$ rpki-client -vvf rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft File: H3amlEQsq0PX0XzW_fmpfgt_qo4.mft (raw, json) Hash identifier: piEf8kBk4LT6urNF4QccnynnGUmjyfeISLMcxWvivpk= Subject key identifier: 75:12:38:B2:57:7E:C3:BC:4C:DF:02:A0:A7:56:B0:E0:9B:50:02:30 Authority key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E Certificate issuer: /CN=A9158059/serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Certificate serial: 060F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft Manifest number: 060B Signing time: Thu 24 Apr 2025 22:37:33 +0000 Manifest this update: Thu 24 Apr 2025 22:37:32 +0000 Manifest next update: Thu 01 May 2025 22:37:32 +0000 Files and hashes: 1: H3amlEQsq0PX0XzW_fmpfgt_qo4.crl (hash: 4oDDu+vO28m8lHkaTZUK09m/aCWWF3Sgt733b+vnCEA=) 2: 702A62CE9CC311EBA5A7A47BC4F9AE02.roa (hash: 4h1L3UPeFB7u6XpATtyAiPamwvkvOtamaw8dmDwjl7k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1551 (0x60f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158059, serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Validity Not Before: Apr 24 22:37:32 2025 GMT Not After : May 1 22:37:32 2025 GMT Subject: CN=680abd2c-016c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c1:d5:97:99:52:74:4c:90:c9:92:27:cf:2f: 44:47:24:45:21:b3:20:95:56:46:7f:68:aa:81:45: 51:82:f5:45:cf:8a:ac:7a:a2:13:ee:98:67:7a:3b: b2:8d:44:2e:f6:16:88:e3:c5:ba:8d:25:a6:96:e2: e6:f2:67:01:62:3b:9e:8f:a8:31:c4:be:cc:99:8b: 85:fb:67:76:30:60:85:39:bc:0a:06:1c:47:27:3b: df:91:50:d6:1f:f1:d9:bb:86:15:64:b9:37:33:c4: 07:9d:e1:dc:80:a3:79:61:45:e7:88:ff:a1:0e:98: 16:81:db:14:57:c4:7c:aa:b8:a7:80:3c:19:fb:b6: d8:31:98:02:8b:d1:73:70:89:18:41:9d:ac:8f:a2: c4:ea:e1:a6:5e:42:ae:73:ce:79:ce:db:bc:a6:b0: 47:e1:8a:94:0a:a5:f9:a5:13:4c:0b:26:b9:bd:e2: 33:11:32:20:42:3f:d5:0e:ea:f3:24:0f:11:2d:e5: cd:cd:19:0d:f2:aa:a2:73:a5:4f:2a:f1:9f:f8:21: 8d:69:59:33:95:65:12:ce:ed:b2:26:84:27:5e:9d: 7d:7d:5e:a8:c2:60:92:86:74:d3:75:68:1f:b9:d3: 52:19:c8:18:81:9b:ea:f3:fe:d9:a3:73:79:94:01: 69:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:12:38:B2:57:7E:C3:BC:4C:DF:02:A0:A7:56:B0:E0:9B:50:02:30 X509v3 Authority Key Identifier: keyid:1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:1c:9b:84:79:06:a0:95:fd:80:b0:23:2f:22:69:be:90:9e: 34:05:7c:3a:af:f6:c8:ed:6e:cc:45:cc:8d:6d:bc:92:11:a2: 95:76:63:78:92:55:3b:ea:7b:03:6d:14:81:52:f7:21:44:92: 05:82:14:95:28:63:4d:10:f5:27:eb:73:c0:bb:d4:16:4e:ef: 5a:f1:ca:35:35:35:fe:ba:19:7d:90:98:11:60:f7:12:32:1b: 60:21:94:80:06:b6:ea:be:73:b9:cc:60:d8:33:52:0e:33:3f: bf:11:28:2e:7e:d0:03:c7:ba:e1:43:bc:77:db:9c:43:ff:ee: e8:87:36:df:72:31:ae:75:1a:2b:1e:b5:02:a0:18:d9:8c:ea: c3:21:f7:49:2e:2f:ff:02:9c:93:9d:58:94:14:f8:a9:f5:0c: 72:d9:f9:ce:21:48:c6:54:e1:6a:cf:f0:0e:50:4d:93:87:9f: 91:35:21:48:81:40:74:d1:8b:be:d7:6d:04:b8:3f:20:2c:af: 6d:49:45:a2:47:af:25:1f:e8:74:72:03:37:3e:da:11:35:75: c0:ec:f0:e5:8d:ec:2e:4b:15:c5:36:e7:e2:8e:22:d6:e6:ff: 7f:1c:4f:da:48:6e:34:a3:0b:3f:f1:cb:5a:d4:cc:46:e4:a1: 99:c8:96:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwNTkxMTAvBgNVBAUTKDFGNzZBNjk0NDQyQ0FCNDNEN0QxN0NENkZERjlBOTdF MEI3RkFBOEUwHhcNMjUwNDI0MjIzNzMyWhcNMjUwNTAxMjIzNzMyWjAYMRYwFAYD VQQDEw02ODBhYmQyYy0wMTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5sHVl5lSdEyQyZInzy9ERyRFIbMglVZGf2iqgUVRgvVFz4qseqIT7phnejuy jUQu9haI48W6jSWmluLm8mcBYjuej6gxxL7MmYuF+2d2MGCFObwKBhxHJzvfkVDW H/HZu4YVZLk3M8QHneHcgKN5YUXniP+hDpgWgdsUV8R8qringDwZ+7bYMZgCi9Fz cIkYQZ2sj6LE6uGmXkKuc855ztu8prBH4YqUCqX5pRNMCya5veIzETIgQj/VDurz JA8RLeXNzRkN8qqic6VPKvGf+CGNaVkzlWUSzu2yJoQnXp19fV6owmCShnTTdWgf udNSGcgYgZvq8/7Zo3N5lAFpvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUSOLJX fsO8TN8CoKdWsOCbUAIwMB8GA1UdIwQYMBaAFB92ppRELKtD19F81v35qX4Lf6qO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODA1OS9CQkQ4MURBODlD QzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3EwUFgwWHpXX2ZtcGZndF9x bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gzYW1sRVFzcTBQWDBYeldfZm1wZmd0X3FvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODA1OS9CQkQ4MURBODlDQzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3Ew UFgwWHpXX2ZtcGZndF9xbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLHJuEeQaglf2AsCMvImm+kJ40BXw6r/bI7W7MRcyNbbySEaKVdmN4 klU76nsDbRSBUvchRJIFghSVKGNNEPUn63PAu9QWTu9a8co1NTX+uhl9kJgRYPcS MhtgIZSABrbqvnO5zGDYM1IOMz+/ESguftADx7rhQ7x325xD/+7ohzbfcjGudRor HrUCoBjZjOrDIfdJLi//ApyTnViUFPip9Qxy2fnOIUjGVOFqz/AOUE2Th5+RNSFI gUB00Yu+120EuD8gLK9tSUWiR68lH+h0cgM3PtoRNXXA7PDljewuSxXFNufijiLW 5v9/HE/aSG40ows/8cta1MxG5KGZyJbk -----END CERTIFICATE-----Generated at Sat Apr 26 04:02:34 2025 by rpki-client