$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: UjaRHmhIvbkSKwqh2GvAVqFhskxMNQvcsylwXDtlmSA= Subject key identifier: 90:6E:E4:EF:7A:6C:98:08:ED:D3:A1:44:DA:B5:6F:4C:2D:59:4B:00 Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 09 Signing time: Sat 05 Apr 2025 07:27:11 +0000 Manifest this update: Sat 05 Apr 2025 07:27:11 +0000 Manifest next update: Sat 12 Apr 2025 07:27:11 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: briELPmJQFSQZrRXkvKARh4ifquMmuG6u51TsknUDCU=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: FyXjLRCgkRt49xci/u6DJz1qKlOyAWBczjrKc036O0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA Validity Not Before: Apr 5 07:27:11 2025 GMT Not After : Apr 12 07:27:11 2025 GMT Subject: CN=67f0db4f-a941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a4:b6:62:64:b5:e6:fc:67:b6:d2:95:67:b9: 49:2e:17:b2:10:a7:8c:8c:be:6d:be:a6:71:f3:d3: 72:c8:3d:f3:57:d4:b1:4f:cf:d6:34:59:6b:e6:ac: dc:b2:23:24:b3:cc:30:5e:4f:ca:65:04:03:93:85: ab:0f:ee:3d:66:14:2f:98:01:94:a0:97:9b:65:79: 58:27:01:37:b5:a0:3e:ff:bc:d5:b5:96:b3:72:c2: dc:70:35:1b:da:8e:fc:6f:61:25:db:dd:d6:8c:5d: 2f:ec:9b:21:ff:89:ef:cb:99:75:a0:21:16:2a:c8: 08:a5:ec:dd:38:3a:48:b3:65:38:74:79:21:9b:ac: 70:2e:eb:32:98:27:4b:5f:ca:41:ed:01:1c:52:eb: c1:bd:c8:81:77:ec:38:28:13:8a:68:37:e3:7a:4e: c8:fe:2b:a3:92:89:d7:3a:0b:df:98:25:fc:89:2a: a7:3f:e2:97:3b:7f:08:f3:69:9d:20:c5:ae:cd:55: 16:d3:b5:98:52:00:e6:93:44:b2:51:f5:f6:ab:2d: ad:83:9b:b8:eb:57:94:15:30:5c:32:58:13:42:94: 0f:32:ec:58:09:bf:a0:bf:a7:55:ae:ec:5e:74:ef: 86:c1:b7:c0:a3:13:c8:a8:b6:d9:ee:82:64:44:2e: e6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:6E:E4:EF:7A:6C:98:08:ED:D3:A1:44:DA:B5:6F:4C:2D:59:4B:00 X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:03:38:73:31:7d:5f:79:44:96:3e:b7:cc:13:3b:31:e3:7e: 4b:09:71:31:db:c0:6d:0c:2f:f3:88:54:e9:a9:b5:af:b2:5f: 2d:2c:ac:ca:4c:a8:0d:65:7a:61:90:27:0e:91:7a:20:be:2b: 05:71:fe:96:11:72:8d:fe:b8:86:5f:5f:11:24:52:d7:62:68: 24:28:68:af:5b:23:cd:28:af:27:44:03:86:04:1c:bb:31:29: 16:cb:51:34:88:b2:0f:d8:fe:22:9f:2e:6d:db:0c:7a:50:8c: ca:f7:7b:85:a0:1d:1c:1f:3c:7b:02:24:70:10:f9:70:bf:e1: 8b:e1:30:28:9a:7c:59:61:41:93:cd:d2:2a:3f:11:2b:9d:13: 13:de:ec:34:6d:f6:eb:41:20:98:42:40:5b:29:c6:5e:6e:a1: 5b:4b:39:f8:f9:45:23:3d:11:36:11:52:4b:bf:f3:ae:21:ff: 64:d8:38:bc:44:2e:71:cb:78:89:3f:b1:47:23:30:45:d3:63: d0:28:cf:87:6c:4d:2c:19:df:88:f1:58:eb:11:ee:21:7d:39: 18:46:18:32:ec:c3:a6:4a:6f:45:6c:91:d2:40:c6:74:ed:51: 9a:21:e5:40:0f:d0:e1:d4:34:95:30:f5:c8:68:9f:11:1d:a8: 54:b3:12:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTA0MDUwNzI3MTFaFw0yNTA0MTIwNzI3MTFaMBgxFjAUBgNV BAMTDTY3ZjBkYjRmLWE5NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLpLZiZLXm/Ge20pVnuUkuF7IQp4yMvm2+pnHz03LIPfNX1LFPz9Y0WWvmrNyy IySzzDBeT8plBAOThasP7j1mFC+YAZSgl5tleVgnATe1oD7/vNW1lrNywtxwNRva jvxvYSXb3daMXS/smyH/ie/LmXWgIRYqyAil7N04OkizZTh0eSGbrHAu6zKYJ0tf ykHtARxS68G9yIF37DgoE4poN+N6Tsj+K6OSidc6C9+YJfyJKqc/4pc7fwjzaZ0g xa7NVRbTtZhSAOaTRLJR9farLa2Dm7jrV5QVMFwyWBNClA8y7FgJv6C/p1Wu7F50 74bBt8CjE8iottnugmRELuYpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkG7k73ps mAjt06FE2rVvTC1ZSwAwHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 OUNBL0E5RjI3MjJFMDhBMDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZ V2U2T24xeVU4ZGhZeG9vMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB0DOHMxfV95RJY+t8wTOzHjfksJcTHbwG0ML/OIVOmpta+yXy0srMpM qA1lemGQJw6ReiC+KwVx/pYRco3+uIZfXxEkUtdiaCQoaK9bI80orydEA4YEHLsx KRbLUTSIsg/Y/iKfLm3bDHpQjMr3e4WgHRwfPHsCJHAQ+XC/4YvhMCiafFlhQZPN 0io/ESudExPe7DRt9utBIJhCQFspxl5uoVtLOfj5RSM9ETYRUku/864h/2TYOLxE LnHLeIk/sUcjMEXTY9Aoz4dsTSwZ34jxWOsR7iF9ORhGGDLsw6ZKb0VskdJAxnTt UZoh5UAP0OHUNJUw9chonxEdqFSzEls= -----END CERTIFICATE-----Generated at Sun Apr 6 22:15:46 2025 by rpki-client