$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft File: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft (raw, json) Hash identifier: uILN/L8z6RY/evh3lUTZg5ElPdVETauBUy/bwGlfUW8= Subject key identifier: C9:90:06:87:B0:7F:E4:EA:C1:F8:E1:01:6F:79:8F:9C:79:CA:32:A4 Authority key identifier: 82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD Certificate issuer: /CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Certificate serial: 3478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft Manifest number: 4073 Signing time: Thu 24 Apr 2025 15:03:11 +0000 Manifest this update: Thu 24 Apr 2025 15:03:10 +0000 Manifest next update: Thu 01 May 2025 15:03:10 +0000 Files and hashes: 1: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl (hash: lZEoPhMmOxCjnm9R9mSTkHV+dPInISeG9UWH2oO0sV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13432 (0x3478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49, serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Validity Not Before: Apr 24 15:03:10 2025 GMT Not After : May 1 15:03:10 2025 GMT Subject: CN=680a52ae-66d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:30:93:b9:fb:a5:f6:5e:51:64:d3:3b:9e:33: 52:bc:8e:7a:f6:e4:b3:e3:79:c9:38:54:7a:b8:24: cf:b6:26:fb:bf:e5:b0:27:ec:13:a7:dd:30:1b:18: 24:79:d1:71:2b:1b:99:98:f2:bb:e4:6e:e5:a3:fb: 79:25:05:59:d3:ad:0d:ea:47:ca:ba:85:75:72:69: 37:ac:71:da:67:e5:82:90:df:30:a3:9d:be:cb:5a: 64:46:17:1f:81:9f:a4:98:f7:a4:5a:d9:31:4b:a3: 1f:f1:da:92:a0:24:d0:ff:a6:4c:8d:60:9a:2c:6d: 08:54:31:b8:d7:4b:ed:a6:23:4a:0a:40:d5:85:7a: 0d:4f:4a:c3:b5:59:29:40:5b:bc:a9:2e:e9:ca:44: 5d:d6:37:9d:54:18:47:80:43:7b:89:a0:9a:08:cd: 93:39:d5:bf:1f:50:e2:4a:97:6b:1d:5e:9f:87:c0: 7c:4e:73:13:a9:ba:f1:63:b8:5e:b5:cb:78:af:6a: 23:f9:47:65:8c:e7:67:50:04:38:64:2c:81:10:86: 2f:3c:8b:85:00:11:5c:e1:1d:19:08:8d:48:fa:76: 1f:92:e3:a2:ff:00:5f:d0:7c:5e:ce:fc:d9:98:82: 8e:73:ba:e2:01:0d:40:bf:e3:80:e5:4d:06:e7:c3: ec:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:90:06:87:B0:7F:E4:EA:C1:F8:E1:01:6F:79:8F:9C:79:CA:32:A4 X509v3 Authority Key Identifier: keyid:82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:8d:db:a5:a8:0d:5e:6f:6d:22:49:c4:0d:c6:5f:94:88:58: 34:c1:af:11:e6:0a:86:d5:fc:f7:a3:18:14:d7:43:f3:66:85: 3c:8b:19:3e:14:a5:76:4a:44:a8:08:0c:46:72:d0:68:06:07: 41:b0:d6:58:ce:7c:9a:a1:81:3a:33:52:73:c2:ed:f0:52:3c: ba:53:d9:0b:2c:0a:25:15:a2:4f:92:bf:e0:ea:75:26:19:d9: 08:7d:9a:b3:9e:95:ab:de:4f:72:8a:bc:47:a1:57:04:a9:9f: 20:ba:68:c2:ff:fe:b3:81:d7:5a:b6:56:9e:84:5a:2c:97:ee: 8f:c7:ab:41:9e:a1:ea:68:9e:e9:2b:25:0c:c8:73:72:38:90: ba:b3:19:be:a9:39:7c:23:78:ed:a4:33:5e:d8:ce:15:19:c4: 32:6a:0f:de:34:0c:e9:01:8e:38:78:44:5c:e3:47:70:a9:d9: f9:e8:94:b0:b7:79:83:44:05:f4:97:85:d8:40:eb:0c:76:68: 33:f3:ca:8d:4e:c2:ad:4f:48:92:3f:dd:7c:0e:be:73:5a:00: a5:ff:90:87:2b:9e:cc:26:0e:c4:a8:e5:be:22:9f:f0:50:16: a6:aa:92:e7:55:3a:22:81:d0:dd:4f:06:b7:fb:ec:e6:ba:29: 6a:67:77:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDgyMUY0REIyMkVFNTlBRkQ1OTNBN0U2ODlFREE5RkM5 NEJFNTg1REQwHhcNMjUwNDI0MTUwMzEwWhcNMjUwNTAxMTUwMzEwWjAYMRYwFAYD VQQDEw02ODBhNTJhZS02NmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDCTuful9l5RZNM7njNSvI569uSz43nJOFR6uCTPtib7v+WwJ+wTp90wGxgk edFxKxuZmPK75G7lo/t5JQVZ060N6kfKuoV1cmk3rHHaZ+WCkN8wo52+y1pkRhcf gZ+kmPekWtkxS6Mf8dqSoCTQ/6ZMjWCaLG0IVDG410vtpiNKCkDVhXoNT0rDtVkp QFu8qS7pykRd1jedVBhHgEN7iaCaCM2TOdW/H1DiSpdrHV6fh8B8TnMTqbrxY7he tct4r2oj+UdljOdnUAQ4ZCyBEIYvPIuFABFc4R0ZCI1I+nYfkuOi/wBf0HxezvzZ mIKOc7riAQ1Av+OA5U0G58PsgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmQBoew f+TqwfjhAW95j5x5yjKkMB8GA1UdIwQYMBaAFIIfTbIu5Zr9WTp+aJ7an8lL5YXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12MVpPbjVvbnRxZnlVdmxo ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doOU5zaTdsbXYxWk9uNW9udHFmeVV2bGhkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12 MVpPbjVvbnRxZnlVdmxoZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvjdulqA1eb20iScQNxl+UiFg0wa8R5gqG1fz3oxgU10PzZoU8ixk+ FKV2SkSoCAxGctBoBgdBsNZYznyaoYE6M1Jzwu3wUjy6U9kLLAolFaJPkr/g6nUm GdkIfZqznpWr3k9yirxHoVcEqZ8gumjC//6zgddatlaehFosl+6Px6tBnqHqaJ7p KyUMyHNyOJC6sxm+qTl8I3jtpDNe2M4VGcQyag/eNAzpAY44eERc40dwqdn56JSw t3mDRAX0l4XYQOsMdmgz88qNTsKtT0iSP918Dr5zWgCl/5CHK57MJg7EqOW+Ip/w UBamqpLnVToigdDdTwa3++zmuilqZ3dD -----END CERTIFICATE-----Generated at Sat Apr 26 05:37:07 2025 by rpki-client