$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft File: bath0S4_GW9RaThyPIAnWZxddVI.mft (raw, json) Hash identifier: s/IX8hjZMsGajvYV2Cm/LxL5fuzBXl1yRFvjtWCLQWk= Subject key identifier: 32:AE:C2:42:2F:82:88:60:1E:F8:EB:E5:D0:D2:43:5A:EE:85:1C:2E Authority key identifier: 6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 Certificate issuer: /CN=A91CEBCC/serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft Manifest number: 9B Signing time: Thu 03 Apr 2025 05:34:30 +0000 Manifest this update: Thu 03 Apr 2025 05:34:30 +0000 Manifest next update: Thu 10 Apr 2025 05:34:30 +0000 Files and hashes: 1: bath0S4_GW9RaThyPIAnWZxddVI.crl (hash: Em6PNg0voOLmcsPqXleQu5ib0rpJCHPJWQIFbi9OKvc=) 2: F2022074272711EF91A40124C4F9AE02.roa (hash: xhUsDiNlcxZBUBnV9JFR4AclyG5SZwCFLfalTWcGiyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCC Validity Not Before: Apr 3 05:34:30 2025 GMT Not After : Apr 10 05:34:30 2025 GMT Subject: CN=67ee1de6-f5ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:66:03:1e:11:0b:d6:29:98:81:34:4a:c7:ae: cf:ca:34:52:2b:87:19:bd:1c:bc:ca:16:6c:4a:c2: b0:b9:ff:52:5c:f0:a8:50:18:22:e4:a5:d8:48:fd: 89:64:d9:ec:ec:76:d3:fb:09:af:52:8d:db:da:f8: 7c:09:93:25:66:80:ae:56:8b:47:d6:4a:d0:e0:42: b4:3d:3e:56:7b:0e:75:3c:8a:81:9a:cc:02:5e:68: 2c:d5:63:70:fd:4a:35:fb:02:8b:a5:fa:59:4f:0d: 82:a8:8c:b0:be:dc:77:81:fd:41:66:ec:7d:f8:e8: e3:f7:22:2c:5c:01:45:24:58:71:ab:f4:76:31:87: db:a6:67:98:7b:57:1d:9d:f5:59:67:41:13:23:0b: 65:cf:21:ff:a7:73:e0:e9:c9:26:63:0b:51:3f:7d: cc:ea:a8:8d:11:08:43:ae:d2:d8:4f:be:1f:c6:fd: 37:dd:90:08:69:c6:f1:98:d3:20:02:59:30:4b:16: ae:e5:93:d0:ea:eb:f2:6a:96:af:99:eb:8b:da:ab: 04:cf:4f:39:ea:d9:91:1a:1c:f3:12:34:b5:b4:ee: 8e:0b:86:44:61:97:c7:1d:e6:92:62:17:4d:26:21: 3c:d5:7c:fd:56:e1:44:7b:bb:d8:25:b5:a5:a5:45: ef:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:AE:C2:42:2F:82:88:60:1E:F8:EB:E5:D0:D2:43:5A:EE:85:1C:2E X509v3 Authority Key Identifier: keyid:6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:40:c6:e4:8c:a8:c4:f6:a0:7d:1a:12:13:e2:e2:56:fa:df: 6b:65:d1:4f:a2:74:a0:d5:b7:24:0f:43:d5:02:a0:3e:a4:d0: c9:ac:05:32:8e:cf:25:63:8e:69:44:f5:e6:ca:77:fc:ef:7e: ff:75:b2:53:90:13:6a:50:7c:09:ff:45:35:d3:2f:29:fd:ef: 93:ad:1e:43:35:d6:6a:22:06:18:bd:f4:fa:f3:72:b3:e5:16: cf:e1:88:cc:cd:20:0c:69:d4:9f:6b:6c:d8:18:a5:0c:73:d0: a1:44:b9:b9:49:e2:3d:49:fb:81:45:c8:24:c9:96:e3:1a:30: 7d:f8:fe:4e:f0:54:28:36:8f:76:ae:18:05:4d:68:5d:4a:f4: 52:f9:6c:1e:ef:bc:56:1d:88:6c:bb:ae:5a:90:d4:34:9a:a5: 99:ed:c1:3a:32:6c:49:59:e6:65:1d:71:fb:41:d3:99:79:63: 07:0d:a5:85:f2:76:9e:b0:3f:68:12:49:af:39:e9:13:35:c2: 33:b5:56:59:1f:55:10:47:76:9e:19:9e:73:89:5d:01:2b:22: 44:b7:0b:e7:8d:7b:9e:50:19:86:42:af:1f:da:54:27:0d:2a: 24:7c:36:81:21:77:ae:e2:37:6a:e0:75:e2:ac:2d:65:84:47: 0c:b6:a6:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQ0MxMTAvBgNVBAUTKDZEQUI2MUQxMkUzRjE5NkY1MTY5Mzg3MjNDODAyNzU5 OUM1RDc1NTIwHhcNMjUwNDAzMDUzNDMwWhcNMjUwNDEwMDUzNDMwWjAYMRYwFAYD VQQDEw02N2VlMWRlNi1mNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2YDHhEL1imYgTRKx67PyjRSK4cZvRy8yhZsSsKwuf9SXPCoUBgi5KXYSP2J ZNns7HbT+wmvUo3b2vh8CZMlZoCuVotH1krQ4EK0PT5Wew51PIqBmswCXmgs1WNw /Uo1+wKLpfpZTw2CqIywvtx3gf1BZux9+Ojj9yIsXAFFJFhxq/R2MYfbpmeYe1cd nfVZZ0ETIwtlzyH/p3Pg6ckmYwtRP33M6qiNEQhDrtLYT74fxv033ZAIacbxmNMg AlkwSxau5ZPQ6uvyapavmeuL2qsEz0856tmRGhzzEjS1tO6OC4ZEYZfHHeaSYhdN JiE81Xz9VuFEe7vYJbWlpUXvawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKuwkIv gohgHvjr5dDSQ1ruhRwuMB8GA1UdIwQYMBaAFG2rYdEuPxlvUWk4cjyAJ1mcXXVS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJDQy8yQUU4OTgxQTI3 MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dXOVJhVGh5UElBbldaeGRk VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhdGgwUzRfR1c5UmFUaHlQSUFuV1p4ZGRWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUJDQy8yQUU4OTgxQTI3MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dX OVJhVGh5UElBbldaeGRkVkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvQMbkjKjE9qB9GhIT4uJW+t9rZdFPonSg1bckD0PVAqA+pNDJrAUy js8lY45pRPXmynf8737/dbJTkBNqUHwJ/0U10y8p/e+TrR5DNdZqIgYYvfT683Kz 5RbP4YjMzSAMadSfa2zYGKUMc9ChRLm5SeI9SfuBRcgkyZbjGjB9+P5O8FQoNo92 rhgFTWhdSvRS+Wwe77xWHYhsu65akNQ0mqWZ7cE6MmxJWeZlHXH7QdOZeWMHDaWF 8naesD9oEkmvOekTNcIztVZZH1UQR3aeGZ5ziV0BKyJEtwvnjXueUBmGQq8f2lQn DSokfDaBIXeu4jdq4HXirC1lhEcMtqYh -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:25 2025 by rpki-client