$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft File: G7spe8goFmqkl9N8cmW_tgGuA2A.mft (raw, json) Hash identifier: NwwyNTNVy9TlZTh4VfL8GoLECjFrw3n+1oopic8YX4s= Subject key identifier: 7A:32:3D:1F:A5:86:E8:20:7A:3C:69:E1:A6:EB:33:9C:9B:7E:E6:D5 Authority key identifier: 1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 Certificate issuer: /CN=A91B49F2/serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Certificate serial: 0E1F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft Manifest number: 0E15 Signing time: Thu 24 Apr 2025 17:47:30 +0000 Manifest this update: Thu 24 Apr 2025 17:47:30 +0000 Manifest next update: Thu 01 May 2025 17:47:30 +0000 Files and hashes: 1: G7spe8goFmqkl9N8cmW_tgGuA2A.crl (hash: r8T7yLFWPOxcUcqRo+bXr8ep6LvnuwjXsBGG2GB/mpQ=) 2: BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa (hash: XB0QLbbknxQIRTO38MXkPwNFVVbVpdhvXqbqZxANpFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3615 (0xe1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2, serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Validity Not Before: Apr 24 17:47:30 2025 GMT Not After : May 1 17:47:30 2025 GMT Subject: CN=680a7932-0ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f8:15:03:d0:77:94:ac:e8:07:9d:d5:5b:8f: 94:94:07:79:9e:fa:40:b4:5c:1b:12:37:14:78:89: 38:41:95:62:e0:37:e2:f2:52:c4:6c:07:9a:c2:c3: 2b:ee:e5:9f:eb:2d:5d:22:bf:38:a6:11:de:6b:8d: 3f:7c:04:20:b3:c4:ea:bf:df:a1:50:43:20:b6:c4: 96:2c:67:83:d1:38:88:c0:22:86:3e:d5:a1:b7:97: e3:44:73:18:07:79:2d:31:1e:a1:0f:51:5c:44:b2: c2:73:ae:af:5a:c1:b6:68:3f:77:61:5e:f3:c3:39: f2:36:bf:74:2b:1b:14:0e:a6:77:c7:75:01:1e:af: bf:3c:da:7f:3c:f4:31:69:6c:d8:25:e0:de:f9:f3: f5:1c:95:a4:f5:3c:55:0d:62:44:96:be:f4:b2:2b: ee:28:31:70:e9:38:14:cf:02:65:08:20:24:65:00: 82:88:ae:de:37:f2:31:ab:e4:e4:44:c8:6f:0e:a2: 99:92:58:27:df:84:77:fd:7f:7b:20:b7:e9:5c:23: 4e:b3:47:c2:10:19:29:ce:03:e2:6a:f8:b5:49:f6: 82:b8:2d:5a:fe:3b:15:ba:6e:72:fc:73:84:cb:f4: 53:13:5b:07:c5:d2:43:b3:ee:57:28:09:16:41:17: 4b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:32:3D:1F:A5:86:E8:20:7A:3C:69:E1:A6:EB:33:9C:9B:7E:E6:D5 X509v3 Authority Key Identifier: keyid:1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:5d:a0:3f:8d:44:03:39:c8:4f:3a:c6:f5:54:b4:91:20:95: 67:c2:14:8b:ab:cb:4b:26:9c:48:8f:58:1d:57:12:1e:1c:ec: e7:69:b4:78:1b:38:d3:7c:c5:f7:e7:48:11:44:89:03:29:4a: 99:a5:39:f2:16:b4:be:da:3f:72:22:d9:15:03:52:ae:cc:34: fa:7e:86:9f:be:c6:3f:da:9d:b8:a6:02:cc:c3:2f:23:14:c3: 7f:40:b0:71:4b:7f:50:46:66:d7:3f:80:cc:66:9e:08:03:7f: 6f:5b:bd:8e:57:1c:4f:e3:8f:e8:f0:f2:38:c4:ca:18:57:57: 3d:b3:88:13:6f:76:58:a6:05:da:10:a9:9d:71:e8:59:e1:eb: cd:5c:4e:5d:8f:93:51:c1:27:b4:1f:4f:9c:72:59:b3:36:9a: 89:6d:45:d5:8e:7c:01:63:31:fc:07:ca:64:2e:89:43:d4:a5: 55:ec:ad:b2:1e:0b:c8:4d:87:28:22:ea:96:8b:26:b8:e2:67: db:20:eb:49:9a:29:85:59:86:f5:60:bf:4d:70:a5:2a:f7:d7: a6:5e:a6:6a:81:d9:9d:61:b7:bf:97:b5:b8:29:1c:0c:9d:ab: 42:2f:12:8c:ff:23:e0:3e:ba:6b:3d:7f:68:34:59:96:ea:e0: 2d:d4:b1:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKDFCQkIyOTdCQzgyODE2NkFBNDk3RDM3QzcyNjVCRkI2 MDFBRTAzNjAwHhcNMjUwNDI0MTc0NzMwWhcNMjUwNTAxMTc0NzMwWjAYMRYwFAYD VQQDEw02ODBhNzkzMi0wY2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PgVA9B3lKzoB53VW4+UlAd5nvpAtFwbEjcUeIk4QZVi4Dfi8lLEbAeawsMr 7uWf6y1dIr84phHea40/fAQgs8Tqv9+hUEMgtsSWLGeD0TiIwCKGPtWht5fjRHMY B3ktMR6hD1FcRLLCc66vWsG2aD93YV7zwznyNr90KxsUDqZ3x3UBHq+/PNp/PPQx aWzYJeDe+fP1HJWk9TxVDWJElr70sivuKDFw6TgUzwJlCCAkZQCCiK7eN/Ixq+Tk RMhvDqKZklgn34R3/X97ILfpXCNOs0fCEBkpzgPiavi1SfaCuC1a/jsVum5y/HOE y/RTE1sHxdJDs+5XKAkWQRdLlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoyPR+l huggejxp4abrM5ybfubVMB8GA1UdIwQYMBaAFBu7KXvIKBZqpJfTfHJlv7YBrgNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi83QzA2RTc5Q0E2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0ZtcWtsOU44Y21XX3RnR3VB MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0c3c3BlOGdvRm1xa2w5TjhjbVdfdGdHdUEyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi83QzA2RTc5Q0E2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0Zt cWtsOU44Y21XX3RnR3VBMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYXaA/jUQDOchPOsb1VLSRIJVnwhSLq8tLJpxIj1gdVxIeHOznabR4 GzjTfMX350gRRIkDKUqZpTnyFrS+2j9yItkVA1KuzDT6foafvsY/2p24pgLMwy8j FMN/QLBxS39QRmbXP4DMZp4IA39vW72OVxxP44/o8PI4xMoYV1c9s4gTb3ZYpgXa EKmdcehZ4evNXE5dj5NRwSe0H0+cclmzNpqJbUXVjnwBYzH8B8pkLolD1KVV7K2y HgvITYcoIuqWiya44mfbIOtJmimFWYb1YL9NcKUq99emXqZqgdmdYbe/l7W4KRwM natCLxKM/yPgPrprPX9oNFmW6uAt1LEl -----END CERTIFICATE-----Generated at Sat Apr 26 20:05:49 2025 by rpki-client