$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft File: GHotNbr5BXwPC40mLS5dYiajI4I.mft (raw, json) Hash identifier: YcR5ITpqu1964DxkAp2PNmVW3UPpamVXhlIWdFCsnCM= Subject key identifier: 05:DE:EF:0C:61:93:F2:D5:BB:EE:F0:5F:F7:15:7E:40:FC:E0:04:5E Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft Manifest number: 0131 Signing time: Fri 25 Apr 2025 03:39:48 +0000 Manifest this update: Fri 25 Apr 2025 03:39:47 +0000 Manifest next update: Fri 02 May 2025 03:39:47 +0000 Files and hashes: 1: GHotNbr5BXwPC40mLS5dYiajI4I.crl (hash: Xfed46ePmM70C8s4F0gHKRWq/SMn6BaN9ohCzQ7q/jI=) 2: 5773966456D011EE9C8F8C56C4F9AE02.roa (hash: iKZhrYsqwja6p9Jg0/rXm6hAG4LxSI3ekb53k0lCuBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Apr 25 03:39:47 2025 GMT Not After : May 2 03:39:47 2025 GMT Subject: CN=680b0403-a754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2c:d3:96:0e:92:eb:45:76:35:4f:e5:68:93: c5:af:1e:45:f9:15:0a:0b:e6:91:5f:bf:28:02:37: 82:71:f1:b7:ad:c8:2a:cd:58:11:6e:3a:bb:35:87: 4b:ae:98:f9:44:27:73:ce:ff:e8:76:4a:18:e7:1e: ba:ed:1f:19:8c:f7:3a:f1:07:dc:3b:e4:8a:98:5f: 01:71:ae:3b:02:17:78:29:9f:0d:17:e2:71:28:6f: ae:99:81:a1:f0:85:e8:f9:ed:a5:8e:8c:97:f6:64: cd:ab:71:85:1c:f0:ff:d2:c8:e3:3a:1d:e7:72:db: 7a:96:ef:87:bf:c8:a0:e4:15:3d:04:d9:18:03:21: 90:1f:05:df:f0:f9:20:aa:3a:b3:a7:a3:72:09:3c: a1:45:c6:f9:4e:4c:a0:4c:56:9f:ed:2e:ff:01:c1: 85:3f:bc:fa:78:ad:71:6e:63:1f:56:cf:58:ec:a2: 3f:83:fc:eb:d4:8d:2f:53:32:ea:6b:1e:a6:9f:d7: 1c:b7:f3:29:81:6c:ba:cb:3a:d0:d5:78:7d:bb:3d: b1:8f:e1:1b:7f:3e:99:9b:5d:7e:06:59:a7:59:6a: db:77:98:07:cf:97:90:d2:82:fa:70:ac:45:bd:ca: 1e:2e:9a:e7:48:68:90:44:55:0a:7b:7f:e4:2e:99: ee:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DE:EF:0C:61:93:F2:D5:BB:EE:F0:5F:F7:15:7E:40:FC:E0:04:5E X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:ac:8f:f5:f7:cc:be:21:76:62:a0:7d:6f:e5:f3:c8:b8:82: bc:45:36:00:c8:f4:71:4a:a6:2d:ce:14:f5:6c:b9:29:66:c0: 05:87:b4:ba:f0:f5:86:15:7b:06:2b:0f:20:8c:b0:b7:91:66: 79:e0:f2:3b:a4:19:17:36:d4:3e:2c:63:b0:6c:fe:5e:42:49: a1:ec:1c:b7:96:78:a5:8a:f9:70:15:b8:2d:0e:69:34:83:06: 23:fb:b5:1b:f3:17:83:89:94:46:c3:f2:48:b5:c5:45:4c:d7: aa:ce:e8:ea:bc:76:36:4c:95:a7:36:71:c0:30:fe:29:e3:06: e1:70:76:14:d6:26:98:d1:b7:7b:62:62:a3:79:32:aa:06:a3: d1:01:59:d9:4b:d5:ec:9c:c8:69:3d:d2:ff:eb:42:81:f3:67: 3f:39:73:30:d1:b8:a7:8a:cf:9b:41:81:88:d6:76:be:f9:55: 6c:9f:d3:a2:f7:46:f7:10:a7:70:f9:29:a2:1f:5f:84:8e:05: 1e:6a:2f:b3:46:8c:57:5d:32:ea:44:66:a9:3b:29:d1:20:b0: ce:d7:59:6b:df:9b:26:90:41:0d:2e:3f:4d:f3:93:8d:69:ee: 7e:29:67:0a:b5:40:d4:83:b3:24:3c:96:55:6f:e3:89:35:4a: 60:dd:73:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjUwNDI1MDMzOTQ3WhcNMjUwNTAyMDMzOTQ3WjAYMRYwFAYD VQQDEw02ODBiMDQwMy1hNzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCzTlg6S60V2NU/laJPFrx5F+RUKC+aRX78oAjeCcfG3rcgqzVgRbjq7NYdL rpj5RCdzzv/odkoY5x667R8ZjPc68QfcO+SKmF8Bca47Ahd4KZ8NF+JxKG+umYGh 8IXo+e2ljoyX9mTNq3GFHPD/0sjjOh3nctt6lu+Hv8ig5BU9BNkYAyGQHwXf8Pkg qjqzp6NyCTyhRcb5TkygTFaf7S7/AcGFP7z6eK1xbmMfVs9Y7KI/g/zr1I0vUzLq ax6mn9cct/MpgWy6yzrQ1Xh9uz2xj+Ebfz6Zm11+BlmnWWrbd5gHz5eQ0oL6cKxF vcoeLprnSGiQRFUKe3/kLpnucQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXe7wxh k/LVu+7wX/cVfkD84AReMB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDFDMy9GQjcxQzU2NjU2Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJY d1BDNDBtTFM1ZFlpYWpJNEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8rI/198y+IXZioH1v5fPIuIK8RTYAyPRxSqYtzhT1bLkpZsAFh7S6 8PWGFXsGKw8gjLC3kWZ54PI7pBkXNtQ+LGOwbP5eQkmh7By3lnilivlwFbgtDmk0 gwYj+7Ub8xeDiZRGw/JItcVFTNeqzujqvHY2TJWnNnHAMP4p4wbhcHYU1iaY0bd7 YmKjeTKqBqPRAVnZS9XsnMhpPdL/60KB82c/OXMw0binis+bQYGI1na++VVsn9Oi 90b3EKdw+SmiH1+EjgUeai+zRoxXXTLqRGapOynRILDO11lr35smkEENLj9N85ON ae5+KWcKtUDUg7MkPJZVb+OJNUpg3XPr -----END CERTIFICATE-----Generated at Sat Apr 26 04:51:18 2025 by rpki-client