$ rpki-client -vvf rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/GJ8t7FpwP31s_V-WqrWi6KjdlAY.mft File: GJ8t7FpwP31s_V-WqrWi6KjdlAY.mft (raw, json) Hash identifier: 0Zmfm857uP4Te0I/5xsYOApQnCqfjWgWAI36fNGkn6o= Subject key identifier: 4C:14:66:AF:EB:9D:36:7C:ED:5A:BC:3E:CB:5F:B3:F3:3F:83:A1:B0 Authority key identifier: 18:9F:2D:EC:5A:70:3F:7D:6C:FD:5F:96:AA:B5:A2:E8:A8:DD:94:06 Certificate issuer: /CN=A917D472/serialNumber=189F2DEC5A703F7D6CFD5F96AAB5A2E8A8DD9406 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJ8t7FpwP31s_V-WqrWi6KjdlAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/GJ8t7FpwP31s_V-WqrWi6KjdlAY.mft Manifest number: 98 Signing time: Tue 15 Apr 2025 05:05:49 +0000 Manifest this update: Tue 15 Apr 2025 05:05:49 +0000 Manifest next update: Tue 22 Apr 2025 05:05:49 +0000 Files and hashes: 1: GJ8t7FpwP31s_V-WqrWi6KjdlAY.crl (hash: B8UKsHGnleu+LcmsGBGSKgZC5Be37JDabrnpETByVrk=) 2: B7FDD0B031E711EF9FBC7372C4F9AE02.roa (hash: vRTnjavVXE5BoWmix9amg9lgOEyq/KuOKiPhcwexbdg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/GJ8t7FpwP31s_V-WqrWi6KjdlAY.crl rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/GJ8t7FpwP31s_V-WqrWi6KjdlAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJ8t7FpwP31s_V-WqrWi6KjdlAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 05:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D472, serialNumber=189F2DEC5A703F7D6CFD5F96AAB5A2E8A8DD9406 Validity Not Before: Apr 15 05:05:49 2025 GMT Not After : Apr 22 05:05:49 2025 GMT Subject: CN=67fde92d-fa79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f7:e6:2f:1c:18:38:a4:99:82:bd:b1:0c:06: bf:99:bc:56:87:c1:4d:44:02:80:17:75:88:22:26: ed:1c:52:69:7b:93:c6:ca:b7:60:63:93:7f:ec:11: 3c:ca:f5:83:f7:54:2d:84:a1:b4:31:d6:79:ed:c3: c6:5a:a3:76:f7:fb:d6:f1:89:6b:94:b2:13:5e:e0: 8f:b7:2b:44:06:d6:04:a9:ea:8c:cd:65:1d:c1:26: f5:ba:73:3a:a0:1d:29:48:1a:18:5f:cb:a0:53:ed: a3:6b:ec:63:30:82:63:e5:93:1d:fd:0a:cc:1c:a4: 8e:f3:7f:90:bb:d8:05:72:a7:47:54:bc:ef:5d:c5: 25:83:ba:28:c3:96:70:16:4c:39:5c:2f:67:7f:58: aa:0e:94:9a:02:e5:7f:78:3e:57:6e:21:94:26:15: fc:30:ed:07:62:9e:2f:c8:78:d7:08:59:ae:5f:18: 9d:e0:53:6d:86:95:55:8a:a2:18:ad:06:dc:d9:63: 30:ad:4f:01:6b:b0:64:8c:a2:03:d6:fe:6f:43:58: e3:19:c0:3f:b8:d5:c7:e4:ab:aa:48:18:cc:53:e6: 0e:7e:b1:e7:fe:6c:45:d3:2c:ab:b7:14:ee:99:2d: b3:12:f8:a3:c7:cb:26:a0:a6:b9:62:58:c6:1b:5c: cd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:14:66:AF:EB:9D:36:7C:ED:5A:BC:3E:CB:5F:B3:F3:3F:83:A1:B0 X509v3 Authority Key Identifier: keyid:18:9F:2D:EC:5A:70:3F:7D:6C:FD:5F:96:AA:B5:A2:E8:A8:DD:94:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/GJ8t7FpwP31s_V-WqrWi6KjdlAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJ8t7FpwP31s_V-WqrWi6KjdlAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/GJ8t7FpwP31s_V-WqrWi6KjdlAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:d5:7d:2a:46:ce:43:6a:5c:21:c9:fa:b0:29:aa:7d:01:e3: d6:76:8e:39:6f:d2:93:23:48:e1:ea:09:14:a4:8d:3d:19:1e: a8:56:73:0a:21:26:cf:92:95:89:b4:51:d6:ea:5e:5c:d1:14: 22:39:14:0e:00:d6:57:5f:b7:bd:5c:c9:aa:e3:ad:5d:34:b4: b5:01:99:8c:5d:92:b5:83:a8:69:48:ea:ce:3a:4e:ae:85:ed: 68:e4:c3:ad:bb:a6:f6:58:fc:5d:46:2a:06:9c:72:96:33:cd: 37:2e:4c:8f:83:64:bb:ca:e8:b9:db:9c:e0:4e:da:36:51:f5: 5b:84:3c:ff:e1:f0:c8:58:48:88:82:05:24:71:b5:10:27:cd: 8d:4a:c7:b9:7d:78:72:0d:ab:25:63:d3:f6:8f:46:51:15:f9: d2:fe:2d:f9:36:fc:24:2e:ee:b7:1f:91:3d:6f:b6:f7:90:65: 98:4d:88:ef:52:26:93:4d:d6:e3:a1:7e:5a:b8:f6:d8:84:b1: b4:3d:2d:93:34:78:5b:1b:65:a6:c0:d2:35:59:25:8a:9a:eb: 66:09:46:68:ba:44:99:74:b9:a5:b7:ac:28:e4:d5:9f:05:f4: 46:86:b9:99:2b:67:8a:a5:de:05:da:26:e3:ce:15:1d:c5:66: 5b:8e:9a:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0NzIxMTAvBgNVBAUTKDE4OUYyREVDNUE3MDNGN0Q2Q0ZENUY5NkFBQjVBMkU4 QThERDk0MDYwHhcNMjUwNDE1MDUwNTQ5WhcNMjUwNDIyMDUwNTQ5WjAYMRYwFAYD VQQDEw02N2ZkZTkyZC1mYTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlvfmLxwYOKSZgr2xDAa/mbxWh8FNRAKAF3WIIibtHFJpe5PGyrdgY5N/7BE8 yvWD91QthKG0MdZ57cPGWqN29/vW8YlrlLITXuCPtytEBtYEqeqMzWUdwSb1unM6 oB0pSBoYX8ugU+2ja+xjMIJj5ZMd/QrMHKSO83+Qu9gFcqdHVLzvXcUlg7oow5Zw Fkw5XC9nf1iqDpSaAuV/eD5XbiGUJhX8MO0HYp4vyHjXCFmuXxid4FNthpVViqIY rQbc2WMwrU8Ba7BkjKID1v5vQ1jjGcA/uNXH5KuqSBjMU+YOfrHn/mxF0yyrtxTu mS2zEvijx8smoKa5YljGG1zN5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwUZq/r nTZ87Vq8Pstfs/M/g6GwMB8GA1UdIwQYMBaAFBifLexacD99bP1flqq1ouio3ZQG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDQ3Mi8xM0E4RkI0NDMx RTYxMUVGQUU5RUU0NjBDNEY5QUUwMi9HSjh0N0Zwd1AzMXNfVi1XcXJXaTZLamRs QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKOHQ3RnB3UDMxc19WLVdxcldpNktqZGxBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDQ3Mi8xM0E4RkI0NDMxRTYxMUVGQUU5RUU0NjBDNEY5QUUwMi9HSjh0N0Zwd1Az MXNfVi1XcXJXaTZLamRsQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr1X0qRs5DalwhyfqwKap9AePWdo45b9KTI0jh6gkUpI09GR6oVnMK ISbPkpWJtFHW6l5c0RQiORQOANZXX7e9XMmq461dNLS1AZmMXZK1g6hpSOrOOk6u he1o5MOtu6b2WPxdRioGnHKWM803LkyPg2S7yui525zgTto2UfVbhDz/4fDIWEiI ggUkcbUQJ82NSse5fXhyDaslY9P2j0ZRFfnS/i35NvwkLu63H5E9b7b3kGWYTYjv UiaTTdbjoX5auPbYhLG0PS2TNHhbG2WmwNI1WSWKmutmCUZoukSZdLmlt6wo5NWf BfRGhrmZK2eKpd4F2ibjzhUdxWZbjpqv -----END CERTIFICATE-----Generated at Wed Apr 16 17:18:07 2025 by rpki-client