$ rpki-client -vvf rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft File: hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft (raw, json) Hash identifier: l9cg3t55LtULcu7qY46UL2K/PCzGXKJh7fQQoZ/kDU8= Subject key identifier: 84:5F:C9:11:B5:6A:E0:BF:14:B4:01:22:18:F9:59:F0:C6:80:70:EA Authority key identifier: 85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF Certificate issuer: /CN=A911C9E8/serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft Manifest number: 012D Signing time: Fri 25 Apr 2025 03:41:06 +0000 Manifest this update: Fri 25 Apr 2025 03:41:05 +0000 Manifest next update: Fri 02 May 2025 03:41:05 +0000 Files and hashes: 1: hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl (hash: Wm0r8jbYkE3V7n7ZEZpkYQAnZZRlifyeeS1afgiK06k=) 2: E39F4ED65C2411EEB54C4F43C4F9AE02.roa (hash: jSX8BBXcDhKRO02h61flDcL9PRKVJzf27mu274wCdhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C9E8, serialNumber=85299F0DB14C8F0A53D2446EFDB0CC059C1524BF Validity Not Before: Apr 25 03:41:05 2025 GMT Not After : May 2 03:41:05 2025 GMT Subject: CN=680b0452-f8d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ae:e8:23:cc:51:e4:89:a2:9d:27:ea:bf:07: 8b:2f:cc:cc:05:63:bf:aa:48:ed:3e:ba:3a:71:7b: 4c:eb:14:15:fa:d9:de:f1:82:20:e9:96:d8:59:a1: dd:ad:4e:dd:c4:b6:1d:8b:f6:1f:a3:ca:51:4d:53: 79:84:fc:62:49:5e:e6:39:a3:b4:ab:50:7e:29:bb: 91:0f:6e:ac:2c:92:7a:94:a1:81:ba:bb:8f:4d:ab: ac:81:68:51:f7:44:76:37:16:6e:95:f4:6c:e5:b2: 66:c0:4a:b5:2b:92:01:10:86:5c:a8:02:82:a3:b9: 7d:05:e2:48:55:f2:73:fa:ea:60:b5:1b:e2:31:7d: fd:ba:4f:8b:ac:a2:00:d4:5b:db:c9:06:de:13:63: 28:9c:04:8a:c8:91:17:21:58:d9:94:cc:2a:63:6e: f9:dc:10:df:7e:06:c8:44:1f:25:35:6f:2f:03:7c: b5:2f:d2:c0:8c:19:97:a9:08:e4:23:fa:ba:66:d1: d7:f1:b7:63:f4:28:25:08:3b:5f:50:6e:22:77:e3: 87:b3:f3:14:e7:e4:f5:b6:c7:4b:d9:0f:4e:0d:26: 8b:b9:bc:c2:e1:f9:35:5f:88:f3:56:83:4f:78:ec: 79:c2:a9:ab:dc:88:f7:5b:b4:82:e3:c4:e3:45:b6: be:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5F:C9:11:B5:6A:E0:BF:14:B4:01:22:18:F9:59:F0:C6:80:70:EA X509v3 Authority Key Identifier: keyid:85:29:9F:0D:B1:4C:8F:0A:53:D2:44:6E:FD:B0:CC:05:9C:15:24:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSmfDbFMjwpT0kRu_bDMBZwVJL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C9E8/FDF6730658FD11EE9D2D2376C4F9AE02/hSmfDbFMjwpT0kRu_bDMBZwVJL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:15:14:ae:fb:9d:d6:db:e1:8e:9d:14:83:3f:8f:61:ba:88: 9d:2b:fe:ce:3a:aa:e0:29:34:ad:0d:c4:a8:f3:6e:30:f0:fd: 0e:8b:87:83:27:d9:58:5c:28:f1:e9:5b:d5:5b:c0:42:f0:0c: f9:ce:35:45:6e:34:8a:a4:0e:33:ee:b6:6c:e7:8c:34:be:a9: b5:23:0a:68:50:10:8f:47:8b:b8:1e:ab:19:38:74:d9:15:cf: 4f:f1:96:67:b8:86:3e:29:88:bf:49:dc:c0:8a:75:aa:05:95: 37:53:33:c7:6a:a1:95:76:59:06:8d:cf:e6:51:e8:26:5d:66: ee:e2:fd:f2:88:5c:6f:f2:7d:bb:11:ae:cf:4f:bb:7b:cc:86: de:2b:67:11:62:40:6f:58:0a:e9:06:1e:e4:ba:94:39:50:c5: 4d:0d:61:a9:7c:2e:6a:62:ef:fd:72:ad:04:b1:f5:4b:fb:76: b3:f8:69:df:f0:09:4c:fc:73:20:5f:e2:11:0d:52:65:43:62: ba:f9:b5:f5:6c:96:b5:6d:d9:53:28:56:dd:92:ed:d1:bd:72: 20:b7:30:89:fc:cc:2b:6d:8a:28:1f:98:c5:93:db:c2:72:8a: ee:61:7b:ca:8b:a1:92:fc:66:07:05:3b:a3:9b:e8:fe:e9:02: 26:14:94:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM5RTgxMTAvBgNVBAUTKDg1Mjk5RjBEQjE0QzhGMEE1M0QyNDQ2RUZEQjBDQzA1 OUMxNTI0QkYwHhcNMjUwNDI1MDM0MTA1WhcNMjUwNTAyMDM0MTA1WjAYMRYwFAYD VQQDEw02ODBiMDQ1Mi1mOGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva7oI8xR5IminSfqvweLL8zMBWO/qkjtPro6cXtM6xQV+tne8YIg6ZbYWaHd rU7dxLYdi/Yfo8pRTVN5hPxiSV7mOaO0q1B+KbuRD26sLJJ6lKGBuruPTausgWhR 90R2NxZulfRs5bJmwEq1K5IBEIZcqAKCo7l9BeJIVfJz+upgtRviMX39uk+LrKIA 1FvbyQbeE2MonASKyJEXIVjZlMwqY2753BDffgbIRB8lNW8vA3y1L9LAjBmXqQjk I/q6ZtHX8bdj9CglCDtfUG4id+OHs/MU5+T1tsdL2Q9ODSaLubzC4fk1X4jzVoNP eOx5wqmr3Ij3W7SC48TjRba+LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRfyRG1 auC/FLQBIhj5WfDGgHDqMB8GA1UdIwQYMBaAFIUpnw2xTI8KU9JEbv2wzAWcFSS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzlFOC9GREY2NzMwNjU4 RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3cFQwa1J1X2JETUJad1ZK TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hTbWZEYkZNandwVDBrUnVfYkRNQlp3VkpMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzlFOC9GREY2NzMwNjU4RkQxMUVFOUQyRDIzNzZDNEY5QUUwMi9oU21mRGJGTWp3 cFQwa1J1X2JETUJad1ZKTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALFRSu+53W2+GOnRSDP49huoidK/7OOqrgKTStDcSo824w8P0Oi4eD J9lYXCjx6VvVW8BC8Az5zjVFbjSKpA4z7rZs54w0vqm1IwpoUBCPR4u4HqsZOHTZ Fc9P8ZZnuIY+KYi/SdzAinWqBZU3UzPHaqGVdlkGjc/mUegmXWbu4v3yiFxv8n27 Ea7PT7t7zIbeK2cRYkBvWArpBh7kupQ5UMVNDWGpfC5qYu/9cq0EsfVL+3az+Gnf 8AlM/HMgX+IRDVJlQ2K6+bX1bJa1bdlTKFbdku3RvXIgtzCJ/MwrbYooH5jFk9vC coruYXvKi6GS/GYHBTujm+j+6QImFJR9 -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:52 2025 by rpki-client