$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.mft File: gYE9avls8KB0gHHNux4nD2tcYRM.mft (raw, json) Hash identifier: +pX/p+F6ZJYaoSvlpiTWz3jUJcCORDP6cQZWC3okZ90= Subject key identifier: B2:23:24:05:88:C2:11:FC:F5:31:70:CA:34:04:F3:81:B4:0F:75:B9 Authority key identifier: 81:81:3D:6A:F9:6C:F0:A0:74:80:71:CD:BB:1E:27:0F:6B:5C:61:13 Certificate issuer: /CN=A9128DE9/serialNumber=81813D6AF96CF0A0748071CDBB1E270F6B5C6113 Certificate serial: 0BCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.mft Manifest number: 0BBB Signing time: Mon 14 Apr 2025 18:47:16 +0000 Manifest this update: Mon 14 Apr 2025 18:47:16 +0000 Manifest next update: Mon 21 Apr 2025 18:47:16 +0000 Files and hashes: 1: gYE9avls8KB0gHHNux4nD2tcYRM.crl (hash: bUC3nVaAsoOJFtxXmwqWx+9uJX/NXFgKaWVrmRIWvRU=) 2: 1D77B4081BD911EAB49CC840C4F9AE02.roa (hash: jHX60u9ArdYh7GwRrx6uREAMvSVK0+kOgD9fYQ7pbX8=) 3: B3148DDA1BD711EAB801703AC4F9AE02.roa (hash: vAnu7lUAwo4HH4C945cyzFyVOcsgKeAbmVZGK6iXYjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 18:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3020 (0xbcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=81813D6AF96CF0A0748071CDBB1E270F6B5C6113 Validity Not Before: Apr 14 18:47:16 2025 GMT Not After : Apr 21 18:47:16 2025 GMT Subject: CN=67fd5834-69f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:98:d9:e4:46:24:9e:10:ff:8b:2c:4d:2c:da: 31:62:57:6b:bc:73:ce:7e:a5:9b:be:e4:3b:74:0c: 0f:90:c3:8b:7c:13:1f:63:c5:0c:fa:6d:4a:6d:a5: 6a:ce:c5:38:9e:58:0a:f1:37:49:e0:6d:9a:b8:1e: 02:92:cb:43:24:5a:83:b8:c3:57:00:85:df:53:9f: 3c:be:ef:d6:cf:f0:45:79:52:f5:fe:10:92:30:f8: 6d:76:78:7e:8c:4c:03:08:1b:7f:9c:6f:50:43:a1: 90:58:68:97:0e:11:33:45:e7:b4:ac:2b:f7:d2:99: b1:07:62:e6:f6:4e:3c:33:f9:98:71:a4:bd:a1:eb: f4:d9:3f:a7:d3:ab:19:d6:af:4d:43:fc:15:04:07: 17:83:be:24:ff:40:0c:f1:80:4b:42:8d:4f:06:8a: 92:ea:7e:33:89:d8:6b:17:29:f8:b1:ee:7d:7e:5b: ea:2d:1e:c4:57:c4:46:f6:cc:a6:29:c4:30:a0:ce: da:88:86:18:d9:9b:b9:64:bf:d5:79:8d:36:ce:da: c7:17:da:0d:d5:5d:ed:7e:a1:0c:73:7d:4b:5d:c2: 2a:46:10:33:ba:4d:cf:5f:77:25:b9:fe:0d:83:56: 59:56:2d:96:fb:b1:6b:1e:dd:c6:7e:08:d0:63:46: d1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:23:24:05:88:C2:11:FC:F5:31:70:CA:34:04:F3:81:B4:0F:75:B9 X509v3 Authority Key Identifier: keyid:81:81:3D:6A:F9:6C:F0:A0:74:80:71:CD:BB:1E:27:0F:6B:5C:61:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:be:3b:ab:cb:1d:4b:e6:04:61:bb:ba:19:09:ff:2c:7c:80: af:de:51:5f:05:9b:2e:18:0b:a0:6b:86:d9:0c:34:f2:a2:52: a6:6c:c3:b2:71:97:12:85:3c:61:e7:e0:f6:79:7e:26:5d:94: d6:4f:6c:3f:83:94:d8:1b:37:d7:64:8f:bd:23:61:d3:2e:34: cc:60:ad:22:7d:c4:2d:10:6e:dc:7d:40:1a:90:8d:7f:db:96: 60:14:27:00:f2:fb:28:53:67:79:f7:19:28:c4:66:9a:59:6d: 40:a2:75:f2:f8:d0:76:f7:1b:44:b6:35:7c:fd:3b:f9:d9:9c: db:c0:b3:93:26:5c:8e:8d:71:0f:d8:7c:3d:81:10:e8:df:93: 6d:b7:ee:bc:23:ce:8d:9a:2b:58:ec:f0:da:b4:17:05:71:b9: 46:d3:8a:13:a9:98:e5:27:ac:ea:95:5d:3a:e6:ea:fc:3d:bf: 99:1f:f7:c5:97:77:d8:3f:53:7c:94:24:e5:a5:55:4c:a3:00: 0e:e9:62:66:c2:6f:f5:8b:14:10:93:59:aa:62:88:72:59:5d: 52:37:8e:73:c2:d8:41:77:b0:67:1a:a4:a9:6f:53:a9:91:b5: ae:b9:86:9f:64:a3:93:69:bb:ad:52:b2:4e:98:fa:a9:58:5f: 1b:92:82:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDgxODEzRDZBRjk2Q0YwQTA3NDgwNzFDREJCMUUyNzBG NkI1QzYxMTMwHhcNMjUwNDE0MTg0NzE2WhcNMjUwNDIxMTg0NzE2WjAYMRYwFAYD VQQDEw02N2ZkNTgzNC02OWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZjZ5EYknhD/iyxNLNoxYldrvHPOfqWbvuQ7dAwPkMOLfBMfY8UM+m1KbaVq zsU4nlgK8TdJ4G2auB4CkstDJFqDuMNXAIXfU588vu/Wz/BFeVL1/hCSMPhtdnh+ jEwDCBt/nG9QQ6GQWGiXDhEzRee0rCv30pmxB2Lm9k48M/mYcaS9oev02T+n06sZ 1q9NQ/wVBAcXg74k/0AM8YBLQo1PBoqS6n4zidhrFyn4se59flvqLR7EV8RG9sym KcQwoM7aiIYY2Zu5ZL/VeY02ztrHF9oN1V3tfqEMc31LXcIqRhAzuk3PX3cluf4N g1ZZVi2W+7FrHt3GfgjQY0bRjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIjJAWI whH89TFwyjQE84G0D3W5MB8GA1UdIwQYMBaAFIGBPWr5bPCgdIBxzbseJw9rXGET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9ENjlCNDVFODFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9nWUU5YXZsczhLQjBnSEhOdXg0bkQydGNZ Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZRTlhdmxzOEtCMGdISE51eDRuRDJ0Y1lSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9ENjlCNDVFODFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9nWUU5YXZsczhL QjBnSEhOdXg0bkQydGNZUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCivjuryx1L5gRhu7oZCf8sfICv3lFfBZsuGAuga4bZDDTyolKmbMOy cZcShTxh5+D2eX4mXZTWT2w/g5TYGzfXZI+9I2HTLjTMYK0ifcQtEG7cfUAakI1/ 25ZgFCcA8vsoU2d59xkoxGaaWW1AonXy+NB29xtEtjV8/Tv52ZzbwLOTJlyOjXEP 2Hw9gRDo35Ntt+68I86NmitY7PDatBcFcblG04oTqZjlJ6zqlV065ur8Pb+ZH/fF l3fYP1N8lCTlpVVMowAO6WJmwm/1ixQQk1mqYohyWV1SN45zwthBd7BnGqSpb1Op kbWuuYafZKOTabutUrJOmPqpWF8bkoKk -----END CERTIFICATE-----Generated at Tue Apr 15 20:15:10 2025 by rpki-client