$ rpki-client -vvf rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft File: gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft (raw, json) Hash identifier: c/X95GtHE28IWoBV5wga0qOTE9J04trHQsntTTOSI+w= Subject key identifier: 2E:99:38:DE:A3:C3:AD:C8:0F:9B:38:5F:34:FB:27:CB:37:DA:62:F0 Authority key identifier: 81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 Certificate issuer: /CN=A912096C/serialNumber=8197663A7F6347D591B6B2B9ADD5A2D574E91124 Certificate serial: 073D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft Manifest number: 0735 Signing time: Sun 06 Apr 2025 21:24:20 +0000 Manifest this update: Sun 06 Apr 2025 21:24:20 +0000 Manifest next update: Sun 13 Apr 2025 21:24:20 +0000 Files and hashes: 1: gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl (hash: e03/3A+tf222pq59wi3BKGpOn4/RbQj9m5VP1IzPHyI=) 2: 7D7B467CE06011EDBB10FD53C4F9AE02.roa (hash: RF8Kiol9Bl+cT8NMkiixB2yHl7PyCHbWNwT/OTtymFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 21:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1853 (0x73d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912096C Validity Not Before: Apr 6 21:24:20 2025 GMT Not After : Apr 13 21:24:20 2025 GMT Subject: CN=67f2f104-4135 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:99:ba:81:61:d4:d4:5c:70:87:c3:d3:b8:6d: 1e:be:2b:cb:b3:dc:5b:9e:0d:04:29:c6:b0:ba:54: 05:dd:04:09:da:d8:b4:e5:0c:27:1a:90:ef:27:68: 6b:00:f2:65:be:4b:b9:da:33:f1:52:f9:f4:4c:30: 14:c7:d0:df:af:e2:bb:8d:5f:91:32:1a:74:93:68: da:c7:be:a1:8d:aa:81:26:1d:b5:c2:66:ce:b6:58: de:fa:37:f6:83:0f:74:9f:48:56:5e:1b:e1:8f:cc: c7:4f:40:97:39:10:0b:b0:98:57:5d:37:5f:78:f0: a4:e3:e7:74:26:22:5f:17:c3:ec:62:10:4e:d6:99: 59:6e:ac:09:cf:b3:7d:98:0e:09:14:bd:3c:51:e2: 31:49:4b:c3:86:7e:87:48:15:29:45:5f:6e:bc:1e: 69:e0:38:50:b9:86:7c:4a:87:5f:31:14:38:f2:bc: 55:6c:6f:44:e8:bd:c0:93:a7:98:5d:ad:bc:1e:74: 1b:db:ca:c3:12:af:ec:b9:ba:f4:d9:56:42:73:a7: fd:70:32:11:ee:15:39:4a:3a:31:80:3e:78:68:07: 63:87:75:8d:0a:99:59:47:cf:34:c3:ce:b6:bf:02: c6:8a:92:af:a0:9e:f7:af:f3:1c:84:ae:91:a8:ee: ff:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:99:38:DE:A3:C3:AD:C8:0F:9B:38:5F:34:FB:27:CB:37:DA:62:F0 X509v3 Authority Key Identifier: keyid:81:97:66:3A:7F:63:47:D5:91:B6:B2:B9:AD:D5:A2:D5:74:E9:11:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZdmOn9jR9WRtrK5rdWi1XTpESQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912096C/1D31C184289211EBAC8CCE13C4F9AE02/gZdmOn9jR9WRtrK5rdWi1XTpESQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:25:81:fd:6f:80:12:45:57:78:30:8b:17:c4:f7:f6:ef:49: c4:6b:04:13:51:de:09:94:ae:e2:eb:c8:19:af:09:62:49:09: b3:4f:36:68:d0:ea:13:ec:60:8f:22:af:d6:2c:0a:ea:1c:56: 41:5b:b3:05:f1:ea:2a:ee:d1:ec:7d:4e:29:82:98:5d:8e:81: f9:ad:58:8b:18:32:26:64:37:0e:3c:49:61:04:4d:7b:87:49: 92:c4:a8:08:3f:4c:65:48:08:55:0c:f1:d7:79:37:de:02:a0: a1:ee:5f:77:d4:db:08:3b:82:55:35:d5:ec:1c:33:1d:99:34: 77:8f:a5:b3:25:f3:af:58:4b:b3:16:b5:f2:63:df:63:08:fe: 3d:f3:03:3d:84:61:bd:09:86:bb:ef:f3:9b:13:4d:28:64:0f: 26:36:12:f2:60:75:e4:5d:92:f3:b5:f9:93:15:95:33:87:3d: 54:fa:0b:e6:6d:b5:1f:83:fa:12:e3:f9:b2:fd:7d:bf:4d:f2: 33:d8:a5:ae:1d:c6:01:f7:42:ca:6c:39:4a:4c:6f:1b:b5:0d: e1:e9:aa:bf:89:f8:81:5e:06:ec:92:39:4c:5a:d3:35:51:a4: 28:4e:aa:33:02:5d:47:32:84:e0:19:55:50:71:a0:76:15:b7: ca:5d:10:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NkMxMTAvBgNVBAUTKDgxOTc2NjNBN0Y2MzQ3RDU5MUI2QjJCOUFERDVBMkQ1 NzRFOTExMjQwHhcNMjUwNDA2MjEyNDIwWhcNMjUwNDEzMjEyNDIwWjAYMRYwFAYD VQQDEw02N2YyZjEwNC00MTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJm6gWHU1Fxwh8PTuG0evivLs9xbng0EKcawulQF3QQJ2ti05QwnGpDvJ2hr APJlvku52jPxUvn0TDAUx9Dfr+K7jV+RMhp0k2jax76hjaqBJh21wmbOtlje+jf2 gw90n0hWXhvhj8zHT0CXORALsJhXXTdfePCk4+d0JiJfF8PsYhBO1plZbqwJz7N9 mA4JFL08UeIxSUvDhn6HSBUpRV9uvB5p4DhQuYZ8SodfMRQ48rxVbG9E6L3Ak6eY Xa28HnQb28rDEq/subr02VZCc6f9cDIR7hU5SjoxgD54aAdjh3WNCplZR880w862 vwLGipKvoJ73r/MchK6RqO7/lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6ZON6j w63ID5s4XzT7J8s32mLwMB8GA1UdIwQYMBaAFIGXZjp/Y0fVkbayua3VotV06REk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk2Qy8xRDMxQzE4NDI4 OTIxMUVCQUM4Q0NFMTNDNEY5QUUwMi9nWmRtT245alI5V1J0cks1cmRXaTFYVHBF U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2daZG1PbjlqUjlXUnRySzVyZFdpMVhUcEVTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDk2Qy8xRDMxQzE4NDI4OTIxMUVCQUM4Q0NFMTNDNEY5QUUwMi9nWmRtT245alI5 V1J0cks1cmRXaTFYVHBFU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSJYH9b4ASRVd4MIsXxPf270nEawQTUd4JlK7i68gZrwliSQmzTzZo 0OoT7GCPIq/WLArqHFZBW7MF8eoq7tHsfU4pgphdjoH5rViLGDImZDcOPElhBE17 h0mSxKgIP0xlSAhVDPHXeTfeAqCh7l931NsIO4JVNdXsHDMdmTR3j6WzJfOvWEuz FrXyY99jCP498wM9hGG9CYa77/ObE00oZA8mNhLyYHXkXZLztfmTFZUzhz1U+gvm bbUfg/oS4/my/X2/TfIz2KWuHcYB90LKbDlKTG8btQ3h6aq/ifiBXgbskjlMWtM1 UaQoTqozAl1HMoTgGVVQcaB2FbfKXRBe -----END CERTIFICATE-----Generated at Tue Apr 8 19:03:31 2025 by rpki-client