$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: SpGpoBwhHDVgTKMY7fdDQ2wbpHP7WAey2qcpyTPXcJY= Subject key identifier: 75:FE:2D:A6:BA:EA:64:1C:F2:82:47:A8:3B:69:D2:77:7F:DC:79:C3 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: D6 Signing time: Fri 25 Apr 2025 04:39:32 +0000 Manifest this update: Fri 25 Apr 2025 04:39:32 +0000 Manifest next update: Fri 02 May 2025 04:39:32 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: PaijQ/Q2pEQHRvch63a+MSjoR1J+FgO9+lMkO5GmYqc=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:39:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Apr 25 04:39:32 2025 GMT Not After : May 2 04:39:32 2025 GMT Subject: CN=680b1204-6d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:44:b8:ec:e6:c0:c8:b0:c5:14:9a:17:e5:9b: ae:30:2d:11:dc:cc:3b:fe:4a:9b:59:80:63:6c:5c: 60:9a:72:45:3c:7c:d0:cf:b0:ef:23:12:8b:1b:2f: 98:0f:9c:7f:27:68:f8:f8:b0:e5:ae:69:08:07:57: 76:5d:64:39:76:74:19:d8:79:dd:f6:a7:92:f3:0e: f1:1a:72:f7:3e:44:ef:9a:d6:bc:ef:dc:8d:a8:51: 01:79:d0:f5:20:28:3e:fb:30:e2:88:5b:4d:43:a0: bb:92:4e:07:aa:7f:1a:3b:de:d3:4f:04:44:ee:0d: e4:bb:cd:4e:df:70:3a:14:55:17:f9:d9:0a:2c:67: bf:0f:57:cc:27:f4:ca:62:63:74:c6:6f:8a:77:63: 6c:d4:c4:8a:b1:15:c3:dc:60:be:35:a3:67:51:f4: ff:22:d7:b2:b1:04:de:34:ac:28:03:57:7b:93:c4: 8b:a7:75:89:59:e0:84:44:c3:00:58:0b:fa:f9:04: 77:c1:df:29:b9:2a:25:4e:1e:14:a1:74:6d:e9:14: aa:29:cc:33:18:1a:88:c9:95:bd:87:33:38:84:ea: e0:93:4d:b4:d1:ba:bc:df:5d:87:63:bc:b4:e5:b6: f2:30:bc:57:fb:41:4c:60:12:21:39:08:31:7f:a0: a0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:FE:2D:A6:BA:EA:64:1C:F2:82:47:A8:3B:69:D2:77:7F:DC:79:C3 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:9d:0c:40:8f:90:d4:d7:36:29:c4:0b:88:96:ce:86:92:eb: c6:24:40:f4:51:ad:b8:ff:5e:f5:5a:8a:4f:24:5b:80:dc:72: de:5a:a4:ef:85:35:7a:4e:db:13:2c:5c:a4:73:19:04:d9:d0: 26:75:b5:ac:bd:58:cf:a7:83:46:f3:cc:4a:46:13:5e:96:ad: b9:f5:63:64:1a:c1:0b:07:42:c2:04:8e:e2:d0:79:d6:d9:c0: c5:be:36:9b:98:ae:5a:86:6a:88:dd:c4:77:44:ef:75:80:1a: 0d:fa:12:f8:0c:3b:1c:99:30:58:14:ac:e0:03:d5:b2:71:59: 5f:2b:64:37:97:2f:60:a2:44:f9:49:3e:c0:12:c5:82:9a:4f: 94:60:c2:09:69:ff:9e:71:e3:5b:19:9e:e8:60:0c:43:ed:34: c7:2f:47:bf:c5:93:93:72:e9:7c:f6:2d:6c:11:98:eb:d0:3c: ff:33:56:23:ab:ea:cc:8e:2c:52:48:7e:9f:48:4b:e3:44:02: a3:0f:0b:06:a3:8c:ae:5c:46:54:1a:07:57:0f:a8:98:57:e3: 8a:a7:55:b7:43:a9:ca:87:d8:4f:c7:ef:6e:cb:f0:01:90:b5: 65:f8:10:c7:d1:97:95:c9:8e:11:b0:7d:25:e4:0b:12:67:38: 64:1f:9f:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjUwNDI1MDQzOTMyWhcNMjUwNTAyMDQzOTMyWjAYMRYwFAYD VQQDEw02ODBiMTIwNC02ZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0US47ObAyLDFFJoX5ZuuMC0R3Mw7/kqbWYBjbFxgmnJFPHzQz7DvIxKLGy+Y D5x/J2j4+LDlrmkIB1d2XWQ5dnQZ2Hnd9qeS8w7xGnL3PkTvmta879yNqFEBedD1 ICg++zDiiFtNQ6C7kk4Hqn8aO97TTwRE7g3ku81O33A6FFUX+dkKLGe/D1fMJ/TK YmN0xm+Kd2Ns1MSKsRXD3GC+NaNnUfT/IteysQTeNKwoA1d7k8SLp3WJWeCERMMA WAv6+QR3wd8puSolTh4UoXRt6RSqKcwzGBqIyZW9hzM4hOrgk0200bq8312HY7y0 5bbyMLxX+0FMYBIhOQgxf6CgzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHX+Laa6 6mQc8oJHqDtp0nd/3HnDMB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0nQxAj5DU1zYpxAuIls6GkuvGJED0Ua24/171WopPJFuA3HLeWqTv hTV6TtsTLFykcxkE2dAmdbWsvVjPp4NG88xKRhNelq259WNkGsELB0LCBI7i0HnW 2cDFvjabmK5ahmqI3cR3RO91gBoN+hL4DDscmTBYFKzgA9WycVlfK2Q3ly9gokT5 ST7AEsWCmk+UYMIJaf+eceNbGZ7oYAxD7TTHL0e/xZOTcul89i1sEZjr0Dz/M1Yj q+rMjixSSH6fSEvjRAKjDwsGo4yuXEZUGgdXD6iYV+OKp1W3Q6nKh9hPx+9uy/AB kLVl+BDH0ZeVyY4RsH0l5AsSZzhkH59V -----END CERTIFICATE-----Generated at Sat Apr 26 13:08:28 2025 by rpki-client