$ rpki-client -vvf rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft File: g4n9Rv74flk96Bz_3N8guiynYB4.mft (raw, json) Hash identifier: /6OAHPUKZAFa9aPyiPshGjMcoDKRmbNY0NaV3kK66rI= Subject key identifier: 6B:EE:1D:B2:36:39:30:1F:E6:F4:5C:31:99:C7:E8:1A:19:F7:A9:4E Authority key identifier: 83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E Certificate issuer: /CN=A91475BA/serialNumber=8389FD46FEF87E593DE81CFFDCDF20BA2CA7601E Certificate serial: 07F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft Manifest number: 07F2 Signing time: Wed 02 Apr 2025 20:55:14 +0000 Manifest this update: Wed 02 Apr 2025 20:55:13 +0000 Manifest next update: Wed 09 Apr 2025 20:55:13 +0000 Files and hashes: 1: g4n9Rv74flk96Bz_3N8guiynYB4.crl (hash: Wn/abma461/cXFhEdyxLkPrF5eenF/pxUqNZxc/v57c=) 2: 1E1D32C22FF311EC9220256BC4F9AE02.roa (hash: pTjj2b7GgJwyDNJuxZHgCMBFpwcbCF/p1EbBwHpmEQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2039 (0x7f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91475BA Validity Not Before: Apr 2 20:55:13 2025 GMT Not After : Apr 9 20:55:13 2025 GMT Subject: CN=67eda432-e993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:22:d7:d9:94:5e:ba:74:78:dc:73:fb:66:f4: b3:1d:b4:9c:3b:e7:65:de:b9:e7:db:4a:51:e0:84: 05:fb:31:b1:79:2f:dc:8d:62:8e:78:3d:b2:3e:1f: ca:a4:30:79:00:d5:01:9c:18:d5:9f:96:2f:34:33: 8e:fe:59:bd:b9:a2:0c:7d:26:ec:48:a7:53:c4:ec: 45:de:4f:e0:91:ee:04:73:a9:7a:92:e5:b2:0a:16: 62:6b:fd:31:06:b0:f8:35:3d:00:0c:b7:93:40:00: 14:57:cb:87:9e:b0:a6:f0:2a:4a:93:1f:a2:36:91: 79:d3:42:ff:50:02:c1:33:7f:03:c5:90:ca:ab:a6: 71:40:da:86:9e:a1:56:a6:e6:fa:35:09:67:a5:8c: 4e:ef:07:99:0b:af:05:a5:60:68:47:47:44:08:40: 02:81:43:59:a3:e3:b2:4d:11:34:f3:88:06:b5:cc: 3e:ba:ac:22:77:87:18:51:db:13:9a:59:68:76:0f: d8:92:cf:f4:16:6c:46:32:07:84:5b:47:8b:5d:eb: cd:05:68:24:f1:d9:5b:ff:bc:52:4b:88:2b:8d:11: 49:c9:16:8e:17:be:b5:13:27:17:0b:6e:63:0d:e8: 5c:df:5b:85:11:54:e3:84:42:de:40:b4:2a:26:b8: dd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:EE:1D:B2:36:39:30:1F:E6:F4:5C:31:99:C7:E8:1A:19:F7:A9:4E X509v3 Authority Key Identifier: keyid:83:89:FD:46:FE:F8:7E:59:3D:E8:1C:FF:DC:DF:20:BA:2C:A7:60:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4n9Rv74flk96Bz_3N8guiynYB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91475BA/D4F08EE6DAE911EA92CE345AC4F9AE02/g4n9Rv74flk96Bz_3N8guiynYB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8b:9e:c5:c0:e9:c6:78:c9:92:12:06:f5:f5:f6:58:a4:f3: 7e:69:3b:25:ed:2a:3a:56:39:34:ca:44:f3:e2:a2:0b:14:5e: 42:61:2a:97:46:63:e0:9e:28:27:7b:5f:2b:91:e4:d7:fa:bb: 4f:d5:fb:be:e2:bf:8a:73:c1:21:fe:23:47:43:a3:43:15:88: 5e:a5:74:0b:d3:a6:06:61:7c:53:6f:f7:6a:9f:b0:9b:fc:6d: fa:50:42:a6:c4:15:1b:51:e6:c6:b5:ce:fd:50:a2:9d:05:ba: 6a:23:b3:27:f0:34:5f:81:0e:d4:87:62:af:25:c9:c7:67:69: 88:2c:c2:75:b6:f4:fe:9b:46:38:c7:4b:6a:bf:96:e3:8d:0b: cf:15:c0:db:c1:59:5d:c4:1d:0a:7e:aa:80:d2:a0:f4:fb:77: 30:18:2f:13:8a:6e:e1:4f:5f:d5:68:41:07:42:28:62:ef:0a: 55:55:dc:7e:ef:4f:a4:2a:74:eb:44:9d:ba:d8:5c:78:d9:9f: 50:10:fb:d3:11:6d:f8:b2:d8:43:17:24:b2:75:ec:0d:15:2c: 7b:b8:04:9d:a3:42:32:ce:00:1e:e1:0c:76:db:48:00:93:04: 34:c6:cf:4c:cd:8a:35:44:f7:82:cf:43:e1:b7:b2:64:b8:29: 5f:0c:06:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc1QkExMTAvBgNVBAUTKDgzODlGRDQ2RkVGODdFNTkzREU4MUNGRkRDREYyMEJB MkNBNzYwMUUwHhcNMjUwNDAyMjA1NTEzWhcNMjUwNDA5MjA1NTEzWjAYMRYwFAYD VQQDEw02N2VkYTQzMi1lOTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSLX2ZReunR43HP7ZvSzHbScO+dl3rnn20pR4IQF+zGxeS/cjWKOeD2yPh/K pDB5ANUBnBjVn5YvNDOO/lm9uaIMfSbsSKdTxOxF3k/gke4Ec6l6kuWyChZia/0x BrD4NT0ADLeTQAAUV8uHnrCm8CpKkx+iNpF500L/UALBM38DxZDKq6ZxQNqGnqFW pub6NQlnpYxO7weZC68FpWBoR0dECEACgUNZo+OyTRE084gGtcw+uqwid4cYUdsT mllodg/Yks/0FmxGMgeEW0eLXevNBWgk8dlb/7xSS4grjRFJyRaOF761EycXC25j Dehc31uFEVTjhELeQLQqJrjd9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvuHbI2 OTAf5vRcMZnH6BoZ96lOMB8GA1UdIwQYMBaAFIOJ/Ub++H5ZPegc/9zfILosp2Ae MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzVCQS9ENEYwOEVFNkRB RTkxMUVBOTJDRTM0NUFDNEY5QUUwMi9nNG45UnY3NGZsazk2QnpfM044Z3VpeW5Z QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c0bjlSdjc0ZmxrOTZCel8zTjhndWl5bllCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzVCQS9ENEYwOEVFNkRBRTkxMUVBOTJDRTM0NUFDNEY5QUUwMi9nNG45UnY3NGZs azk2QnpfM044Z3VpeW5ZQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASi57FwOnGeMmSEgb19fZYpPN+aTsl7So6Vjk0ykTz4qILFF5CYSqX RmPgnigne18rkeTX+rtP1fu+4r+Kc8Eh/iNHQ6NDFYhepXQL06YGYXxTb/dqn7Cb /G36UEKmxBUbUebGtc79UKKdBbpqI7Mn8DRfgQ7Uh2KvJcnHZ2mILMJ1tvT+m0Y4 x0tqv5bjjQvPFcDbwVldxB0KfqqA0qD0+3cwGC8Tim7hT1/VaEEHQihi7wpVVdx+ 70+kKnTrRJ262Fx42Z9QEPvTEW34sthDFySydewNFSx7uASdo0IyzgAe4Qx220gA kwQ0xs9MzYo1RPeCz0Pht7JkuClfDAYF -----END CERTIFICATE-----Generated at Fri Apr 4 21:52:04 2025 by rpki-client