$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: 15OE3LGQfTnqJb7ffoCbJCYEcZ5TdEPKcw0js8SvfUM= Subject key identifier: 39:C1:FA:6D:03:E4:0A:53:63:B5:D3:74:49:74:1F:41:1F:3F:89:3C Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 05B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 05B2 Signing time: Sat 12 Apr 2025 22:47:28 +0000 Manifest this update: Sat 12 Apr 2025 22:47:28 +0000 Manifest next update: Sat 19 Apr 2025 22:47:28 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: BZC0MF6aPnTxBDk9Miy4mpbqpFp6QNWRLvyYCMbMc5c=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1463 (0x5b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Apr 12 22:47:28 2025 GMT Not After : Apr 19 22:47:28 2025 GMT Subject: CN=67faed80-c1b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f4:c7:f9:0a:8c:89:81:f2:78:5a:78:52:5c: 44:4c:ab:7f:77:8b:40:38:c9:d6:d1:2f:e7:9e:ca: 5b:77:5f:e4:f3:bd:a5:cc:32:6f:fc:7f:f2:cb:c7: 9c:c1:1c:4a:51:64:78:8b:f1:f4:6c:d4:51:f3:14: 16:36:69:01:58:b9:f3:01:69:b0:5e:40:23:a9:2d: c1:5c:4c:6e:ef:cc:14:e0:29:4a:07:47:7a:cb:91: a4:e9:96:27:60:22:63:21:59:2f:7e:16:28:d2:42: e8:da:4c:f0:7e:29:31:39:32:26:d7:3b:1c:19:f7: f1:48:ff:e1:ff:ea:93:40:4c:1c:7f:51:4f:ee:cd: 63:7c:87:16:dd:50:65:6e:72:10:e6:03:c1:f7:a8: e1:d4:8e:d8:2b:1b:82:73:53:2f:c6:51:1d:84:2c: df:4a:80:4f:ba:5a:4f:b4:a2:ed:83:7d:fd:12:99: a8:92:3d:ae:1c:70:d1:a3:2e:82:31:5a:cb:45:3a: 5a:33:41:c0:83:63:a6:8a:dd:25:3f:20:08:69:32: da:26:32:45:3f:a7:29:d9:b2:28:05:e5:cd:d7:b3: a1:3d:d2:ef:cd:c2:f7:09:29:a7:bc:f5:9d:56:bc: f0:e3:f2:92:a1:9e:48:4a:3a:ac:bf:08:65:a5:27: 5b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C1:FA:6D:03:E4:0A:53:63:B5:D3:74:49:74:1F:41:1F:3F:89:3C X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:ae:6d:12:cc:9c:7f:50:93:de:69:50:93:82:48:81:fe:af: 2b:e4:58:3e:da:57:85:ef:b4:6a:12:0b:88:31:7d:52:ca:84: 4f:7f:e9:f3:65:bf:db:0f:05:d8:91:03:45:81:83:01:16:10: 1c:4e:78:03:d0:51:55:1f:95:58:0f:a6:e7:f4:b1:22:ac:f8: 07:b2:ba:71:74:35:0a:50:ff:0e:38:c6:6d:6f:21:c9:67:47: f5:d5:a2:23:5d:2f:c9:f2:66:f2:39:f9:74:54:2b:b1:92:dc: 7d:6d:a4:25:cf:6d:d1:82:ee:3d:29:bb:b6:c1:ee:85:b9:5f: 39:80:42:86:d0:65:6e:e5:16:99:25:b8:72:dd:72:c2:0e:3e: b7:8a:95:6a:62:1a:ba:66:0f:41:1e:c8:f7:37:7c:de:67:f0: 09:32:a6:0f:2c:4f:5a:ac:7d:1f:d1:3d:fc:11:b1:7c:6c:57: 91:33:63:62:0f:3f:5b:97:3c:01:d2:c9:30:41:49:16:74:8c: 8d:38:f3:b6:1b:46:09:6c:29:82:e0:ef:42:05:7e:3d:4c:ca: 57:63:26:ec:85:19:65:04:79:a4:78:ac:b0:56:98:3d:10:37: f9:5f:61:7d:aa:18:12:62:c3:4c:d8:02:29:5b:a7:df:dc:df: 04:dc:54:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwNDEyMjI0NzI4WhcNMjUwNDE5MjI0NzI4WjAYMRYwFAYD VQQDEw02N2ZhZWQ4MC1jMWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufTH+QqMiYHyeFp4UlxETKt/d4tAOMnW0S/nnspbd1/k872lzDJv/H/yy8ec wRxKUWR4i/H0bNRR8xQWNmkBWLnzAWmwXkAjqS3BXExu78wU4ClKB0d6y5Gk6ZYn YCJjIVkvfhYo0kLo2kzwfikxOTIm1zscGffxSP/h/+qTQEwcf1FP7s1jfIcW3VBl bnIQ5gPB96jh1I7YKxuCc1MvxlEdhCzfSoBPulpPtKLtg339Epmokj2uHHDRoy6C MVrLRTpaM0HAg2Omit0lPyAIaTLaJjJFP6cp2bIoBeXN17OhPdLvzcL3CSmnvPWd Vrzw4/KSoZ5ISjqsvwhlpSdbhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnB+m0D 5ApTY7XTdEl0H0EfP4k8MB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5rm0SzJx/UJPeaVCTgkiB/q8r5Fg+2leF77RqEguIMX1SyoRPf+nz Zb/bDwXYkQNFgYMBFhAcTngD0FFVH5VYD6bn9LEirPgHsrpxdDUKUP8OOMZtbyHJ Z0f11aIjXS/J8mbyOfl0VCuxktx9baQlz23Rgu49Kbu2we6FuV85gEKG0GVu5RaZ Jbhy3XLCDj63ipVqYhq6Zg9BHsj3N3zeZ/AJMqYPLE9arH0f0T38EbF8bFeRM2Ni Dz9blzwB0skwQUkWdIyNOPO2G0YJbCmC4O9CBX49TMpXYybshRllBHmkeKywVpg9 EDf5X2F9qhgSYsNM2AIpW6ff3N8E3FTI -----END CERTIFICATE-----Generated at Sun Apr 13 01:24:45 2025 by rpki-client