$ rpki-client -vvf rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft File: 9fHi3rMlVisihf-LXeJd8srfdwc.mft (raw, json) Hash identifier: 9VWTvbHKEsN3LQt/mqvcsG/tSdT5hKYcKOkfEoNr2xk= Subject key identifier: 43:C4:B2:11:9E:96:31:8E:FD:94:6D:D5:A5:95:58:F0:0B:91:CF:81 Authority key identifier: F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 Certificate issuer: /CN=A915B4B5/serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft Manifest number: C6 Signing time: Fri 25 Apr 2025 05:01:21 +0000 Manifest this update: Fri 25 Apr 2025 05:01:21 +0000 Manifest next update: Fri 02 May 2025 05:01:21 +0000 Files and hashes: 1: 9fHi3rMlVisihf-LXeJd8srfdwc.crl (hash: V5d1KVc8HerAUYsNvmO/U54DqV9MhyOb5y9GUXBOJIE=) 2: E0207030F13611EE869F9E34C4F9AE02.roa (hash: 1cTaBvBAhxFneEeGlAFuRr/tcaFQd3vN8aAkRfuybSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B4B5, serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Validity Not Before: Apr 25 05:01:21 2025 GMT Not After : May 2 05:01:21 2025 GMT Subject: CN=680b1721-450f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:00:0e:1f:f5:e1:5b:18:78:fb:06:e4:38:0c: 33:4d:8e:4d:f2:da:26:a5:a5:2e:0b:0a:3d:e4:9d: 1d:d2:13:ab:04:7d:67:3a:4b:0e:20:ec:16:f6:db: 1e:f4:84:50:9c:8e:8f:2a:37:ea:ee:01:da:42:bd: 44:47:2b:be:ab:15:a6:25:96:75:83:29:25:90:57: ef:c5:10:ef:9f:58:69:0a:4d:a4:6b:6d:7f:be:f9: f5:5e:95:fe:d6:54:b4:43:d1:f0:04:68:a0:ac:58: 8e:a2:37:72:84:06:87:b4:de:11:9d:34:bb:17:a6: 25:dd:37:9b:b2:74:af:30:22:10:06:38:6b:8a:6c: 12:68:79:60:d7:2a:5e:fa:71:ae:00:55:e6:42:84: 56:9a:85:d5:8b:bb:e2:51:96:10:26:55:4e:c4:f8: e7:76:17:0d:5d:02:d9:04:52:af:5c:c5:52:c7:32: 53:b9:41:8e:49:6e:84:f5:af:53:72:87:c5:16:79: 15:83:be:41:cc:35:97:a4:59:d6:09:7e:24:29:0a: 44:57:64:c9:80:98:29:b1:88:78:02:a9:5a:0f:b4: 32:65:c8:26:d5:65:e8:7c:c3:a4:0b:58:88:2c:7a: 11:3a:7b:f3:99:25:41:81:4b:26:83:4d:62:00:23: 3c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C4:B2:11:9E:96:31:8E:FD:94:6D:D5:A5:95:58:F0:0B:91:CF:81 X509v3 Authority Key Identifier: keyid:F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:af:d6:26:c7:bc:e4:6a:e5:66:c9:c7:78:84:23:b6:b9:d3: 93:d8:27:1d:ec:e6:e0:1e:ef:22:84:e7:48:61:a2:06:2a:7a: 52:0e:cb:6e:41:5c:f0:4d:4b:7b:23:c2:82:db:4e:59:20:86: 16:02:c6:f5:a0:6d:bb:5b:9a:21:c8:0f:2c:f2:e6:e8:73:7d: 73:6a:f0:cc:7c:97:92:82:80:b4:1f:c6:fa:26:f0:95:fe:29: 0b:0a:3b:2e:fd:28:ca:4b:6b:c7:20:92:4c:22:7b:4a:37:74: 65:9b:fa:70:2e:5f:f8:77:36:b2:62:5e:28:f2:5e:79:92:55: 79:62:88:64:7d:fb:bf:02:69:a2:42:f8:02:e7:72:fa:9e:91: 36:68:20:f1:35:43:63:08:25:35:9f:22:47:81:35:22:07:8b: 45:7a:0f:88:35:bb:b0:33:f1:c1:4d:a8:f9:75:1a:3a:7c:aa: f5:41:3a:f4:26:3f:65:7b:f1:1d:ae:97:59:bf:f2:c4:fb:c6: 0d:b9:c2:37:76:59:bc:6e:fc:7d:ee:49:10:da:25:fd:f5:9d: 7e:46:7a:71:a3:1b:ff:70:64:cd:68:e0:66:be:0a:05:48:fd: 72:d6:d3:37:e3:03:9a:8d:89:33:34:42:db:a9:4c:31:26:7f: 8e:a3:eb:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI0QjUxMTAvBgNVBAUTKEY1RjFFMkRFQjMyNTU2MkIyMjg1RkY4QjVERTI1REYy Q0FERjc3MDcwHhcNMjUwNDI1MDUwMTIxWhcNMjUwNTAyMDUwMTIxWjAYMRYwFAYD VQQDEw02ODBiMTcyMS00NTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAAOH/XhWxh4+wbkOAwzTY5N8tompaUuCwo95J0d0hOrBH1nOksOIOwW9tse 9IRQnI6PKjfq7gHaQr1ERyu+qxWmJZZ1gyklkFfvxRDvn1hpCk2ka21/vvn1XpX+ 1lS0Q9HwBGigrFiOojdyhAaHtN4RnTS7F6Yl3TebsnSvMCIQBjhrimwSaHlg1ype +nGuAFXmQoRWmoXVi7viUZYQJlVOxPjndhcNXQLZBFKvXMVSxzJTuUGOSW6E9a9T cofFFnkVg75BzDWXpFnWCX4kKQpEV2TJgJgpsYh4AqlaD7QyZcgm1WXofMOkC1iI LHoROnvzmSVBgUsmg01iACM8TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPEshGe ljGO/ZRt1aWVWPALkc+BMB8GA1UdIwQYMBaAFPXx4t6zJVYrIoX/i13iXfLK33cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjRCNS80MENFOUYyQUYx MzYxMUVFOTA4QkYwMzJDNEY5QUUwMi85ZkhpM3JNbFZpc2loZi1MWGVKZDhzcmZk d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlmSGkzck1sVmlzaWhmLUxYZUpkOHNyZmR3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjRCNS80MENFOUYyQUYxMzYxMUVFOTA4QkYwMzJDNEY5QUUwMi85ZkhpM3JNbFZp c2loZi1MWGVKZDhzcmZkd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJr9Ymx7zkauVmycd4hCO2udOT2Ccd7ObgHu8ihOdIYaIGKnpSDstu QVzwTUt7I8KC205ZIIYWAsb1oG27W5ohyA8s8uboc31zavDMfJeSgoC0H8b6JvCV /ikLCjsu/SjKS2vHIJJMIntKN3Rlm/pwLl/4dzayYl4o8l55klV5Yohkffu/Ammi QvgC53L6npE2aCDxNUNjCCU1nyJHgTUiB4tFeg+INbuwM/HBTaj5dRo6fKr1QTr0 Jj9le/EdrpdZv/LE+8YNucI3dlm8bvx97kkQ2iX99Z1+Rnpxoxv/cGTNaOBmvgoF SP1y1tM34wOajYkzNELbqUwxJn+Oo+v+ -----END CERTIFICATE-----Generated at Sat Apr 26 04:54:56 2025 by rpki-client