$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: ZXkJOwIgyXwtM0bOzHEf5eV1f/TTu4z0a7uKfR4y17g= Subject key identifier: D3:FE:8E:AC:04:E9:70:2A:51:4E:0E:A1:EE:C4:94:DA:28:1B:DD:4D Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 05F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 05EF Signing time: Fri 04 Apr 2025 23:03:16 +0000 Manifest this update: Fri 04 Apr 2025 23:03:15 +0000 Manifest next update: Fri 11 Apr 2025 23:03:15 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: wMN4v5bgzCF+v1Cd5AMNUDaRFoVML2puf6IRJFZ1DUM=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: 0zFQ1BRYNI+2cFpJMpx2xapZnaYr/Wv7xM9sKrY4jS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1523 (0x5f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777 Validity Not Before: Apr 4 23:03:15 2025 GMT Not After : Apr 11 23:03:15 2025 GMT Subject: CN=67f06533-6e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1b:73:cf:28:3c:d2:65:51:9e:db:d3:f6:f4: 82:82:d7:9d:08:d9:9e:f0:24:be:aa:91:e5:39:a3: 3d:0b:c8:47:9e:a5:2b:3b:d8:2a:60:9b:be:8f:80: b0:ae:e8:20:ce:b4:75:70:3e:a0:88:6a:87:28:ae: 17:a0:8b:c7:db:27:8e:a2:da:cf:15:96:f7:54:d0: 03:5a:5e:88:6c:92:12:4d:b7:b0:a2:29:cf:f7:34: 49:90:fe:a5:cd:33:08:4d:ee:8a:2a:12:34:d2:6d: 02:76:9e:9a:57:27:d3:55:c5:5e:a7:3d:9e:87:bb: 88:18:44:b3:e9:1a:d7:b9:de:eb:17:53:69:76:7a: 49:92:2b:11:43:9e:1f:cf:e1:30:72:a8:3b:2c:7e: 16:69:a4:85:35:fa:f9:fc:32:b1:c2:97:27:6c:72: 9f:e0:c7:7b:27:dd:f4:6f:73:3c:8f:e8:51:20:80: 08:7a:07:14:6d:a4:5b:80:d7:fa:5d:c6:01:af:bb: a2:17:ff:c4:85:1a:52:8a:7d:2e:23:b4:5b:87:c7: 09:29:ef:93:ab:d5:ff:42:b5:c7:bb:9e:ae:61:f7: e3:0e:61:f6:83:dc:37:17:c6:e7:f3:eb:7f:b3:62: 50:da:c9:66:55:53:36:e2:a5:62:10:c1:31:1c:c8: 71:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:FE:8E:AC:04:E9:70:2A:51:4E:0E:A1:EE:C4:94:DA:28:1B:DD:4D X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:e0:0e:8d:60:98:03:7f:08:81:72:e8:74:57:82:d2:fc:68: df:42:f9:99:ae:7e:fc:e5:ce:bf:88:44:3b:fe:be:ed:66:b4: f8:9f:fc:2d:40:b6:8f:35:f1:07:b0:34:02:e2:7f:4d:82:9e: 4e:5c:2f:d2:85:6e:f5:e3:9e:9d:7b:5b:5c:ac:c6:4d:f9:28: 78:48:94:ee:f2:62:91:ae:09:29:f5:a5:d8:27:ef:ce:a6:e1: 62:19:45:84:eb:e4:ad:25:fe:d9:e3:1d:f2:56:07:83:b1:5a: aa:9c:7f:c6:70:68:59:a2:f6:ef:10:2b:7d:52:ee:a8:8b:b1: 39:42:22:a8:41:90:0b:d3:d5:d2:0e:1c:4f:9c:3e:aa:a9:5d: 95:49:c0:e2:d2:0a:64:44:8e:d3:29:20:25:d8:1b:db:49:20: 4c:05:98:77:96:03:5d:61:cc:fc:e1:60:d1:b4:5c:c2:d1:3a: e5:ba:5d:05:13:7f:d4:67:7b:62:d2:e5:96:66:02:aa:d5:f0: 2c:e8:7c:2e:f9:ef:18:62:34:5d:b7:56:72:cd:2d:69:6e:da: b0:eb:7a:ef:10:b1:82:19:2b:19:ae:47:c0:55:d8:dd:dc:eb: 47:18:f5:39:f6:5b:0b:b6:f2:e1:82:5f:ce:f2:d3:13:a8:08: 0d:86:d7:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjUwNDA0MjMwMzE1WhcNMjUwNDExMjMwMzE1WjAYMRYwFAYD VQQDEw02N2YwNjUzMy02ZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhtzzyg80mVRntvT9vSCgtedCNme8CS+qpHlOaM9C8hHnqUrO9gqYJu+j4Cw ruggzrR1cD6giGqHKK4XoIvH2yeOotrPFZb3VNADWl6IbJISTbewoinP9zRJkP6l zTMITe6KKhI00m0Cdp6aVyfTVcVepz2eh7uIGESz6RrXud7rF1NpdnpJkisRQ54f z+Ewcqg7LH4WaaSFNfr5/DKxwpcnbHKf4Md7J930b3M8j+hRIIAIegcUbaRbgNf6 XcYBr7uiF//EhRpSin0uI7Rbh8cJKe+Tq9X/QrXHu56uYffjDmH2g9w3F8bn8+t/ s2JQ2slmVVM24qViEMExHMhxFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNP+jqwE 6XAqUU4Ooe7ElNooG91NMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/4A6NYJgDfwiBcuh0V4LS/GjfQvmZrn785c6/iEQ7/r7tZrT4n/wt QLaPNfEHsDQC4n9Ngp5OXC/ShW71456de1tcrMZN+Sh4SJTu8mKRrgkp9aXYJ+/O puFiGUWE6+StJf7Z4x3yVgeDsVqqnH/GcGhZovbvECt9Uu6oi7E5QiKoQZAL09XS DhxPnD6qqV2VScDi0gpkRI7TKSAl2BvbSSBMBZh3lgNdYcz84WDRtFzC0Trlul0F E3/UZ3ti0uWWZgKq1fAs6Hwu+e8YYjRdt1ZyzS1pbtqw63rvELGCGSsZrkfAVdjd 3OtHGPU59lsLtvLhgl/O8tMTqAgNhtfe -----END CERTIFICATE-----Generated at Sat Apr 5 21:39:33 2025 by rpki-client