$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: xEh72wVJH7p/PMSLplcsewdrPV8zD/0BCxNvxVnwNCs= Subject key identifier: 72:B5:C8:DA:C8:D8:38:E9:46:DC:BE:0A:AD:2E:C4:BA:E1:6D:30:3A Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1BC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1BBC Signing time: Thu 24 Apr 2025 16:15:05 +0000 Manifest this update: Thu 24 Apr 2025 16:15:05 +0000 Manifest next update: Thu 01 May 2025 16:15:05 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: Mu77JiM4ZFs8Dy8tjyT5yOQQlpvDRyZuL1qvmldE010=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: 6kshU0HtAchRgiTjP8s8Hd2WuIT7tJbRCmHqG1erYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:15:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7113 (0x1bc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Apr 24 16:15:05 2025 GMT Not After : May 1 16:15:05 2025 GMT Subject: CN=680a6389-3d51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fb:04:e3:b9:9a:a8:a5:c3:f3:ad:f9:79:bf: 10:2c:08:96:6f:56:14:e3:79:23:b6:fb:62:f0:fe: 13:33:a3:83:af:3c:64:05:c9:76:c6:f8:2e:10:a2: 2b:5e:4b:1a:11:fa:40:ab:a6:21:73:14:8f:27:34: 27:01:af:0a:6c:d3:48:63:3c:78:2e:75:2d:bc:41: 0c:0a:85:91:c2:b0:d1:8a:c3:26:c0:d1:c7:89:8e: 37:f1:84:d8:09:fa:a3:16:d7:70:f2:e0:04:55:ac: b1:77:c3:16:23:81:a6:87:a3:47:fe:9f:3c:ae:86: 1a:55:bc:8f:5d:ff:de:10:a8:78:5c:29:51:30:2f: 2a:1d:ce:73:05:33:4c:39:05:fc:b9:77:de:81:f9: e7:0a:9d:2e:7c:e0:65:ae:18:31:9c:c7:d0:5d:26: b8:d5:0c:28:48:de:df:7e:1d:94:f9:bc:54:93:f8: 1b:c0:1d:d4:6c:f8:03:b8:09:a6:95:67:ce:1c:87: dc:f7:76:85:03:5c:e9:ee:f5:58:18:ca:24:57:86: 32:85:d4:9d:ca:75:cc:b2:11:f9:a2:f0:bd:96:ec: c7:5e:e8:07:bd:47:ab:a9:dd:56:34:d2:c2:e2:c4: 6f:2c:6b:36:d7:dc:9c:a2:5b:17:78:25:9b:09:1b: c4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:B5:C8:DA:C8:D8:38:E9:46:DC:BE:0A:AD:2E:C4:BA:E1:6D:30:3A X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:87:a8:6f:dc:51:ee:5b:1d:0c:aa:33:dc:94:31:fc:e9:12: d3:5a:a3:4c:04:0c:90:6d:12:5b:b4:78:68:61:73:9f:7b:a9: 48:bb:e9:39:99:72:e0:2e:11:41:6a:88:8c:ef:e4:68:66:eb: ee:ef:89:21:34:78:47:2b:e4:d8:82:7c:6b:40:d4:0c:ff:c8: 05:29:2d:b4:53:fb:ac:49:14:ef:51:ba:9d:cd:b8:22:d8:2a: b3:9a:b5:40:42:8c:29:d7:bf:8f:1f:e9:c9:d0:31:fa:5d:42: 88:7e:3b:3e:a3:db:0a:51:31:16:09:a9:62:21:19:fb:4d:3b: 19:46:42:71:66:35:d6:90:1f:af:26:b2:29:3d:26:ee:aa:98: c3:5e:d2:8c:54:a0:19:46:e0:91:89:84:fd:67:bc:54:67:82: 91:a1:88:86:3e:5b:0a:82:d6:a4:b0:71:93:fe:17:a5:9a:2f: bb:63:10:d5:64:1b:ef:81:17:e9:87:61:41:50:72:0f:30:8c: 07:f2:30:6e:4b:9a:b5:56:0a:96:36:34:0d:b0:e8:60:d0:32: 69:da:bd:df:c6:ac:0a:3e:55:f5:8d:f1:2f:ec:20:d4:98:93: 76:b7:ac:9c:ed:11:5e:9c:10:2c:93:15:80:73:77:3c:57:76: fb:f1:f8:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUwNDI0MTYxNTA1WhcNMjUwNTAxMTYxNTA1WjAYMRYwFAYD VQQDEw02ODBhNjM4OS0zZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/sE47maqKXD8635eb8QLAiWb1YU43kjtvti8P4TM6ODrzxkBcl2xvguEKIr XksaEfpAq6YhcxSPJzQnAa8KbNNIYzx4LnUtvEEMCoWRwrDRisMmwNHHiY438YTY CfqjFtdw8uAEVayxd8MWI4Gmh6NH/p88roYaVbyPXf/eEKh4XClRMC8qHc5zBTNM OQX8uXfegfnnCp0ufOBlrhgxnMfQXSa41QwoSN7ffh2U+bxUk/gbwB3UbPgDuAmm lWfOHIfc93aFA1zp7vVYGMokV4YyhdSdynXMshH5ovC9luzHXugHvUerqd1WNNLC 4sRvLGs219ycolsXeCWbCRvEMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHK1yNrI 2DjpRty+Cq0uxLrhbTA6MB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeh6hv3FHuWx0MqjPclDH86RLTWqNMBAyQbRJbtHhoYXOfe6lIu+k5 mXLgLhFBaoiM7+RoZuvu74khNHhHK+TYgnxrQNQM/8gFKS20U/usSRTvUbqdzbgi 2CqzmrVAQowp17+PH+nJ0DH6XUKIfjs+o9sKUTEWCaliIRn7TTsZRkJxZjXWkB+v JrIpPSbuqpjDXtKMVKAZRuCRiYT9Z7xUZ4KRoYiGPlsKgtaksHGT/helmi+7YxDV ZBvvgRfph2FBUHIPMIwH8jBuS5q1VgqWNjQNsOhg0DJp2r3fxqwKPlX1jfEv7CDU mJN2t6yc7RFenBAskxWAc3c8V3b78fhF -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:51 2025 by rpki-client