d:70:c1:05:e9:62: 5f:35:f8:eb:49:a3:6e:b1:7c:00:54:3d:c7:15:9a: 9b:2a:58:eb:30:fd:ca:9d:7d:56:fb:36:f4:95:68: f0:08:e8:19:46:c7:db:1d:ef:3c:85:66:c4:d4:59: 46:a6:b0:f8:b5:74:c5:f1:06:93:66:e0:fc:53:e7: 5f:a3:66:b5:db:90:dc:8e:5d:d2:92:4c:70:e9:fa: 57:79:fe:fb:5f:b3:67:89:ea:b3:7e:4e:e9:f8:16: 49:37:68:f1:14:ec:18:83:ef:23:7c:50:ad:fe:72: 1c:29:7a:13:cb:2e:0b:75:7a:33:a4:7d:e1:3e:a5: 81:36:ff:aa:b4:16:f4:e0:91:af:79:d6:a1:70:8d: 50:2f:06:89:ad:8c:67:95:9f:61:f9:be:e2:7f:e0: b7:fa:7b:31:6e:94:92:47:79:30:b4:39:26:2a:1c: 9b:09:19:8c:e3:fc:ff:cd:60:2a:dc:c0:79:a6:7d: d1:e1:69:ce:73:ad:02:8a:d1:ab:06:15:d9:9a:ce: 48:3c:5c:bd:9a:b8:a5:57:4c:72:4e:22:2a:c5:1b: 12:7f:b2:5a:17:af:8a:0f:8d:04:a8:4d:16:85:ae: 5a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F2:07:CF:D5:FB:B7:BE:9D:31:60:2F:95:96:1C:AE:67:D3:5B:2A X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:df:43:6f:f9:a5:3a:f4:1b:6e:73:df:cd:56:b9:8e:22:34: a9:d2:af:40:5d:db:d5:ba:34:c7:c7:51:f5:69:d8:2e:e7:09: 4f:29:42:e8:4d:fd:90:63:c9:c0:fe:10:b1:0e:6d:95:dc:ba: 5a:05:9b:37:ed:a2:51:f5:0f:73:77:76:b6:1b:2c:7b:0d:1a: d6:78:98:8d:07:36:2c:f4:1a:73:88:e5:9c:6b:ef:04:f2:f1: 48:bf:38:1c:92:ab:2f:3d:6c:9c:df:09:58:29:0c:4f:de:1d: 49:ac:af:5b:67:d6:1a:fb:0a:3b:c7:23:ee:fc:09:64:b1:78: 0a:73:3e:15:51:c5:c7:4d:d1:6a:d7:a0:76:0d:72:84:cc:5b: 6e:c7:50:6f:9b:19:65:e9:e8:d2:d4:9b:92:ce:94:96:60:49: 44:e2:b4:8d:e9:4e:e2:90:47:3b:17:93:d4:bd:50:9f:87:1d: 8b:5a:4e:e2:38:60:d7:c2:85:5a:8d:74:71:06:e2:af:d1:1e: 9d:15:d2:f0:80:e0:d9:23:38:aa:22:20:49:28:bd:33:e5:dc: ad:fe:55:93:73:7b:a6:b9:81:17:e7:3c:19:e8:eb:ae:6e:06: e6:72:87:50:4f:8a:69:55:c6:9b:0f:1c:75:de:1d:a6:d7:9c: ee:71:98:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUwNDI0MTkxMDIxWhcNMjUwNTAxMTkxMDIxWjAYMRYwFAYD VQQDEw02ODBhOGM5ZC02OTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvINXeh19t2Hqd5SMC6tynOOv8qDcvldcMEF6WJfNfjrSaNusXwAVD3HFZqb KljrMP3KnX1W+zb0lWjwCOgZRsfbHe88hWbE1FlGprD4tXTF8QaTZuD8U+dfo2a1 25Dcjl3Skkxw6fpXef77X7Nnieqzfk7p+BZJN2jxFOwYg+8jfFCt/nIcKXoTyy4L dXozpH3hPqWBNv+qtBb04JGvedahcI1QLwaJrYxnlZ9h+b7if+C3+nsxbpSSR3kw tDkmKhybCRmM4/z/zWAq3MB5pn3R4WnOc60CitGrBhXZms5IPFy9mrilV0xyTiIq xRsSf7JaF6+KD40EqE0Wha5aNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHyB8/V +7e+nTFgL5WWHK5n01sqMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX30Nv+aU69Btuc9/NVrmOIjSp0q9AXdvVujTHx1H1adgu5wlPKULo Tf2QY8nA/hCxDm2V3LpaBZs37aJR9Q9zd3a2Gyx7DRrWeJiNBzYs9BpziOWca+8E 8vFIvzgckqsvPWyc3wlYKQxP3h1JrK9bZ9Ya+wo7xyPu/AlksXgKcz4VUcXHTdFq 16B2DXKEzFtux1Bvmxll6ejS1JuSzpSWYElE4rSN6U7ikEc7F5PUvVCfhx2LWk7i OGDXwoVajXRxBuKv0R6dFdLwgODZIziqIiBJKL0z5dyt/lWTc3umuYEX5zwZ6Ouu bgbmcodQT4ppVcabDxx13h2m15zucZix -----END CERTIFICATE-----Generated at Sat Apr 26 03:37:16 2025 by rpki-client