$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft File: h7LA6ClUHS71JmOF6zlGuNUpBgg.mft (raw, json) Hash identifier: JE/GpYIAW1vSVK5+iYqR/djV5RkSZZdqevoNOP0wGF0= Subject key identifier: 31:E2:C1:37:BA:86:6C:19:A3:E7:D1:1E:07:33:22:E9:5F:1B:BE:F5 Authority key identifier: 87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 Certificate issuer: /CN=A911B5B0/serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Certificate serial: 0828 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft Manifest number: 080C Signing time: Thu 24 Apr 2025 20:46:49 +0000 Manifest this update: Thu 24 Apr 2025 20:46:49 +0000 Manifest next update: Thu 01 May 2025 20:46:49 +0000 Files and hashes: 1: h7LA6ClUHS71JmOF6zlGuNUpBgg.crl (hash: gilVSMygNgT5GVOQT+bHa3LVZmlz2KK24wZRvEWFu2g=) 2: 0A7320284D4811EE86B7A71FC4F9AE02.roa (hash: SiDzLOasKO+XNvQ+goSOpdOQE3ZO4gyfhkgA7eX7eA0=) 3: 021F5D1E005F11EE9D6E2530C4F9AE02.roa (hash: D9Du1jxG8oE9wceHFEoY5Nl8COEasjJYKId8W2qCUf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2088 (0x828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B0, serialNumber=87B2C0E829541D2EF5266385EB3946B8D5290608 Validity Not Before: Apr 24 20:46:49 2025 GMT Not After : May 1 20:46:49 2025 GMT Subject: CN=680aa339-9b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:99:dd:35:e3:db:6b:fb:e5:bc:70:fe:73:97: 8c:8d:85:00:ec:b9:88:21:81:50:38:3a:ae:17:73: 13:7d:c7:f4:9c:00:73:5d:66:7d:c5:39:69:d4:4d: 95:c0:6d:90:f9:39:96:c4:a9:37:92:bd:93:fb:df: a3:c7:e8:5a:ee:36:72:5d:38:0d:a1:c6:2d:8c:bd: 5f:d0:30:2c:5d:12:ab:bb:6d:f3:67:11:64:c1:ad: 20:f6:94:93:7e:c0:73:f7:c2:37:a1:d4:a2:1f:46: 01:35:15:4e:9d:93:19:31:e0:60:9f:f6:75:f5:ee: 85:7d:b8:68:f1:bc:b3:bb:ea:18:1a:a9:d9:9f:4c: 42:65:54:a3:62:e4:cd:85:65:82:45:e1:8b:8f:bb: 64:8f:b2:64:87:d3:19:ee:17:75:41:3c:2f:33:fb: eb:c4:6c:e6:f2:67:77:41:cf:7a:b2:dd:96:e2:b8: 35:25:c7:07:ad:27:11:85:bf:58:8d:d8:44:4c:39: b7:e4:fd:98:b0:c1:7c:7a:c1:a3:e7:b3:ca:50:55: c7:10:e9:58:21:63:db:b5:c4:dc:c8:77:52:c3:01: 3c:45:c8:68:5d:2a:de:ae:54:1c:55:6c:31:b5:be: af:4a:76:83:0f:15:ad:aa:44:ae:67:0e:c7:86:c9: 2d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:E2:C1:37:BA:86:6C:19:A3:E7:D1:1E:07:33:22:E9:5F:1B:BE:F5 X509v3 Authority Key Identifier: keyid:87:B2:C0:E8:29:54:1D:2E:F5:26:63:85:EB:39:46:B8:D5:29:06:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7LA6ClUHS71JmOF6zlGuNUpBgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B0/A2DF4CECDD4D11EABB76967BC4F9AE02/h7LA6ClUHS71JmOF6zlGuNUpBgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b6:4c:21:98:0e:6e:ee:e1:4b:a0:f0:df:b7:58:36:8a:07: fc:59:35:fb:a8:0e:79:4b:1f:f2:7f:f7:e0:d8:be:f6:ff:ed: 52:8d:2b:c6:1d:38:35:e4:95:c8:ae:71:65:3c:f2:97:fc:82: 7b:2b:58:2e:d8:fb:6b:dd:65:c9:e2:29:5a:04:5f:33:8e:34: f3:96:6f:1e:ff:a5:3e:4c:eb:45:1e:f1:f9:a6:17:19:7c:cb: a5:ee:cb:54:f0:e6:a9:2f:39:8d:08:3a:64:87:55:3e:d4:1b: da:56:10:58:f4:fe:7c:e1:a5:7b:09:ea:21:d6:ca:10:8f:90: 9f:73:23:18:58:0b:47:8c:50:9a:84:dd:c4:74:b1:b3:9b:76: 55:62:be:24:75:80:09:73:ba:95:30:e2:ef:14:e1:ec:4e:b8: 21:6e:e6:d9:49:39:27:29:89:bf:dd:25:ee:3d:42:62:3c:0f: 65:cc:ad:9b:b1:1e:6c:08:8a:07:cc:4b:18:36:8e:ea:d7:2b: 28:67:c6:df:c8:1a:27:86:f2:6f:7b:8e:79:81:63:0d:c6:e4: 83:0e:f5:90:d2:40:e8:e9:53:a6:03:a1:76:04:72:33:44:6d: 49:ee:74:43:85:9f:10:16:0d:32:ff:6c:f5:cb:63:c7:87:00: d7:06:92:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjAxMTAvBgNVBAUTKDg3QjJDMEU4Mjk1NDFEMkVGNTI2NjM4NUVCMzk0NkI4 RDUyOTA2MDgwHhcNMjUwNDI0MjA0NjQ5WhcNMjUwNTAxMjA0NjQ5WjAYMRYwFAYD VQQDEw02ODBhYTMzOS05Yjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpndNePba/vlvHD+c5eMjYUA7LmIIYFQODquF3MTfcf0nABzXWZ9xTlp1E2V wG2Q+TmWxKk3kr2T+9+jx+ha7jZyXTgNocYtjL1f0DAsXRKru23zZxFkwa0g9pST fsBz98I3odSiH0YBNRVOnZMZMeBgn/Z19e6Ffbho8byzu+oYGqnZn0xCZVSjYuTN hWWCReGLj7tkj7Jkh9MZ7hd1QTwvM/vrxGzm8md3Qc96st2W4rg1JccHrScRhb9Y jdhETDm35P2YsMF8esGj57PKUFXHEOlYIWPbtcTcyHdSwwE8RchoXSrerlQcVWwx tb6vSnaDDxWtqkSuZw7HhsktRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHiwTe6 hmwZo+fRHgczIulfG771MB8GA1UdIwQYMBaAFIeywOgpVB0u9SZjhes5RrjVKQYI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCMC9BMkRGNENFQ0RE NEQxMUVBQkI3Njk2N0JDNEY5QUUwMi9oN0xBNkNsVUhTNzFKbU9GNnpsR3VOVXBC Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3TEE2Q2xVSFM3MUptT0Y2emxHdU5VcEJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCMC9BMkRGNENFQ0RENEQxMUVBQkI3Njk2N0JDNEY5QUUwMi9oN0xBNkNsVUhT NzFKbU9GNnpsR3VOVXBCZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYtkwhmA5u7uFLoPDft1g2igf8WTX7qA55Sx/yf/fg2L72/+1SjSvG HTg15JXIrnFlPPKX/IJ7K1gu2Ptr3WXJ4ilaBF8zjjTzlm8e/6U+TOtFHvH5phcZ fMul7stU8OapLzmNCDpkh1U+1BvaVhBY9P584aV7Ceoh1soQj5CfcyMYWAtHjFCa hN3EdLGzm3ZVYr4kdYAJc7qVMOLvFOHsTrghbubZSTknKYm/3SXuPUJiPA9lzK2b sR5sCIoHzEsYNo7q1ysoZ8bfyBonhvJve455gWMNxuSDDvWQ0kDo6VOmA6F2BHIz RG1J7nRDhZ8QFg0y/2z1y2PHhwDXBpIh -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:52 2025 by rpki-client