$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: QfvMmkk4v3Pb6WSxQ/mai+Jmb2ailt1Br/T4ASO9vXM= Subject key identifier: 27:4A:69:55:C0:B3:B0:79:2C:D5:64:74:3A:16:C4:B3:4E:F5:DA:98 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0D85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0D7C Signing time: Thu 24 Apr 2025 17:54:59 +0000 Manifest this update: Thu 24 Apr 2025 17:54:58 +0000 Manifest next update: Thu 01 May 2025 17:54:58 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: TGJ+1nnsFbYIIGCnd7AsD+US1mHeJmBG2HZH58dxk8o=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: UdehkLAzVXoFe5wUis48zru/UMqEMsZcDt54OS7NI9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Apr 24 17:54:58 2025 GMT Not After : May 1 17:54:58 2025 GMT Subject: CN=680a7af3-8549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0d:c4:e1:a3:c4:4c:a3:67:6b:4c:2a:a6:8b: 19:cd:99:03:52:48:e9:70:49:20:6d:98:5e:90:b4: 73:3c:1b:b4:50:72:a5:48:ec:e8:13:0a:a2:9f:4b: 45:81:1f:cf:84:41:20:83:67:fc:96:76:1d:ce:49: ec:95:10:ac:95:b2:9d:d0:67:0e:59:5d:9b:df:d6: f8:bd:10:ab:b7:48:25:8d:57:8a:07:d5:57:e8:d1: 58:2e:6b:0a:cc:04:db:5c:7b:4b:ff:b2:9c:96:7b: a9:57:f9:c2:f2:28:3b:cc:51:8e:1e:38:7a:d6:58: 07:8b:41:a5:8f:37:97:75:a9:8b:c9:9b:69:13:ee: 08:6c:5c:a7:f8:0f:c8:1d:79:b7:66:6c:8d:e9:79: 32:25:87:f7:c9:13:67:30:93:83:aa:62:d5:5c:f3: e9:da:d4:53:ed:0f:21:29:98:31:a4:66:16:37:4a: 61:32:64:0b:06:51:30:9b:bc:ee:8e:5c:83:da:a5: fc:e7:35:9e:67:e8:3d:77:68:4a:c3:fb:70:14:17: dd:fa:84:7b:68:88:4c:65:17:2d:02:4a:20:c3:18: 3a:15:ec:cf:c2:db:b5:b4:c0:88:d2:81:12:84:85: 45:47:d8:33:36:96:c1:91:79:d9:13:ae:ca:8e:a2: 48:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4A:69:55:C0:B3:B0:79:2C:D5:64:74:3A:16:C4:B3:4E:F5:DA:98 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:95:2e:8c:b3:1f:a4:97:25:1a:be:68:77:7a:0c:46:23:1e: 59:76:b0:3d:70:f3:2a:4c:30:f7:b8:fc:a7:a6:ab:cd:d1:59: 8f:79:79:8d:bc:a0:f9:8e:9a:21:4d:29:fe:0b:06:d9:57:c3: 45:1a:dc:f8:78:2f:02:eb:cf:1b:f2:0c:25:3a:03:08:e8:7d: 0d:10:b7:ef:db:85:62:33:8e:dc:dd:2e:1c:54:22:c3:6c:69: 26:6e:45:21:5a:e6:96:4f:5f:ae:5c:66:97:77:0b:97:62:ba: d5:13:07:24:ec:a2:a5:b3:3d:28:f8:18:bb:61:03:23:7d:7c: 86:ac:f7:fa:2a:48:9c:f5:26:8c:09:b3:0a:d0:30:fb:1f:ab: 27:fd:91:0d:a5:94:6e:e1:63:ed:de:31:7d:5e:5a:8b:24:9e: e6:2e:33:a1:e5:2f:ef:f3:c9:0b:75:e7:ad:48:98:db:07:9e: 7e:4a:36:37:69:64:f3:af:51:f5:cf:8c:22:7e:5a:a3:6e:ad: ed:0a:30:d1:eb:cf:36:4b:a7:1e:06:50:2e:d7:3e:d4:43:f0: d4:b9:32:2f:2e:f1:c7:f4:bb:34:24:2a:0e:8c:d5:62:53:72: e8:19:b6:bb:ff:39:27:2e:a9:ed:af:59:b9:83:12:cd:eb:54: 45:e9:be:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjUwNDI0MTc1NDU4WhcNMjUwNTAxMTc1NDU4WjAYMRYwFAYD VQQDEw02ODBhN2FmMy04NTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvA3E4aPETKNna0wqposZzZkDUkjpcEkgbZhekLRzPBu0UHKlSOzoEwqin0tF gR/PhEEgg2f8lnYdzknslRCslbKd0GcOWV2b39b4vRCrt0gljVeKB9VX6NFYLmsK zATbXHtL/7KclnupV/nC8ig7zFGOHjh61lgHi0GljzeXdamLyZtpE+4IbFyn+A/I HXm3ZmyN6XkyJYf3yRNnMJODqmLVXPPp2tRT7Q8hKZgxpGYWN0phMmQLBlEwm7zu jlyD2qX85zWeZ+g9d2hKw/twFBfd+oR7aIhMZRctAkogwxg6FezPwtu1tMCI0oES hIVFR9gzNpbBkXnZE67KjqJIFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdKaVXA s7B5LNVkdDoWxLNO9dqYMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNlS6Msx+klyUavmh3egxGIx5ZdrA9cPMqTDD3uPynpqvN0VmPeXmN vKD5jpohTSn+CwbZV8NFGtz4eC8C688b8gwlOgMI6H0NELfv24ViM47c3S4cVCLD bGkmbkUhWuaWT1+uXGaXdwuXYrrVEwck7KKlsz0o+Bi7YQMjfXyGrPf6Kkic9SaM CbMK0DD7H6sn/ZENpZRu4WPt3jF9XlqLJJ7mLjOh5S/v88kLdeetSJjbB55+SjY3 aWTzr1H1z4wiflqjbq3tCjDR6882S6ceBlAu1z7UQ/DUuTIvLvHH9Ls0JCoOjNVi U3LoGba7/zknLqntr1m5gxLN61RF6b4K -----END CERTIFICATE-----Generated at Sat Apr 26 15:26:50 2025 by rpki-client