$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft File: gjEAt15d1BoefDKBw1cT9EvobJg.mft (raw, json) Hash identifier: RRGaMgPY8NHspHRpq3F/uIjBEQekWBSQhbTgu/10Ae4= Subject key identifier: 63:37:17:6B:72:13:69:A2:A0:6E:BE:4F:8D:C9:65:EA:8B:1A:DF:CF Authority key identifier: 82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 Certificate issuer: /CN=A91A2E6A/serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft Manifest number: A1 Signing time: Fri 25 Apr 2025 05:15:11 +0000 Manifest this update: Fri 25 Apr 2025 05:15:10 +0000 Manifest next update: Fri 02 May 2025 05:15:10 +0000 Files and hashes: 1: gjEAt15d1BoefDKBw1cT9EvobJg.crl (hash: Co82/cr9M8VgotI5MnZOYUHRZcHXQCUhIj0sMiL1bmw=) 2: BF466AE8325611EFA462C323C4F9AE02.roa (hash: KhqMoTs+Qi/II5aRP9wPpcsu1xRmCyMAj25hDB2Fy0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2E6A, serialNumber=823100B75E5DD41A1E7C3281C35713F44BE86C98 Validity Not Before: Apr 25 05:15:10 2025 GMT Not After : May 2 05:15:10 2025 GMT Subject: CN=680b1a5f-46e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0b:39:34:f1:33:3a:39:c7:97:f7:5d:0a:1e: 51:ed:36:e7:10:01:11:57:8d:75:34:9b:59:55:27: 47:ff:67:56:ae:73:1f:67:07:96:41:c3:3c:0e:c5: 7e:19:7b:8b:94:03:f1:9b:94:12:8a:7c:73:9e:5b: b0:ec:99:5e:41:5b:08:9c:6b:8c:3a:9b:ab:ab:75: 52:76:31:6d:96:8e:7c:40:50:39:9b:9e:94:16:6d: 7b:26:ed:a3:3a:bb:1c:e9:94:46:a3:6e:10:f5:f1: 2c:37:e2:b3:ca:a7:db:a1:34:8c:4f:80:ed:f1:e8: e9:9a:d0:a9:39:2e:97:f9:bc:0b:da:37:1f:44:eb: 9a:9a:42:68:69:63:4b:b2:0b:2e:0d:5e:44:0f:66: ec:0b:fa:24:25:05:af:b2:5e:14:b8:cc:59:af:c9: 27:56:7e:72:de:2a:4d:ec:38:ae:ef:bf:0a:61:c7: f5:c5:f4:34:29:22:cc:14:ba:33:54:dd:96:5c:0b: 36:2c:ad:72:20:53:bf:59:49:2d:e8:32:78:c0:2f: bf:9c:09:97:d2:65:1f:24:08:57:d5:5b:a4:92:b0: 31:84:49:fe:04:c3:4e:3a:b0:19:71:86:c0:c8:15: d9:f4:81:02:ae:9d:82:bf:7c:46:62:eb:78:2e:1b: 22:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:37:17:6B:72:13:69:A2:A0:6E:BE:4F:8D:C9:65:EA:8B:1A:DF:CF X509v3 Authority Key Identifier: keyid:82:31:00:B7:5E:5D:D4:1A:1E:7C:32:81:C3:57:13:F4:4B:E8:6C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gjEAt15d1BoefDKBw1cT9EvobJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2E6A/AE373D84323011EF9E532156C4F9AE02/gjEAt15d1BoefDKBw1cT9EvobJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:b9:b2:15:c6:d6:26:83:70:26:33:38:44:b9:61:e0:a3:1b: 2a:35:e8:8a:8a:cf:62:2d:18:ab:e0:b7:18:0f:04:a2:3d:bd: a4:81:ad:c7:a3:a9:d5:84:f7:37:b0:78:46:ec:82:47:f3:b6: db:fd:35:1f:a7:bd:c2:2a:38:41:67:a4:55:79:40:0d:c5:5f: ea:57:c7:31:4f:9b:e3:69:16:65:65:55:d3:19:00:bf:ac:e3: 8e:4a:f0:f1:33:0f:02:ee:32:92:55:65:49:b7:36:13:fd:0a: 44:69:ce:78:9d:0b:25:6b:da:5d:db:28:04:52:e9:c6:e0:b7: df:57:cc:72:9f:15:db:8a:b0:20:0a:a1:78:0c:2b:d3:e9:3d: e7:01:9e:33:43:45:a8:b4:7f:e1:66:28:62:87:2e:31:2a:a8: 7b:7f:a8:c4:2d:7d:f3:df:c4:57:14:21:de:73:1e:7f:aa:20: 27:29:0f:0b:c6:67:09:3b:44:59:fd:e2:41:8f:27:e7:c6:09: 5d:d9:9c:c6:7f:4f:03:55:36:f3:ee:d3:bc:ed:f8:30:a9:f2: 13:c8:00:6d:13:6d:ed:fe:30:4f:a6:b4:a0:85:ff:8b:b9:f2: 14:49:a4:85:21:fe:bd:d7:e8:5e:08:cf:04:4b:2b:19:04:42: a1:9b:e4:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJFNkExMTAvBgNVBAUTKDgyMzEwMEI3NUU1REQ0MUExRTdDMzI4MUMzNTcxM0Y0 NEJFODZDOTgwHhcNMjUwNDI1MDUxNTEwWhcNMjUwNTAyMDUxNTEwWjAYMRYwFAYD VQQDEw02ODBiMWE1Zi00NmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Qs5NPEzOjnHl/ddCh5R7TbnEAERV411NJtZVSdH/2dWrnMfZweWQcM8DsV+ GXuLlAPxm5QSinxznluw7JleQVsInGuMOpurq3VSdjFtlo58QFA5m56UFm17Ju2j Orsc6ZRGo24Q9fEsN+KzyqfboTSMT4Dt8ejpmtCpOS6X+bwL2jcfROuamkJoaWNL sgsuDV5ED2bsC/okJQWvsl4UuMxZr8knVn5y3ipN7Diu778KYcf1xfQ0KSLMFLoz VN2WXAs2LK1yIFO/WUkt6DJ4wC+/nAmX0mUfJAhX1VukkrAxhEn+BMNOOrAZcYbA yBXZ9IECrp2Cv3xGYut4LhsixwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGM3F2ty E2mioG6+T43JZeqLGt/PMB8GA1UdIwQYMBaAFIIxALdeXdQaHnwygcNXE/RL6GyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkU2QS9BRTM3M0Q4NDMy MzAxMUVGOUU1MzIxNTZDNEY5QUUwMi9nakVBdDE1ZDFCb2VmREtCdzFjVDlFdm9i SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqRUF0MTVkMUJvZWZES0J3MWNUOUV2b2JKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkU2QS9BRTM3M0Q4NDMyMzAxMUVGOUU1MzIxNTZDNEY5QUUwMi9nakVBdDE1ZDFC b2VmREtCdzFjVDlFdm9iSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZubIVxtYmg3AmMzhEuWHgoxsqNeiKis9iLRir4LcYDwSiPb2kga3H o6nVhPc3sHhG7IJH87bb/TUfp73CKjhBZ6RVeUANxV/qV8cxT5vjaRZlZVXTGQC/ rOOOSvDxMw8C7jKSVWVJtzYT/QpEac54nQsla9pd2ygEUunG4LffV8xynxXbirAg CqF4DCvT6T3nAZ4zQ0WotH/hZihihy4xKqh7f6jELX3z38RXFCHecx5/qiAnKQ8L xmcJO0RZ/eJBjyfnxgld2ZzGf08DVTbz7tO87fgwqfITyABtE23t/jBPprSghf+L ufIUSaSFIf691+heCM8ESysZBEKhm+Rp -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:13 2025 by rpki-client