$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: agijbIbvqwE6qLOZmFoQzpORzW0pMWF15kxVBVa5FeU= Subject key identifier: 80:72:1C:97:D4:19:4F:A5:EE:46:84:1D:60:90:0D:BE:E0:C0:68:15 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 09D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 09CA Signing time: Wed 02 Apr 2025 20:01:03 +0000 Manifest this update: Wed 02 Apr 2025 20:01:02 +0000 Manifest next update: Wed 09 Apr 2025 20:01:02 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: cYZvRUNDYrBy7DDo8D2m/0cPJafaVfscqZVFvn1VxUM=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: 8mDSez92eEkaglLsJMbn0fbrJK3EOKwOEODNJChdaCg=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: NFs1EDcO1yAz73VGI456tOjnaAawML/lh68ilrawz+Y=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: tW1tMolm5x3GeEA1HyFZqPW/WUluhI939ppCe/JxxEw=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: YrfvW4rspoah4qHdMhFX6/ILs8ePWmGD5xqevIlkW/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2519 (0x9d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A Validity Not Before: Apr 2 20:01:02 2025 GMT Not After : Apr 9 20:01:02 2025 GMT Subject: CN=67ed977e-28f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:03:2e:ee:ad:96:3e:bc:fc:2e:b9:78:c6:0b: b3:71:06:54:33:25:60:f2:38:41:53:69:64:0a:9e: 1c:19:1c:7d:7d:81:76:38:45:49:50:03:f6:28:54: b7:32:6b:9c:76:54:02:3b:6f:cc:48:9e:f2:37:9e: b1:e5:d7:0c:85:d9:aa:b1:73:ae:a2:5d:bb:c3:b3: 24:da:df:19:f3:01:ba:e2:0c:6b:5c:70:c5:b2:39: 89:d6:51:96:22:e8:e7:29:b6:1a:85:13:f1:46:14: 25:7a:be:25:e7:70:03:d8:a8:b3:d4:d4:d1:02:5b: 5b:31:3b:46:40:6a:d8:10:bd:6d:9b:40:f0:b8:06: a6:a9:c3:8d:0d:9a:a5:21:e5:a2:d2:e8:af:4d:d5: ef:57:6a:20:5f:1d:6b:9e:7f:0c:a5:a8:df:91:52: d8:64:6e:f9:fa:47:c7:ad:8b:00:3f:5b:97:b5:fc: da:cc:fe:91:8b:0b:3b:bb:5b:1d:04:27:fb:07:54: 02:b5:0c:2d:3f:c7:f5:12:5a:20:bf:40:66:49:44: cf:6c:b0:bb:b4:c4:03:bb:3c:e9:1c:91:42:c7:bb: b4:45:ae:7b:0f:9d:f1:13:11:c2:3c:7c:26:d7:92: 26:21:7c:22:a2:18:dd:0a:c8:a6:d4:07:37:8b:cf: 13:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:72:1C:97:D4:19:4F:A5:EE:46:84:1D:60:90:0D:BE:E0:C0:68:15 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:02:99:74:e1:a2:1e:1f:38:08:1e:97:14:8b:59:86:d9:81: 84:46:53:32:35:23:db:1f:4b:81:b0:b4:ee:1b:48:06:a6:c2: e0:02:53:cb:0e:56:6b:54:52:f8:93:ac:7f:36:0c:b4:c0:9e: 0c:d5:e0:a1:93:f6:81:01:be:40:25:96:7d:43:88:82:0c:64: f4:5b:bb:a1:0c:70:1c:63:7e:a7:77:8c:28:0e:83:7e:f8:36: 75:82:b9:c0:74:1b:75:bc:98:0f:69:63:3f:22:49:3f:c8:9c: cf:02:da:fd:a6:f2:b1:d7:fa:54:91:d6:84:6c:ec:88:b6:53: a8:b9:e8:c4:aa:6b:54:f3:19:7a:e2:0f:2d:dc:85:0e:94:62: da:68:cc:e8:96:05:64:56:ec:e6:c3:78:6b:57:1b:f9:02:7c: e9:f4:1f:4b:62:1b:79:07:79:39:98:2e:19:9a:d2:52:f8:1f: 23:42:3c:dd:69:23:5b:06:15:8c:a3:9d:a7:cf:68:16:35:f8: 85:2d:bb:9d:9e:14:99:15:54:8c:7b:e0:1b:f2:fb:16:89:f2: 1a:f9:98:26:c3:36:f0:2a:8f:22:62:b8:98:8c:a1:14:82:a2: 3d:ef:2e:bf:01:54:66:3b:42:ce:d8:ba:bd:9e:02:a0:33:b0: f7:2b:68:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjUwNDAyMjAwMTAyWhcNMjUwNDA5MjAwMTAyWjAYMRYwFAYD VQQDEw02N2VkOTc3ZS0yOGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQMu7q2WPrz8Lrl4xguzcQZUMyVg8jhBU2lkCp4cGRx9fYF2OEVJUAP2KFS3 MmucdlQCO2/MSJ7yN56x5dcMhdmqsXOuol27w7Mk2t8Z8wG64gxrXHDFsjmJ1lGW IujnKbYahRPxRhQler4l53AD2Kiz1NTRAltbMTtGQGrYEL1tm0DwuAamqcONDZql IeWi0uivTdXvV2ogXx1rnn8MpajfkVLYZG75+kfHrYsAP1uXtfzazP6Riws7u1sd BCf7B1QCtQwtP8f1Elogv0BmSUTPbLC7tMQDuzzpHJFCx7u0Ra57D53xExHCPHwm 15ImIXwiohjdCsim1Ac3i88TOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIByHJfU GU+l7kaEHWCQDb7gwGgVMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlApl04aIeHzgIHpcUi1mG2YGERlMyNSPbH0uBsLTuG0gGpsLgAlPL DlZrVFL4k6x/Ngy0wJ4M1eChk/aBAb5AJZZ9Q4iCDGT0W7uhDHAcY36nd4woDoN+ +DZ1grnAdBt1vJgPaWM/Ikk/yJzPAtr9pvKx1/pUkdaEbOyItlOouejEqmtU8xl6 4g8t3IUOlGLaaMzolgVkVuzmw3hrVxv5Anzp9B9LYht5B3k5mC4ZmtJS+B8jQjzd aSNbBhWMo52nz2gWNfiFLbudnhSZFVSMe+Ab8vsWifIa+ZgmwzbwKo8iYriYjKEU gqI97y6/AVRmO0LO2Lq9ngKgM7D3K2g5 -----END CERTIFICATE-----Generated at Fri Apr 4 18:31:27 2025 by rpki-client