$ rpki-client -vvf rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft File: gO0g9_wH3gyfPBuOKunNP85u2yE.mft (raw, json) Hash identifier: dHi+ZnICrpeuIg9ztCW49wwE/TJcFg9F9gQn77MuYb0= Subject key identifier: EA:45:1D:02:B8:38:38:43:F6:29:11:1C:83:54:06:53:9F:E8:1C:3A Authority key identifier: 80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 Certificate issuer: /CN=A915BE00/serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft Manifest number: 0521 Signing time: Fri 28 Mar 2025 23:48:55 +0000 Manifest this update: Fri 28 Mar 2025 23:48:54 +0000 Manifest next update: Fri 04 Apr 2025 23:48:54 +0000 Files and hashes: 1: gO0g9_wH3gyfPBuOKunNP85u2yE.crl (hash: jGrqQiBxpOVBfHOhHeEL/xWwDFgtQtyQFIX2dXSn7V4=) 2: 8B656418F50011EBBF60EA16C4F9AE02.roa (hash: F3nrJV9RbahselnP1F8Yv/+tmOe/GAxvBI06sJR2JYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BE00 Validity Not Before: Mar 28 23:48:54 2025 GMT Not After : Apr 4 23:48:54 2025 GMT Subject: CN=67e73566-f329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ca:c1:fa:46:b9:16:18:78:57:da:0a:85:07: 9e:7d:5d:b0:b0:50:c9:0a:47:6a:ea:4e:82:b1:55: 9f:29:b4:3d:ad:e2:cc:84:6d:e8:74:55:fa:27:74: 8a:42:d2:dc:7e:7b:58:72:40:21:88:75:7c:e7:cd: 96:95:2d:89:31:e9:db:47:c7:90:5b:d1:2a:39:2e: 93:8e:2b:c9:b2:69:c5:8e:df:44:6b:94:c0:e1:73: c5:94:95:a4:b3:91:dd:79:de:60:79:da:f4:3d:75: 33:2b:67:f1:db:16:12:4c:57:ca:44:00:25:79:de: dd:42:7f:53:b2:90:c1:ab:6e:24:f7:66:61:32:39: 4a:de:dd:7f:e1:92:fb:c0:ac:0b:2c:ad:65:7e:c9: 9b:54:8f:d2:08:35:a4:a5:87:43:90:19:94:44:ca: 20:ab:0b:2f:f7:d3:de:d7:f8:98:92:70:33:1d:b8: 57:64:b6:3b:80:ae:1b:ca:61:aa:24:99:2c:fd:cc: 80:45:c1:af:43:7f:09:63:7e:d0:80:60:bb:68:68: b9:aa:42:3e:1b:d8:ed:38:f9:b2:11:78:11:a0:59: 01:65:48:6d:a0:16:d4:bb:db:c6:1b:f6:87:f3:8c: 26:55:3b:2a:4c:f6:b3:3d:b2:28:28:de:61:9a:47: 23:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:45:1D:02:B8:38:38:43:F6:29:11:1C:83:54:06:53:9F:E8:1C:3A X509v3 Authority Key Identifier: keyid:80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:99:96:57:f2:3f:6b:5f:cf:ec:ed:1b:2c:47:27:8b:3f:a1: ed:b9:e3:8a:b0:ea:18:a9:c4:2e:47:c2:74:ed:f8:1c:4e:80: f7:d4:34:8a:47:32:42:54:11:57:24:2b:9d:b1:0a:94:f8:9d: 9e:49:ee:ed:2a:e7:cf:11:36:47:47:dd:8e:6a:6e:8a:9c:23: 05:ad:c7:0d:d6:59:d4:83:aa:65:32:73:6b:ff:ae:a3:a9:39: 12:91:fc:a2:fb:d5:28:49:6b:c8:dc:a8:4f:ae:e5:fb:75:6c: 2e:a5:33:da:06:16:eb:38:51:a2:e8:b5:8f:4b:b7:6b:82:e0: cf:c7:65:d1:80:17:64:1a:fe:ed:96:61:c6:1b:e1:3c:be:77: 5c:e9:3b:49:dd:5f:81:55:7f:8a:82:27:58:70:55:fa:3a:7e: ed:d5:b6:f3:05:48:1b:5c:d6:21:b8:0e:44:1b:cb:f2:de:ba: 02:ed:b2:15:cc:7f:b4:32:96:31:b0:52:8f:3a:78:48:a5:8f: fe:88:14:45:36:f0:57:11:b5:d8:2c:05:0d:ba:81:53:f0:d1: 64:da:f3:1b:b5:6e:6d:f7:81:7d:3f:04:a4:8d:62:55:29:4d: a2:f6:c7:8d:9d:1e:89:2f:02:2d:52:35:07:94:48:73:a7:e7: 10:4f:70:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJFMDAxMTAvBgNVBAUTKDgwRUQyMEY3RkMwN0RFMEM5RjNDMUI4RTJBRTlDRDNG Q0U2RURCMjEwHhcNMjUwMzI4MjM0ODU0WhcNMjUwNDA0MjM0ODU0WjAYMRYwFAYD VQQDEw02N2U3MzU2Ni1mMzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8rB+ka5Fhh4V9oKhQeefV2wsFDJCkdq6k6CsVWfKbQ9reLMhG3odFX6J3SK QtLcfntYckAhiHV8582WlS2JMenbR8eQW9EqOS6TjivJsmnFjt9Ea5TA4XPFlJWk s5Hded5gedr0PXUzK2fx2xYSTFfKRAAled7dQn9TspDBq24k92ZhMjlK3t1/4ZL7 wKwLLK1lfsmbVI/SCDWkpYdDkBmURMogqwsv99Pe1/iYknAzHbhXZLY7gK4bymGq JJks/cyARcGvQ38JY37QgGC7aGi5qkI+G9jtOPmyEXgRoFkBZUhtoBbUu9vGG/aH 84wmVTsqTPazPbIoKN5hmkcj5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpFHQK4 ODhD9ikRHINUBlOf6Bw6MB8GA1UdIwQYMBaAFIDtIPf8B94MnzwbjirpzT/Obtsh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkUwMC8zRDBCMjEyQUY0 RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNneWZQQnVPS3VuTlA4NXUy eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPMGc5X3dIM2d5ZlBCdU9LdW5OUDg1dTJ5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkUwMC8zRDBCMjEyQUY0RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNn eWZQQnVPS3VuTlA4NXUyeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbmZZX8j9rX8/s7RssRyeLP6HtueOKsOoYqcQuR8J07fgcToD31DSK RzJCVBFXJCudsQqU+J2eSe7tKufPETZHR92Oam6KnCMFrccN1lnUg6plMnNr/66j qTkSkfyi+9UoSWvI3KhPruX7dWwupTPaBhbrOFGi6LWPS7drguDPx2XRgBdkGv7t lmHGG+E8vndc6TtJ3V+BVX+KgidYcFX6On7t1bbzBUgbXNYhuA5EG8vy3roC7bIV zH+0MpYxsFKPOnhIpY/+iBRFNvBXEbXYLAUNuoFT8NFk2vMbtW5t94F9PwSkjWJV KU2i9seNnR6JLwItUjUHlEhzp+cQT3B9 -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:47 2025 by rpki-client