$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft File: h9O9fQreBlCeuFrGullInZVAH38.mft (raw, json) Hash identifier: c31heKekMv7UTNK6DWeD5mHo08ymBoV5quMEwn3siWM= Subject key identifier: 67:B8:F6:B2:AE:5C:18:CF:01:85:E2:1C:7F:87:E7:CD:5E:41:FB:C8 Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 04F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft Manifest number: 04D5 Signing time: Thu 24 Apr 2025 23:39:51 +0000 Manifest this update: Thu 24 Apr 2025 23:39:50 +0000 Manifest next update: Thu 01 May 2025 23:39:50 +0000 Files and hashes: 1: h9O9fQreBlCeuFrGullInZVAH38.crl (hash: Uwz08w2zG1RYriBUhUW7hlQgVMovHE0x5xlOEz+XBF4=) 2: D758E96CF8FF11ED98C6D45FC4F9AE02.roa (hash: ZQeH9s5GaYIk1ZxktX3ZDI1XyJXOlpVX7ljtVr42XF4=) 3: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (hash: o2ReRLcJlulFpKfpdWmE6u0f7G1G3KpQA2ac4wDJgWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1265 (0x4f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13, serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Apr 24 23:39:50 2025 GMT Not After : May 1 23:39:50 2025 GMT Subject: CN=680acbc6-8adf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:32:8f:e1:18:66:c6:eb:c5:c8:67:f2:ba:14: ab:f3:17:bb:fb:9f:25:ca:bc:e1:89:45:4f:f9:9d: 76:05:ca:12:32:07:31:6c:9f:55:93:84:d1:9e:8b: 55:93:8c:0d:3c:c4:13:69:d6:20:d9:48:97:33:3f: 07:36:65:20:dc:37:01:46:84:5a:3f:22:ea:eb:23: 1c:59:03:50:50:54:2d:36:52:a7:7a:5d:7e:fd:d9: 14:67:5a:c2:e6:bb:74:f6:cd:03:5f:f4:af:cf:29: 2d:2a:80:3d:e8:f8:4f:2b:98:a7:9a:db:a4:f9:4f: 10:db:df:7f:64:eb:71:ea:95:8e:65:99:cb:5e:1a: ed:7a:40:a1:a4:2e:b3:79:dd:26:41:a2:ce:c4:70: 44:75:e4:43:ae:59:97:ff:e1:cf:ed:aa:61:bf:86: cf:e4:a1:10:12:3c:88:d0:06:8d:7d:92:89:78:b5: 15:ff:73:a4:7b:7c:27:64:0c:d1:b7:90:0f:97:b8: 6d:e3:50:00:04:39:03:e4:2c:17:42:bb:6e:be:ca: 96:36:ce:15:a4:65:69:13:1b:27:15:ff:f1:d6:77: 4b:5b:e2:f3:62:01:46:99:49:f4:6d:42:f1:ed:d3: 37:dd:e6:cc:0e:fc:13:03:63:60:d1:9b:16:41:8e: 3c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B8:F6:B2:AE:5C:18:CF:01:85:E2:1C:7F:87:E7:CD:5E:41:FB:C8 X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:30:a2:eb:8c:8e:1a:04:a7:5f:bd:ee:cd:50:00:ab:ba:e0: ee:b6:79:63:ab:59:e5:0b:02:92:04:43:76:8b:8d:1c:ec:22: 72:4a:75:44:db:ae:97:a4:1a:48:35:05:59:79:f7:46:93:29: 51:35:23:cd:67:04:af:47:ff:05:28:18:fb:0c:50:ea:04:b9: cd:83:d8:92:aa:bb:37:ca:6b:2b:78:4d:e9:58:f6:09:0a:ce: 9f:8a:fb:82:98:66:06:66:3c:56:29:a2:0a:6c:fd:d5:d9:a1: 69:1a:d0:16:7e:e3:ee:56:93:ba:e1:e0:cf:79:42:72:8f:ff: a4:08:29:86:d4:bf:b2:51:e1:c4:a5:7d:15:18:59:c2:c9:02: b9:57:4b:a4:11:0c:d6:30:11:33:42:30:4b:08:55:49:fb:9f: 01:19:4f:af:f1:ed:6f:2f:ed:27:1c:3f:38:e8:29:2d:aa:ee: 32:60:ea:22:eb:29:67:91:49:ce:fc:a0:f1:c3:e2:83:b0:c2: ef:b3:d1:ab:3f:88:72:32:16:19:0c:e2:28:d0:d9:fa:7a:e3: 4d:d0:bd:f1:64:de:68:19:91:dd:c7:2e:86:69:94:7f:16:0f: dd:82:9a:c5:0b:6c:9d:6f:d7:61:57:dc:27:84:f4:c2:46:33: e5:dd:fa:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjUwNDI0MjMzOTUwWhcNMjUwNTAxMjMzOTUwWjAYMRYwFAYD VQQDEw02ODBhY2JjNi04YWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzKP4RhmxuvFyGfyuhSr8xe7+58lyrzhiUVP+Z12BcoSMgcxbJ9Vk4TRnotV k4wNPMQTadYg2UiXMz8HNmUg3DcBRoRaPyLq6yMcWQNQUFQtNlKnel1+/dkUZ1rC 5rt09s0DX/SvzyktKoA96PhPK5inmtuk+U8Q299/ZOtx6pWOZZnLXhrtekChpC6z ed0mQaLOxHBEdeRDrlmX/+HP7aphv4bP5KEQEjyI0AaNfZKJeLUV/3Oke3wnZAzR t5APl7ht41AABDkD5CwXQrtuvsqWNs4VpGVpExsnFf/x1ndLW+LzYgFGmUn0bULx 7dM33ebMDvwTA2Ng0ZsWQY48rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGe49rKu XBjPAYXiHH+H581eQfvIMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUxMy84OTM2MzU3ODI2RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJs Q2V1RnJHdWxsSW5aVkFIMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkMKLrjI4aBKdfve7NUACruuDutnljq1nlCwKSBEN2i40c7CJySnVE 266XpBpINQVZefdGkylRNSPNZwSvR/8FKBj7DFDqBLnNg9iSqrs3ymsreE3pWPYJ Cs6fivuCmGYGZjxWKaIKbP3V2aFpGtAWfuPuVpO64eDPeUJyj/+kCCmG1L+yUeHE pX0VGFnCyQK5V0ukEQzWMBEzQjBLCFVJ+58BGU+v8e1vL+0nHD846Cktqu4yYOoi 6ylnkUnO/KDxw+KDsMLvs9GrP4hyMhYZDOIo0Nn6euNN0L3xZN5oGZHdxy6GaZR/ Fg/dgprFC2ydb9dhV9wnhPTCRjPl3frc -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:33 2025 by rpki-client