$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft File: DHxNa-htVb5Ey0rZZmbBU1GT93I.mft (raw, json) Hash identifier: n40RWmv8ukRUUDcPsLvceAw0jIR2AaLSzXhcCkPLCVs= Subject key identifier: 62:B0:8A:44:FC:22:AE:DF:0C:B5:2A:61:02:20:F4:47:6E:1F:80:B7 Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft Manifest number: 0111 Signing time: Fri 25 Apr 2025 04:02:45 +0000 Manifest this update: Fri 25 Apr 2025 04:02:45 +0000 Manifest next update: Fri 02 May 2025 04:02:45 +0000 Files and hashes: 1: DHxNa-htVb5Ey0rZZmbBU1GT93I.crl (hash: CVQcOLc/IjBLy7fUUpwc/nHQq7oA/zMsGz14HopZDUA=) 2: 300438B6C03511EFA42E9085C4F9AE02.roa (hash: vfKxgRyaFVDrpAYeeSphpPYjXOMfsg5HY/hQjECiMtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Apr 25 04:02:45 2025 GMT Not After : May 2 04:02:45 2025 GMT Subject: CN=680b0965-d938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c9:5c:56:69:06:08:fd:4c:4a:21:29:b0:98: 7b:6a:35:da:6f:a1:fa:9e:a9:6a:21:81:9f:f7:6a: 72:e5:43:e3:3d:95:f8:4f:a9:c0:6d:48:d4:df:87: e9:fb:5b:ac:ce:c5:81:e4:d3:d3:a6:18:a9:23:b0: cf:fe:2f:b4:37:6c:68:d2:87:cc:97:08:c2:9c:f4: 5e:62:66:d8:49:98:83:d6:78:13:48:a7:84:87:e6: bd:8f:01:b5:de:ed:18:c0:7e:25:97:98:fc:2a:2a: 9f:d7:d0:b9:6f:f9:65:b1:ac:a1:f9:47:ea:76:b7: 3a:3d:2a:0f:4d:a3:a9:94:cf:46:6c:a3:c8:e6:e0: ea:f9:a8:25:dd:9f:d5:2f:2b:d6:9e:dc:d6:6b:0f: 4e:a8:51:e6:69:be:08:17:35:bc:06:42:60:b4:45: a3:be:6f:5a:65:a2:42:6b:c5:d2:ef:9c:59:2a:2c: 72:cc:b0:a0:d1:29:43:70:e5:e9:28:17:f1:86:bb: 02:6a:e4:15:b8:a0:ef:2a:2c:ac:99:50:4d:70:73: b1:0f:7e:d2:7d:79:80:45:5a:b9:fc:9b:5d:11:d7: e7:b4:84:a4:be:07:5b:fd:d5:be:df:cc:90:d5:91: 69:b9:43:2f:f7:fd:3e:79:26:8b:bf:5b:f0:f6:b0: e1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:B0:8A:44:FC:22:AE:DF:0C:B5:2A:61:02:20:F4:47:6E:1F:80:B7 X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:52:69:eb:13:0e:aa:a4:9c:85:17:c8:ac:5e:86:5d:4f:7d: 67:da:6e:a1:43:e9:69:05:aa:b1:93:2e:8e:4a:94:e6:4a:00: 7e:31:ca:a2:ec:57:d0:a4:b8:14:9c:6f:c7:bd:05:18:20:60: f9:85:71:ce:59:77:f9:c7:e1:f5:a3:26:b3:b9:6c:10:51:23: 28:52:47:fd:3c:53:b3:cd:b3:e1:20:c9:03:c0:7b:fa:5d:54: 0f:8e:d2:a6:26:09:55:6c:ff:6a:47:09:72:51:45:0c:6b:46: aa:40:f4:d8:0c:32:05:38:de:22:73:0c:0e:67:c6:25:58:42: 3f:ec:20:54:78:14:67:89:81:43:ef:7f:96:d8:4e:a5:44:36: a3:b9:18:c8:27:68:5a:cf:74:df:40:05:d3:9c:70:fa:3c:82: 25:c6:d9:cd:41:af:c8:4d:be:c0:e9:97:eb:93:dc:3f:a6:87: 3b:17:55:39:92:f8:68:a3:22:4f:1e:24:f0:cc:2a:19:04:74: 38:d6:a2:b6:cc:7d:17:d2:f4:5c:b4:88:89:12:38:ce:3b:53: 2b:70:88:d8:f4:7c:a4:26:5b:7a:a4:1a:75:7a:0f:4d:f7:22: 5d:e4:f2:48:de:ca:f5:0b:c0:dd:65:1e:37:64:45:f6:5c:18: f1:a3:d4:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjUwNDI1MDQwMjQ1WhcNMjUwNTAyMDQwMjQ1WjAYMRYwFAYD VQQDEw02ODBiMDk2NS1kOTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsslcVmkGCP1MSiEpsJh7ajXab6H6nqlqIYGf92py5UPjPZX4T6nAbUjU34fp +1uszsWB5NPTphipI7DP/i+0N2xo0ofMlwjCnPReYmbYSZiD1ngTSKeEh+a9jwG1 3u0YwH4ll5j8Kiqf19C5b/llsayh+Ufqdrc6PSoPTaOplM9GbKPI5uDq+agl3Z/V LyvWntzWaw9OqFHmab4IFzW8BkJgtEWjvm9aZaJCa8XS75xZKixyzLCg0SlDcOXp KBfxhrsCauQVuKDvKiysmVBNcHOxD37SfXmARVq5/JtdEdfntISkvgdb/dW+38yQ 1ZFpuUMv9/0+eSaLv1vw9rDhzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKwikT8 Iq7fDLUqYQIg9EduH4C3MB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0NBNC9CNzUxNkIxMDg5QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZi NUV5MHJaWm1iQlUxR1Q5M0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxUmnrEw6qpJyFF8isXoZdT31n2m6hQ+lpBaqxky6OSpTmSgB+Mcqi 7FfQpLgUnG/HvQUYIGD5hXHOWXf5x+H1oyazuWwQUSMoUkf9PFOzzbPhIMkDwHv6 XVQPjtKmJglVbP9qRwlyUUUMa0aqQPTYDDIFON4icwwOZ8YlWEI/7CBUeBRniYFD 73+W2E6lRDajuRjIJ2haz3TfQAXTnHD6PIIlxtnNQa/ITb7A6Zfrk9w/poc7F1U5 kvhooyJPHiTwzCoZBHQ41qK2zH0X0vRctIiJEjjOO1MrcIjY9HykJlt6pBp1eg9N 9yJd5PJI3sr1C8DdZR43ZEX2XBjxo9Ts -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:53 2025 by rpki-client