$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft File: g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft (raw, json) Hash identifier: ym1jc1VB9psIab3+BeZ8SNCy7Pnier4JeRtUFyDt3Jg= Subject key identifier: 3B:3A:E9:D9:36:FA:DB:96:39:DF:35:92:35:ED:CC:CC:FA:BF:21:78 Authority key identifier: 83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 Certificate issuer: /CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft Manifest number: 01A3 Signing time: Sat 19 Apr 2025 02:37:33 +0000 Manifest this update: Sat 19 Apr 2025 02:37:33 +0000 Manifest next update: Sat 26 Apr 2025 02:37:33 +0000 Files and hashes: 1: g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl (hash: qcUSz99zc6fMoiGuH7MVNcUGKX6j3vD/ZTZc8qZNcgY=) 2: 93E8AC909CA111ED97E7FC20C4F9AE02.roa (hash: yz7MYEbOgQ8Al3poUxihFYnUX5uLUR4cvOqS22MeFsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 02:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB4BA, serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Validity Not Before: Apr 19 02:37:33 2025 GMT Not After : Apr 26 02:37:33 2025 GMT Subject: CN=68030c6d-1247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b6:c0:ca:62:30:fb:7f:d9:41:da:f4:a8:c9: 23:5d:f6:7b:c5:22:66:83:da:da:62:f6:4f:6a:37: fa:d3:b2:a4:94:24:e2:1e:5d:a6:3e:0c:94:60:db: ad:95:73:fb:4d:f8:61:5a:53:11:8c:d2:cf:0c:13: db:9d:f4:b6:22:72:a5:4e:a9:bd:d7:aa:05:de:e8: 6f:77:d0:10:90:58:bf:f2:ac:ba:71:f9:1c:cc:d9: 68:37:7a:64:6c:e6:a1:e4:36:a7:36:74:66:fe:99: ca:cf:e4:9a:98:e9:08:2d:0f:92:71:cf:e0:72:e2: 70:72:8e:ce:91:2a:a5:2b:52:48:b9:13:77:7a:11: b6:d5:47:e1:49:9d:9d:d0:c3:80:18:ca:a5:ad:6b: 86:be:c5:77:53:4b:0c:66:64:74:8c:ff:81:bb:fb: 4b:d2:95:a6:ce:c3:c2:9f:da:68:d6:73:a7:e6:15: 7c:80:68:44:a4:4f:9a:f3:d0:1f:16:29:ec:fb:7a: d3:22:70:d9:7b:c0:9e:9e:60:7e:00:54:21:69:c8: 02:55:b4:4a:37:66:11:d0:a6:c5:a6:32:b7:0c:f7: 7a:fc:85:d2:aa:04:41:48:eb:17:db:fe:26:b2:ce: dc:9a:27:c9:cd:ed:26:c3:20:eb:1d:05:72:aa:17: 8a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3A:E9:D9:36:FA:DB:96:39:DF:35:92:35:ED:CC:CC:FA:BF:21:78 X509v3 Authority Key Identifier: keyid:83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:9e:61:3c:2e:2b:d5:8c:c6:0d:09:bc:9f:10:41:c3:c2:1f: ed:11:eb:58:a4:18:ab:10:00:9b:58:e9:77:a2:b0:b3:9d:2f: b4:35:e3:e2:cb:23:2e:09:d0:78:df:d3:ff:b0:76:e1:f6:f4: 15:0a:74:ba:77:50:f6:7d:c0:f8:7c:1e:d2:b8:45:5c:5e:6e: a1:3c:48:b3:e8:7c:af:d4:e5:47:fb:02:9d:ed:a6:64:df:72: dd:67:58:66:2d:95:77:28:84:2a:ba:e7:ce:b1:d6:be:08:49: f8:6f:ee:c4:8c:f5:3a:3f:c0:33:b3:94:3f:1e:96:41:5c:c5: 83:1a:bc:72:48:46:ea:8b:64:5f:25:98:99:8e:2a:ce:6a:44: 2d:13:13:d1:9d:1b:dd:73:7a:02:21:2a:42:92:c8:75:2a:29: b0:33:5e:59:c3:b0:fe:70:9c:34:68:41:84:ea:d2:86:7c:1a: 28:7c:00:80:0c:d4:99:4d:fc:6a:60:bc:38:c6:b2:c4:fe:10: 15:6e:d5:4b:39:08:4f:b6:ac:38:ad:4b:3b:43:ce:50:ff:80: 7c:ab:d2:99:de:df:ff:f9:d7:05:5b:da:cb:19:2d:0e:a4:82: 46:0b:6c:7a:6e:72:b1:08:09:7f:35:33:90:69:a8:0a:b6:90: 70:bc:52:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0QkExMTAvBgNVBAUTKDgzQjZFN0VBMjNCREMzQTM4RDYwQjRGRkEyRUZGNUEx OEYxRENENjgwHhcNMjUwNDE5MDIzNzMzWhcNMjUwNDI2MDIzNzMzWjAYMRYwFAYD VQQDEw02ODAzMGM2ZC0xMjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrbAymIw+3/ZQdr0qMkjXfZ7xSJmg9raYvZPajf607KklCTiHl2mPgyUYNut lXP7TfhhWlMRjNLPDBPbnfS2InKlTqm916oF3uhvd9AQkFi/8qy6cfkczNloN3pk bOah5DanNnRm/pnKz+SamOkILQ+Scc/gcuJwco7OkSqlK1JIuRN3ehG21UfhSZ2d 0MOAGMqlrWuGvsV3U0sMZmR0jP+Bu/tL0pWmzsPCn9po1nOn5hV8gGhEpE+a89Af Fins+3rTInDZe8CenmB+AFQhacgCVbRKN2YR0KbFpjK3DPd6/IXSqgRBSOsX2/4m ss7cmifJze0mwyDrHQVyqheKvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDs66dk2 +tuWOd81kjXtzMz6vyF4MB8GA1UdIwQYMBaAFIO25+ojvcOjjWC0/6Lv9aGPHc1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjRCQS9DNzNFMTg0NDlD OUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2T05ZTFRfb3VfMW9ZOGR6 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3Ym42aU85dzZPTllMVF9vdV8xb1k4ZHpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjRCQS9DNzNFMTg0NDlDOUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2 T05ZTFRfb3VfMW9ZOGR6V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJnmE8LivVjMYNCbyfEEHDwh/tEetYpBirEACbWOl3orCznS+0NePi yyMuCdB439P/sHbh9vQVCnS6d1D2fcD4fB7SuEVcXm6hPEiz6Hyv1OVH+wKd7aZk 33LdZ1hmLZV3KIQquufOsda+CEn4b+7EjPU6P8Azs5Q/HpZBXMWDGrxySEbqi2Rf JZiZjirOakQtExPRnRvdc3oCISpCksh1KimwM15Zw7D+cJw0aEGE6tKGfBoofACA DNSZTfxqYLw4xrLE/hAVbtVLOQhPtqw4rUs7Q85Q/4B8q9KZ3t//+dcFW9rLGS0O pIJGC2x6bnKxCAl/NTOQaagKtpBwvFIV -----END CERTIFICATE-----Generated at Mon Apr 21 03:36:15 2025 by rpki-client