$ rpki-client -vvf rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft File: gCfg71TQC2H3E28JcZv89MRTNAU.mft (raw, json) Hash identifier: 1cmg9GVgVIMDwQJiX5R7dm//tvFwVHZs/szyW3+Vqgw= Subject key identifier: 16:0A:2F:00:4C:5F:EA:D7:A0:CE:32:68:2C:06:A1:52:19:58:37:25 Authority key identifier: 80:27:E0:EF:54:D0:0B:61:F7:13:6F:09:71:9B:FC:F4:C4:53:34:05 Certificate issuer: /CN=A9182CFC/serialNumber=8027E0EF54D00B61F7136F09719BFCF4C4533405 Certificate serial: 349F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft Manifest number: 3495 Signing time: Fri 04 Apr 2025 14:27:31 +0000 Manifest this update: Fri 04 Apr 2025 14:27:30 +0000 Manifest next update: Fri 11 Apr 2025 14:27:30 +0000 Files and hashes: 1: gCfg71TQC2H3E28JcZv89MRTNAU.crl (hash: yIMst1tsx8faR73FpnfNRjAkd6Eo1Q99tsMdF784EKA=) 2: CFAE1776E7C811ECA2BF6554C4F9AE02.roa (hash: QARDRv4cItQzZWCbzQNYEiniGbYK33outlCobD5Vmvg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.crl rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13471 (0x349f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182CFC Validity Not Before: Apr 4 14:27:30 2025 GMT Not After : Apr 11 14:27:30 2025 GMT Subject: CN=67efec52-747b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c0:1b:cb:9d:8d:5a:46:56:73:a0:29:69:e2: 75:10:90:f6:66:e3:d2:1f:68:69:04:af:64:63:8d: 6c:5f:00:ce:27:70:33:81:e5:a3:4e:d1:60:d5:ee: db:b6:d7:22:8d:35:2a:43:ec:c6:b8:8c:68:1f:dd: 55:f4:06:f9:f3:87:eb:c4:61:25:02:5a:52:40:9c: 75:c2:b4:ce:3e:eb:75:e3:fc:9a:49:47:45:5c:9b: 5f:26:94:17:18:0a:58:53:e3:c1:5f:dc:36:ba:06: f6:34:8c:af:f7:51:a9:45:bb:80:16:cb:d9:c7:64: 9a:2b:e6:4a:73:c6:78:c6:76:84:25:9c:ae:f6:a0: 9f:7a:33:2e:90:52:63:fe:bc:72:15:68:2a:e2:10: 9a:f0:84:fe:63:20:f8:31:00:ab:44:10:d3:e9:75: f1:08:3c:f5:ac:df:c1:e9:68:12:66:1d:71:a4:23: 1e:d9:c2:88:d7:01:67:d3:c5:f2:36:44:31:48:00: 09:3f:0e:b3:5e:89:f9:5b:43:ff:9d:6d:c6:ef:8e: 00:3c:72:ab:87:25:1a:9c:12:77:f2:8d:de:21:36: 29:3c:5d:ed:a0:16:5d:69:32:37:cb:f2:c8:6a:ae: ab:23:bc:19:0b:d7:6f:34:83:dc:f7:40:c0:1e:13: 5c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:0A:2F:00:4C:5F:EA:D7:A0:CE:32:68:2C:06:A1:52:19:58:37:25 X509v3 Authority Key Identifier: keyid:80:27:E0:EF:54:D0:0B:61:F7:13:6F:09:71:9B:FC:F4:C4:53:34:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCfg71TQC2H3E28JcZv89MRTNAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182CFC/BF84B5741D8611E2A76344DE08B02CD2/gCfg71TQC2H3E28JcZv89MRTNAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:e7:b9:f8:15:51:a2:14:ee:16:40:ef:1e:fb:64:30:91:c3: d3:2b:7c:0c:d8:dc:a4:e8:c0:8a:80:29:90:f7:16:98:19:39: c3:df:35:87:72:a6:9b:b5:8e:a5:61:5c:74:0d:a0:b4:88:c0: cb:dd:93:f9:be:30:07:e9:96:0d:81:3b:b4:6d:05:c2:82:93: 1b:2a:16:15:3e:fa:6a:5b:3d:1e:6f:a5:18:96:ad:5c:f5:82: a5:93:cd:44:1e:6d:9d:f2:04:5d:00:c5:04:f1:d3:56:ef:25: 85:f9:bf:a4:2f:ed:d4:d0:5a:e2:ad:08:20:24:aa:23:e2:22: ba:87:9a:e5:ee:ed:db:f5:40:e8:0b:55:7c:5a:d8:af:ce:b8: 51:93:af:a8:df:51:75:f4:6a:8f:dd:0a:d5:3a:80:ba:69:de: 20:65:6d:24:a4:74:3b:ef:b2:0a:fd:f5:a1:9d:9c:49:dd:51: 23:f6:75:f0:83:05:7f:32:b0:62:e1:36:82:7d:6c:42:23:74: c2:9f:27:34:93:70:fc:78:9f:6b:2d:a0:f6:ba:dd:92:49:a0: 4b:a8:b6:47:2b:2b:2a:ee:23:ae:9d:47:fc:11:e0:db:b1:01: 3c:09:51:6d:f1:7f:e6:22:01:ed:7d:69:a4:73:6c:d4:00:af: 7e:52:45:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJDRkMxMTAvBgNVBAUTKDgwMjdFMEVGNTREMDBCNjFGNzEzNkYwOTcxOUJGQ0Y0 QzQ1MzM0MDUwHhcNMjUwNDA0MTQyNzMwWhcNMjUwNDExMTQyNzMwWjAYMRYwFAYD VQQDEw02N2VmZWM1Mi03NDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8Aby52NWkZWc6ApaeJ1EJD2ZuPSH2hpBK9kY41sXwDOJ3AzgeWjTtFg1e7b ttcijTUqQ+zGuIxoH91V9Ab584frxGElAlpSQJx1wrTOPut14/yaSUdFXJtfJpQX GApYU+PBX9w2ugb2NIyv91GpRbuAFsvZx2SaK+ZKc8Z4xnaEJZyu9qCfejMukFJj /rxyFWgq4hCa8IT+YyD4MQCrRBDT6XXxCDz1rN/B6WgSZh1xpCMe2cKI1wFn08Xy NkQxSAAJPw6zXon5W0P/nW3G744APHKrhyUanBJ38o3eITYpPF3toBZdaTI3y/LI aq6rI7wZC9dvNIPc90DAHhNcQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYKLwBM X+rXoM4yaCwGoVIZWDclMB8GA1UdIwQYMBaAFIAn4O9U0Ath9xNvCXGb/PTEUzQF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkNGQy9CRjg0QjU3NDFE ODYxMUUyQTc2MzQ0REUwOEIwMkNEMi9nQ2ZnNzFUUUMySDNFMjhKY1p2ODlNUlRO QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDZmc3MVRRQzJIM0UyOEpjWnY4OU1SVE5BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MkNGQy9CRjg0QjU3NDFEODYxMUUyQTc2MzQ0REUwOEIwMkNEMi9nQ2ZnNzFUUUMy SDNFMjhKY1p2ODlNUlROQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu57n4FVGiFO4WQO8e+2QwkcPTK3wM2Nyk6MCKgCmQ9xaYGTnD3zWH cqabtY6lYVx0DaC0iMDL3ZP5vjAH6ZYNgTu0bQXCgpMbKhYVPvpqWz0eb6UYlq1c 9YKlk81EHm2d8gRdAMUE8dNW7yWF+b+kL+3U0FrirQggJKoj4iK6h5rl7u3b9UDo C1V8WtivzrhRk6+o31F19GqP3QrVOoC6ad4gZW0kpHQ777IK/fWhnZxJ3VEj9nXw gwV/MrBi4TaCfWxCI3TCnyc0k3D8eJ9rLaD2ut2SSaBLqLZHKysq7iOunUf8EeDb sQE8CVFt8X/mIgHtfWmkc2zUAK9+UkVK -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:52 2025 by rpki-client