$ rpki-client -vvf rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft File: h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft (raw, json) Hash identifier: knc2uq9bANMkH0Tfls8+m0cRXMuyXn9cNCIFIjmnaAk= Subject key identifier: 9E:87:20:57:92:B1:E7:69:73:29:5C:44:EC:D3:40:5C:4A:1E:FB:F1 Authority key identifier: 87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 Certificate issuer: /CN=A912A294/serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft Manifest number: 0154 Signing time: Fri 25 Apr 2025 03:34:15 +0000 Manifest this update: Fri 25 Apr 2025 03:34:15 +0000 Manifest next update: Fri 02 May 2025 03:34:15 +0000 Files and hashes: 1: h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl (hash: 9LkqDr40H8xMVRV7rakTzg2uk7PKCdm5WmI7sVZ/hBc=) 2: 60C72042052911F0A2361C50C4F9AE02.roa (hash: eoqR2rI7tCJcx2sHbbxw1cinGXO6kmie9biadQvkvGU=) 3: 64B5B49A052C11F0AFEC0478C4F9AE02.roa (hash: osIylBmoiOl0hS+6q4jLTN9ELMVNH7Z3hIxqCI6TGCM=) 4: 24661146FA7311EFB58C366CC4F9AE02.roa (hash: vJ/paOcsiCM0y/LcDeCNMcXQ0i9PBxkDy6/mQy96vcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A294, serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Validity Not Before: Apr 25 03:34:15 2025 GMT Not After : May 2 03:34:15 2025 GMT Subject: CN=680b02b7-09b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f8:2a:81:0b:30:30:80:bc:ba:17:84:f3:c1: 46:94:8c:7e:9f:70:e8:32:43:f5:fc:f1:94:ea:f0: 44:79:e7:8c:f8:5e:20:aa:39:fb:5f:db:16:29:c2: 76:a1:72:23:1f:73:de:bc:55:3f:13:94:1c:1b:1a: da:ff:c5:e3:c0:6e:ac:c1:11:88:a4:70:13:a8:1b: 0b:7a:00:24:2b:62:41:b6:28:a4:e4:f4:9b:aa:27: c3:3b:75:55:83:30:ac:18:cb:51:f4:83:d1:9d:20: 1d:b0:b5:66:c3:df:06:4f:9d:7f:5e:85:b6:61:bb: 83:9f:d7:bd:79:d0:76:c1:7a:f1:76:d8:45:d9:91: 61:fb:57:56:ca:e3:63:1a:1d:c2:fe:a8:c2:d4:de: 38:bc:3d:72:f8:7a:64:8c:2d:f3:2f:20:ef:b7:11: 63:cf:73:cb:6e:60:e4:44:74:79:0e:79:ff:e7:f7: b0:7c:37:63:cf:db:bd:3c:6a:9c:88:2f:1d:07:62: 69:99:85:d3:1a:24:d9:45:41:d7:b8:bb:39:01:57: 24:82:54:5e:73:25:8b:37:54:0c:6c:a1:6e:26:d4: 2d:ca:84:20:57:3c:b3:54:a5:ce:e7:c3:1e:51:4c: 02:6a:b8:90:b7:8a:6d:48:dc:7e:cd:f3:82:be:b5: ba:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:87:20:57:92:B1:E7:69:73:29:5C:44:EC:D3:40:5C:4A:1E:FB:F1 X509v3 Authority Key Identifier: keyid:87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:dc:7f:5d:7e:77:0d:e6:9e:24:be:8a:cc:4a:d5:6f:00:c3: 6a:c6:eb:26:22:6e:97:db:02:69:72:49:9c:85:59:de:fa:f9: 5f:78:8f:c8:ad:01:bf:11:78:31:c3:70:16:80:c4:61:fd:fa: 0f:66:b0:40:f1:05:d4:ba:d3:3a:a6:14:31:80:67:0c:21:ad: e3:4a:92:e0:3e:e8:d7:90:ca:03:69:6e:27:f5:e9:e2:19:6f: bd:b5:7a:69:7f:62:ce:a3:0e:74:9d:8c:56:e4:1b:cd:52:67: 65:b8:f3:f6:3d:f5:9c:3e:be:01:c9:f0:0a:d2:be:fc:0e:99: a8:99:08:70:69:48:de:de:a1:d7:b3:bb:42:07:91:94:5c:25: af:16:f2:ab:ea:91:75:5e:fb:5a:d5:66:19:d4:8c:ac:38:91: 1a:18:b9:61:60:da:a7:b2:35:2c:40:ca:f8:f2:d9:88:15:a9: 31:fc:4a:d8:61:5d:59:f5:77:60:54:0d:fb:50:e3:4f:e0:12: 7c:74:e1:b0:df:19:54:9f:60:34:f7:fa:b7:2d:c1:ad:bc:67: 1b:09:b8:3e:96:68:99:f7:62:ea:2b:24:bc:0b:a9:96:e0:d7: 1f:ce:28:1a:33:c3:96:0f:0c:3b:1d:75:90:bd:27:fd:ce:46: af:30:97:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEyOTQxMTAvBgNVBAUTKDg3QjVEODUzRjY0MjUyMTVBREE3ODIyRjAyQTU3NDgz RUUyNjdDMDQwHhcNMjUwNDI1MDMzNDE1WhcNMjUwNTAyMDMzNDE1WjAYMRYwFAYD VQQDEw02ODBiMDJiNy0wOWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufgqgQswMIC8uheE88FGlIx+n3DoMkP1/PGU6vBEeeeM+F4gqjn7X9sWKcJ2 oXIjH3PevFU/E5QcGxra/8XjwG6swRGIpHATqBsLegAkK2JBtiik5PSbqifDO3VV gzCsGMtR9IPRnSAdsLVmw98GT51/XoW2YbuDn9e9edB2wXrxdthF2ZFh+1dWyuNj Gh3C/qjC1N44vD1y+HpkjC3zLyDvtxFjz3PLbmDkRHR5Dnn/5/ewfDdjz9u9PGqc iC8dB2JpmYXTGiTZRUHXuLs5AVckglRecyWLN1QMbKFuJtQtyoQgVzyzVKXO58Me UUwCariQt4ptSNx+zfOCvrW6ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6HIFeS sedpcylcROzTQFxKHvvxMB8GA1UdIwQYMBaAFIe12FP2QlIVraeCLwKldIPuJnwE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTI5NC85OTJGMUQwRTRB RDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1VoV3RwNEl2QXFWMGctNG1m QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3WFlVX1pDVWhXdHA0SXZBcVYwZy00bWZBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTI5NC85OTJGMUQwRTRBRDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1Vo V3RwNEl2QXFWMGctNG1mQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb3H9dfncN5p4kvorMStVvAMNqxusmIm6X2wJpckmchVne+vlfeI/I rQG/EXgxw3AWgMRh/foPZrBA8QXUutM6phQxgGcMIa3jSpLgPujXkMoDaW4n9eni GW+9tXppf2LOow50nYxW5BvNUmdluPP2PfWcPr4ByfAK0r78DpmomQhwaUje3qHX s7tCB5GUXCWvFvKr6pF1Xvta1WYZ1IysOJEaGLlhYNqnsjUsQMr48tmIFakx/ErY YV1Z9XdgVA37UONP4BJ8dOGw3xlUn2A09/q3LcGtvGcbCbg+lmiZ92LqKyS8C6mW 4NcfzigaM8OWDww7HXWQvSf9zkavMJfa -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:47 2025 by rpki-client