$ rpki-client -vvf rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft File: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft (raw, json) Hash identifier: slWoDaqz8dxuneImrGJhXS9dBaTzgoXQehgY0DHEspg= Subject key identifier: 26:84:1D:6B:11:51:01:37:49:8E:AF:DA:11:E5:4A:11:36:8C:15:97 Authority key identifier: 1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 Certificate issuer: /CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Certificate serial: 0B9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft Manifest number: 0B99 Signing time: Sat 12 Apr 2025 18:48:25 +0000 Manifest this update: Sat 12 Apr 2025 18:48:24 +0000 Manifest next update: Sat 19 Apr 2025 18:48:24 +0000 Files and hashes: 1: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl (hash: qMPGdmOnMcEVJRdX32MJjGjQt+sxvRc2adHUwMDGZpE=) 2: 1407117C216311EA90D74C52C4F9AE02.roa (hash: 2C78FaeQx3m8f9CmVKBPjRPsChYY+d/Ump5Gj8ph3JM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 18:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2975 (0xb9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110A69, serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Validity Not Before: Apr 12 18:48:24 2025 GMT Not After : Apr 19 18:48:24 2025 GMT Subject: CN=67fab578-0b3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:48:c8:b0:d1:7b:e1:a7:0d:54:dd:e7:83:56: 40:12:ba:4b:e6:d3:3f:66:ed:5c:75:90:90:e6:f7: b8:28:8c:3d:80:26:80:f5:ae:95:a1:90:43:07:a5: d2:34:2e:7a:47:4d:dc:a7:96:d0:27:1f:a5:39:c3: 56:18:3a:a6:be:6f:db:41:cb:72:bb:5c:f1:25:ed: 8a:7d:3a:5a:6e:c6:61:c0:19:c7:8c:73:cc:56:1a: 6f:d6:f0:1d:c9:fa:49:81:26:7c:36:86:89:1b:db: 7e:54:82:6c:66:96:83:af:18:cf:a6:69:00:99:be: 64:7b:48:24:e9:6b:9d:6d:dc:39:bd:0d:02:67:ed: 2c:54:6d:55:00:54:9f:b9:1b:0a:97:5f:8e:8a:80: 9e:d6:4e:1c:3e:f1:12:38:1f:92:80:9a:23:8f:11: a3:48:5e:40:54:1d:6a:a3:9d:23:75:8c:3b:ae:53: a8:87:57:a4:98:78:7d:05:dd:8e:33:36:d0:98:c7: 03:82:f5:7d:97:a0:2d:22:ee:3a:9b:14:3e:cc:dc: 23:3a:46:42:01:6f:aa:bd:1e:85:c3:7a:23:ff:03: 3d:a4:d7:d7:c7:1a:89:0d:0b:35:0d:b2:4f:35:e4: 60:61:e5:f0:cf:c2:c5:53:df:a9:ea:3a:9c:54:14: 90:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:84:1D:6B:11:51:01:37:49:8E:AF:DA:11:E5:4A:11:36:8C:15:97 X509v3 Authority Key Identifier: keyid:1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:60:1a:fb:19:49:d4:a3:8f:85:e7:24:f7:b3:83:a9:18:65: c5:48:2c:ed:b3:76:5d:68:d6:df:ab:85:c2:f5:4c:c4:9d:97: 7e:8e:47:d7:b2:99:9b:77:b8:71:46:6b:11:c9:ee:a9:05:75: 6e:3f:d3:cf:34:6f:80:e8:35:9f:38:90:c3:74:09:e7:f0:e0: 2e:33:a2:63:4d:0d:0f:1f:37:ec:47:5f:9a:07:fd:84:46:ce: 98:d8:3f:b9:cf:42:50:06:f7:f4:98:1b:5f:74:f2:ad:a3:7a: 9d:f6:0e:31:d4:50:c8:99:f5:54:17:c2:9d:c2:b3:23:24:61: dd:4f:62:b8:c2:75:ea:78:1c:40:ab:57:be:9b:df:b7:d2:6a: cc:fe:2c:fe:8d:d8:31:32:8d:c7:e7:3e:fe:82:12:e7:af:21: b6:da:f3:2a:7a:0f:11:76:54:8f:5f:b3:02:28:b3:a9:8d:dc: fa:5f:71:ac:75:3d:88:ef:35:be:af:51:8a:19:1c:ff:23:97: 47:79:c8:49:26:d2:e2:0a:6f:a3:66:3b:8b:1a:b8:78:4e:34: d8:60:42:3b:9c:17:7a:0a:df:27:68:12:c4:af:81:11:d4:46: 13:66:8b:3d:4c:4e:b9:a5:98:fe:78:04:9a:00:7f:34:08:18: 37:3e:07:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBBNjkxMTAvBgNVBAUTKDFCNkUzMjkyQzgzNTY1NEU0OTE0OTJFNTU4NENGOTkz RjA1QkQ5OTAwHhcNMjUwNDEyMTg0ODI0WhcNMjUwNDE5MTg0ODI0WjAYMRYwFAYD VQQDEw02N2ZhYjU3OC0wYjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UjIsNF74acNVN3ng1ZAErpL5tM/Zu1cdZCQ5ve4KIw9gCaA9a6VoZBDB6XS NC56R03cp5bQJx+lOcNWGDqmvm/bQctyu1zxJe2KfTpabsZhwBnHjHPMVhpv1vAd yfpJgSZ8NoaJG9t+VIJsZpaDrxjPpmkAmb5ke0gk6Wudbdw5vQ0CZ+0sVG1VAFSf uRsKl1+OioCe1k4cPvESOB+SgJojjxGjSF5AVB1qo50jdYw7rlOoh1ekmHh9Bd2O MzbQmMcDgvV9l6AtIu46mxQ+zNwjOkZCAW+qvR6Fw3oj/wM9pNfXxxqJDQs1DbJP NeRgYeXwz8LFU9+p6jqcVBSQnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaEHWsR UQE3SY6v2hHlShE2jBWXMB8GA1UdIwQYMBaAFBtuMpLINWVOSRSS5VhM+ZPwW9mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEE2OS9FM0FCRDA0MjIx NDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpVNUpGSkxsV0V6NWtfQmIy WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyNHlrc2cxWlU1SkZKTGxXRXo1a19CYjJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEE2OS9FM0FCRDA0MjIxNDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpV NUpGSkxsV0V6NWtfQmIyWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXYBr7GUnUo4+F5yT3s4OpGGXFSCzts3ZdaNbfq4XC9UzEnZd+jkfX spmbd7hxRmsRye6pBXVuP9PPNG+A6DWfOJDDdAnn8OAuM6JjTQ0PHzfsR1+aB/2E Rs6Y2D+5z0JQBvf0mBtfdPKto3qd9g4x1FDImfVUF8KdwrMjJGHdT2K4wnXqeBxA q1e+m9+30mrM/iz+jdgxMo3H5z7+ghLnryG22vMqeg8RdlSPX7MCKLOpjdz6X3Gs dT2I7zW+r1GKGRz/I5dHechJJtLiCm+jZjuLGrh4TjTYYEI7nBd6Ct8naBLEr4ER 1EYTZos9TE65pZj+eASaAH80CBg3PgcH -----END CERTIFICATE-----Generated at Sun Apr 13 04:45:35 2025 by rpki-client