$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft File: CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft (raw, json) Hash identifier: URh332BLTzoB1AEmzHBlBmVtva44sZ2M0iP0inVE5gE= Subject key identifier: 7D:A7:6F:D4:F3:04:51:23:D5:2D:B8:0C:8F:E9:82:B7:4D:9D:0E:79 Authority key identifier: 0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD Certificate issuer: /CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft Manifest number: 68 Signing time: Sat 05 Apr 2025 06:14:04 +0000 Manifest this update: Sat 05 Apr 2025 06:14:04 +0000 Manifest next update: Sat 12 Apr 2025 06:14:04 +0000 Files and hashes: 1: CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl (hash: Np9XXqewxb9X4cKai823L/FLKdYk6jc+I0HDm7KLmNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:14:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9 Validity Not Before: Apr 5 06:14:04 2025 GMT Not After : Apr 12 06:14:04 2025 GMT Subject: CN=67f0ca2c-0dc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:30:6d:e2:51:d3:97:60:c4:52:0a:48:88:e9: e5:6f:ad:b5:10:eb:1e:dd:1f:ac:7d:3b:40:c9:19: 55:37:f9:ab:45:09:99:b9:fd:06:14:7b:91:0b:30: b8:49:71:f7:07:12:83:32:9a:c0:06:b3:78:eb:da: 5f:41:0d:1d:8e:09:d0:5f:64:73:3c:42:d3:c1:a4: 45:f1:bc:9a:84:9a:5c:89:46:96:6b:93:bb:04:65: 6d:5a:e5:af:c4:be:b4:f0:17:b2:c5:a6:c5:31:38: 77:98:80:77:77:0b:1e:4b:9a:cb:1e:31:3a:0e:4d: 0e:cc:26:05:2f:cd:97:4d:a1:5d:65:92:c2:b7:01: c2:29:9a:ba:1d:26:5d:0e:3a:2d:76:4b:8b:dd:56: 55:0e:44:29:ee:25:fd:35:f2:df:e0:7a:cd:4f:29: bb:bb:61:14:68:d1:7f:0e:3b:67:af:e7:a4:85:62: a1:c0:72:fd:3d:b0:1c:cf:f0:0c:dd:9b:d0:44:54: 27:b8:b0:04:25:2d:42:5e:df:dd:62:bb:24:b7:05: 2e:a1:aa:32:6c:1c:a1:25:a2:e1:f1:b8:d9:a4:d4: 50:c3:b4:6f:e6:ee:a6:f5:39:1d:e8:b6:f7:93:87: 7a:5e:69:1f:c9:5f:c6:fe:4a:cd:2d:0c:61:a1:27: 00:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A7:6F:D4:F3:04:51:23:D5:2D:B8:0C:8F:E9:82:B7:4D:9D:0E:79 X509v3 Authority Key Identifier: keyid:0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:82:dc:1c:86:e1:28:b0:84:a4:b3:91:17:ed:83:92:95:0e: c2:35:17:5f:ad:e1:c2:77:6d:c8:0e:5d:e1:ad:fb:94:a7:69: da:aa:cf:96:b3:02:51:0a:9f:56:81:2c:39:89:bc:5e:6a:12: be:54:58:03:44:ee:15:57:29:f1:7b:33:f9:ac:c9:a7:05:9d: e5:bd:f8:0b:6b:94:36:fa:8d:6d:eb:b6:d0:71:30:2f:78:90: b8:f0:95:6d:eb:5b:db:e2:81:d2:6a:02:db:9a:50:f2:d7:54: 8b:f1:dc:90:e0:47:a6:14:b6:37:08:4d:35:c5:99:71:30:3b: c7:9c:c6:ae:e1:54:23:be:fd:8d:6d:fb:a6:df:64:d4:04:29: f8:16:78:02:3e:45:95:a5:be:9c:31:b4:ef:9f:2d:eb:58:83: 99:a1:fd:85:65:be:7d:dc:f6:69:b8:3c:aa:44:6a:c8:1f:83: 81:03:14:75:08:bc:7e:e2:4b:23:f2:ce:51:ce:f6:20:80:2f: 02:49:14:f8:7d:5c:8f:f4:45:12:89:53:f5:f3:88:f9:6f:bf: 35:2d:4b:77:7c:d3:55:c4:a6:ab:a7:7a:b0:76:8b:8e:4f:cb: 5f:f8:9f:5a:1f:b4:90:6a:3d:01:5f:b8:22:53:97:f2:8e:75: 0b:21:0e:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzdCOTExMC8GA1UEBRMoMEEwODhBMTlCQkRCNjFERUQxOTE2Qzg2MEFCMkI4QkVF MTg2RURDRDAeFw0yNTA0MDUwNjE0MDRaFw0yNTA0MTIwNjE0MDRaMBgxFjAUBgNV BAMTDTY3ZjBjYTJjLTBkYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuMG3iUdOXYMRSCkiI6eVvrbUQ6x7dH6x9O0DJGVU3+atFCZm5/QYUe5ELMLhJ cfcHEoMymsAGs3jr2l9BDR2OCdBfZHM8QtPBpEXxvJqEmlyJRpZrk7sEZW1a5a/E vrTwF7LFpsUxOHeYgHd3Cx5LmsseMToOTQ7MJgUvzZdNoV1lksK3AcIpmrodJl0O Oi12S4vdVlUORCnuJf018t/ges1PKbu7YRRo0X8OO2ev56SFYqHAcv09sBzP8Azd m9BEVCe4sAQlLUJe391iuyS3BS6hqjJsHKElouHxuNmk1FDDtG/m7qb1OR3otveT h3peaR/JX8b+Ss0tDGGhJwATAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfadv1PME USPVLbgMj+mCt02dDnkwHwYDVR0jBBgwFoAUCgiKGbvbYd7RkWyGCrK4vuGG7c0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3N0I5L0RCNTE3QjA4NzVC NjExRUZCOEUyMTUxNEM0RjlBRTAyL0NnaUtHYnZiWWQ3UmtXeUdDcks0dnVHRzdj MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2dpS0didmJZZDdSa1d5R0NySzR2dUdHN2MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 N0I5L0RCNTE3QjA4NzVCNjExRUZCOEUyMTUxNEM0RjlBRTAyL0NnaUtHYnZiWWQ3 UmtXeUdDcks0dnVHRzdjMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADKC3ByG4SiwhKSzkRftg5KVDsI1F1+t4cJ3bcgOXeGt+5Snadqqz5az AlEKn1aBLDmJvF5qEr5UWANE7hVXKfF7M/msyacFneW9+AtrlDb6jW3rttBxMC94 kLjwlW3rW9vigdJqAtuaUPLXVIvx3JDgR6YUtjcITTXFmXEwO8ecxq7hVCO+/Y1t +6bfZNQEKfgWeAI+RZWlvpwxtO+fLetYg5mh/YVlvn3c9mm4PKpEasgfg4EDFHUI vH7iSyPyzlHO9iCALwJJFPh9XI/0RRKJU/XziPlvvzUtS3d801XEpqunerB2i45P y1/4n1oftJBqPQFfuCJTl/KOdQshDis= -----END CERTIFICATE-----Generated at Sun Apr 6 10:11:23 2025 by rpki-client