$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: JXGWg9k+LkeHrV1v4wmodVhYPH8urpcq+C3hHzs4N2Y= Subject key identifier: 62:9D:70:0E:AE:6E:FF:28:0E:D0:12:71:BF:B6:7C:D1:1F:83:C6:85 Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B02 Signing time: Fri 04 Apr 2025 19:25:24 +0000 Manifest this update: Fri 04 Apr 2025 19:25:24 +0000 Manifest next update: Fri 11 Apr 2025 19:25:24 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: k3VD+GW/TlYxCxjlvDAWlYrHkBgsOtyHPuOg0NjuuYU=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: oiK5YLleabN+NeoxXizXAp1S2T+O/v09kEtABrFayP0=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: YJ76HhaPfBCtCqTNn8tqhJhNOJ+Bfaxx/ZJ3mQYsBwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2829 (0xb0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2 Validity Not Before: Apr 4 19:25:24 2025 GMT Not After : Apr 11 19:25:24 2025 GMT Subject: CN=67f03224-4124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:92:ef:0b:78:1b:d8:45:3a:13:c0:18:62:51: 29:3b:87:83:e9:bf:7c:1b:05:6b:6c:6f:3f:5e:36: 18:8a:b7:59:f5:f9:40:6c:24:d2:0d:70:64:3a:fe: 15:bd:c6:5f:f1:55:0b:fd:04:c2:ab:c5:4b:93:71: 19:96:49:dd:86:16:27:95:bc:7f:f8:93:19:c1:2f: a8:0b:9a:bd:1d:7d:7a:f0:8b:99:68:6f:7c:85:6d: 83:81:13:29:be:c2:17:8a:c1:b7:37:d4:b9:dc:d6: 6c:15:3c:df:43:94:a1:39:e4:e5:35:42:6c:4c:39: 9b:63:bc:dc:e8:36:84:89:c6:fa:cd:43:f5:c9:97: 1c:de:5e:7f:70:e3:c4:d4:84:f5:f1:f8:e9:33:c2: c2:ab:ac:4c:55:1e:ec:10:e9:b1:8a:81:48:1c:fd: f4:7d:b6:cc:9e:90:9a:a7:6c:ed:5a:0e:9e:a0:e2: db:da:5b:15:1b:49:30:e1:23:75:d2:3d:87:bc:21: b1:72:72:11:77:51:67:94:49:84:50:a0:31:97:3f: f8:d8:b0:d2:51:64:90:e4:1a:ac:ad:d9:0d:8d:a6: ef:86:f7:4d:4a:14:e8:ca:c5:bb:f6:04:ef:a7:66: f8:90:ed:96:99:a7:87:e7:fd:7b:42:e9:99:70:98: 0e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:9D:70:0E:AE:6E:FF:28:0E:D0:12:71:BF:B6:7C:D1:1F:83:C6:85 X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:0a:02:2c:54:f5:50:be:9a:39:0b:79:7e:7a:7a:d4:c6:93: c4:1e:a1:fe:af:54:75:1d:8a:26:0c:f5:5f:3d:12:f7:12:8f: 81:78:39:da:03:19:df:15:ee:20:7f:96:8b:86:a6:ae:f7:f0: 11:d0:4a:54:f7:42:2f:1d:24:a4:d6:7c:2e:a4:f5:d1:f5:0b: 12:f7:1b:ff:9a:cc:8b:19:40:a8:37:20:9c:e5:22:e5:26:78: a7:d6:cb:4f:92:fe:64:2b:55:5c:00:07:13:b9:40:8f:5e:3d: 1d:1a:22:18:22:16:75:41:1e:22:a0:3b:85:8f:94:fb:fc:02: 64:25:30:74:fb:bc:41:33:f8:a1:5f:50:94:8b:7c:09:ad:74: 3f:35:25:87:ef:3c:45:0d:03:9c:a1:c8:1f:1f:fe:b6:ab:d2: 62:31:0c:56:03:55:5f:a8:01:c4:b8:b7:ee:6a:3f:e8:81:e8: 78:31:cd:00:f3:c7:cb:f9:b6:da:ec:ca:22:74:c1:b3:be:d5: de:9e:78:b0:00:d2:f9:41:2b:a4:20:50:80:e2:0a:e1:3b:0f: 21:e9:2f:27:31:8d:bc:f9:50:cf:39:f6:ef:a5:27:cc:4b:38: ee:25:16:d5:42:a7:b4:41:0d:47:5c:11:8d:dd:3b:3c:16:5b: ef:a4:05:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUwNDA0MTkyNTI0WhcNMjUwNDExMTkyNTI0WjAYMRYwFAYD VQQDEw02N2YwMzIyNC00MTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8JLvC3gb2EU6E8AYYlEpO4eD6b98GwVrbG8/XjYYirdZ9flAbCTSDXBkOv4V vcZf8VUL/QTCq8VLk3EZlkndhhYnlbx/+JMZwS+oC5q9HX168IuZaG98hW2DgRMp vsIXisG3N9S53NZsFTzfQ5ShOeTlNUJsTDmbY7zc6DaEicb6zUP1yZcc3l5/cOPE 1IT18fjpM8LCq6xMVR7sEOmxioFIHP30fbbMnpCap2ztWg6eoOLb2lsVG0kw4SN1 0j2HvCGxcnIRd1FnlEmEUKAxlz/42LDSUWSQ5BqsrdkNjabvhvdNShToysW79gTv p2b4kO2WmaeH5/17QumZcJgOAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKdcA6u bv8oDtAScb+2fNEfg8aFMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZCgIsVPVQvpo5C3l+enrUxpPEHqH+r1R1HYomDPVfPRL3Eo+BeDna AxnfFe4gf5aLhqau9/AR0EpU90IvHSSk1nwupPXR9QsS9xv/msyLGUCoNyCc5SLl Jnin1stPkv5kK1VcAAcTuUCPXj0dGiIYIhZ1QR4ioDuFj5T7/AJkJTB0+7xBM/ih X1CUi3wJrXQ/NSWH7zxFDQOcocgfH/62q9JiMQxWA1VfqAHEuLfuaj/ogeh4Mc0A 88fL+bba7MoidMGzvtXenniwANL5QSukIFCA4grhOw8h6S8nMY28+VDPOfbvpSfM SzjuJRbVQqe0QQ1HXBGN3Ts8FlvvpAVq -----END CERTIFICATE-----Generated at Sat Apr 5 05:38:12 2025 by rpki-client