$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft File: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft (raw, json) Hash identifier: f/N5TeEr4/Ftz4Tfjf831zQ91JQnLWNfFMHe8evjIBQ= Subject key identifier: 1B:88:8A:42:FC:A5:DB:2E:77:AE:DE:BA:88:29:DB:87:5D:89:DC:8C Authority key identifier: 9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 Certificate issuer: /CN=A9147CBE/serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft Manifest number: 33 Signing time: Fri 25 Apr 2025 06:38:02 +0000 Manifest this update: Fri 25 Apr 2025 06:38:01 +0000 Manifest next update: Fri 02 May 2025 06:38:01 +0000 Files and hashes: 1: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl (hash: u6y3MXmw9VMlvl/v+Q1Zl5QGY6xyGeNxZLxtl0vhtJQ=) 2: 6D66CE8017BA11F094861F7DC4F9AE02.roa (hash: +D4BVGFKWyg9Pr75Q40/ty5hMk4DuavCG4i3TGDDyg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:38:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CBE, serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Validity Not Before: Apr 25 06:38:01 2025 GMT Not After : May 2 06:38:01 2025 GMT Subject: CN=680b2dca-d1f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:9a:34:d1:9c:12:c8:8e:f0:7f:b0:2a:74:e3: 0b:66:8c:6b:ee:41:2d:05:38:49:0f:50:75:a7:74: fc:4e:5e:37:d9:73:3c:10:e5:60:46:31:72:90:37: 86:4a:10:91:27:a6:14:43:9e:19:a4:71:59:cf:2b: aa:ef:2c:6b:6e:16:83:6e:d8:27:fb:ee:2a:cf:79: 70:58:6a:15:f7:ae:29:0d:88:3d:da:dd:0d:39:56: 73:57:2d:18:b9:69:30:fe:77:a7:52:77:60:37:8b: fd:33:a6:8a:4c:5b:36:d6:af:fb:21:a9:bc:dc:02: 33:8b:1b:a7:60:a4:4e:61:eb:ed:bb:29:67:e6:88: 4f:9e:c1:0c:1b:db:5a:a6:11:7e:ef:08:1c:61:ec: 26:0a:41:bf:db:e8:43:1b:83:4c:d2:27:0e:d0:52: f7:b1:0f:67:e4:1e:d5:34:0a:70:57:71:03:6d:de: c8:82:07:8a:18:68:cc:6c:0d:2a:cf:f3:c9:0b:81: b9:67:09:aa:f6:98:60:45:32:c1:bf:f6:be:c9:91: 31:f8:a4:d7:5d:be:a0:b2:b9:db:18:4d:3e:1d:b0: 93:42:df:7f:b7:15:35:50:ab:f1:78:6b:7f:5e:50: ca:8b:5f:a9:cf:56:22:ba:e9:0f:f3:ce:99:a5:dd: b8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:88:8A:42:FC:A5:DB:2E:77:AE:DE:BA:88:29:DB:87:5D:89:DC:8C X509v3 Authority Key Identifier: keyid:9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:29:fa:52:87:a4:f5:ce:f8:a4:3f:26:6d:bf:b8:fb:bc:f3: c8:1d:07:a1:d9:21:33:66:b8:89:7c:15:e9:ed:64:2e:62:8d: 52:23:41:3d:8b:5d:93:68:02:82:35:d1:c6:e1:ad:5d:28:33: 87:98:33:dc:58:f7:a1:bc:64:b0:b0:d2:d7:36:17:6d:b0:e6: f2:bd:f0:98:06:26:a4:90:60:e6:fa:04:39:7f:2d:f6:78:13: 0d:b2:31:95:58:05:cf:cb:aa:d3:46:9d:a2:eb:df:9f:ee:8a: 56:dc:f5:4c:7d:43:b9:8f:18:5f:fa:22:fc:ac:dc:0a:02:fb: b1:a1:4b:24:43:46:00:4d:02:af:43:e5:cd:34:18:c9:b3:65: b6:d9:0f:4d:69:6d:7e:52:25:fb:4e:cb:bf:26:4c:89:68:ae: 37:c6:21:f3:4c:ae:1b:56:06:99:a4:26:90:68:35:2b:24:e1: 20:2b:25:18:d1:13:9b:57:5a:67:a2:29:87:c9:2f:a0:98:ee: 73:3c:a4:d9:ef:5f:c9:1f:68:4d:3d:98:48:f0:37:e3:ce:79: fe:e8:2b:0f:fd:75:3e:37:c5:d1:5d:23:52:9f:6b:7a:0a:9a: 62:58:39:06:0e:00:a1:76:3b:95:b1:e8:25:f2:73:e8:80:80: 1e:a4:68:d5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NCRTExMC8GA1UEBRMoOUExNjI0RjQ2MDgyRjU0QUM1Nzc4ODU5RTIyNkJEM0JB NjkwMjNGNDAeFw0yNTA0MjUwNjM4MDFaFw0yNTA1MDIwNjM4MDFaMBgxFjAUBgNV BAMTDTY4MGIyZGNhLWQxZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvmjTRnBLIjvB/sCp04wtmjGvuQS0FOEkPUHWndPxOXjfZczwQ5WBGMXKQN4ZK EJEnphRDnhmkcVnPK6rvLGtuFoNu2Cf77irPeXBYahX3rikNiD3a3Q05VnNXLRi5 aTD+d6dSd2A3i/0zpopMWzbWr/shqbzcAjOLG6dgpE5h6+27KWfmiE+ewQwb21qm EX7vCBxh7CYKQb/b6EMbg0zSJw7QUvexD2fkHtU0CnBXcQNt3siCB4oYaMxsDSrP 88kLgblnCar2mGBFMsG/9r7JkTH4pNddvqCyudsYTT4dsJNC33+3FTVQq/F4a39e UMqLX6nPViK66Q/zzpml3bgZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG4iKQvyl 2y53rt66iCnbh12J3IwwHwYDVR0jBBgwFoAUmhYk9GCC9UrFd4hZ4ia9O6aQI/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0JFLzgzQkE4N0FFRDdD MjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVyRmQ0aFo0aWE5TzZhUUlf US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWhZazlHQ0M5VXJGZDRoWjRpYTlPNmFRSV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 Q0JFLzgzQkE4N0FFRDdDMjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVy RmQ0aFo0aWE5TzZhUUlfUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK4p+lKHpPXO+KQ/Jm2/uPu888gdB6HZITNmuIl8FentZC5ijVIjQT2L XZNoAoI10cbhrV0oM4eYM9xY96G8ZLCw0tc2F22w5vK98JgGJqSQYOb6BDl/LfZ4 Ew2yMZVYBc/LqtNGnaLr35/uilbc9Ux9Q7mPGF/6Ivys3AoC+7GhSyRDRgBNAq9D 5c00GMmzZbbZD01pbX5SJftOy78mTIlorjfGIfNMrhtWBpmkJpBoNSsk4SArJRjR E5tXWmeiKYfJL6CY7nM8pNnvX8kfaE09mEjwN+POef7oKw/9dT43xdFdI1Kfa3oK mmJYOQYOAKF2O5Wx6CXyc+iAgB6kaNU= -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:40 2025 by rpki-client