$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: rhN2nf/LJCqHc3d8UMwo4lCtVN/WI1i+p9kcpSIdG4Y= Subject key identifier: EC:C9:D1:A9:CF:40:FB:E5:04:EC:29:45:ED:67:0D:75:A5:06:E4:2F Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 05FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 05F9 Signing time: Thu 24 Apr 2025 22:42:07 +0000 Manifest this update: Thu 24 Apr 2025 22:42:06 +0000 Manifest next update: Thu 01 May 2025 22:42:06 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: HHjVBQXgjzDJ65ujNc9YRwLzuxNW9WjzNMDfEhUmWS0=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: 0zFQ1BRYNI+2cFpJMpx2xapZnaYr/Wv7xM9sKrY4jS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1533 (0x5fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777, serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: Apr 24 22:42:06 2025 GMT Not After : May 1 22:42:06 2025 GMT Subject: CN=680abe3e-aa86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:62:38:9f:33:e8:c0:65:c3:29:c7:74:b8:0c: 38:91:6a:63:11:b4:17:57:3f:c4:e2:8e:9d:d7:5f: ca:f1:23:3a:32:4b:ea:c2:80:d9:c3:96:66:e0:e7: f5:20:64:74:86:c8:b7:c6:e8:d9:3a:48:12:66:50: a5:5f:74:18:34:48:ca:dc:c7:89:87:1e:24:4c:c5: 3d:cd:2f:9b:f6:8e:78:bd:cc:25:52:93:5e:bb:18: d8:0b:16:2b:b5:9c:be:16:b1:af:39:78:41:5b:5b: 84:7f:06:c9:78:29:e4:c7:98:f7:90:49:f0:2b:ce: 37:83:85:48:1f:e6:95:c2:14:3b:19:11:0f:f0:5b: 61:43:2f:67:f8:54:27:12:8f:7b:85:e1:e0:1b:4e: cd:ee:31:70:af:76:21:44:04:69:19:4d:f2:58:c2: 11:3a:5a:a3:33:19:c8:42:53:66:5a:b8:aa:b1:79: df:fa:48:b2:d6:e3:57:09:dc:b6:2b:b6:9e:68:f8: 42:d5:f0:ef:ed:27:d9:86:a0:ef:83:ee:80:72:ca: 8d:3c:49:f5:ad:98:4a:47:85:5c:21:86:65:64:c5: 7a:da:c9:4f:ba:38:e7:fc:70:51:11:92:08:de:59: f5:2d:5d:bc:03:d3:99:65:93:5e:8a:5b:08:b9:c1: 9a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C9:D1:A9:CF:40:FB:E5:04:EC:29:45:ED:67:0D:75:A5:06:E4:2F X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:5c:35:3a:14:14:47:e9:5b:35:93:9c:0c:42:87:a6:4a:c5: af:55:75:f0:20:0f:e3:ff:56:2a:fc:cd:72:b1:ef:f0:61:d5: 18:32:e3:c1:e9:c7:73:81:12:a4:7a:95:54:3d:2b:7f:42:5f: b5:fe:cf:47:55:78:39:9f:6c:50:a7:48:7d:79:d3:24:d6:20: 2e:9e:4b:5c:cb:8e:a1:98:50:a1:8a:51:0c:6d:1e:98:3c:74: aa:f4:df:54:fc:bb:05:2f:cc:8c:77:72:2c:8d:bc:7d:67:52: 6d:dd:64:cb:b2:d1:13:03:27:f4:e3:b6:b1:59:cb:5e:54:60: 71:1c:a1:6a:b2:c3:4f:59:fd:ab:8c:89:2b:00:73:99:59:6e: 7c:ea:ff:59:9b:90:b5:37:99:b6:a5:27:31:f8:9f:65:b8:62: 13:05:74:86:95:7a:5c:5d:a6:93:c0:59:5c:ab:66:dc:47:a6: dc:28:9b:66:84:31:04:ed:d2:b7:eb:1a:1b:f7:ef:22:80:79: e0:32:8d:34:38:f8:ac:51:ce:32:c7:de:c8:82:f0:4c:28:07: dd:0a:6c:16:f7:2c:c2:69:12:4b:79:08:75:5b:59:13:c1:28: cd:10:3b:5e:85:7e:b5:ef:6a:c2:a2:94:7d:f9:d7:fa:3e:0f: 17:c6:da:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjUwNDI0MjI0MjA2WhcNMjUwNTAxMjI0MjA2WjAYMRYwFAYD VQQDEw02ODBhYmUzZS1hYTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GI4nzPowGXDKcd0uAw4kWpjEbQXVz/E4o6d11/K8SM6MkvqwoDZw5Zm4Of1 IGR0hsi3xujZOkgSZlClX3QYNEjK3MeJhx4kTMU9zS+b9o54vcwlUpNeuxjYCxYr tZy+FrGvOXhBW1uEfwbJeCnkx5j3kEnwK843g4VIH+aVwhQ7GREP8FthQy9n+FQn Eo97heHgG07N7jFwr3YhRARpGU3yWMIROlqjMxnIQlNmWriqsXnf+kiy1uNXCdy2 K7aeaPhC1fDv7SfZhqDvg+6AcsqNPEn1rZhKR4VcIYZlZMV62slPujjn/HBREZII 3ln1LV28A9OZZZNeilsIucGaYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzJ0anP QPvlBOwpRe1nDXWlBuQvMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjXDU6FBRH6Vs1k5wMQoemSsWvVXXwIA/j/1Yq/M1yse/wYdUYMuPB 6cdzgRKkepVUPSt/Ql+1/s9HVXg5n2xQp0h9edMk1iAunktcy46hmFChilEMbR6Y PHSq9N9U/LsFL8yMd3Isjbx9Z1Jt3WTLstETAyf047axWcteVGBxHKFqssNPWf2r jIkrAHOZWW586v9Zm5C1N5m2pScx+J9luGITBXSGlXpcXaaTwFlcq2bcR6bcKJtm hDEE7dK36xob9+8igHngMo00OPisUc4yx97IgvBMKAfdCmwW9yzCaRJLeQh1W1kT wSjNEDtehX6172rCopR9+df6Pg8XxtqP -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:00 2025 by rpki-client