$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft File: GxesPclsojRSUCPv02J-ks2IR0g.mft (raw, json) Hash identifier: FbHlL4KQ9pBZq8pUsWN7ik1k36XWjQMlj17YFx609vo= Subject key identifier: 48:33:4F:01:B1:A9:0A:16:6C:49:A3:10:41:FC:AE:C8:59:0D:0D:D6 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft Manifest number: 1CDC Signing time: Fri 04 Apr 2025 16:13:26 +0000 Manifest this update: Fri 04 Apr 2025 16:13:25 +0000 Manifest next update: Fri 11 Apr 2025 16:13:25 +0000 Files and hashes: 1: GxesPclsojRSUCPv02J-ks2IR0g.crl (hash: b/q3AEMmJzOeyph5DTRh5xONTGmvOcNKt2WCtFIO+xo=) 2: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (hash: n6ab3BTwAcpH4LegBC83qaXuTY61rSuzXQeixKGRCQ8=) 3: C154DA14E85C11EBA2171A25C4F9AE02.roa (hash: ZoYRtsKN6J+JTMHnmtPtNWovLxxrXzjOLNI6FTTDrJk=) 4: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (hash: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM=) 5: 89654CDAB83B11EFAA80DD09C4F9AE02.roa (hash: wZqrfI6axJ6OhiwV+iuxvLbJgC05OEzm0nCXJ1L7s34=) 6: 4D609E86FF3B11EB910E8847C4F9AE02.roa (hash: IlNlaUUrIO5psWG9zVe/2cJLa9A72orRKr8ki0wRJ+c=) 7: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (hash: i8SkLvPy/XtXc4ZuxfbQ0jMccOT4jPJgyB/aqJ2e6A0=) 8: 4E2669F4FF3B11EB910E8847C4F9AE02.roa (hash: RxEjxFNvI0DOGeP3888S1tn030BuNHUdNfLt3di15l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7451 (0x1d1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2 Validity Not Before: Apr 4 16:13:25 2025 GMT Not After : Apr 11 16:13:25 2025 GMT Subject: CN=67f00526-459a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c5:27:b4:19:34:3e:d5:49:d3:09:95:89:7e: 37:71:7b:e8:5a:16:2b:39:89:43:d7:15:6f:1f:d2: f1:2e:53:05:1e:5a:64:bf:2f:2a:a6:57:d0:24:fa: 89:01:dd:e8:76:e6:e2:51:cc:41:46:dc:ba:49:37: 19:8c:11:68:67:85:1d:af:0b:2f:05:31:81:a6:df: fa:9b:2a:dc:8e:5c:9e:aa:f9:6a:9d:b8:b7:fe:6b: 5f:32:2f:11:b6:71:aa:a1:78:82:92:84:85:b4:1e: 7d:29:0d:fc:c3:98:61:eb:79:7e:88:d6:13:7a:c8: 10:41:9d:38:be:ba:c1:ad:97:b5:c4:91:a5:f6:1f: a9:22:16:4c:0d:9d:c2:5d:7e:7a:43:cc:bf:1a:32: e7:69:f8:74:a6:95:03:2b:59:a1:e4:fe:8e:a9:92: 55:11:26:a9:16:88:c0:5d:ca:6f:cf:6b:ea:0d:13: 38:20:cb:dd:81:a1:91:ba:18:fb:8b:2f:1a:2f:5d: ca:a5:44:4a:1f:85:68:1c:50:80:e7:2e:82:17:6d: 99:83:cb:18:da:ee:00:09:63:73:68:ec:51:73:0b: 86:16:e8:81:9c:dc:5d:81:18:49:3e:82:54:59:bf: 26:f0:61:49:f0:b3:23:55:ae:ac:a2:23:66:09:fd: 13:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:33:4F:01:B1:A9:0A:16:6C:49:A3:10:41:FC:AE:C8:59:0D:0D:D6 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:34:65:d2:43:06:1f:d2:fc:68:d4:6f:f4:d0:b7:14:09:28: 6c:be:57:17:18:7f:13:f0:3a:4c:dd:78:b6:46:83:68:9a:f1: 7b:21:04:8a:0b:dc:f0:0f:bb:b5:91:a6:cf:0a:3c:74:a7:e7: a0:f1:27:ac:c4:07:74:3b:54:0a:97:7e:28:88:81:81:fc:28: 64:e8:e6:6f:7b:96:19:83:33:1f:8f:08:1f:30:6e:1c:7e:5a: 3e:bc:f7:64:b1:6e:77:f1:11:23:67:e0:a7:cd:96:0f:dd:1f: 4c:2b:23:50:b2:3f:bb:79:5e:a2:de:a1:85:a5:36:a4:b8:cb: 4a:c5:c9:96:16:26:7e:6a:e9:64:8b:c2:1d:ab:e3:65:08:84: 61:4e:a1:b2:43:63:11:7c:a5:c1:85:be:bb:5a:b9:2e:0a:3a: 30:a3:f5:4d:ac:e0:74:7e:a7:b3:22:70:19:e8:13:37:c2:99: 44:8c:9e:96:f7:99:39:7d:7f:57:d9:0a:2f:ba:04:79:3a:08: 17:7e:8a:38:44:44:df:84:9d:6f:65:6f:45:a4:41:20:81:df: 13:ef:64:fb:13:77:d6:6d:2d:05:d7:86:89:c1:6c:07:ed:69: 73:02:ac:41:8c:ff:80:9f:04:a2:ed:2d:ae:25:ce:84:24:63: 27:58:ad:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUwNDA0MTYxMzI1WhcNMjUwNDExMTYxMzI1WjAYMRYwFAYD VQQDEw02N2YwMDUyNi00NTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcUntBk0PtVJ0wmViX43cXvoWhYrOYlD1xVvH9LxLlMFHlpkvy8qplfQJPqJ Ad3odubiUcxBRty6STcZjBFoZ4UdrwsvBTGBpt/6myrcjlyeqvlqnbi3/mtfMi8R tnGqoXiCkoSFtB59KQ38w5hh63l+iNYTesgQQZ04vrrBrZe1xJGl9h+pIhZMDZ3C XX56Q8y/GjLnafh0ppUDK1mh5P6OqZJVESapFojAXcpvz2vqDRM4IMvdgaGRuhj7 iy8aL13KpURKH4VoHFCA5y6CF22Zg8sY2u4ACWNzaOxRcwuGFuiBnNxdgRhJPoJU Wb8m8GFJ8LMjVa6soiNmCf0TuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgzTwGx qQoWbEmjEEH8rshZDQ3WMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REJGMi9FMzQ0NTAxNkMyRjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29q UlNVQ1B2MDJKLWtzMklSMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtNGXSQwYf0vxo1G/00LcUCShsvlcXGH8T8DpM3Xi2RoNomvF7IQSK C9zwD7u1kabPCjx0p+eg8SesxAd0O1QKl34oiIGB/Chk6OZve5YZgzMfjwgfMG4c flo+vPdksW538REjZ+CnzZYP3R9MKyNQsj+7eV6i3qGFpTakuMtKxcmWFiZ+aulk i8Idq+NlCIRhTqGyQ2MRfKXBhb67WrkuCjowo/VNrOB0fqezInAZ6BM3wplEjJ6W 95k5fX9X2QovugR5OggXfoo4RETfhJ1vZW9FpEEggd8T72T7E3fWbS0F14aJwWwH 7WlzAqxBjP+AnwSi7S2uJc6EJGMnWK02 -----END CERTIFICATE-----Generated at Sat Apr 5 01:27:26 2025 by rpki-client