$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft File: GkhD6J8kRLLN24EYqoovRBgOhJg.mft (raw, json) Hash identifier: htahWgyMjA0IdmfK0VxOnSjgu+MfUCT7FkKa5I+O+c4= Subject key identifier: 4A:B0:F8:17:1D:C9:47:77:E3:FB:4E:A0:11:51:AB:73:86:2B:69:DE Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft Manifest number: 0153 Signing time: Sat 29 Mar 2025 03:36:59 +0000 Manifest this update: Sat 29 Mar 2025 03:36:59 +0000 Manifest next update: Sat 05 Apr 2025 03:36:58 +0000 Files and hashes: 1: GkhD6J8kRLLN24EYqoovRBgOhJg.crl (hash: ItjyK8Vh/9+I5ZdZcSyI1e3xF4AlgJcJ5Y9P9y+xgzk=) 2: B5569B88096311EE9ECB644DC4F9AE02.roa (hash: r69ry07FlZRyxMcGSskusquMKld1QByFguUcoWDQa3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280 Validity Not Before: Mar 29 03:36:59 2025 GMT Not After : Apr 5 03:36:58 2025 GMT Subject: CN=67e76adb-7388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d0:46:35:a4:82:be:4a:8c:0b:e6:19:8f:d2: 7e:59:f1:fa:2c:0f:2a:78:71:ca:97:0c:b9:27:0a: 8b:05:41:7b:8f:60:a3:2a:63:8c:0d:9f:df:a6:7a: 07:dc:d1:86:6e:ad:99:59:fa:d7:d8:ae:0f:74:21: 49:7e:57:e4:37:5d:eb:63:00:ca:a7:9b:19:73:3f: a1:60:e5:46:5a:38:92:41:19:4c:6c:ab:39:e7:9b: 4d:c0:20:42:37:2a:08:c7:6f:5b:9e:8c:62:73:19: af:64:5c:86:96:bc:95:7d:87:e0:11:6d:61:28:2f: 21:c1:1c:09:db:b0:b8:56:38:70:2c:2e:ca:c4:8b: 3f:be:a8:75:f2:4d:25:51:09:cf:19:de:bc:ef:d3: ff:01:f8:c1:93:6b:5a:f1:2f:cb:c3:57:f7:12:cd: 73:71:e9:0f:a4:f3:13:57:4e:18:9d:aa:09:3b:70: 69:8b:1a:95:18:5b:f9:95:8c:79:d1:cb:25:d9:27: db:fd:3f:d4:aa:9b:33:c6:a4:25:64:5d:6c:d1:a1: e4:74:e2:ee:8c:bb:7d:20:83:54:ea:75:c2:b3:fa: c9:f0:94:be:e0:b2:65:70:03:46:d2:f0:4d:be:d3: f2:1b:93:8e:26:a2:40:63:56:e5:36:22:d2:e8:ce: 1e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B0:F8:17:1D:C9:47:77:E3:FB:4E:A0:11:51:AB:73:86:2B:69:DE X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c0:19:d3:69:92:e5:5c:a3:62:15:ee:02:e7:59:f4:6a:7d: f1:3e:5e:f5:27:14:3c:20:db:9c:7c:05:d0:09:71:92:ee:22: 5f:3d:b4:d9:69:d0:97:9d:85:4d:a3:76:95:30:a0:f2:5d:18: 8f:d7:17:f9:68:f9:ae:ac:d1:72:78:f7:f7:43:16:cd:65:8b: ab:57:89:96:a9:86:c6:0e:39:03:68:e6:8d:83:de:48:99:d6: 4f:d2:fb:5a:e5:3d:a8:62:fc:fe:ea:18:1c:ce:99:c5:a9:bc: c4:8d:ab:a5:c4:33:b8:94:32:98:8a:e1:03:39:5f:f6:a2:25: 3b:4c:2f:a5:ef:03:a7:76:83:28:a6:25:69:18:2b:af:4f:f9: 6d:7c:1e:c8:c7:a6:a3:b8:9f:8c:e0:5b:11:55:64:23:57:77: c8:1b:ae:3a:6d:2f:75:bf:0b:fe:80:9e:27:3c:ba:8e:bb:c9: 45:58:25:f9:75:04:60:79:38:a0:20:d2:74:53:8f:30:8e:68: 7b:32:8f:30:4d:fa:53:ed:19:bd:97:30:12:19:14:4d:93:5a: ce:b5:87:8e:e1:c8:a1:02:66:48:c5:4e:ef:ff:c7:1a:7e:fd: 3c:99:6b:ac:70:de:8e:7e:a9:70:9f:1a:a3:23:d9:6e:46:99: 22:9f:46:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyODAxMTAvBgNVBAUTKDFBNDg0M0U4OUYyNDQ0QjJDRERCODExOEFBOEEyRjQ0 MTgwRTg0OTgwHhcNMjUwMzI5MDMzNjU5WhcNMjUwNDA1MDMzNjU4WjAYMRYwFAYD VQQDEw02N2U3NmFkYi03Mzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdBGNaSCvkqMC+YZj9J+WfH6LA8qeHHKlwy5JwqLBUF7j2CjKmOMDZ/fpnoH 3NGGbq2ZWfrX2K4PdCFJflfkN13rYwDKp5sZcz+hYOVGWjiSQRlMbKs555tNwCBC NyoIx29bnoxicxmvZFyGlryVfYfgEW1hKC8hwRwJ27C4VjhwLC7KxIs/vqh18k0l UQnPGd6879P/AfjBk2ta8S/Lw1f3Es1zcekPpPMTV04YnaoJO3BpixqVGFv5lYx5 0csl2Sfb/T/UqpszxqQlZF1s0aHkdOLujLt9IINU6nXCs/rJ8JS+4LJlcANG0vBN vtPyG5OOJqJAY1blNiLS6M4eJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqw+Bcd yUd34/tOoBFRq3OGK2neMB8GA1UdIwQYMBaAFBpIQ+ifJESyzduBGKqKL0QYDoSY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTI4MC9DMDRCMUI3NjA5 NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JMTE4yNEVZcW9vdlJCZ09o SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9Ha2hENko4a1JM TE4yNEVZcW9vdlJCZ09oSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhwBnTaZLlXKNiFe4C51n0an3xPl71JxQ8INucfAXQCXGS7iJfPbTZ adCXnYVNo3aVMKDyXRiP1xf5aPmurNFyePf3QxbNZYurV4mWqYbGDjkDaOaNg95I mdZP0vta5T2oYvz+6hgczpnFqbzEjaulxDO4lDKYiuEDOV/2oiU7TC+l7wOndoMo piVpGCuvT/ltfB7Ix6ajuJ+M4FsRVWQjV3fIG646bS91vwv+gJ4nPLqOu8lFWCX5 dQRgeTigINJ0U48wjmh7Mo8wTfpT7Rm9lzASGRRNk1rOtYeO4cihAmZIxU7v/8ca fv08mWuscN6OfqlwnxqjI9luRpkin0b3 -----END CERTIFICATE-----Generated at Fri Apr 4 21:25:32 2025 by rpki-client