$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft File: bath0S4_GW9RaThyPIAnWZxddVI.mft (raw, json) Hash identifier: gTRB+aji3XGu3j4QV24GmFOcwfOh/h7mVa9C1TQ4JWs= Subject key identifier: 0E:74:FD:44:E8:A9:0D:89:AD:22:97:35:B7:E1:5F:34:37:BB:E0:F7 Authority key identifier: 6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 Certificate issuer: /CN=A91CEBCC/serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft Manifest number: A8 Signing time: Tue 29 Apr 2025 06:07:13 +0000 Manifest this update: Tue 29 Apr 2025 06:07:13 +0000 Manifest next update: Tue 06 May 2025 06:07:13 +0000 Files and hashes: 1: bath0S4_GW9RaThyPIAnWZxddVI.crl (hash: 8nIqcCtyzu/xgIdDm1KfhA7B6m8Zlcdsm8lYuJRUJk4=) 2: F2022074272711EF91A40124C4F9AE02.roa (hash: xhUsDiNlcxZBUBnV9JFR4AclyG5SZwCFLfalTWcGiyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 06:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCC, serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Validity Not Before: Apr 29 06:07:13 2025 GMT Not After : May 6 06:07:13 2025 GMT Subject: CN=68106c91-aa68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a1:fa:d9:78:3b:1b:09:49:d5:2a:97:a9:fd: dc:12:1a:ab:3d:54:42:88:cb:7c:d1:26:c5:5e:cb: 0c:96:3c:92:01:5f:64:b4:5e:45:c6:8c:e0:ab:06: 20:3f:4b:64:af:be:61:fc:93:ae:b3:3c:42:f3:7a: 95:24:9f:ab:42:8d:d8:3a:09:f6:1d:16:e3:14:10: f9:73:f7:d4:07:59:5b:70:f9:bf:8e:94:9b:99:a7: cd:19:35:ec:38:c3:db:ba:d1:df:d4:5f:e4:29:ea: 23:f1:78:17:5c:75:0d:65:59:f8:b6:30:d6:0b:fa: 38:65:d2:ae:41:08:8e:f1:d3:8b:6b:2f:fb:40:71: ca:03:c2:99:8f:02:e9:ce:d6:7c:25:07:4b:55:bf: d8:fd:a2:d3:89:f5:94:6d:3e:7b:18:98:28:66:8b: 5f:ee:63:6f:e0:e2:42:09:54:17:fb:ef:3a:de:0c: 5a:b5:bb:59:12:7e:52:eb:e9:34:16:be:d6:3f:89: 2f:e9:83:c1:88:bc:56:94:31:92:0c:ce:32:94:76: f0:0a:c7:49:b5:08:8a:ff:3a:0a:2a:46:20:4c:0e: bd:6d:1e:90:ec:6f:44:06:b7:8c:e9:52:bc:d9:26: dc:ee:99:bd:61:a3:21:4b:3d:95:ca:4a:e7:e3:c9: 4e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:74:FD:44:E8:A9:0D:89:AD:22:97:35:B7:E1:5F:34:37:BB:E0:F7 X509v3 Authority Key Identifier: keyid:6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:01:ab:bd:c9:82:e1:fb:62:25:46:09:e8:c9:9c:ad:e0:67: 35:72:df:87:e1:d2:c5:f3:cb:7f:d6:f4:06:a7:34:ec:5b:b0: 61:01:21:2b:c0:2c:cc:62:a6:06:f0:d0:20:88:c8:34:2b:ec: 11:5c:af:ce:ae:84:5b:aa:8e:85:93:5b:c0:a2:2b:30:67:02: 3a:83:13:a7:ab:b3:93:4a:51:85:56:8b:82:e7:c0:23:87:e0: a5:56:2c:f4:7b:97:17:14:13:89:33:19:dd:f1:a3:17:46:6e: 38:54:e9:dc:12:04:a0:ba:ae:99:a5:40:5c:a5:e7:d7:74:f6: 86:9f:97:ab:dc:aa:65:0b:cf:33:96:dc:4d:6a:7f:48:cc:06: b7:7e:c5:07:93:8a:9a:81:e2:bc:d5:24:d7:04:17:96:00:81: b9:2a:31:a5:e1:12:bb:e3:25:f7:e7:1d:0e:e8:9e:bb:bf:21: 73:ac:c7:e1:c0:a7:f0:d4:38:7a:25:65:b3:ca:2d:f7:b3:0a: f1:19:ee:dd:66:00:05:f9:ed:c2:0f:7d:73:51:ba:80:63:91: ee:cd:81:57:01:35:96:b1:e2:87:80:3b:82:a4:14:90:5c:ba: 41:c6:c1:59:64:9d:ad:27:87:a5:d4:73:e7:7e:2d:ab:33:60: 9c:cb:6e:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQ0MxMTAvBgNVBAUTKDZEQUI2MUQxMkUzRjE5NkY1MTY5Mzg3MjNDODAyNzU5 OUM1RDc1NTIwHhcNMjUwNDI5MDYwNzEzWhcNMjUwNTA2MDYwNzEzWjAYMRYwFAYD VQQDEw02ODEwNmM5MS1hYTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqH62Xg7GwlJ1SqXqf3cEhqrPVRCiMt80SbFXssMljySAV9ktF5FxozgqwYg P0tkr75h/JOuszxC83qVJJ+rQo3YOgn2HRbjFBD5c/fUB1lbcPm/jpSbmafNGTXs OMPbutHf1F/kKeoj8XgXXHUNZVn4tjDWC/o4ZdKuQQiO8dOLay/7QHHKA8KZjwLp ztZ8JQdLVb/Y/aLTifWUbT57GJgoZotf7mNv4OJCCVQX++863gxatbtZEn5S6+k0 Fr7WP4kv6YPBiLxWlDGSDM4ylHbwCsdJtQiK/zoKKkYgTA69bR6Q7G9EBreM6VK8 2Sbc7pm9YaMhSz2Vykrn48lOHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA50/UTo qQ2JrSKXNbfhXzQ3u+D3MB8GA1UdIwQYMBaAFG2rYdEuPxlvUWk4cjyAJ1mcXXVS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJDQy8yQUU4OTgxQTI3 MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dXOVJhVGh5UElBbldaeGRk VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhdGgwUzRfR1c5UmFUaHlQSUFuV1p4ZGRWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUJDQy8yQUU4OTgxQTI3MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dX OVJhVGh5UElBbldaeGRkVkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHAau9yYLh+2IlRgnoyZyt4Gc1ct+H4dLF88t/1vQGpzTsW7BhASEr wCzMYqYG8NAgiMg0K+wRXK/OroRbqo6Fk1vAoiswZwI6gxOnq7OTSlGFVouC58Aj h+ClViz0e5cXFBOJMxnd8aMXRm44VOncEgSguq6ZpUBcpefXdPaGn5er3KplC88z ltxNan9IzAa3fsUHk4qageK81STXBBeWAIG5KjGl4RK74yX35x0O6J67vyFzrMfh wKfw1Dh6JWWzyi33swrxGe7dZgAF+e3CD31zUbqAY5HuzYFXATWWseKHgDuCpBSQ XLpBxsFZZJ2tJ4el1HPnfi2rM2Ccy25+ -----END CERTIFICATE-----Generated at Wed Apr 30 12:26:07 2025 by rpki-client