$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: gIwI9bWJz/0aeGgVzuadRNoVdf/AZlkPv+M/WhnRh0E= Subject key identifier: 68:7B:9A:1F:10:39:EB:8C:DF:83:E2:1A:DB:4B:0E:F8:B1:F3:F5:C7 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 18 Signing time: Fri 25 Apr 2025 06:58:49 +0000 Manifest this update: Fri 25 Apr 2025 06:58:49 +0000 Manifest next update: Fri 02 May 2025 06:58:49 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: RMjLeo3/nCyucaL+Wy0CG47MJ9bwRKFnjyC0SYcfDDA=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Apr 25 06:58:49 2025 GMT Not After : May 2 06:58:49 2025 GMT Subject: CN=680b32a9-378d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f4:30:0d:6e:84:d5:e4:eb:14:b0:4d:38:e9: d3:19:d1:a9:3a:e4:53:6e:07:5e:78:3b:f9:71:9d: 69:a6:90:e7:a2:80:16:1c:c4:e3:3d:0c:c8:40:06: 2e:39:2b:44:c4:c4:16:b2:44:a7:97:4c:6e:bd:88: 1e:fd:6e:ae:e5:29:94:30:68:13:d9:a2:75:89:e2: c4:7d:0e:0d:41:d0:d3:84:c3:bd:c8:fa:ed:0e:e5: cb:ae:42:16:dc:db:47:14:d0:83:82:2a:6b:58:ca: f2:7d:c9:7e:d2:c3:3a:c8:de:45:d7:38:a4:49:54: 38:a7:47:8b:84:49:a7:d4:86:ad:31:b8:4f:49:0e: f3:77:d2:37:46:9e:7d:6f:40:7e:c7:a7:00:01:9c: 5c:5f:08:c3:7e:38:81:b0:78:33:dc:c3:d0:0b:4c: bd:f1:17:d6:a3:61:19:f4:97:39:f4:cf:0f:1c:5f: de:72:f7:5f:8d:0e:bb:94:01:f5:41:51:30:46:59: 1d:39:12:d4:5a:f3:b8:a6:2a:dc:08:55:f8:62:4c: af:9c:93:0b:62:4e:19:e7:a1:5a:fe:42:cc:06:03: da:a9:1d:77:d6:4c:65:8a:be:23:b4:ea:5c:ef:09: 56:78:57:80:ff:31:a4:dc:16:a3:bd:57:75:10:4b: 6d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7B:9A:1F:10:39:EB:8C:DF:83:E2:1A:DB:4B:0E:F8:B1:F3:F5:C7 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ad:ce:a1:97:fd:a4:96:74:8c:ef:dc:78:ee:a3:b3:d6:44: 20:3f:14:f0:d1:d2:c6:86:c3:0a:f2:d6:57:f0:b9:b6:ef:04: 56:ba:61:31:7a:01:b0:05:f6:9f:6d:c9:cb:ac:b2:52:e9:0a: ac:4e:05:c2:5e:9b:e4:3f:c2:e9:ab:e6:ac:b5:c7:91:2e:ed: 63:c4:8d:6e:20:57:e6:cb:5a:b2:31:95:e2:01:15:93:96:40: 08:06:6d:dc:08:42:79:44:2c:46:54:f7:f3:19:47:ca:0b:e2: 1b:c3:64:44:ec:2f:e9:1e:e8:4a:90:76:68:02:63:5f:24:e6: 9e:5c:a2:c3:e5:33:18:02:db:89:b4:f0:04:0e:6b:90:52:23: 7d:1b:21:5c:f9:b7:a6:33:4d:70:0d:ff:bd:ac:58:ae:65:9e: 33:fc:ff:ec:00:85:97:25:42:0b:90:b8:9d:69:e9:14:3b:2b: 4b:ed:3b:a1:f0:e5:47:44:91:57:48:2e:d6:71:6c:53:a3:e2: 6c:82:0f:1f:44:c4:22:be:77:0c:c5:c0:21:3a:a0:fd:78:33: 13:b2:19:0f:b1:9a:e7:42:94:0f:84:ea:5a:bf:48:9d:50:12: af:3e:99:07:82:d3:37:c1:6b:99:4c:dd:c6:dc:0a:89:30:9b: eb:ad:dd:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA0MjUwNjU4NDlaFw0yNTA1MDIwNjU4NDlaMBgxFjAUBgNV BAMTDTY4MGIzMmE5LTM3OGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL9DANboTV5OsUsE046dMZ0ak65FNuB154O/lxnWmmkOeigBYcxOM9DMhABi45 K0TExBayRKeXTG69iB79bq7lKZQwaBPZonWJ4sR9Dg1B0NOEw73I+u0O5cuuQhbc 20cU0IOCKmtYyvJ9yX7SwzrI3kXXOKRJVDinR4uESafUhq0xuE9JDvN30jdGnn1v QH7HpwABnFxfCMN+OIGweDPcw9ALTL3xF9ajYRn0lzn0zw8cX95y91+NDruUAfVB UTBGWR05EtRa87imKtwIVfhiTK+ckwtiThnnoVr+QswGA9qpHXfWTGWKviO06lzv CVZ4V4D/MaTcFqO9V3UQS23hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaHuaHxA5 64zfg+Ia20sO+LHz9ccwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABmtzqGX/aSWdIzv3Hjuo7PWRCA/FPDR0saGwwry1lfwubbvBFa6YTF6 AbAF9p9tycusslLpCqxOBcJem+Q/wumr5qy1x5Eu7WPEjW4gV+bLWrIxleIBFZOW QAgGbdwIQnlELEZU9/MZR8oL4hvDZETsL+ke6EqQdmgCY18k5p5cosPlMxgC24m0 8AQOa5BSI30bIVz5t6YzTXAN/72sWK5lnjP8/+wAhZclQguQuJ1p6RQ7K0vtO6Hw 5UdEkVdILtZxbFOj4myCDx9ExCK+dwzFwCE6oP14MxOyGQ+xmudClA+E6lq/SJ1Q Eq8+mQeC0zfBa5lM3cbcCokwm+ut3Y8= -----END CERTIFICATE-----Generated at Sat Apr 26 14:01:44 2025 by rpki-client