$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft File: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft (raw, json) Hash identifier: L1NNiPd6ZiSAawEYKS22UCMBNXh8StxfGWiXJTza7DA= Subject key identifier: B0:19:72:74:66:3F:70:AA:63:66:6D:65:AE:CF:B5:7B:B3:D0:BD:9A Authority key identifier: 1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 Certificate issuer: /CN=A91D3834/serialNumber=1A0D0BFA191911F855B5BABDFA03B9C07FDD2282 Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft Manifest number: 0708 Signing time: Fri 28 Mar 2025 22:13:57 +0000 Manifest this update: Fri 28 Mar 2025 22:13:57 +0000 Manifest next update: Fri 04 Apr 2025 22:13:57 +0000 Files and hashes: 1: Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl (hash: BkKjd163CrKqdkywNr83v/h9kIvML/z2nCYd2I7VaJU=) 2: F26505A6A7EA11EF8CBCCF2CC4F9AE02.roa (hash: EkwWJK2JMsgrSqPZGShXj+awl3UUP/bSxj5kv4pCabE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:13:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3834 Validity Not Before: Mar 28 22:13:57 2025 GMT Not After : Apr 4 22:13:57 2025 GMT Subject: CN=67e71f25-2f4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a6:63:12:e8:aa:10:31:33:e8:b3:48:d5:20: 64:34:bb:1e:6a:9f:7d:1b:cc:97:61:b6:86:87:30: 53:32:e8:82:d2:e9:98:0f:ec:30:d1:2d:0f:45:b0: 99:13:5c:2f:19:62:24:67:89:96:7a:8d:7d:7e:be: 7c:22:b5:d9:91:f7:32:be:1b:91:cd:14:90:19:ce: 63:99:39:8a:df:ef:7c:f3:6a:49:0c:91:40:5b:c7: d1:f6:ac:ab:3f:d4:e5:8c:4d:98:22:ee:f1:92:a9: 3d:aa:cc:55:27:e9:dc:a1:58:34:99:e0:dc:c6:cf: dd:6f:fa:6f:25:c4:da:be:c1:67:2c:cc:76:52:e2: 8f:12:52:1a:3a:31:5e:a0:a2:79:cc:ba:d8:d2:92: 04:e1:c2:d9:da:13:08:9d:19:0c:8c:b9:44:62:9a: 61:d0:b0:5e:9d:e7:f7:69:21:bf:b9:3c:fa:e4:71: 9d:22:fc:1e:dc:e0:df:05:16:7e:63:bf:f5:7e:ce: e0:93:d4:46:72:15:39:c4:96:bc:cf:e4:e7:de:b7: 88:77:f2:76:ed:a8:99:b2:26:43:5a:fe:e8:42:0f: 3c:f9:ad:74:bf:59:ae:cd:65:38:6c:34:c0:ef:5b: 9a:fc:3b:96:24:a5:24:5b:a2:17:f9:3e:03:92:56: a5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:19:72:74:66:3F:70:AA:63:66:6D:65:AE:CF:B5:7B:B3:D0:BD:9A X509v3 Authority Key Identifier: keyid:1A:0D:0B:FA:19:19:11:F8:55:B5:BA:BD:FA:03:B9:C0:7F:DD:22:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3834/8BC2EDB03A4111EB83B57F14C4F9AE02/Gg0L-hkZEfhVtbq9-gO5wH_dIoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:e8:ad:31:91:19:ce:2d:13:2d:5c:d5:92:9c:39:b1:a0:2f: 9e:06:f9:dc:9c:a8:ea:6e:44:5d:ca:af:19:12:a1:0c:4e:ec: 52:a9:1b:9d:3b:b5:91:0c:a3:77:79:37:01:0f:b2:a4:a0:91: 68:7f:bd:b5:b8:ec:67:80:09:f9:af:ca:13:09:45:5c:c5:2d: 2b:f9:8b:18:85:33:dc:dd:a4:83:ea:48:92:8c:2a:35:bb:2b: 5f:ed:83:47:21:2b:65:c9:12:5e:2f:1d:f9:80:be:39:ef:25: 83:c8:44:c0:24:19:9d:7b:a0:0a:75:fa:71:79:ba:7b:12:0f: 97:67:54:5f:aa:48:5a:ff:68:f2:4c:82:50:d8:de:46:34:a4: cb:b6:5a:cf:a4:c0:b4:87:26:fd:ce:bd:69:4f:99:fb:a6:3b: 70:7e:a1:10:19:59:b0:17:1a:60:71:11:0f:0a:d7:69:e1:ec: cc:2f:3f:bf:16:84:ba:20:41:a1:fe:c8:2f:d2:b9:e4:65:a2: 6d:34:75:12:c5:a3:0d:64:85:ae:09:48:16:99:02:11:95:c0: e6:3d:40:35:ea:57:c5:09:c2:5d:52:60:d4:f8:67:f7:f7:eb: cf:c4:ed:d6:7e:f2:9d:b8:8a:aa:3c:72:9c:cd:d0:e0:75:36: 76:cf:7b:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM4MzQxMTAvBgNVBAUTKDFBMEQwQkZBMTkxOTExRjg1NUI1QkFCREZBMDNCOUMw N0ZERDIyODIwHhcNMjUwMzI4MjIxMzU3WhcNMjUwNDA0MjIxMzU3WjAYMRYwFAYD VQQDEw02N2U3MWYyNS0yZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqZjEuiqEDEz6LNI1SBkNLseap99G8yXYbaGhzBTMuiC0umYD+ww0S0PRbCZ E1wvGWIkZ4mWeo19fr58IrXZkfcyvhuRzRSQGc5jmTmK3+9882pJDJFAW8fR9qyr P9TljE2YIu7xkqk9qsxVJ+ncoVg0meDcxs/db/pvJcTavsFnLMx2UuKPElIaOjFe oKJ5zLrY0pIE4cLZ2hMInRkMjLlEYpph0LBenef3aSG/uTz65HGdIvwe3ODfBRZ+ Y7/1fs7gk9RGchU5xJa8z+Tn3reId/J27aiZsiZDWv7oQg88+a10v1muzWU4bDTA 71ua/DuWJKUkW6IX+T4DklalswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAZcnRm P3CqY2ZtZa7PtXuz0L2aMB8GA1UdIwQYMBaAFBoNC/oZGRH4VbW6vfoDucB/3SKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzgzNC84QkMyRURCMDNB NDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVmaFZ0YnE5LWdPNXdIX2RJ b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dnMEwtaGtaRWZoVnRicTktZ081d0hfZElvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzgzNC84QkMyRURCMDNBNDExMUVCODNCNTdGMTRDNEY5QUUwMi9HZzBMLWhrWkVm aFZ0YnE5LWdPNXdIX2RJb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR6K0xkRnOLRMtXNWSnDmxoC+eBvncnKjqbkRdyq8ZEqEMTuxSqRud O7WRDKN3eTcBD7KkoJFof721uOxngAn5r8oTCUVcxS0r+YsYhTPc3aSD6kiSjCo1 uytf7YNHIStlyRJeLx35gL457yWDyETAJBmde6AKdfpxebp7Eg+XZ1Rfqkha/2jy TIJQ2N5GNKTLtlrPpMC0hyb9zr1pT5n7pjtwfqEQGVmwFxpgcREPCtdp4ezMLz+/ FoS6IEGh/sgv0rnkZaJtNHUSxaMNZIWuCUgWmQIRlcDmPUA16lfFCcJdUmDU+Gf3 9+vPxO3WfvKduIqqPHKczdDgdTZ2z3vs -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:43 2025 by rpki-client