$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft File: H5ogKJzpMW5ls9tyToxzYGyPhks.mft (raw, json) Hash identifier: VUEImWAwgjb8flxk+msF1CCj8kj79nZCFqG08/5tDPo= Subject key identifier: A4:84:31:1E:25:38:9C:A7:82:4D:2B:DA:79:1F:0F:E0:4A:6B:EB:80 Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0C21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft Manifest number: 0C12 Signing time: Thu 24 Apr 2025 18:34:44 +0000 Manifest this update: Thu 24 Apr 2025 18:34:43 +0000 Manifest next update: Thu 01 May 2025 18:34:43 +0000 Files and hashes: 1: H5ogKJzpMW5ls9tyToxzYGyPhks.crl (hash: WtQ6doFM8Cy+yheYY05yaBH8JoYylsCZP+0Awy1lCEg=) 2: 172E487A416911ECB6B11742C4F9AE02.roa (hash: tMpcaYfBD1iobeLdQwhWt6/SJfz2AnFABrMU1WC/vqA=) 3: 67827BDC0B8511EA97C80D52C4F9AE02.roa (hash: kiKJ+nah+NBAeLG9hlQHszkTVk53ALCt/csxQaC27/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3105 (0xc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33, serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: Apr 24 18:34:43 2025 GMT Not After : May 1 18:34:43 2025 GMT Subject: CN=680a8444-c596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:21:d2:f9:b1:1b:04:9a:c3:5d:ea:23:55:25: ad:44:8d:53:ad:c2:ac:26:bf:d6:eb:d4:fd:b3:9b: 1e:0e:72:86:9b:58:e4:c5:2b:cf:29:a0:1d:87:e9: fd:71:38:69:3b:97:72:21:71:34:9d:39:7e:68:5d: 83:d7:54:6a:d5:a9:4b:69:69:f2:cc:b8:b8:9c:ae: 0b:40:2d:a5:35:03:21:06:9a:85:0d:c0:1f:b9:22: 9a:16:4e:26:e8:0b:26:47:f7:7c:4e:2b:7e:dd:2c: 91:53:b0:17:8a:6c:1c:6a:e5:b3:d8:55:d8:0c:92: 7b:29:fd:34:c1:b1:50:18:62:b3:e2:08:41:c0:ea: 96:83:04:ad:7f:8b:bb:36:46:f7:49:33:2c:e9:ba: 13:8c:2f:5a:c5:ad:cf:9f:72:57:f9:81:c3:86:43: 1d:62:2d:93:ff:6e:93:c5:ee:14:46:42:90:a0:fe: 2a:65:5a:c3:7f:c9:63:2b:c6:b6:6e:78:5d:1e:70: da:48:ba:7f:56:7b:6f:14:d4:fd:be:e5:83:7d:ed: 5f:f5:09:2f:1e:4b:4a:17:65:0e:5d:9f:ff:cc:c8: 5a:c5:b4:fe:22:ce:12:e1:66:44:80:34:d1:f6:a7: 36:27:62:2c:4d:70:2c:73:f9:73:db:be:2d:a5:b7: 06:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:84:31:1E:25:38:9C:A7:82:4D:2B:DA:79:1F:0F:E0:4A:6B:EB:80 X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:21:ca:97:27:39:01:37:a4:56:59:4f:25:0d:8c:2b:e8:34: ad:14:a2:d4:16:d6:bc:28:e7:6c:60:5a:dc:80:85:70:a9:0e: 2b:2d:e9:fc:c5:5d:9c:ad:f4:2d:37:2e:e4:09:a5:e9:fa:ab: 37:55:e6:4f:d2:d5:e5:79:ca:af:1f:92:55:af:56:e9:5e:18: 0f:2c:c7:82:09:16:1e:b7:db:8d:fe:2d:7e:22:15:62:e7:05: db:81:b9:fd:9a:27:3d:34:b5:2b:65:59:85:d4:c0:31:3d:ef: bd:57:92:09:13:7f:cd:d6:ea:fe:75:1d:6d:41:f0:e2:e1:86: 27:76:ac:2c:4b:f5:c2:f3:1d:8b:ee:34:39:3d:10:0c:a8:af: ee:14:f6:70:32:98:9d:90:9c:6d:c2:82:4a:6b:33:79:93:33: 68:91:b9:59:08:ee:9a:32:81:b8:0a:1d:18:7b:14:19:bc:7e: 67:77:fd:8c:a1:2d:a6:81:8d:16:49:8f:a2:28:90:45:ea:62: ee:33:be:d4:24:3c:76:fb:18:76:21:e8:32:fa:97:5b:51:4a: fc:c3:b4:ae:8b:b7:43:f2:5f:5e:8e:e7:7d:d6:28:a7:12:71: 07:0f:ba:7e:b3:57:fb:a7:a0:8a:db:9b:44:41:4a:f3:eb:c5: f3:87:a8:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjUwNDI0MTgzNDQzWhcNMjUwNTAxMTgzNDQzWjAYMRYwFAYD VQQDEw02ODBhODQ0NC1jNTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyHS+bEbBJrDXeojVSWtRI1TrcKsJr/W69T9s5seDnKGm1jkxSvPKaAdh+n9 cThpO5dyIXE0nTl+aF2D11Rq1alLaWnyzLi4nK4LQC2lNQMhBpqFDcAfuSKaFk4m 6AsmR/d8Tit+3SyRU7AXimwcauWz2FXYDJJ7Kf00wbFQGGKz4ghBwOqWgwStf4u7 Nkb3STMs6boTjC9axa3Pn3JX+YHDhkMdYi2T/26Txe4URkKQoP4qZVrDf8ljK8a2 bnhdHnDaSLp/VntvFNT9vuWDfe1f9QkvHktKF2UOXZ//zMhaxbT+Is4S4WZEgDTR 9qc2J2IsTXAsc/lz274tpbcGVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSEMR4l OJyngk0r2nkfD+BKa+uAMB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkYzMy80NjA2NjFEQzBCODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1X NWxzOXR5VG94ellHeVBoa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFIcqXJzkBN6RWWU8lDYwr6DStFKLUFta8KOdsYFrcgIVwqQ4rLen8 xV2crfQtNy7kCaXp+qs3VeZP0tXlecqvH5JVr1bpXhgPLMeCCRYet9uN/i1+IhVi 5wXbgbn9mic9NLUrZVmF1MAxPe+9V5IJE3/N1ur+dR1tQfDi4YYndqwsS/XC8x2L 7jQ5PRAMqK/uFPZwMpidkJxtwoJKazN5kzNokblZCO6aMoG4Ch0YexQZvH5nd/2M oS2mgY0WSY+iKJBF6mLuM77UJDx2+xh2Iegy+pdbUUr8w7Sui7dD8l9ejud91iin EnEHD7p+s1f7p6CK25tEQUrz68Xzh6jw -----END CERTIFICATE-----Generated at Sat Apr 26 04:39:55 2025 by rpki-client