$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: tBnYdrFIeqzERSr7xGOda40dsDaOC6j6fLGltsJSEzI= Subject key identifier: FE:5D:7B:AD:6C:66:18:61:C3:79:08:03:FB:7E:79:A9:26:E2:25:7B Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1BA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1B93 Signing time: Fri 30 May 2025 16:26:35 +0000 Manifest this update: Fri 30 May 2025 16:26:35 +0000 Manifest next update: Fri 06 Jun 2025 16:26:35 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: IH5cAPSh5EmsJvRZfsWhJ+hPKPdIuC/YbuaEthm6+gQ=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7077 (0x1ba5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: May 30 16:26:35 2025 GMT Not After : Jun 6 16:26:35 2025 GMT Subject: CN=6839dc3b-327a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8c:d4:db:56:d4:2b:46:6a:7a:45:72:89:b4: 65:20:45:f7:45:4e:ee:46:97:b6:74:0d:1c:74:97: db:ab:9a:02:ce:37:96:9e:1a:7c:41:05:5d:6a:6e: ae:6e:e6:7c:31:25:06:30:7f:71:76:ea:4e:17:9f: e1:05:32:d8:42:7e:4a:a4:96:44:15:92:ca:08:eb: a8:69:4f:70:8a:4c:7f:34:a1:5b:af:6b:8a:01:ab: 65:f3:1a:08:7d:73:3d:95:98:2d:28:e2:30:15:c6: ca:91:6a:51:09:61:00:26:7a:92:52:13:37:32:c9: 38:10:4a:13:19:2d:22:51:15:c2:48:b3:1f:d7:2a: 9f:31:c3:5b:00:9f:82:22:73:52:47:36:c8:5f:57: b9:f0:27:0b:48:c5:b9:81:cf:9d:50:06:da:28:cd: 59:04:50:f6:a1:0a:16:90:61:d4:88:77:b8:4d:02: 72:d4:c7:81:b8:cd:ea:4a:13:c7:96:bc:f3:b9:9e: 04:8b:45:30:b8:8e:91:c9:cc:51:ae:de:45:a9:e0: ad:fb:71:e0:31:eb:0f:47:71:f5:07:f0:80:a7:14: ed:dc:e7:30:95:2d:53:29:8f:85:56:a4:15:18:57: dc:9b:e4:05:12:df:5a:f2:6a:0a:36:07:a6:10:5e: a3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:5D:7B:AD:6C:66:18:61:C3:79:08:03:FB:7E:79:A9:26:E2:25:7B X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:ec:da:23:ae:45:83:60:f7:c4:21:ca:c0:40:54:78:af:fb: f3:ea:d5:0b:a0:f2:ef:a8:ff:57:bc:06:da:6b:ba:ae:41:21: c7:f9:ff:a0:8c:81:9d:45:80:cc:68:77:ea:6c:00:96:40:10: 1b:01:4d:30:4d:99:84:0d:77:03:e7:b2:6d:ab:3c:99:a9:83: ec:65:d8:1d:10:e5:c5:fe:75:4f:92:e0:dc:93:da:c4:85:5b: 7b:3d:a4:98:b2:6b:59:f4:16:6d:fe:08:cb:4f:14:fb:ba:ca: 11:78:a2:22:6c:b6:1f:5c:a1:84:bf:4c:3e:4e:6f:53:28:b5: c5:cb:b8:ca:c3:67:8c:23:75:82:c3:02:6f:79:9a:ee:f9:ea: f8:a1:0c:4f:0d:23:f1:71:e7:4b:6b:de:c8:13:43:f7:8c:64: 35:03:9b:b0:2c:6d:38:45:35:64:58:91:6f:2e:08:da:25:d0: 73:db:ab:06:8b:92:8f:bf:fb:61:74:4d:22:3b:cf:3e:bf:13: 92:81:ac:b7:01:af:65:d2:1a:44:31:3b:38:f5:7e:49:4a:11: aa:e8:c4:0a:29:94:e9:8a:4b:3e:ce:97:a1:de:9b:77:ee:47: 5d:a8:03:32:f7:76:49:c9:72:fb:84:0a:ca:4c:5f:07:90:94: 5e:e9:40:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwNTMwMTYyNjM1WhcNMjUwNjA2MTYyNjM1WjAYMRYwFAYD VQQDEw02ODM5ZGMzYi0zMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYzU21bUK0ZqekVyibRlIEX3RU7uRpe2dA0cdJfbq5oCzjeWnhp8QQVdam6u buZ8MSUGMH9xdupOF5/hBTLYQn5KpJZEFZLKCOuoaU9wikx/NKFbr2uKAatl8xoI fXM9lZgtKOIwFcbKkWpRCWEAJnqSUhM3Msk4EEoTGS0iURXCSLMf1yqfMcNbAJ+C InNSRzbIX1e58CcLSMW5gc+dUAbaKM1ZBFD2oQoWkGHUiHe4TQJy1MeBuM3qShPH lrzzuZ4Ei0UwuI6RycxRrt5FqeCt+3HgMesPR3H1B/CApxTt3OcwlS1TKY+FVqQV GFfcm+QFEt9a8moKNgemEF6jywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5de61s Zhhhw3kIA/t+eakm4iV7MB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH7NojrkWDYPfEIcrAQFR4r/vz6tULoPLvqP9XvAbaa7quQSHH+f+g jIGdRYDMaHfqbACWQBAbAU0wTZmEDXcD57JtqzyZqYPsZdgdEOXF/nVPkuDck9rE hVt7PaSYsmtZ9BZt/gjLTxT7usoReKIibLYfXKGEv0w+Tm9TKLXFy7jKw2eMI3WC wwJveZru+er4oQxPDSPxcedLa97IE0P3jGQ1A5uwLG04RTVkWJFvLgjaJdBz26sG i5KPv/thdE0iO88+vxOSgay3Aa9l0hpEMTs49X5JShGq6MQKKZTpiks+zpeh3pt3 7kddqAMy93ZJyXL7hArKTF8HkJRe6UD9 -----END CERTIFICATE-----Generated at Sat May 31 15:11:16 2025 by rpki-client