$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: eL2x0tDjT5bgTqhKkuRd0pybFOIOxkZjofPd7yDNmp0= Subject key identifier: 08:25:DA:0D:26:DD:C8:99:3D:E2:21:F0:00:3F:8E:C7:78:AB:E5:F7 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 05BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 05BA Signing time: Mon 28 Apr 2025 23:39:08 +0000 Manifest this update: Mon 28 Apr 2025 23:39:08 +0000 Manifest next update: Mon 05 May 2025 23:39:08 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: ef/xZT8MBD5BPkc0cscfTa1pPYfLiyAciePKfjJq1Ps=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 23:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1471 (0x5bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Apr 28 23:39:08 2025 GMT Not After : May 5 23:39:08 2025 GMT Subject: CN=6810119c-b37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e5:89:57:e4:17:9d:43:ba:b1:45:b0:01:d2: a8:6b:df:79:0e:92:31:3f:bd:a6:50:26:94:45:2d: 4e:39:34:9d:95:87:cd:44:6e:d2:bc:49:7c:f6:6c: 05:ee:e5:ee:77:cf:ed:3e:6c:63:c2:0e:2d:67:cb: 91:89:e6:a8:00:7e:f1:f0:f6:86:69:ab:8e:f6:62: bd:4b:25:e6:d8:a9:4f:bb:6a:a8:6e:58:4a:6b:44: 66:08:3c:95:42:fa:8e:d5:4c:f7:89:dc:59:19:84: 3a:ae:28:6d:c5:98:84:38:43:ce:67:62:f0:da:58: 85:9d:82:aa:a8:42:be:23:a2:0a:3c:76:41:9c:e2: 1e:ac:7e:3f:0e:0d:ab:8e:a5:9b:2f:1b:f1:ea:c0: 00:12:be:af:ad:9d:cb:aa:69:23:e9:10:57:07:78: 6a:a9:9c:88:b7:d7:8c:78:bc:bc:60:dd:bd:3c:63: 67:f8:1d:a8:04:f3:bb:32:6f:d7:a2:ad:c5:da:1a: 6c:6a:b5:af:f9:d7:2e:b0:c5:9c:22:62:df:0e:ae: d3:c4:b9:f4:d3:d3:af:e5:39:03:b8:c4:d3:9a:09: f4:d6:37:cb:d9:ed:19:86:67:51:4e:24:a0:34:4f: 73:3d:10:2c:0c:12:54:50:b7:3e:d6:e9:b5:a0:82: ae:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:25:DA:0D:26:DD:C8:99:3D:E2:21:F0:00:3F:8E:C7:78:AB:E5:F7 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:0e:c2:e9:18:73:a7:86:19:29:a8:8b:96:50:9a:7d:54:ab: a3:94:81:07:e8:ed:b7:ee:ef:cd:b1:a1:84:78:5e:6f:cd:51: 63:58:59:fb:81:53:27:43:30:10:3f:fc:f6:cc:f4:1b:e3:b4: 79:0c:d3:68:bd:1a:90:bd:7e:60:7c:51:7c:e8:4a:0f:6a:df: 8e:34:7a:9e:94:33:b1:fc:c4:98:b0:e9:53:89:34:89:84:2f: ac:71:8a:5b:ce:a5:0d:0a:28:c6:ad:3a:0b:0d:a2:8a:4f:b3: 74:ea:82:b5:b2:12:05:79:69:1f:7f:a4:67:94:dc:e7:a1:f2: aa:7d:82:00:1b:76:af:7f:0f:58:05:a3:aa:89:81:6c:f7:72: e8:3f:82:7d:05:6c:90:f0:6c:67:c6:ff:e9:c8:93:62:c9:71: a9:e1:51:b6:e7:30:b1:bb:74:d1:bf:fc:24:29:38:18:55:85: 97:b9:eb:3e:f2:17:d1:9a:6e:15:34:e2:8e:5b:27:2b:e9:ba: 07:53:87:a2:00:bf:d7:52:b3:fa:39:2c:ca:c4:43:b9:2c:46: 45:1c:b2:9c:d0:9b:c2:9f:19:ca:c7:0b:a7:0a:3b:67:e7:21: 1d:3a:43:1f:51:c7:44:5a:65:39:66:5c:3a:6e:cb:b1:6e:5e: c0:61:e0:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwNDI4MjMzOTA4WhcNMjUwNTA1MjMzOTA4WjAYMRYwFAYD VQQDEw02ODEwMTE5Yy1iMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+WJV+QXnUO6sUWwAdKoa995DpIxP72mUCaURS1OOTSdlYfNRG7SvEl89mwF 7uXud8/tPmxjwg4tZ8uRieaoAH7x8PaGaauO9mK9SyXm2KlPu2qoblhKa0RmCDyV QvqO1Uz3idxZGYQ6rihtxZiEOEPOZ2Lw2liFnYKqqEK+I6IKPHZBnOIerH4/Dg2r jqWbLxvx6sAAEr6vrZ3Lqmkj6RBXB3hqqZyIt9eMeLy8YN29PGNn+B2oBPO7Mm/X oq3F2hpsarWv+dcusMWcImLfDq7TxLn009Ov5TkDuMTTmgn01jfL2e0ZhmdRTiSg NE9zPRAsDBJUULc+1um1oIKuDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgl2g0m 3ciZPeIh8AA/jsd4q+X3MB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5DsLpGHOnhhkpqIuWUJp9VKujlIEH6O237u/NsaGEeF5vzVFjWFn7 gVMnQzAQP/z2zPQb47R5DNNovRqQvX5gfFF86EoPat+ONHqelDOx/MSYsOlTiTSJ hC+scYpbzqUNCijGrToLDaKKT7N06oK1shIFeWkff6RnlNznofKqfYIAG3avfw9Y BaOqiYFs93LoP4J9BWyQ8Gxnxv/pyJNiyXGp4VG25zCxu3TRv/wkKTgYVYWXues+ 8hfRmm4VNOKOWycr6boHU4eiAL/XUrP6OSzKxEO5LEZFHLKc0JvCnxnKxwunCjtn 5yEdOkMfUcdEWmU5Zlw6bsuxbl7AYeAG -----END CERTIFICATE-----Generated at Wed Apr 30 13:38:24 2025 by rpki-client