$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: gfiSVKB903yntAyVLLMhnCRTZT3V8fQSPd//W+DzDmw= Subject key identifier: 09:BE:46:F1:07:51:87:48:7E:87:0F:EC:69:AB:38:1B:B6:88:A4:2F Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0C5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0C50 Signing time: Thu 24 Apr 2025 18:19:04 +0000 Manifest this update: Thu 24 Apr 2025 18:19:04 +0000 Manifest next update: Thu 01 May 2025 18:19:04 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: m0yM5C66uvhf0pbqFs5udenFFIoRJJv704CrvpoEKFU=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: Apr 24 18:19:04 2025 GMT Not After : May 1 18:19:04 2025 GMT Subject: CN=680a8098-6df3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:51:4c:c6:c5:0e:93:92:9a:91:d5:8a:4b:46: 3e:b7:21:ae:ad:55:c2:a3:96:98:30:2e:b2:5e:fa: aa:ec:4e:ff:7f:16:59:28:45:8f:9a:14:25:24:f9: ea:97:8f:75:cc:0b:68:d3:b4:7f:cc:6f:44:f6:64: d0:77:ff:be:b8:89:0e:09:e3:a2:fc:d1:33:cb:d4: 46:4f:8d:c1:6c:91:fd:d0:ad:7c:04:85:47:05:18: c5:af:c6:db:a5:98:20:59:22:5d:4d:23:83:5e:0a: 1f:16:7a:e3:22:8e:ca:08:f1:ff:9a:6e:5b:36:01: ed:6f:7e:74:e2:51:ed:9e:a7:73:03:49:aa:8e:35: 66:60:85:68:6d:99:71:b1:6a:c1:ff:4a:49:ad:42: 8d:62:79:a1:5a:48:e9:39:d7:08:18:80:73:08:82: 75:a5:fe:1c:2c:3d:fd:a8:8f:d1:95:4b:1e:42:6b: 2f:06:ef:f8:47:52:bd:b7:4c:42:95:1f:39:43:68: 89:c6:88:11:da:35:00:5b:e5:7d:95:70:e0:14:73: 52:55:87:c5:86:12:ff:bb:95:19:a1:7b:53:83:1f: ff:27:18:ae:c8:8e:83:3f:17:4a:9e:0c:4d:84:fe: 2c:b7:d5:0e:f9:e5:cf:6f:dd:13:dc:e9:06:21:e6: 23:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:BE:46:F1:07:51:87:48:7E:87:0F:EC:69:AB:38:1B:B6:88:A4:2F X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:cb:9e:15:05:e8:17:fe:17:fe:74:e9:ed:69:1d:1c:c9:55: 81:4c:ed:41:07:a6:d6:8f:a1:4d:e5:97:1f:10:d9:d8:7a:f8: 21:10:2a:a0:60:87:90:5a:d5:2f:7d:57:8e:2c:14:ac:fa:38: 07:ed:b0:29:0d:9d:6c:28:1d:1c:ed:07:15:c0:a1:5d:35:43: 91:85:20:39:88:d2:c6:06:ac:0e:2b:cf:d2:e8:4d:ed:5d:d5: 6e:d9:9c:bd:d4:c3:17:3a:58:35:b6:a5:4d:8e:5e:8a:6c:95: 98:64:3e:bc:17:cd:2c:55:79:7d:2e:86:c3:44:48:36:3b:a5: b5:0b:ec:c4:0e:59:84:7f:70:ff:00:f5:b9:86:d9:6a:5f:cf: 74:54:e3:d6:1b:8c:a3:00:f0:71:56:da:90:0a:ab:23:bc:f1: 01:84:7a:34:16:ef:1a:a8:dc:02:98:70:48:a8:cf:ac:46:83: c5:32:b5:5d:08:06:3c:a5:36:0f:55:ae:0f:47:c9:9b:e9:fe: 53:3b:67:86:ea:26:bb:df:ac:2e:44:89:48:03:57:bb:83:94: 77:eb:f0:f6:d1:ae:3c:47:bd:38:1d:25:5d:ff:73:a2:b0:28: 58:c6:b5:80:37:5d:82:19:07:8c:0c:5d:2d:6d:a2:bb:5c:e1: fa:31:1b:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUwNDI0MTgxOTA0WhcNMjUwNTAxMTgxOTA0WjAYMRYwFAYD VQQDEw02ODBhODA5OC02ZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlFMxsUOk5KakdWKS0Y+tyGurVXCo5aYMC6yXvqq7E7/fxZZKEWPmhQlJPnq l491zAto07R/zG9E9mTQd/++uIkOCeOi/NEzy9RGT43BbJH90K18BIVHBRjFr8bb pZggWSJdTSODXgofFnrjIo7KCPH/mm5bNgHtb3504lHtnqdzA0mqjjVmYIVobZlx sWrB/0pJrUKNYnmhWkjpOdcIGIBzCIJ1pf4cLD39qI/RlUseQmsvBu/4R1K9t0xC lR85Q2iJxogR2jUAW+V9lXDgFHNSVYfFhhL/u5UZoXtTgx//JxiuyI6DPxdKngxN hP4st9UO+eXPb90T3OkGIeYj0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAm+RvEH UYdIfocP7GmrOBu2iKQvMB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvy54VBegX/hf+dOntaR0cyVWBTO1BB6bWj6FN5ZcfENnYevghECqg YIeQWtUvfVeOLBSs+jgH7bApDZ1sKB0c7QcVwKFdNUORhSA5iNLGBqwOK8/S6E3t XdVu2Zy91MMXOlg1tqVNjl6KbJWYZD68F80sVXl9LobDREg2O6W1C+zEDlmEf3D/ APW5htlqX890VOPWG4yjAPBxVtqQCqsjvPEBhHo0Fu8aqNwCmHBIqM+sRoPFMrVd CAY8pTYPVa4PR8mb6f5TO2eG6ia736wuRIlIA1e7g5R36/D20a48R704HSVd/3Oi sChYxrWAN12CGQeMDF0tbaK7XOH6MRs4 -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:24 2025 by rpki-client