$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft File: scNHRW5UpGYuEJfs0zSsEcAs4As.mft (raw, json) Hash identifier: 0NwB7u9HUuUPcRcC9Rv86C4wi7HwWeJfeElaYa6CeVY= Subject key identifier: AD:5F:32:C4:AE:CD:8A:D0:2E:2E:D7:70:82:1A:FE:20:44:37:6F:7A Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 06BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft Manifest number: 06AB Signing time: Thu 24 Apr 2025 21:58:04 +0000 Manifest this update: Thu 24 Apr 2025 21:58:03 +0000 Manifest next update: Thu 01 May 2025 21:58:03 +0000 Files and hashes: 1: scNHRW5UpGYuEJfs0zSsEcAs4As.crl (hash: jOtRaT9V3GFIdZNpDvMf3efLaPwBSk10Q4FUv6/ollw=) 2: 31D902165E7311EB8B143F3BC4F9AE02.roa (hash: H1d0qtWMbN/ZLehnM+qkk/9VJSqY96iabdAlvpWRnf8=) 3: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (hash: YNpH5Q9f52SuXXmbgomoqSZtciJ+QBf4TgDm3Z8IhyI=) 4: 3263B6905E7311EB8B143F3BC4F9AE02.roa (hash: IRUZ+HQ+rrY+P2Ftx4LEZSfF4IIIe7sj7QLj+A7Ieao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:58:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1723 (0x6bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Apr 24 21:58:03 2025 GMT Not After : May 1 21:58:03 2025 GMT Subject: CN=680ab3ec-ef16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5b:16:5c:28:89:e2:fe:8f:6b:8f:67:30:1e: 6b:e8:84:dd:7c:43:c4:3a:cd:ae:9a:60:b3:75:dd: d8:e7:82:d5:67:8c:0d:4b:7b:30:3d:7e:3e:54:fe: ed:08:28:01:73:04:9a:ae:1c:a6:15:c0:a7:9c:2f: cd:b6:65:39:ae:f0:45:f5:60:04:8a:6e:19:a0:93: ee:9b:bd:64:f8:a4:e6:7d:b4:c9:06:4a:99:06:92: fb:39:63:f9:a1:29:34:cd:18:59:c0:55:ec:f8:70: b7:e5:5a:d4:68:95:24:2d:32:8b:fd:88:c4:40:62: d4:1b:84:c3:c3:be:38:be:d3:91:ac:64:dd:6e:97: 86:7b:97:8e:51:57:84:50:0b:e9:fb:54:f8:68:3b: 3d:cd:8e:7d:50:80:a0:a1:66:4a:93:fb:91:8c:50: d1:81:c6:43:b1:e0:2f:98:72:05:2d:32:56:91:40: 2e:b4:a6:ea:f8:ac:64:21:09:c3:5e:61:ef:ed:77: 2e:09:2c:ed:70:63:28:5f:1d:5a:08:e6:d6:71:2e: 0b:bc:fa:4c:69:f0:ee:a5:2b:0e:69:41:57:bd:fa: df:fb:39:1f:e2:e8:90:1c:7a:59:0e:c8:06:0c:63: 67:72:33:de:e4:37:84:2b:d5:75:21:c1:c1:ff:3b: cb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5F:32:C4:AE:CD:8A:D0:2E:2E:D7:70:82:1A:FE:20:44:37:6F:7A X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:4a:41:ef:80:94:b9:e8:45:6e:c0:53:0e:85:3a:a6:9f:61: 2d:c9:74:b7:cd:a1:f6:eb:7c:64:41:29:d5:e2:c2:9f:aa:7a: 9f:79:88:52:60:9c:28:b9:31:9a:89:2a:fd:5c:9d:fd:bc:27: d8:5e:28:da:d1:00:7f:d3:90:bf:15:72:ed:81:0e:f1:db:ed: 14:97:87:d7:f6:0e:f9:ea:2c:ce:e3:f0:3d:f1:fd:40:03:83: 15:af:8b:2b:f5:e0:a1:70:8e:e7:61:32:8d:d6:45:f8:5f:03: 66:77:ab:42:33:1c:76:a8:e7:14:05:8b:00:c1:04:e2:a0:54: 16:50:99:ae:06:86:03:b0:71:06:ba:6e:d4:a0:75:74:c1:05: e2:d8:c3:14:0d:cb:03:df:63:10:c2:cb:b6:d8:1f:ee:02:60: 0a:60:ca:29:ac:b6:33:76:61:c6:9f:ce:dc:be:13:2c:21:60: f6:23:31:fb:41:ce:e0:05:81:5e:a9:3e:05:76:32:f9:3e:3f: d2:db:ed:c9:94:04:d3:57:6a:3e:4b:a7:e2:3b:5d:94:1c:8f: fa:4f:72:71:3d:e1:ab:3d:82:4d:8a:6a:bb:e6:52:79:06:f1: 49:b3:b7:70:28:b7:de:d3:2a:60:3c:e8:28:30:eb:95:a1:d6: 41:ec:74:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjUwNDI0MjE1ODAzWhcNMjUwNTAxMjE1ODAzWjAYMRYwFAYD VQQDEw02ODBhYjNlYy1lZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31sWXCiJ4v6Pa49nMB5r6ITdfEPEOs2ummCzdd3Y54LVZ4wNS3swPX4+VP7t CCgBcwSarhymFcCnnC/NtmU5rvBF9WAEim4ZoJPum71k+KTmfbTJBkqZBpL7OWP5 oSk0zRhZwFXs+HC35VrUaJUkLTKL/YjEQGLUG4TDw744vtORrGTdbpeGe5eOUVeE UAvp+1T4aDs9zY59UICgoWZKk/uRjFDRgcZDseAvmHIFLTJWkUAutKbq+KxkIQnD XmHv7XcuCSztcGMoXx1aCObWcS4LvPpMafDupSsOaUFXvfrf+zkf4uiQHHpZDsgG DGNncjPe5DeEK9V1IcHB/zvLVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1fMsSu zYrQLi7XcIIa/iBEN296MB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDQzOC9DNDUwOUQ1NDVFNzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBH WXVFSmZzMHpTc0VjQXM0QXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwSkHvgJS56EVuwFMOhTqmn2EtyXS3zaH263xkQSnV4sKfqnqfeYhS YJwouTGaiSr9XJ39vCfYXija0QB/05C/FXLtgQ7x2+0Ul4fX9g756izO4/A98f1A A4MVr4sr9eChcI7nYTKN1kX4XwNmd6tCMxx2qOcUBYsAwQTioFQWUJmuBoYDsHEG um7UoHV0wQXi2MMUDcsD32MQwsu22B/uAmAKYMoprLYzdmHGn87cvhMsIWD2IzH7 Qc7gBYFeqT4FdjL5Pj/S2+3JlATTV2o+S6fiO12UHI/6T3JxPeGrPYJNimq75lJ5 BvFJs7dwKLfe0ypgPOgoMOuVodZB7HTB -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:43 2025 by rpki-client