$ rpki-client -vvf rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft File: 9cHnH7saQdeYC-JY2XxIc5qvgso.mft (raw, json) Hash identifier: aAzRkvc9GrMB42Cd/QxKn1krtIK1Q2pSoE9yRz6YPIQ= Subject key identifier: BE:1C:4C:E9:C1:0B:5B:09:59:31:11:91:A4:20:67:C4:FA:97:76:10 Authority key identifier: F5:C1:E7:1F:BB:1A:41:D7:98:0B:E2:58:D9:7C:48:73:9A:AF:82:CA Certificate issuer: /CN=A913D16D/serialNumber=F5C1E71FBB1A41D7980BE258D97C48739AAF82CA Certificate serial: 0454 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft Manifest number: 044E Signing time: Thu 24 Apr 2025 23:59:25 +0000 Manifest this update: Thu 24 Apr 2025 23:59:25 +0000 Manifest next update: Thu 01 May 2025 23:59:25 +0000 Files and hashes: 1: 9cHnH7saQdeYC-JY2XxIc5qvgso.crl (hash: wGGG2jk2/HtvWXF7PaQUuR8xNHue8147kcov4+ffB7I=) 2: 3D546FCE4F0711EC960AFD0CC4F9AE02.roa (hash: OH+ilqdv9s3kTRrQEcIweA5ha/9ZRdWs4Wko3puaZH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.crl rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1108 (0x454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D16D, serialNumber=F5C1E71FBB1A41D7980BE258D97C48739AAF82CA Validity Not Before: Apr 24 23:59:25 2025 GMT Not After : May 1 23:59:25 2025 GMT Subject: CN=680ad05d-acbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c7:45:c8:ad:f2:96:3c:5c:15:0c:1c:9b:fc: 05:1a:87:69:ba:6e:33:d2:0b:d1:bb:46:47:26:d7: c5:e8:e1:5a:f4:36:94:26:76:20:83:2c:02:99:26: ef:e7:6d:92:83:c0:65:bc:0d:5a:d8:f7:2b:74:8d: c3:a5:f1:69:35:ca:0e:e8:50:51:fe:23:2c:c9:e0: dd:35:65:c3:68:d3:b5:cd:69:6d:6f:d9:52:19:49: ef:81:a3:4a:ea:06:ec:4e:91:b0:b8:47:5a:f3:51: 80:07:b5:a3:d6:57:6f:8e:08:60:b6:bf:14:bb:a1: 81:84:a5:ff:7f:90:cf:7b:b0:0f:75:9a:ee:01:02: d7:81:12:6d:17:ef:13:2d:52:4e:14:fd:1a:d1:26: 63:43:3d:49:7f:75:58:b4:63:7e:d6:1e:5d:81:2f: 22:59:63:38:34:38:fb:e7:59:38:ec:3d:25:96:5d: aa:f3:29:02:6f:95:59:ba:05:d6:15:82:2a:41:77: a5:68:0d:0a:54:47:f2:9b:41:16:bb:14:53:f8:d0: b9:47:14:f7:2c:da:ad:fb:63:81:19:93:db:55:1f: 19:ec:d0:94:79:e9:ee:52:a5:2d:ed:3a:d6:66:0b: 6c:bd:e2:92:d2:94:72:05:a0:5b:0e:47:be:a8:ef: ad:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:1C:4C:E9:C1:0B:5B:09:59:31:11:91:A4:20:67:C4:FA:97:76:10 X509v3 Authority Key Identifier: keyid:F5:C1:E7:1F:BB:1A:41:D7:98:0B:E2:58:D9:7C:48:73:9A:AF:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:56:e3:16:77:1e:19:71:65:88:4a:d9:bf:bf:e1:e1:0d:c6: 52:e8:ad:18:fc:7c:79:e1:0f:b0:0f:eb:f4:d1:c5:eb:f3:b3: cc:7f:0b:cd:97:6d:84:df:81:47:9e:19:50:dd:8d:6e:c5:23: 3e:c2:e1:c2:ef:a1:8b:1c:1b:31:8a:59:32:77:37:be:f0:84: a4:cf:58:5c:70:c5:0e:92:1e:9a:cb:49:98:f3:23:fc:20:51: 85:a4:0c:3d:a0:03:af:37:ee:b8:40:ae:2d:2d:7f:3f:6b:f3: 83:d9:9a:da:0b:dc:a6:ab:95:09:7e:c8:1d:af:c0:8d:37:a1: 84:d3:2c:5f:cf:c2:5a:b3:20:bd:35:05:e5:8d:b0:e3:92:f6: 8b:65:f2:1e:3a:f9:cd:d1:0b:aa:e5:e5:fc:65:40:85:78:de: 58:ef:cc:2f:fe:d1:95:ef:4a:02:5d:8c:eb:88:a1:4d:5b:df: 0a:a6:47:ee:6c:c2:4a:c0:2a:95:81:22:c3:f3:91:bf:1d:c6: 28:ce:57:ad:ae:3d:36:c3:2c:3b:6b:7a:94:48:a5:e8:73:7d: 5d:0a:13:ae:58:62:9b:a6:16:07:a4:10:4e:b9:96:4f:c4:cb: 95:a1:95:47:64:22:87:12:4b:37:de:ef:e6:70:79:2f:d4:da: e2:ee:0e:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxNkQxMTAvBgNVBAUTKEY1QzFFNzFGQkIxQTQxRDc5ODBCRTI1OEQ5N0M0ODcz OUFBRjgyQ0EwHhcNMjUwNDI0MjM1OTI1WhcNMjUwNTAxMjM1OTI1WjAYMRYwFAYD VQQDEw02ODBhZDA1ZC1hY2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6MdFyK3yljxcFQwcm/wFGodpum4z0gvRu0ZHJtfF6OFa9DaUJnYggywCmSbv 522Sg8BlvA1a2PcrdI3DpfFpNcoO6FBR/iMsyeDdNWXDaNO1zWltb9lSGUnvgaNK 6gbsTpGwuEda81GAB7Wj1ldvjghgtr8Uu6GBhKX/f5DPe7APdZruAQLXgRJtF+8T LVJOFP0a0SZjQz1Jf3VYtGN+1h5dgS8iWWM4NDj751k47D0lll2q8ykCb5VZugXW FYIqQXelaA0KVEfym0EWuxRT+NC5RxT3LNqt+2OBGZPbVR8Z7NCUeenuUqUt7TrW ZgtsveKS0pRyBaBbDke+qO+tCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4cTOnB C1sJWTERkaQgZ8T6l3YQMB8GA1UdIwQYMBaAFPXB5x+7GkHXmAviWNl8SHOar4LK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDE2RC9GMDQyMDdBNDRG MDIxMUVDOUQyRDFFMzdDNEY5QUUwMi85Y0huSDdzYVFkZVlDLUpZMlh4SWM1cXZn c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzljSG5IN3NhUWRlWUMtSlkyWHhJYzVxdmdzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDE2RC9GMDQyMDdBNDRGMDIxMUVDOUQyRDFFMzdDNEY5QUUwMi85Y0huSDdzYVFk ZVlDLUpZMlh4SWM1cXZnc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRVuMWdx4ZcWWIStm/v+HhDcZS6K0Y/Hx54Q+wD+v00cXr87PMfwvN l22E34FHnhlQ3Y1uxSM+wuHC76GLHBsxilkydze+8ISkz1hccMUOkh6ay0mY8yP8 IFGFpAw9oAOvN+64QK4tLX8/a/OD2ZraC9ymq5UJfsgdr8CNN6GE0yxfz8JasyC9 NQXljbDjkvaLZfIeOvnN0Quq5eX8ZUCFeN5Y78wv/tGV70oCXYzriKFNW98Kpkfu bMJKwCqVgSLD85G/HcYozletrj02wyw7a3qUSKXoc31dChOuWGKbphYHpBBOuZZP xMuVoZVHZCKHEks33u/mcHkv1Nri7g4C -----END CERTIFICATE-----Generated at Sat Apr 26 04:25:47 2025 by rpki-client