$ rpki-client -vvf rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft File: gJ7_H3gZuBdR8XerWv7YK8wypWk.mft (raw, json) Hash identifier: lnLSmxa72aVFE/3+qaYlj5JjosfxJtk8Y8o5QQ6kSTw= Subject key identifier: 7D:1A:32:67:18:D7:13:A9:27:EF:66:4C:46:4A:34:04:F8:D8:5F:DC Authority key identifier: 80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 Certificate issuer: /CN=A9158028/serialNumber=809EFF1F7819B81751F177AB5AFED82BCC32A569 Certificate serial: 05F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft Manifest number: 05F3 Signing time: Fri 28 Mar 2025 23:12:12 +0000 Manifest this update: Fri 28 Mar 2025 23:12:11 +0000 Manifest next update: Fri 04 Apr 2025 23:12:11 +0000 Files and hashes: 1: gJ7_H3gZuBdR8XerWv7YK8wypWk.crl (hash: WgKF6n+bGBbEPm3EsxMPpp2YdOAk5cacjdMR5MfZp24=) 2: 687D7178B85D11EBB2E17F26C4F9AE02.roa (hash: IMdjByBIYJm1pushgtHVRf7baWnF2aGGxcZRsZb6Kqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1528 (0x5f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158028 Validity Not Before: Mar 28 23:12:11 2025 GMT Not After : Apr 4 23:12:11 2025 GMT Subject: CN=67e72ccb-882b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:21:40:e9:77:ff:16:67:c7:db:e8:34:e1:91: 2f:73:8e:91:ef:c6:42:44:15:3f:42:0d:f3:09:b0: f9:af:8e:a1:a3:52:b1:97:d4:83:4c:73:14:c9:1a: c4:83:47:c7:58:ae:61:6f:a1:bb:80:1a:85:b2:2c: c6:f4:65:8d:f3:56:46:31:78:52:09:c0:b5:79:d7: f6:49:67:4c:79:25:83:bf:d0:64:11:97:81:67:3f: 46:41:6b:ed:99:61:01:a5:47:1e:56:9e:56:02:d7: f5:d9:10:5a:09:bd:85:2a:bc:22:98:7f:ef:ec:97: ad:6d:31:fd:1e:e7:f2:69:5b:fd:bd:c6:55:0a:17: df:11:eb:e0:a0:11:62:b1:5b:58:c1:56:a8:3d:a3: 49:17:cb:70:8f:a4:a8:3e:9e:87:2f:27:52:77:e4: f8:7d:8b:3e:ef:70:81:b8:59:0d:91:a0:9f:cf:85: af:ef:54:83:c8:38:76:6d:f7:65:42:95:1b:99:3c: e2:b0:74:90:fb:9a:0b:ab:ce:8e:2a:57:4a:d1:99: b0:b9:12:5b:b7:a3:09:6b:84:1f:19:21:cf:f9:a3: d3:e5:22:24:44:9b:e5:19:bc:03:5b:8b:08:e8:71: 0f:a4:d3:d3:3d:01:4b:ef:1a:ce:34:f4:ea:71:f9: b5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:1A:32:67:18:D7:13:A9:27:EF:66:4C:46:4A:34:04:F8:D8:5F:DC X509v3 Authority Key Identifier: keyid:80:9E:FF:1F:78:19:B8:17:51:F1:77:AB:5A:FE:D8:2B:CC:32:A5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gJ7_H3gZuBdR8XerWv7YK8wypWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158028/8A4ADEE4A11F11EB9339D50AC4F9AE02/gJ7_H3gZuBdR8XerWv7YK8wypWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:a4:a1:2b:ed:8b:05:03:a4:cd:1e:77:f7:c3:75:0a:c9:9a: 5a:32:97:e7:ef:10:96:48:ab:d7:93:3a:bd:2d:96:16:56:6f: cd:04:11:53:0d:ef:33:63:cd:22:4f:37:39:ff:9c:29:22:4d: 61:42:21:42:62:7e:6c:cb:51:05:5f:13:31:cc:a3:54:a4:c7: a1:79:45:ea:dd:7d:53:1d:b2:64:35:0c:71:9d:66:ee:0e:26: da:25:19:9e:3a:06:18:b9:8b:13:42:5d:b8:d6:77:38:7e:39: a1:99:ee:bc:3b:f3:52:83:41:70:07:55:9d:da:1c:f3:9e:ce: c5:f1:01:16:93:d9:c1:10:15:b3:5e:eb:60:bf:cc:15:c5:c0: 42:51:2b:80:4e:90:32:74:c7:77:53:0a:0f:dd:d9:dd:5d:f0: 5c:f0:ee:fe:94:7d:43:26:29:6c:1e:2c:75:93:29:75:ea:27: 18:e6:e7:df:17:9b:c7:e8:d1:a0:a9:6b:d1:a8:ee:0a:b9:f2: 9f:e2:cd:0e:99:88:c5:45:d6:e1:a5:09:4e:d8:a4:f9:a9:0a: eb:86:8c:ac:cf:32:b9:89:86:c6:8d:7e:66:34:78:b3:c0:4b: 0d:2d:8b:54:6c:b7:29:7e:26:ba:14:cd:46:15:3a:95:8f:d5: 3b:e4:ae:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMjgxMTAvBgNVBAUTKDgwOUVGRjFGNzgxOUI4MTc1MUYxNzdBQjVBRkVEODJC Q0MzMkE1NjkwHhcNMjUwMzI4MjMxMjExWhcNMjUwNDA0MjMxMjExWjAYMRYwFAYD VQQDEw02N2U3MmNjYi04ODJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iFA6Xf/FmfH2+g04ZEvc46R78ZCRBU/Qg3zCbD5r46ho1Kxl9SDTHMUyRrE g0fHWK5hb6G7gBqFsizG9GWN81ZGMXhSCcC1edf2SWdMeSWDv9BkEZeBZz9GQWvt mWEBpUceVp5WAtf12RBaCb2FKrwimH/v7JetbTH9HufyaVv9vcZVChffEevgoBFi sVtYwVaoPaNJF8twj6SoPp6HLydSd+T4fYs+73CBuFkNkaCfz4Wv71SDyDh2bfdl QpUbmTzisHSQ+5oLq86OKldK0ZmwuRJbt6MJa4QfGSHP+aPT5SIkRJvlGbwDW4sI 6HEPpNPTPQFL7xrONPTqcfm1lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0aMmcY 1xOpJ+9mTEZKNAT42F/cMB8GA1UdIwQYMBaAFICe/x94GbgXUfF3q1r+2CvMMqVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyOC84QTRBREVFNEEx MUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVCZFI4WGVyV3Y3WUs4d3lw V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dKN19IM2dadUJkUjhYZXJXdjdZSzh3eXBXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyOC84QTRBREVFNEExMUYxMUVCOTMzOUQ1MEFDNEY5QUUwMi9nSjdfSDNnWnVC ZFI4WGVyV3Y3WUs4d3lwV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2pKEr7YsFA6TNHnf3w3UKyZpaMpfn7xCWSKvXkzq9LZYWVm/NBBFT De8zY80iTzc5/5wpIk1hQiFCYn5sy1EFXxMxzKNUpMeheUXq3X1THbJkNQxxnWbu DibaJRmeOgYYuYsTQl241nc4fjmhme68O/NSg0FwB1Wd2hzzns7F8QEWk9nBEBWz Xutgv8wVxcBCUSuATpAydMd3UwoP3dndXfBc8O7+lH1DJilsHix1kyl16icY5uff F5vH6NGgqWvRqO4KufKf4s0OmYjFRdbhpQlO2KT5qQrrhoyszzK5iYbGjX5mNHiz wEsNLYtUbLcpfia6FM1GFTqVj9U75K4D -----END CERTIFICATE-----Generated at Fri Apr 4 18:29:49 2025 by rpki-client