$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft File: G4nCebixZmmNK-SGc-zMKwgTPjk.mft (raw, json) Hash identifier: nK/pf59t/TTib5LK+g4KBJ7qj6gtyWFVRSFjSx/t4I0= Subject key identifier: 86:3D:74:5C:37:D6:28:16:69:C7:EE:A7:74:AC:A0:F2:16:DE:43:8D Authority key identifier: 1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 Certificate issuer: /CN=A91FCEB1/serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Certificate serial: 06F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft Manifest number: 2768 Signing time: Thu 24 Apr 2025 15:59:08 +0000 Manifest this update: Thu 24 Apr 2025 15:59:08 +0000 Manifest next update: Thu 01 May 2025 15:59:08 +0000 Files and hashes: 1: G4nCebixZmmNK-SGc-zMKwgTPjk.crl (hash: /cZqtUWcys0p3mftNpEce3JS1utwHE2AtxF2FXcps5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1776 (0x6f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=1B89C279B8B166698D2BE48673ECCC2B08133E39 Validity Not Before: Apr 24 15:59:08 2025 GMT Not After : May 1 15:59:08 2025 GMT Subject: CN=680a5fcc-4871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:ef:8e:54:97:a4:05:a0:95:67:e9:0b:c0:f3: 00:41:69:44:da:5b:41:d5:9b:be:ff:17:43:f7:93: a8:e0:1e:ee:c0:d0:87:78:d5:5c:00:fc:3d:7d:62: 27:6f:21:f2:03:b8:96:c6:4a:42:b7:49:52:c8:b7: 3a:cb:4c:65:88:2d:c8:db:bb:7f:c3:50:0b:88:27: 6e:86:4e:9b:d8:ec:71:0d:4c:77:09:35:34:92:85: 76:45:14:8e:3f:43:a8:6b:83:9f:06:4c:64:d6:6f: fd:9a:48:38:a0:73:e0:65:bd:5d:94:99:57:11:cc: 67:1b:2b:7a:b6:ed:94:a7:e7:3e:3e:3d:4d:ad:7d: cb:9d:7b:81:8c:a0:36:8f:f6:00:e0:35:c4:bf:b2: 89:c4:51:06:0a:33:74:38:a5:f9:bd:54:62:a3:a5: 9a:7e:59:ee:e7:32:61:7d:3a:04:ab:9c:61:62:ee: 38:48:54:a0:47:c8:c7:47:01:67:8c:62:00:3f:e2: df:04:93:d8:4f:29:05:f4:ef:a7:88:4f:bb:72:16: 13:fc:38:da:b6:a1:a8:f4:6c:4a:3a:04:52:03:e3: 15:36:ef:9f:3e:62:72:ec:90:06:8a:86:4d:c2:87: 19:4a:15:f9:dc:ec:ab:1b:4f:0a:be:dd:98:9d:93: 09:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3D:74:5C:37:D6:28:16:69:C7:EE:A7:74:AC:A0:F2:16:DE:43:8D X509v3 Authority Key Identifier: keyid:1B:89:C2:79:B8:B1:66:69:8D:2B:E4:86:73:EC:CC:2B:08:13:3E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4nCebixZmmNK-SGc-zMKwgTPjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/EFB875C808C911E68C778878C4F9AE02/G4nCebixZmmNK-SGc-zMKwgTPjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:e9:1b:7e:3c:1f:ec:2c:31:75:1f:75:21:88:08:c0:35:e6: 56:77:13:46:f2:35:55:b0:5e:b0:4f:ac:23:0d:d9:6f:f8:5c: 4b:d9:67:5d:1e:79:3f:a7:cf:99:ad:b8:08:f6:0b:48:ef:82: 0f:e0:8c:63:eb:ca:39:94:df:c5:8f:88:1b:a0:f1:03:75:84: 96:86:ed:13:6f:70:20:18:df:b0:83:16:40:fd:0d:7c:51:af: c0:0a:0c:b5:05:8a:93:7f:bd:64:41:16:06:c5:bf:2a:12:b6: 53:28:f6:ba:de:c3:95:09:94:3b:37:73:94:6d:22:f6:6c:93: 5e:69:08:30:db:6d:03:e9:f7:95:5c:67:6b:6d:12:57:4a:84: 94:28:25:df:c7:69:7b:4f:bd:31:cd:f4:47:ed:67:c5:04:18: 82:f8:ab:2f:3a:1e:98:ec:c4:f9:f8:25:97:00:b1:50:65:0c: 47:cb:43:b3:e2:dc:63:60:f7:9d:bf:99:86:44:ab:54:50:81: dd:37:0a:15:f7:98:11:0f:bc:eb:00:53:e9:67:20:c2:54:dc: ad:d3:38:c8:ab:8e:2b:06:8b:5e:34:d7:17:ee:05:5f:ac:ed: 91:0e:28:78:a6:b1:71:8b:73:60:8e:63:65:ac:72:7a:72:15: 28:61:85:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKDFCODlDMjc5QjhCMTY2Njk4RDJCRTQ4NjczRUNDQzJC MDgxMzNFMzkwHhcNMjUwNDI0MTU1OTA4WhcNMjUwNTAxMTU1OTA4WjAYMRYwFAYD VQQDEw02ODBhNWZjYy00ODcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/O+OVJekBaCVZ+kLwPMAQWlE2ltB1Zu+/xdD95Oo4B7uwNCHeNVcAPw9fWIn byHyA7iWxkpCt0lSyLc6y0xliC3I27t/w1ALiCduhk6b2OxxDUx3CTU0koV2RRSO P0Ooa4OfBkxk1m/9mkg4oHPgZb1dlJlXEcxnGyt6tu2Up+c+Pj1NrX3LnXuBjKA2 j/YA4DXEv7KJxFEGCjN0OKX5vVRio6Waflnu5zJhfToEq5xhYu44SFSgR8jHRwFn jGIAP+LfBJPYTykF9O+niE+7chYT/DjatqGo9GxKOgRSA+MVNu+fPmJy7JAGioZN wocZShX53OyrG08Kvt2YnZMJpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIY9dFw3 1igWacfup3SsoPIW3kONMB8GA1UdIwQYMBaAFBuJwnm4sWZpjSvkhnPszCsIEz45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS9FRkI4NzVDODA4 QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFptbU5LLVNHYy16TUt3Z1RQ amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0bkNlYml4Wm1tTkstU0djLXpNS3dnVFBqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS9FRkI4NzVDODA4QzkxMUU2OEM3Nzg4NzhDNEY5QUUwMi9HNG5DZWJpeFpt bU5LLVNHYy16TUt3Z1RQamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx6Rt+PB/sLDF1H3UhiAjANeZWdxNG8jVVsF6wT6wjDdlv+FxL2Wdd Hnk/p8+ZrbgI9gtI74IP4Ixj68o5lN/Fj4gboPEDdYSWhu0Tb3AgGN+wgxZA/Q18 Ua/ACgy1BYqTf71kQRYGxb8qErZTKPa63sOVCZQ7N3OUbSL2bJNeaQgw220D6feV XGdrbRJXSoSUKCXfx2l7T70xzfRH7WfFBBiC+KsvOh6Y7MT5+CWXALFQZQxHy0Oz 4txjYPedv5mGRKtUUIHdNwoV95gRD7zrAFPpZyDCVNyt0zjIq44rBoteNNcX7gVf rO2RDih4prFxi3NgjmNlrHJ6chUoYYUB -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:25 2025 by rpki-client