$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: vMUBUxbBrxmJhCZnlDyzvQAPo8O1Pv9L3ntehm+Vyzk= Subject key identifier: E2:4D:09:49:8A:BF:85:5D:F4:36:67:DD:7F:1C:6A:74:29:F7:92:AE Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 17CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 17B5 Signing time: Thu 24 Apr 2025 16:36:19 +0000 Manifest this update: Thu 24 Apr 2025 16:36:19 +0000 Manifest next update: Thu 01 May 2025 16:36:19 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: AOFk0rRTc8QGhqcMuT5Ut49C0Ossm8KtA0CYrUASgj8=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: zR1vLwBNC+zW0NA3iey3xByMneMFo5M9cemWz2gclFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6092 (0x17cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Apr 24 16:36:19 2025 GMT Not After : May 1 16:36:19 2025 GMT Subject: CN=680a6883-0748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a5:0b:1b:27:b2:f1:02:4d:12:ba:71:c9:86: 79:47:bc:ff:5d:99:17:d1:15:60:9a:05:dd:ec:d5: e5:95:6a:91:95:73:2e:3e:4a:e1:43:53:da:7b:13: 56:5d:e3:59:8a:ab:ed:a8:4c:d1:3f:c0:16:a6:a2: e5:ef:a2:85:70:9a:dc:3c:e3:43:4d:33:27:7d:9a: 92:6e:be:71:bd:e3:8e:c8:c7:43:6d:b2:7b:b0:a0: cc:e7:b2:6c:c7:cd:d7:a2:fa:58:a2:45:e0:ba:f7: 6e:e1:91:9a:82:91:9c:ec:37:77:d4:90:7f:58:c8: f1:51:ba:87:ed:b8:1f:51:46:98:9b:74:f7:11:9e: 04:83:bf:35:b6:4e:07:6f:7e:cf:84:d8:08:1a:69: 41:f1:98:95:bd:22:c7:09:6f:c0:0d:d0:d1:f3:67: 0b:b9:e6:14:49:3a:d0:5c:f1:82:92:a1:a2:b0:0c: 90:01:9a:d8:36:5d:95:1a:fb:9c:8e:5e:76:e7:84: 07:63:e9:7d:94:63:02:6c:00:15:93:0a:8a:92:43: 35:15:a5:46:69:f1:47:ee:f7:b9:f0:9f:6c:3d:35: d8:70:b5:be:46:ab:e9:d1:8c:05:78:35:47:85:da: af:48:1f:41:b7:50:be:30:35:64:dd:6b:f7:d7:04: 92:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:4D:09:49:8A:BF:85:5D:F4:36:67:DD:7F:1C:6A:74:29:F7:92:AE X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:7b:10:bd:c6:f9:a8:11:0e:52:09:60:cc:08:51:cf:4d:93: d7:3f:87:8e:73:4d:84:a8:51:3e:6b:c4:22:b6:0c:ac:90:cf: 3d:72:83:7f:33:b2:11:71:14:27:86:15:38:99:a0:30:51:30: 0f:cf:0f:99:b3:0b:58:a1:1c:6c:ab:41:57:ba:21:c8:da:27: e1:88:9e:e7:e6:2b:c6:82:40:f1:d8:2d:1a:65:bc:c0:5f:fc: 8a:f0:26:ef:e3:b8:c5:06:87:fd:bd:c3:4f:4c:d1:70:56:6b: 11:f3:48:b4:95:3f:59:5d:d9:56:92:5a:16:56:ad:88:a0:c8: 9d:87:4e:8a:ae:b9:24:b5:2e:8e:77:69:6a:58:3f:a3:03:eb: de:8f:b1:04:f8:5e:33:7a:0a:5d:20:28:da:0b:fe:3a:96:e2: f5:b8:ae:4a:48:44:af:94:15:4e:d5:20:e5:a9:25:41:75:f8: 97:89:2f:01:7d:ac:f1:64:40:16:4e:dc:e6:84:bd:e3:88:56: 12:d3:4a:32:5a:59:34:53:ba:11:1a:87:a3:a2:41:ac:c8:4a: 61:c5:cc:bf:00:a7:83:2c:0b:b9:c2:a6:f9:89:23:ae:5d:6d: ab:48:aa:ae:27:c9:6d:d7:6a:6d:11:51:34:e5:de:e4:43:bb: 3f:f9:8d:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUwNDI0MTYzNjE5WhcNMjUwNTAxMTYzNjE5WjAYMRYwFAYD VQQDEw02ODBhNjg4My0wNzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6ULGyey8QJNErpxyYZ5R7z/XZkX0RVgmgXd7NXllWqRlXMuPkrhQ1PaexNW XeNZiqvtqEzRP8AWpqLl76KFcJrcPONDTTMnfZqSbr5xveOOyMdDbbJ7sKDM57Js x83XovpYokXguvdu4ZGagpGc7Dd31JB/WMjxUbqH7bgfUUaYm3T3EZ4Eg781tk4H b37PhNgIGmlB8ZiVvSLHCW/ADdDR82cLueYUSTrQXPGCkqGisAyQAZrYNl2VGvuc jl5254QHY+l9lGMCbAAVkwqKkkM1FaVGafFH7ve58J9sPTXYcLW+Rqvp0YwFeDVH hdqvSB9Bt1C+MDVk3Wv31wSSTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJNCUmK v4Vd9DZn3X8canQp95KuMB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoexC9xvmoEQ5SCWDMCFHPTZPXP4eOc02EqFE+a8QitgyskM89coN/ M7IRcRQnhhU4maAwUTAPzw+ZswtYoRxsq0FXuiHI2ifhiJ7n5ivGgkDx2C0aZbzA X/yK8Cbv47jFBof9vcNPTNFwVmsR80i0lT9ZXdlWkloWVq2IoMidh06KrrkktS6O d2lqWD+jA+vej7EE+F4zegpdICjaC/46luL1uK5KSESvlBVO1SDlqSVBdfiXiS8B fazxZEAWTtzmhL3jiFYS00oyWlk0U7oRGoejokGsyEphxcy/AKeDLAu5wqb5iSOu XW2rSKquJ8lt12ptEVE05d7kQ7s/+Y1O -----END CERTIFICATE-----Generated at Sat Apr 26 05:10:09 2025 by rpki-client