$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: cu83iEOgl8gvQMheVG86ilTmdABNGCv8P1Jrba9FFbQ= Subject key identifier: 06:8C:CC:96:5D:A8:15:BF:97:AB:75:76:BF:AE:AC:39:0A:AF:55:28 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1B8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1B7B Signing time: Sat 12 Apr 2025 16:13:11 +0000 Manifest this update: Sat 12 Apr 2025 16:13:10 +0000 Manifest next update: Sat 19 Apr 2025 16:13:10 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: 6U/qxq5ojQON0qDEpytW94NWdt/U5vYS/5/DdJpAL3A=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 16:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7053 (0x1b8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Apr 12 16:13:10 2025 GMT Not After : Apr 19 16:13:10 2025 GMT Subject: CN=67fa9116-cd18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5d:63:91:54:a5:37:0a:fe:5b:3e:63:12:ee: 20:7b:b0:d0:3a:d7:34:26:dc:82:49:ad:0f:c6:96: ec:8e:47:73:71:c3:10:05:ab:ab:d5:b7:e3:6e:1b: 6d:4e:17:e7:2e:f4:2b:a5:bc:c2:a2:03:a2:05:ce: 57:81:07:b3:ae:0a:04:f8:e2:6a:4a:8a:30:a3:cc: 9a:85:87:7e:49:1d:a8:7c:21:2a:5f:6d:97:46:b7: 3e:d4:77:9e:80:f1:34:bf:5f:11:08:54:bd:d3:e4: 19:e4:2c:f9:44:ad:88:6b:3d:77:b5:5e:cd:55:9d: 97:ae:ed:00:a2:8e:eb:db:f1:65:2f:4e:e2:a8:c0: ed:32:da:82:47:4e:04:d6:74:12:4f:22:81:ae:1e: d4:2a:46:72:c9:3d:dc:93:bb:b8:ba:d6:e5:f1:b7: a0:09:79:53:ce:ff:3f:83:89:3e:35:f1:ad:15:06: 14:29:18:f1:8c:a5:90:e6:0f:42:eb:95:d3:64:f7: 11:4d:39:cc:92:d9:2d:be:3b:f2:45:e2:5d:aa:99: 7e:85:9c:40:f5:af:09:49:ab:ac:33:8d:9f:f7:d7: 42:c3:32:be:1e:0a:b8:67:5b:5a:76:f8:57:c9:7d: a1:23:f3:21:8f:b5:e9:21:d4:fa:33:fa:d3:01:15: 33:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8C:CC:96:5D:A8:15:BF:97:AB:75:76:BF:AE:AC:39:0A:AF:55:28 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:2e:0d:47:71:e4:84:1d:42:ea:3a:c8:9e:88:da:d3:a7:ce: 58:24:54:f2:ca:5d:4b:8b:c3:14:e6:66:54:ce:94:2f:a9:7f: f6:25:ba:1a:cb:5d:44:88:73:5b:2e:0c:63:03:db:d7:d2:0c: 61:c8:2a:9f:4f:e2:be:e4:a9:c6:fd:a8:c5:a7:50:63:6a:64: 5b:0d:d0:eb:df:b9:71:b3:e8:93:9b:48:4e:8c:25:fb:83:21: 4d:20:ff:54:bc:40:6f:f3:77:db:d7:a0:f5:9d:c6:03:d6:86: ab:19:71:15:92:8d:b6:65:fd:0a:dc:91:b6:c8:42:90:6b:5b: c3:71:34:83:af:7a:0b:3e:83:69:c8:37:81:08:c5:f6:4a:f3: 5a:d6:a9:f9:b7:22:2a:3a:d7:08:58:61:17:22:9f:12:4d:41: 76:02:39:01:30:cb:bd:8f:6f:f7:d8:53:c0:5c:da:1c:88:67: e9:74:ab:cc:56:9d:73:f3:b8:31:ba:3b:fe:fc:c9:2f:50:a7: b8:69:6b:e2:4c:a9:04:05:ed:6f:8e:21:1b:2f:e3:0a:64:6b: 26:8a:32:58:28:cb:02:6e:07:81:20:ea:09:0c:eb:c8:0e:48: e5:30:49:05:5c:3e:69:81:44:a5:ed:b1:de:f9:66:04:9d:f2: b2:59:66:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwNDEyMTYxMzEwWhcNMjUwNDE5MTYxMzEwWjAYMRYwFAYD VQQDEw02N2ZhOTExNi1jZDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArV1jkVSlNwr+Wz5jEu4ge7DQOtc0JtyCSa0PxpbsjkdzccMQBaur1bfjbhtt ThfnLvQrpbzCogOiBc5XgQezrgoE+OJqSoowo8yahYd+SR2ofCEqX22XRrc+1Hee gPE0v18RCFS90+QZ5Cz5RK2Iaz13tV7NVZ2Xru0Aoo7r2/FlL07iqMDtMtqCR04E 1nQSTyKBrh7UKkZyyT3ck7u4utbl8begCXlTzv8/g4k+NfGtFQYUKRjxjKWQ5g9C 65XTZPcRTTnMktktvjvyReJdqpl+hZxA9a8JSausM42f99dCwzK+Hgq4Z1tadvhX yX2hI/Mhj7XpIdT6M/rTARUz6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaMzJZd qBW/l6t1dr+urDkKr1UoMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiLg1HceSEHULqOsieiNrTp85YJFTyyl1Li8MU5mZUzpQvqX/2Jboa y11EiHNbLgxjA9vX0gxhyCqfT+K+5KnG/ajFp1BjamRbDdDr37lxs+iTm0hOjCX7 gyFNIP9UvEBv83fb16D1ncYD1oarGXEVko22Zf0K3JG2yEKQa1vDcTSDr3oLPoNp yDeBCMX2SvNa1qn5tyIqOtcIWGEXIp8STUF2AjkBMMu9j2/32FPAXNociGfpdKvM Vp1z87gxujv+/MkvUKe4aWviTKkEBe1vjiEbL+MKZGsmijJYKMsCbgeBIOoJDOvI DkjlMEkFXD5pgUSl7bHe+WYEnfKyWWYC -----END CERTIFICATE-----Generated at Sat Apr 12 23:37:57 2025 by rpki-client