$ rpki-client -vvf rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft File: H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft (raw, json) Hash identifier: gAxMiqmeqwtrdgIO3abJn4MouYoi+w6JDTy3qqXnBq0= Subject key identifier: 93:9B:E1:84:59:9B:22:3C:D9:33:A3:7A:F1:F6:47:FA:D6:B0:63:27 Authority key identifier: 1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF Certificate issuer: /CN=A916A447/serialNumber=1F68258C526C5DBC715434357D380020146440EF Certificate serial: 289B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft Manifest number: 2831 Signing time: Thu 24 Apr 2025 15:38:53 +0000 Manifest this update: Thu 24 Apr 2025 15:38:52 +0000 Manifest next update: Thu 01 May 2025 15:38:52 +0000 Files and hashes: 1: H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl (hash: W99THeKZGpwnEX1BY7avIp96J8g72s4bUh21mk/xlZc=) 2: 87698C36F97A11EF9C671B12C4F9AE02.roa (hash: PO9vrEZKtQy4m/ZG2Dl3CG6VeiLEOLC1N62aNsK+38k=) 3: 4B65B208288F11EFB3C88742C4F9AE02.roa (hash: r2GAe+G1s6g34WU+Ia+gD4xaBN9kiFwzFN+koW6QJQs=) 4: 7F3D1128DC7811EFA7D7DB49C4F9AE02.roa (hash: Oiuj+Kbic3HQuA1OyKape4/HDdacy+ZxoCUL9iL91SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10395 (0x289b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A447, serialNumber=1F68258C526C5DBC715434357D380020146440EF Validity Not Before: Apr 24 15:38:52 2025 GMT Not After : May 1 15:38:52 2025 GMT Subject: CN=680a5b0c-7c40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8f:df:13:0a:10:e9:43:d8:bd:65:23:33:73: a7:9c:f9:6c:df:5b:0e:aa:85:47:6b:ae:81:28:2b: 93:1c:d7:30:8d:6a:8b:f7:55:d2:2d:6e:eb:48:be: 51:3e:d2:de:e1:60:42:f5:db:25:ff:ac:f2:e5:e3: 49:99:ae:4a:be:3a:31:63:84:70:fb:e8:40:8f:00: ef:b4:a9:df:13:c5:ca:bf:48:5e:91:59:a6:60:4c: 0c:c2:32:20:2f:3b:7f:ef:15:00:fb:45:d7:d9:28: 76:44:27:91:0b:6b:7c:7a:04:c7:f0:4b:7f:35:4f: 4d:74:bc:6e:d0:9a:65:1e:00:56:b0:28:4b:5f:e7: 75:ea:1a:1b:7c:3e:d0:27:d5:7b:fe:70:7f:eb:1a: 06:48:f6:7d:84:80:95:d0:9d:83:29:79:24:a5:41: 55:c4:23:66:92:98:d0:ad:c6:c0:b8:f6:22:b5:a9: 5c:86:76:43:6d:73:c1:c2:cc:e1:83:f4:c9:ff:bb: 0a:ea:64:56:9f:7b:61:4c:e2:81:af:fa:f3:69:92: a0:e1:67:e2:19:ea:a3:62:f9:9c:fb:62:81:4d:47: c5:42:52:e2:5b:cb:d1:07:5b:40:74:df:15:85:24: 74:81:5e:d1:a8:e3:7b:16:72:73:ea:5b:ed:5f:4f: ec:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:9B:E1:84:59:9B:22:3C:D9:33:A3:7A:F1:F6:47:FA:D6:B0:63:27 X509v3 Authority Key Identifier: keyid:1F:68:25:8C:52:6C:5D:BC:71:54:34:35:7D:38:00:20:14:64:40:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2gljFJsXbxxVDQ1fTgAIBRkQO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A447/D2075814A09C11E4B50E7B15C4F9AE02/H2gljFJsXbxxVDQ1fTgAIBRkQO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:41:d9:20:7f:b2:ad:fd:fa:1a:96:e6:ad:20:40:17:66:f2: b8:97:1d:19:a5:d0:5b:a6:31:c1:58:de:43:28:8b:09:8c:ee: cd:13:fd:a9:71:39:8e:e2:b3:1f:1b:ef:0c:13:1d:a9:51:64: fb:b9:ab:60:55:aa:35:04:ba:f2:ba:9d:a8:f5:5e:a9:d5:31: 30:38:ad:a1:7b:02:c5:6c:b8:ef:cb:11:78:d4:f8:37:c7:76: 78:88:14:98:7f:2c:c0:eb:70:8c:f9:61:2a:a9:18:4d:85:f4: 1b:1f:68:a9:a4:42:ac:d9:e3:7d:b6:cd:6e:a5:f2:62:c6:8a: 3a:81:0a:f6:c4:ed:ae:04:74:de:e6:e9:98:09:28:4e:d3:08: 95:63:95:02:6b:29:4d:4f:3b:6a:a2:cb:d1:26:25:7b:48:d5: af:47:2e:ac:58:10:00:81:37:f4:cf:4e:1e:63:5d:c6:57:ca: d9:6e:4d:ef:d2:29:c4:35:96:84:1f:c2:f0:6c:51:95:dd:71: 3f:ce:9c:88:27:d9:04:c8:87:c3:02:5d:53:12:bc:93:0e:b8: f7:b7:59:a8:60:92:41:c2:78:64:5d:47:63:72:07:b9:b8:da: 5d:86:47:1e:77:91:26:bc:76:97:f3:f4:8e:cb:10:32:e0:c1: 81:ce:0c:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE0NDcxMTAvBgNVBAUTKDFGNjgyNThDNTI2QzVEQkM3MTU0MzQzNTdEMzgwMDIw MTQ2NDQwRUYwHhcNMjUwNDI0MTUzODUyWhcNMjUwNTAxMTUzODUyWjAYMRYwFAYD VQQDEw02ODBhNWIwYy03YzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4/fEwoQ6UPYvWUjM3OnnPls31sOqoVHa66BKCuTHNcwjWqL91XSLW7rSL5R PtLe4WBC9dsl/6zy5eNJma5KvjoxY4Rw++hAjwDvtKnfE8XKv0hekVmmYEwMwjIg Lzt/7xUA+0XX2Sh2RCeRC2t8egTH8Et/NU9NdLxu0JplHgBWsChLX+d16hobfD7Q J9V7/nB/6xoGSPZ9hICV0J2DKXkkpUFVxCNmkpjQrcbAuPYitalchnZDbXPBwszh g/TJ/7sK6mRWn3thTOKBr/rzaZKg4WfiGeqjYvmc+2KBTUfFQlLiW8vRB1tAdN8V hSR0gV7RqON7FnJz6lvtX0/sHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOb4YRZ myI82TOjevH2R/rWsGMnMB8GA1UdIwQYMBaAFB9oJYxSbF28cVQ0NX04ACAUZEDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTQ0Ny9EMjA3NTgxNEEw OUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hieHhWRFExZlRnQUlCUmtR TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyZ2xqRkpzWGJ4eFZEUTFmVGdBSUJSa1FPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTQ0Ny9EMjA3NTgxNEEwOUMxMUU0QjUwRTdCMTVDNEY5QUUwMi9IMmdsakZKc1hi eHhWRFExZlRnQUlCUmtRTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKQdkgf7Kt/foaluatIEAXZvK4lx0ZpdBbpjHBWN5DKIsJjO7NE/2p cTmO4rMfG+8MEx2pUWT7uatgVao1BLryup2o9V6p1TEwOK2hewLFbLjvyxF41Pg3 x3Z4iBSYfyzA63CM+WEqqRhNhfQbH2ippEKs2eN9ts1upfJixoo6gQr2xO2uBHTe 5umYCShO0wiVY5UCaylNTztqosvRJiV7SNWvRy6sWBAAgTf0z04eY13GV8rZbk3v 0inENZaEH8LwbFGV3XE/zpyIJ9kEyIfDAl1TEryTDrj3t1moYJJBwnhkXUdjcge5 uNpdhkced5EmvHaX8/SOyxAy4MGBzgyv -----END CERTIFICATE-----Generated at Sat Apr 26 05:07:56 2025 by rpki-client