$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft File: C6HFLWJbsbnkQzglDaPWTYBoego.mft (raw, json) Hash identifier: Y9+Lf/lGtNGgNeem8QkbcpiShXXLfPSuojicXzpgxwU= Subject key identifier: AE:C1:CA:40:5D:A1:93:A4:43:FE:A5:B9:18:6F:8A:6C:8E:D4:F4:3D Authority key identifier: 0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A Certificate issuer: /CN=A9140E48/serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft Manifest number: 0523 Signing time: Thu 24 Apr 2025 23:19:54 +0000 Manifest this update: Thu 24 Apr 2025 23:19:53 +0000 Manifest next update: Thu 01 May 2025 23:19:53 +0000 Files and hashes: 1: C6HFLWJbsbnkQzglDaPWTYBoego.crl (hash: F/mH46ftolJyk4qZw5YO2OmxaaxBO5SkzdCBM7SCSjg=) 2: D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa (hash: +yQIyhf/TyYpDcf0R24C9WjNNq39cWlJNp6OClFEIoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E48, serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Validity Not Before: Apr 24 23:19:53 2025 GMT Not After : May 1 23:19:53 2025 GMT Subject: CN=680ac71a-0fe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2e:2d:55:f3:98:dd:62:0d:5d:61:ef:20:84: 1a:c7:0a:de:e4:84:a5:30:cd:d5:05:77:9f:a9:7e: 54:3f:65:51:10:69:88:70:50:06:c3:9c:4f:4f:c5: 91:21:ed:60:69:6e:90:77:e0:db:c9:43:4b:16:23: 71:d1:5f:6f:75:63:6f:01:5a:e2:5f:2d:c1:08:f8: ce:cf:fa:97:72:27:6a:f4:64:19:9e:2b:e6:72:8b: a0:8e:f2:bc:3b:5b:f2:cd:84:e5:d4:c7:48:21:08: 74:7d:13:68:b5:16:02:65:ad:84:c3:27:9d:91:30: 61:94:a3:04:1d:e8:74:25:e3:26:5c:13:0c:50:5b: fa:b0:6b:68:ac:01:c5:8b:90:86:77:d6:8f:dd:55: c2:1f:f0:3f:f8:4c:9a:93:c3:43:b9:d7:28:d4:d4: 2b:57:2b:55:e5:fc:cb:f6:d5:07:f5:c1:45:e1:fd: ae:09:9b:bf:aa:71:cc:aa:b6:56:83:b1:b4:a3:65: 02:44:aa:8b:32:ca:69:c9:2c:50:ab:97:53:fb:f1: 5e:b2:d9:7e:57:5f:f1:e2:c9:0b:1f:66:aa:3e:07: 6f:51:b5:18:ad:67:7a:70:31:7d:b3:6d:7b:7d:61: c5:93:01:c2:c8:fa:85:13:3f:42:9a:fc:65:79:c3: 4d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C1:CA:40:5D:A1:93:A4:43:FE:A5:B9:18:6F:8A:6C:8E:D4:F4:3D X509v3 Authority Key Identifier: keyid:0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:0c:86:56:c5:ac:f9:92:a0:04:15:b2:43:3c:50:36:ae:6e: 91:9b:8a:c4:69:29:d0:25:ec:16:a6:3e:c4:42:b9:a7:52:e2: ac:c4:4b:64:59:7f:63:5b:e9:b2:77:b7:a9:23:c8:a4:65:ed: 00:a7:fd:da:c2:05:da:04:af:d3:cf:e2:07:6b:7e:0b:88:3c: d8:f4:67:19:86:9e:23:ca:17:00:6b:17:48:ca:6e:09:e1:dd: 45:f5:04:54:61:59:4d:79:57:78:30:a3:6a:74:8b:9c:91:95: bd:eb:5e:26:a2:43:cd:71:02:23:36:56:10:37:8f:7d:43:0e: a1:92:be:c3:7a:c4:3e:6d:80:14:28:32:96:51:c4:6b:e2:7b: ee:d9:f0:4a:92:98:65:89:bc:e2:c6:e7:a4:ac:78:66:59:d9: 35:b4:db:d6:43:ae:86:96:03:69:fc:d9:01:37:c1:e8:36:c4: 96:a2:5e:cd:76:a4:cb:63:cd:fd:c5:9a:a6:c4:d2:0b:51:b5: 12:be:16:1c:12:da:ba:bc:47:3f:40:49:7c:43:30:9c:ca:9e: b6:1b:9a:1f:67:54:be:2d:6b:6d:cc:47:42:1e:f1:63:dd:92: 95:bd:f9:6d:38:fc:ad:14:a4:20:74:17:c6:36:42:81:5f:01: 80:81:56:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDgxMTAvBgNVBAUTKDBCQTFDNTJENjI1QkIxQjlFNDQzMzgyNTBEQTNENjRE ODA2ODdBMEEwHhcNMjUwNDI0MjMxOTUzWhcNMjUwNTAxMjMxOTUzWjAYMRYwFAYD VQQDEw02ODBhYzcxYS0wZmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuy4tVfOY3WINXWHvIIQaxwre5ISlMM3VBXefqX5UP2VREGmIcFAGw5xPT8WR Ie1gaW6Qd+DbyUNLFiNx0V9vdWNvAVriXy3BCPjOz/qXcidq9GQZnivmcougjvK8 O1vyzYTl1MdIIQh0fRNotRYCZa2EwyedkTBhlKMEHeh0JeMmXBMMUFv6sGtorAHF i5CGd9aP3VXCH/A/+Eyak8NDudco1NQrVytV5fzL9tUH9cFF4f2uCZu/qnHMqrZW g7G0o2UCRKqLMsppySxQq5dT+/Festl+V1/x4skLH2aqPgdvUbUYrWd6cDF9s217 fWHFkwHCyPqFEz9CmvxlecNN8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7BykBd oZOkQ/6luRhvimyO1PQ9MB8GA1UdIwQYMBaAFAuhxS1iW7G55EM4JQ2j1k2AaHoK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0OC81MEVGRDg3NkY5 RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNibmtRemdsRGFQV1RZQm9l Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2SEZMV0pic2Jua1F6Z2xEYVBXVFlCb2Vnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0OC81MEVGRDg3NkY5RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNi bmtRemdsRGFQV1RZQm9lZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNDIZWxaz5kqAEFbJDPFA2rm6Rm4rEaSnQJewWpj7EQrmnUuKsxEtk WX9jW+myd7epI8ikZe0Ap/3awgXaBK/Tz+IHa34LiDzY9GcZhp4jyhcAaxdIym4J 4d1F9QRUYVlNeVd4MKNqdIuckZW9614mokPNcQIjNlYQN499Qw6hkr7DesQ+bYAU KDKWUcRr4nvu2fBKkphlibzixuekrHhmWdk1tNvWQ66GlgNp/NkBN8HoNsSWol7N dqTLY839xZqmxNILUbUSvhYcEtq6vEc/QEl8QzCcyp62G5ofZ1S+LWttzEdCHvFj 3ZKVvfltOPytFKQgdBfGNkKBXwGAgVY/ -----END CERTIFICATE-----Generated at Sat Apr 26 03:56:42 2025 by rpki-client