$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: ygETr5P9b5zHpzU1d6PYzRbkiTSyp8b7P2c4EndLTqU= Subject key identifier: 10:EC:31:56:27:13:2E:05:39:D6:94:22:A1:7F:8B:36:3B:97:B3:27 Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 0729 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 0716 Signing time: Thu 24 Apr 2025 21:42:57 +0000 Manifest this update: Thu 24 Apr 2025 21:42:57 +0000 Manifest next update: Thu 01 May 2025 21:42:57 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: KDojo1YlarvFQ52nQnlk1jgeENhAJnXC1hS9iILX00E=) 2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1833 (0x729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834, serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Validity Not Before: Apr 24 21:42:57 2025 GMT Not After : May 1 21:42:57 2025 GMT Subject: CN=680ab061-19d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:08:fd:05:82:07:64:70:00:c3:d4:87:b4:d6: 6b:d8:a3:72:2d:53:95:4e:bd:f1:17:04:6d:8f:74: e1:32:01:21:c7:94:8f:59:6a:09:93:c2:31:26:a8: 66:ef:54:12:5f:3f:1c:7f:58:59:7c:a1:11:8f:51: ba:4a:e6:ba:f1:35:e8:49:3b:84:16:3a:ee:9e:5c: 2c:9e:88:3c:9f:93:d3:9a:dc:55:ef:4c:e2:64:6e: 6a:c9:f9:93:76:b7:46:ef:61:ac:92:af:a5:fe:9a: 04:db:63:a0:da:84:1a:6e:ea:68:d2:ed:de:c3:f9: 2c:d5:92:7e:1b:8a:75:8b:84:d5:80:2f:4a:db:9d: 51:b9:ea:00:02:18:1b:dc:76:b2:2a:27:f1:1c:ce: c7:72:b6:9e:15:b8:ac:bd:4a:fd:ac:dd:30:09:19: e0:c5:29:9f:7e:14:e7:eb:52:9f:85:53:a1:ce:17: c0:77:30:24:b4:f7:28:51:85:3f:94:0e:6f:38:91: 55:f5:30:73:91:bd:22:06:67:60:59:99:00:6d:55: bc:98:d5:77:01:a2:02:49:a7:98:15:f7:03:1c:fc: 3f:77:2a:17:61:69:72:73:6f:ab:45:30:8d:77:61: b0:0a:3d:87:f7:34:da:15:80:56:b4:74:9d:de:c2: d1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:EC:31:56:27:13:2E:05:39:D6:94:22:A1:7F:8B:36:3B:97:B3:27 X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:8b:da:00:7a:43:fc:53:46:2a:99:c3:a9:cd:6b:12:8f:8b: fa:6d:26:61:9d:44:35:05:24:36:a4:0f:60:91:af:5e:73:72: 82:40:37:e5:a1:4f:14:7c:a5:9a:4b:e9:8e:aa:a3:4e:1b:36: 8f:f4:74:5f:93:a9:25:6f:88:9a:b3:64:dc:31:78:ce:e0:66: 3d:cd:c3:22:5b:b5:93:33:02:bb:d2:74:9a:4c:23:35:1c:69: c2:6d:8a:49:2d:bb:9a:5d:e3:18:5d:19:ad:97:19:64:2e:88: d8:fd:44:47:82:57:de:e5:9f:c0:46:89:15:9c:d0:97:9c:07: 62:1a:4b:f2:fc:bd:2a:5d:d1:11:b6:cb:5e:bc:5a:83:97:4c: a8:e4:e9:4c:eb:4b:e4:21:89:a0:d3:fb:d3:9c:c7:47:2a:f3: 91:4e:12:16:a9:f5:b3:2c:32:7c:a8:fd:98:07:c3:76:48:c8: 3a:df:9c:90:dd:02:6c:30:8d:b7:29:42:72:e3:39:40:1f:fa: 71:45:df:c4:b0:f5:6c:04:93:fa:fc:1e:c0:fe:de:75:42:c3: 36:93:89:87:54:7f:f9:d3:01:c9:eb:97:27:7d:8b:cd:b3:a3: 3b:90:66:30:e5:c4:6c:ec:1c:f6:58:ee:4e:df:26:bb:0d:53: 2b:49:b3:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjUwNDI0MjE0MjU3WhcNMjUwNTAxMjE0MjU3WjAYMRYwFAYD VQQDEw02ODBhYjA2MS0xOWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Qj9BYIHZHAAw9SHtNZr2KNyLVOVTr3xFwRtj3ThMgEhx5SPWWoJk8IxJqhm 71QSXz8cf1hZfKERj1G6Sua68TXoSTuEFjrunlwsnog8n5PTmtxV70ziZG5qyfmT drdG72Gskq+l/poE22Og2oQabupo0u3ew/ks1ZJ+G4p1i4TVgC9K251RueoAAhgb 3HayKifxHM7HcraeFbisvUr9rN0wCRngxSmffhTn61KfhVOhzhfAdzAktPcoUYU/ lA5vOJFV9TBzkb0iBmdgWZkAbVW8mNV3AaICSaeYFfcDHPw/dyoXYWlyc2+rRTCN d2GwCj2H9zTaFYBWtHSd3sLRZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDsMVYn Ey4FOdaUIqF/izY7l7MnMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAki9oAekP8U0YqmcOpzWsSj4v6bSZhnUQ1BSQ2pA9gka9ec3KCQDfl oU8UfKWaS+mOqqNOGzaP9HRfk6klb4ias2TcMXjO4GY9zcMiW7WTMwK70nSaTCM1 HGnCbYpJLbuaXeMYXRmtlxlkLojY/URHglfe5Z/ARokVnNCXnAdiGkvy/L0qXdER tstevFqDl0yo5OlM60vkIYmg0/vTnMdHKvORThIWqfWzLDJ8qP2YB8N2SMg635yQ 3QJsMI23KUJy4zlAH/pxRd/EsPVsBJP6/B7A/t51QsM2k4mHVH/50wHJ65cnfYvN s6M7kGYw5cRs7Bz2WO5O3ya7DVMrSbMz -----END CERTIFICATE-----Generated at Sat Apr 26 03:56:36 2025 by rpki-client