$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: UQtAzSQnG9LjVVyuFCm7ZrFeonLvZC17l1LUIO3H3+0= Subject key identifier: 89:DC:E3:F8:E8:B4:4B:3D:9A:B9:A2:3F:05:4B:5A:B3:32:22:81:0C Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 05D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 05D4 Signing time: Thu 24 Apr 2025 22:47:35 +0000 Manifest this update: Thu 24 Apr 2025 22:47:35 +0000 Manifest next update: Thu 01 May 2025 22:47:35 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: wfSSGQnmruGZ8V2gyF78VNvdXhZnCGXT/lhf1nOPCRM=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: 9tQnJbgHn9CXIDaZmtJ4XxjigORNQV18RL9rnYpJw1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE, serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: Apr 24 22:47:35 2025 GMT Not After : May 1 22:47:35 2025 GMT Subject: CN=680abf87-83c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f6:3c:69:fe:56:00:c2:de:3f:1e:91:93:1d: 05:2e:d8:45:2e:bb:91:0c:c1:67:a2:bb:32:b5:b1: d9:a2:c4:fb:69:47:81:04:bd:a4:a9:a2:aa:2a:8c: 2d:27:96:fc:3e:7f:81:33:02:18:82:96:3a:83:5a: bc:16:fb:87:be:ae:ad:9e:c6:56:64:4c:9c:eb:55: ef:7c:1f:65:90:77:b1:cc:d8:7e:a2:d3:cd:c8:ae: 28:9f:0f:5d:4a:26:a6:80:f5:51:c8:72:f7:dc:43: b1:b7:03:4f:6c:85:c1:df:51:b6:94:cd:3f:48:79: b0:b4:7d:44:56:d2:41:79:b3:3a:94:e2:ef:6b:1b: 4d:4d:86:7f:c7:88:1a:2d:62:d7:e1:37:9a:75:bc: c3:b8:03:d7:d7:75:48:cf:39:e2:fd:27:ac:25:d0: 08:31:5a:c4:0e:82:54:92:86:a4:58:d2:4b:85:56: b6:b3:7f:7e:82:77:5c:f1:c7:a0:c9:b5:10:f4:31: e3:ca:d1:18:b2:01:dd:df:40:ab:0c:3f:bb:b1:d7: 79:f9:b1:c0:b5:0a:09:9c:28:08:d5:af:c5:72:a9: 25:48:48:69:c5:11:b6:d6:38:14:67:0a:84:b1:d0: 27:0a:d3:2a:97:60:82:c9:3a:c9:13:34:9a:ea:2d: 54:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:DC:E3:F8:E8:B4:4B:3D:9A:B9:A2:3F:05:4B:5A:B3:32:22:81:0C X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:50:98:6c:79:0f:9f:65:7e:e3:79:ee:28:38:39:52:6c:13: 5b:30:fc:4e:90:90:cc:e5:68:f0:35:85:33:f2:2f:07:c3:39: 55:ff:33:99:6e:60:04:fd:b8:94:45:92:ec:4f:d3:5a:52:bf: a2:1b:98:73:4a:c9:8e:5e:17:81:6e:39:88:ba:75:0f:4c:94: 14:f4:7f:51:ae:d7:f1:80:ea:b6:40:ab:7a:11:66:54:50:c7: 53:7f:5a:de:7f:8a:ee:87:8e:59:b3:c7:60:8c:0c:13:bb:dd: fb:f2:53:ff:52:5f:16:96:3b:05:5e:43:99:e5:b2:20:2c:30: 26:d1:0d:72:aa:7d:f3:73:a9:f2:de:c0:f3:7f:a9:da:34:72: 13:20:e7:53:54:ea:48:da:56:0e:88:fc:33:a5:16:27:da:9b: f4:ba:77:6a:bf:82:55:5f:fa:ce:70:b7:63:a0:35:37:2e:2f: fd:78:5f:6b:ea:55:f6:4a:b4:8d:57:aa:25:6e:94:f2:ce:a7: 15:7e:6c:8d:43:bb:ca:41:c5:25:1a:87:78:06:4f:94:9d:72: 08:d7:a7:9e:bb:cf:a7:43:7d:61:86:9b:57:15:a6:44:a3:17: 97:18:5d:c0:d8:b6:9f:2b:5c:b5:94:bc:52:7c:97:d1:3f:33: 25:f3:32:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjUwNDI0MjI0NzM1WhcNMjUwNTAxMjI0NzM1WjAYMRYwFAYD VQQDEw02ODBhYmY4Ny04M2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfY8af5WAMLePx6Rkx0FLthFLruRDMFnorsytbHZosT7aUeBBL2kqaKqKowt J5b8Pn+BMwIYgpY6g1q8FvuHvq6tnsZWZEyc61XvfB9lkHexzNh+otPNyK4onw9d SiamgPVRyHL33EOxtwNPbIXB31G2lM0/SHmwtH1EVtJBebM6lOLvaxtNTYZ/x4ga LWLX4TeadbzDuAPX13VIzzni/SesJdAIMVrEDoJUkoakWNJLhVa2s39+gndc8ceg ybUQ9DHjytEYsgHd30CrDD+7sdd5+bHAtQoJnCgI1a/FcqklSEhpxRG21jgUZwqE sdAnCtMql2CCyTrJEzSa6i1U1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInc4/jo tEs9mrmiPwVLWrMyIoEMMB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoUJhseQ+fZX7jee4oODlSbBNbMPxOkJDM5WjwNYUz8i8HwzlV/zOZ bmAE/biURZLsT9NaUr+iG5hzSsmOXheBbjmIunUPTJQU9H9RrtfxgOq2QKt6EWZU UMdTf1ref4ruh45Zs8dgjAwTu9378lP/Ul8WljsFXkOZ5bIgLDAm0Q1yqn3zc6ny 3sDzf6naNHITIOdTVOpI2lYOiPwzpRYn2pv0undqv4JVX/rOcLdjoDU3Li/9eF9r 6lX2SrSNV6olbpTyzqcVfmyNQ7vKQcUlGod4Bk+UnXII16eeu8+nQ31hhptXFaZE oxeXGF3A2LafK1y1lLxSfJfRPzMl8zK6 -----END CERTIFICATE-----Generated at Sat Apr 26 05:30:50 2025 by rpki-client