$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft File: gcJvPY9BNuUZDMehfWr3IkIutm8.mft (raw, json) Hash identifier: V+HioJh9Z1BQl32urxHE+RiTrDwxd5XAywuezu5AlOs= Subject key identifier: 49:20:8E:94:76:3B:33:E5:9B:92:41:9C:FD:BB:83:A0:97:5F:89:17 Authority key identifier: 81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F Certificate issuer: /CN=A91B8E70/serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft Manifest number: 60 Signing time: Fri 25 Apr 2025 06:05:49 +0000 Manifest this update: Fri 25 Apr 2025 06:05:49 +0000 Manifest next update: Fri 02 May 2025 06:05:48 +0000 Files and hashes: 1: gcJvPY9BNuUZDMehfWr3IkIutm8.crl (hash: EAlsGwFn732Cux1Mq2n9vkxlDog8FrlMcknZGwX/7xA=) 2: 20B2721A955B11EFBF0F5669C4F9AE02.roa (hash: llWki8GcmgjT7J8EXf4LrHE2T0htuGvxurz/78InPoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=81C26F3D8F4136E5190CC7A17D6AF722422EB66F Validity Not Before: Apr 25 06:05:49 2025 GMT Not After : May 2 06:05:48 2025 GMT Subject: CN=680b263d-b74e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c0:3d:43:ff:0b:43:13:20:ca:14:8b:01:b9: 24:76:0d:43:fa:bd:d5:d7:40:c4:78:f1:ab:7a:47: a3:b0:d1:e0:e0:53:a5:92:0a:31:fc:c8:52:df:63: 0e:10:4a:43:00:1b:3c:96:a1:1f:f0:68:78:81:49: 47:f1:54:81:e7:1b:20:64:95:0c:02:22:22:e2:ee: ac:bc:0a:cc:24:ec:b7:8f:89:64:09:4c:81:05:77: d2:12:f6:8f:20:89:91:b4:7a:75:00:be:f9:1c:04: 99:97:4b:7e:2c:21:a6:a9:95:1e:a6:31:1e:58:20: b3:c0:da:ac:85:ad:d7:0c:ed:38:7d:62:e8:16:7e: 49:6e:90:a1:51:59:e0:b3:7c:27:bc:2f:f2:e6:a3: 91:e7:6e:38:a0:36:d4:f5:20:19:19:21:d1:83:73: b0:70:d2:e5:4d:1f:73:60:af:0d:4d:71:3c:ec:bf: 7a:bb:29:ce:a5:98:4f:4e:dd:ad:63:83:ff:00:88: 16:8c:2c:fc:83:9d:0c:18:6e:89:19:a6:4f:ce:e8: f1:0f:d3:3b:1c:d1:ae:32:91:0c:a8:58:41:67:05: 3c:96:25:19:cd:56:7d:63:51:c2:f4:35:3b:7c:ee: 9f:ae:e8:1e:09:a4:5f:b6:f0:59:59:9b:3b:fd:b4: 12:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:20:8E:94:76:3B:33:E5:9B:92:41:9C:FD:BB:83:A0:97:5F:89:17 X509v3 Authority Key Identifier: keyid:81:C2:6F:3D:8F:41:36:E5:19:0C:C7:A1:7D:6A:F7:22:42:2E:B6:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gcJvPY9BNuUZDMehfWr3IkIutm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/2D9970D8955A11EFBD9E024AC4F9AE02/gcJvPY9BNuUZDMehfWr3IkIutm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:6d:20:9c:8b:1d:9b:3e:a0:b2:00:3b:5f:1a:9c:1a:57:47: 82:b9:1b:ee:36:54:10:a0:87:14:37:7e:62:18:d2:1c:20:7b: 5c:e4:48:fb:54:f0:4d:ce:fd:90:75:69:d0:80:4a:48:e7:6b: 38:c3:6d:93:58:33:82:0d:85:ef:fd:ad:aa:e2:72:52:6a:fd: b4:8c:96:20:e6:13:41:21:6e:c0:f2:22:d1:58:32:98:5e:7d: 31:79:11:66:b2:c3:75:79:c7:a4:6b:21:5c:0f:d2:c0:1c:87: 27:00:40:cb:71:eb:42:05:93:f5:df:27:2d:aa:de:41:ba:74: 12:cf:66:b7:f5:12:70:bf:51:83:8e:4a:02:90:7e:f8:bd:0d: b8:fb:87:dc:5b:00:70:ce:3e:54:f7:7e:ef:8d:f8:b0:d4:3d: a9:d5:ed:4a:2c:d3:11:9c:11:bd:8a:ab:fb:17:35:6a:26:06: 79:3e:17:8c:7f:fa:d4:d0:30:20:e1:12:34:6b:8c:56:52:1d: e1:e7:6c:60:89:7d:4c:e3:13:e2:43:19:46:5e:e3:79:5b:8c: 5c:e2:d6:93:32:59:c1:f2:22:3f:dc:f8:5d:b9:7e:6b:60:f8: 51:4b:6b:16:9c:ff:cf:75:b4:f8:a0:46:25:23:a2:e8:2f:de: 94:f6:a0:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoODFDMjZGM0Q4RjQxMzZFNTE5MENDN0ExN0Q2QUY3MjI0 MjJFQjY2RjAeFw0yNTA0MjUwNjA1NDlaFw0yNTA1MDIwNjA1NDhaMBgxFjAUBgNV BAMTDTY4MGIyNjNkLWI3NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCawD1D/wtDEyDKFIsBuSR2DUP6vdXXQMR48at6R6Ow0eDgU6WSCjH8yFLfYw4Q SkMAGzyWoR/waHiBSUfxVIHnGyBklQwCIiLi7qy8Cswk7LePiWQJTIEFd9IS9o8g iZG0enUAvvkcBJmXS34sIaaplR6mMR5YILPA2qyFrdcM7Th9YugWfklukKFRWeCz fCe8L/Lmo5HnbjigNtT1IBkZIdGDc7Bw0uVNH3Ngrw1NcTzsv3q7Kc6lmE9O3a1j g/8AiBaMLPyDnQwYbokZpk/O6PEP0zsc0a4ykQyoWEFnBTyWJRnNVn1jUcL0NTt8 7p+u6B4JpF+28FlZmzv9tBJDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSSCOlHY7 M+WbkkGc/buDoJdfiRcwHwYDVR0jBBgwFoAUgcJvPY9BNuUZDMehfWr3IkIutm8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzJEOTk3MEQ4OTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL2djSnZQWTlCTnVVWkRNZWhmV3IzSWtJdXRt OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ2NKdlBZOUJOdVVaRE1laGZXcjNJa0l1dG04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzJEOTk3MEQ4OTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL2djSnZQWTlCTnVV WkRNZWhmV3IzSWtJdXRtOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA1tIJyLHZs+oLIAO18anBpXR4K5G+42VBCghxQ3fmIY0hwge1zkSPtU 8E3O/ZB1adCASkjnazjDbZNYM4INhe/9rariclJq/bSMliDmE0EhbsDyItFYMphe fTF5EWayw3V5x6RrIVwP0sAchycAQMtx60IFk/XfJy2q3kG6dBLPZrf1EnC/UYOO SgKQfvi9Dbj7h9xbAHDOPlT3fu+N+LDUPanV7Uos0xGcEb2Kq/sXNWomBnk+F4x/ +tTQMCDhEjRrjFZSHeHnbGCJfUzjE+JDGUZe43lbjFzi1pMyWcHyIj/c+F25fmtg +FFLaxac/891tPigRiUjougv3pT2oIA= -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:31 2025 by rpki-client