$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft File: gTpuT37cWLx6SLbR_XwZ39go8fE.mft (raw, json) Hash identifier: oaCG01oeeWZZUqlYHaUHZ6Fokct4tD7qBlmyfafT0bE= Subject key identifier: 46:6F:E9:58:E6:DD:E3:1A:EC:05:20:D3:74:33:05:7B:C9:D6:FD:31 Authority key identifier: 81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 Certificate issuer: /CN=A91E0CF5/serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft Manifest number: 78 Signing time: Thu 13 Mar 2025 04:48:21 +0000 Manifest this update: Thu 13 Mar 2025 04:48:20 +0000 Manifest next update: Thu 20 Mar 2025 04:48:20 +0000 Files and hashes: 1: gTpuT37cWLx6SLbR_XwZ39go8fE.crl (hash: /C4cmf0Cw4vdRcVXmNXe6ey/hK5stS+avSHgKtYGrco=) 2: C0F3F504492B11EF8EF0D04FC4F9AE02.roa (hash: 9XdOr8ci0XxQ25MZorUAalomR3Uhklj1yk5ZzWVz3NQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5 Validity Not Before: Mar 13 04:48:20 2025 GMT Not After : Mar 20 04:48:20 2025 GMT Subject: CN=67d26394-604a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3d:4c:43:77:cf:7c:ec:ac:a1:e0:df:e3:36: d6:c5:0e:64:b2:0e:5d:79:19:f8:3a:18:db:17:65: cd:96:58:54:64:f0:12:2a:e7:0a:96:31:7a:6c:e8: 0e:e9:1f:c1:77:b4:8c:fa:99:be:84:f6:64:7e:7e: d0:a9:98:f0:33:e1:61:72:6d:e0:fe:b9:cc:e0:20: 93:d1:e0:e0:35:07:76:8c:8e:8c:b4:e2:43:b2:47: 60:08:de:33:70:1e:2e:20:4a:ca:ff:1b:d3:d4:c8: 08:2e:c6:66:b9:d5:d0:70:36:8e:af:b5:c8:92:ad: da:a4:fb:d0:cc:cb:ec:f1:3c:f8:c2:9c:43:fd:c5: 49:b5:89:b6:27:db:aa:48:1c:6c:86:51:58:ca:2a: b4:4a:86:b1:9a:67:42:df:9e:a6:c8:ae:07:b3:14: 8d:78:94:e7:38:a6:8d:1d:78:be:12:a2:9a:82:db: 03:43:61:13:ba:7f:65:2c:50:d2:be:61:d2:b6:c7: 54:12:40:88:e5:17:36:fd:46:a9:5e:18:37:a4:12: ba:a5:3c:98:97:d0:d3:31:45:32:84:b5:ef:75:97: 45:f9:a7:5b:e8:1a:76:44:1f:1b:e3:6a:77:13:d6: c1:e2:98:26:71:1e:8d:53:83:7e:19:7e:02:a8:7c: 2a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:6F:E9:58:E6:DD:E3:1A:EC:05:20:D3:74:33:05:7B:C9:D6:FD:31 X509v3 Authority Key Identifier: keyid:81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:76:73:99:15:c4:53:12:38:9a:5f:83:e1:95:7e:4d:dc:92: 34:b6:b9:c1:96:86:74:0f:e8:61:20:db:e5:2a:fd:80:7a:bf: 10:be:a3:47:e8:b4:0d:25:1f:67:f2:86:8f:fb:78:c3:a8:c2: d5:58:a3:c7:62:d3:df:ae:92:81:c4:fb:5d:16:97:42:54:90: ef:c3:3d:cb:05:55:a2:d2:e8:30:39:1c:a6:80:6c:d1:42:aa: f7:d1:b9:31:45:3b:4a:ed:af:03:e3:86:1f:01:3b:42:58:39: 4b:f1:c7:3b:78:12:81:6a:ce:09:63:70:44:77:28:03:70:04: 8a:3a:b0:63:d2:62:49:5f:85:8e:ed:0f:03:76:47:99:f1:47: 4a:de:2e:31:80:71:ea:67:50:05:7a:c5:27:9c:b7:4f:d2:6a: fc:82:1c:b2:6b:d4:02:38:2d:a8:81:37:74:83:76:8f:0a:01: 28:0d:8e:9b:e7:d2:fd:84:21:10:4b:ea:b8:3e:f6:48:d5:72: 62:e1:02:1a:65:25:e4:c7:9f:49:aa:12:aa:9b:9a:e4:2f:9b: 53:9c:30:94:55:4f:d1:0a:3f:49:90:d7:d4:57:cb:3a:9d:67: 0c:9e:bc:f1:90:af:a1:f1:72:71:42:5d:63:b3:e0:8a:2e:6b: a0:ba:30:ec -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MENGNTExMC8GA1UEBRMoODEzQTZFNEY3RURDNThCQzdBNDhCNkQxRkQ3QzE5REZE ODI4RjFGMTAeFw0yNTAzMTMwNDQ4MjBaFw0yNTAzMjAwNDQ4MjBaMBgxFjAUBgNV BAMTDTY3ZDI2Mzk0LTYwNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAPUxDd8987Kyh4N/jNtbFDmSyDl15Gfg6GNsXZc2WWFRk8BIq5wqWMXps6A7p H8F3tIz6mb6E9mR+ftCpmPAz4WFybeD+uczgIJPR4OA1B3aMjoy04kOyR2AI3jNw Hi4gSsr/G9PUyAguxma51dBwNo6vtciSrdqk+9DMy+zxPPjCnEP9xUm1ibYn26pI HGyGUVjKKrRKhrGaZ0LfnqbIrgezFI14lOc4po0deL4SopqC2wNDYRO6f2UsUNK+ YdK2x1QSQIjlFzb9RqleGDekErqlPJiX0NMxRTKEte91l0X5p1voGnZEHxvjancT 1sHimCZxHo1Tg34ZfgKofCqjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURm/pWObd 4xrsBSDTdDMFe8nW/TEwHwYDVR0jBBgwFoAUgTpuT37cWLx6SLbR/XwZ39go8fEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQ0Y1LzRCQjdDNjQ0NDky QjExRUZCRTEwMTg0RkM0RjlBRTAyL2dUcHVUMzdjV0x4NlNMYlJfWHdaMzlnbzhm RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ1RwdVQzN2NXTHg2U0xiUl9Yd1ozOWdvOGZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUw Q0Y1LzRCQjdDNjQ0NDkyQjExRUZCRTEwMTg0RkM0RjlBRTAyL2dUcHVUMzdjV0x4 NlNMYlJfWHdaMzlnbzhmRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACR2c5kVxFMSOJpfg+GVfk3ckjS2ucGWhnQP6GEg2+Uq/YB6vxC+o0fo tA0lH2fyho/7eMOowtVYo8di09+ukoHE+10Wl0JUkO/DPcsFVaLS6DA5HKaAbNFC qvfRuTFFO0rtrwPjhh8BO0JYOUvxxzt4EoFqzgljcER3KANwBIo6sGPSYklfhY7t DwN2R5nxR0reLjGAcepnUAV6xSect0/SavyCHLJr1AI4LaiBN3SDdo8KASgNjpvn 0v2EIRBL6rg+9kjVcmLhAhplJeTHn0mqEqqbmuQvm1OcMJRVT9EKP0mQ19RXyzqd ZwyevPGQr6HxcnFCXWOz4Ioua6C6MOw= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:42 2025 by rpki-client