$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: jGaQODH3o6QEO3PghSa0cE4/mZEqVnfCLyEX/Zffsso= Subject key identifier: F3:2D:B6:56:B6:17:CD:A7:E8:48:04:79:57:CD:4A:11:6B:17:41:7B Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 020D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 060C Signing time: Thu 03 Apr 2025 00:24:16 +0000 Manifest this update: Thu 03 Apr 2025 00:24:15 +0000 Manifest next update: Thu 10 Apr 2025 00:24:15 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: yfP6mTPtzZlXZ3k2o6Qc9mzDGE+9eSc6evHtpDdDeys=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: 6xK46XhJtyZvl0GV6Tg9wg5kNg7cdtZOaQsNEIc5Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E Validity Not Before: Apr 3 00:24:15 2025 GMT Not After : Apr 10 00:24:15 2025 GMT Subject: CN=67edd52f-8501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f2:52:48:53:c2:a2:72:92:ae:ee:3d:5b:26: 2c:3f:13:85:99:ed:e0:7d:b4:8f:d1:41:68:3a:1d: 63:69:99:b3:e9:76:fe:a0:8e:37:3e:df:87:b7:3b: 71:3b:0b:f3:37:f1:1c:97:f1:08:f1:ad:0d:1f:8b: bf:06:cb:dd:e9:e1:12:a6:a2:0d:40:3f:63:5e:c4: 62:e1:6f:b3:fa:4c:96:49:86:21:89:7b:15:d6:8d: fe:a9:8a:2d:a7:56:e0:fd:4d:57:4c:6d:7d:bb:80: 07:d5:fe:91:cb:0f:84:e0:59:1d:17:b7:df:bf:d5: 20:08:7d:68:5f:e0:ca:81:a7:dd:57:fa:8d:47:1d: ff:83:07:ef:b4:2a:a7:2f:3e:5d:67:5a:1a:27:7d: 88:bb:9f:3b:0a:13:8e:69:60:cc:50:84:47:bc:76: 17:b0:9d:fa:1f:8f:ee:2f:b7:be:17:5c:8d:ce:8e: 24:62:46:24:7f:af:aa:62:5f:82:d7:ae:a6:5b:46: 54:f8:f6:d4:c7:41:d7:56:b6:75:9f:1c:41:80:cc: 4a:49:f7:dd:c8:a1:34:ab:0a:02:c6:bc:ea:68:8d: a2:32:2c:04:14:3d:33:9f:6a:40:3d:5a:a3:26:91: ff:ba:46:20:63:13:fe:7f:ee:4b:32:99:06:2a:8a: 38:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:2D:B6:56:B6:17:CD:A7:E8:48:04:79:57:CD:4A:11:6B:17:41:7B X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:67:6f:c1:f5:a1:bd:d1:7c:e5:af:6e:c1:f7:8f:27:38:9c: 36:83:c3:4f:c9:01:80:60:15:ff:56:99:41:86:5f:9d:cf:eb: cf:fa:37:5a:a8:a1:9d:68:4a:91:e4:d6:b2:ac:b0:a8:1e:26: 5a:18:43:aa:ca:f9:f3:db:f6:77:2d:de:7a:bb:91:37:ad:71: 74:e3:82:49:9f:e7:1b:c7:98:08:77:f8:6e:d8:bc:a3:69:e5: a8:d3:02:79:91:78:b0:9e:22:b6:50:9a:bb:8f:d9:de:fe:0a: 99:5a:48:6a:a1:9f:6a:e8:28:81:ea:0c:39:85:68:78:0b:8c: 4d:d7:98:06:f3:69:80:4d:80:f0:c1:93:46:1d:49:80:01:8e: c5:79:c5:6f:b1:ee:ae:68:46:04:94:da:69:50:1b:07:7d:d8: 3e:c6:9a:1c:73:9c:58:6d:b8:a3:d1:81:21:5b:75:da:cc:d2: 6b:37:01:1e:62:d3:e9:da:6d:88:2e:db:c8:30:de:ec:08:88: d4:2e:b0:3d:36:1f:e0:4e:30:d7:06:20:f7:7d:d3:97:5a:0c: e0:23:6a:43:a1:0c:47:ca:8c:17:32:a0:0d:c4:5b:a5:b2:bd: 29:c7:2f:0b:f2:30:cf:ce:ce:c0:5b:50:3f:16:5d:cd:84:7f: 95:8b:af:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUwNDAzMDAyNDE1WhcNMjUwNDEwMDAyNDE1WjAYMRYwFAYD VQQDEw02N2VkZDUyZi04NTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/JSSFPConKSru49WyYsPxOFme3gfbSP0UFoOh1jaZmz6Xb+oI43Pt+Htztx OwvzN/Ecl/EI8a0NH4u/Bsvd6eESpqINQD9jXsRi4W+z+kyWSYYhiXsV1o3+qYot p1bg/U1XTG19u4AH1f6Ryw+E4FkdF7ffv9UgCH1oX+DKgafdV/qNRx3/gwfvtCqn Lz5dZ1oaJ32Iu587ChOOaWDMUIRHvHYXsJ36H4/uL7e+F1yNzo4kYkYkf6+qYl+C 166mW0ZU+PbUx0HXVrZ1nxxBgMxKSffdyKE0qwoCxrzqaI2iMiwEFD0zn2pAPVqj JpH/ukYgYxP+f+5LMpkGKoo4UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMttla2 F82n6EgEeVfNShFrF0F7MB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOZ2/B9aG90Xzlr27B948nOJw2g8NPyQGAYBX/VplBhl+dz+vP+jda qKGdaEqR5NayrLCoHiZaGEOqyvnz2/Z3Ld56u5E3rXF044JJn+cbx5gId/hu2Lyj aeWo0wJ5kXiwniK2UJq7j9ne/gqZWkhqoZ9q6CiB6gw5hWh4C4xN15gG82mATYDw wZNGHUmAAY7FecVvse6uaEYElNppUBsHfdg+xpocc5xYbbij0YEhW3XazNJrNwEe YtPp2m2ILtvIMN7sCIjULrA9Nh/gTjDXBiD3fdOXWgzgI2pDoQxHyowXMqANxFul sr0pxy8L8jDPzs7AW1A/Fl3NhH+Vi6+k -----END CERTIFICATE-----Generated at Fri Apr 4 18:32:06 2025 by rpki-client