$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft File: h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft (raw, json) Hash identifier: 9F6qI9kWKbB7iBPFQ4Su4VXZINzpavC1XEgdGTfdj9w= Subject key identifier: 5A:53:8A:3E:7E:4E:01:48:6E:03:C3:8C:87:5F:EF:DE:92:C2:4B:1E Authority key identifier: 87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36 Certificate issuer: /CN=A9174880/serialNumber=879062503FD208466F74EA9AF87670A87D86A736 Certificate serial: 347C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft Manifest number: 347C Signing time: Thu 24 Apr 2025 14:16:44 +0000 Manifest this update: Thu 24 Apr 2025 14:16:43 +0000 Manifest next update: Thu 01 May 2025 14:16:43 +0000 Files and hashes: 1: h5BiUD_SCEZvdOqa-HZwqH2GpzY.crl (hash: zhhcf+vNWMTiIPMwaj+G1jMkpLgHF0nIm+bVDnjTuL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.crl rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13436 (0x347c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=879062503FD208466F74EA9AF87670A87D86A736 Validity Not Before: Apr 24 14:16:43 2025 GMT Not After : May 1 14:16:43 2025 GMT Subject: CN=680a47cc-7296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ac:f1:1d:cd:52:61:fb:0c:dd:a7:65:00:e2: 4d:0e:4e:02:cc:f3:73:2b:0a:ae:c9:26:b0:dc:42: 2d:26:0a:3d:b4:0e:f7:71:03:6f:ef:3c:fa:4f:2e: 7b:7b:eb:e3:8a:95:82:40:c3:bb:b1:32:cc:9b:a1: 91:98:9e:cf:9d:20:68:af:4e:56:ce:2e:6a:1b:ba: 85:ea:5d:db:a8:20:e1:7c:49:2d:11:18:08:66:34: 35:5e:ac:17:25:d0:2a:68:56:99:8e:b9:e2:7e:b6: f9:db:42:dc:76:29:3a:45:36:a5:12:01:0e:6b:ee: 58:57:d8:95:fa:0e:51:bc:fb:2c:4a:77:89:d3:2b: 00:2c:f4:da:ff:27:4c:ce:75:b6:54:62:14:61:2a: 4b:69:60:92:18:f1:19:84:31:b9:68:a9:2b:e8:22: c0:49:2b:80:a2:c7:f8:fb:42:b0:44:cb:62:36:d4: c9:28:fd:10:22:2c:18:8e:e7:5e:c6:df:f3:8e:11: 0f:0e:76:0f:85:e6:97:47:eb:29:7e:a5:e2:f9:dd: 95:c6:8a:6a:e6:09:f0:ed:eb:70:09:c9:ee:46:de: 18:d5:1c:11:39:0f:8a:98:6c:dd:e1:14:4b:5e:c9: 89:34:a3:a4:ae:88:81:5a:65:64:31:bb:a7:9c:da: f2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:53:8A:3E:7E:4E:01:48:6E:03:C3:8C:87:5F:EF:DE:92:C2:4B:1E X509v3 Authority Key Identifier: keyid:87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:5c:fe:ee:18:8d:f1:06:87:08:d3:42:0e:2c:e5:fe:59:05: 43:c5:0c:ce:9e:30:20:ab:49:7f:12:45:5a:81:15:b3:9b:71: c6:3f:25:24:89:b7:c2:63:97:9e:b9:4b:54:71:89:bb:d2:7c: d9:39:53:b0:a8:29:ae:4d:a6:b6:79:0f:db:10:7c:d1:cb:d0: b3:4c:a1:3e:cf:d0:2f:bc:00:a7:2f:a4:18:1c:ca:88:d2:30: 6f:ce:34:ae:3e:62:b2:39:98:26:5b:b4:f1:43:45:00:18:ca: 13:3d:92:3b:56:b1:5c:f3:28:40:3a:fc:45:48:12:54:6d:48: 65:05:17:af:03:84:a5:97:4c:74:0d:66:7f:84:64:cc:8d:64: cb:4e:e6:91:51:f6:25:0f:25:17:0c:72:bf:b1:a5:0b:28:89: 99:81:89:7c:df:1e:08:e5:e5:26:ab:de:a0:fc:19:da:0c:7f: ac:50:3c:c5:08:54:6c:64:15:40:cd:71:94:80:0d:9c:64:5b: 6b:9b:4a:1a:26:86:1c:d7:9a:8f:fa:74:e9:48:34:4d:2e:b0: 8d:db:c1:69:90:fa:90:79:ce:c5:30:0c:56:f7:6d:5a:a2:2e: 4c:7b:7e:32:4f:71:f5:b7:22:e7:e6:14:7a:65:ad:b4:f8:7b: c5:70:04:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKDg3OTA2MjUwM0ZEMjA4NDY2Rjc0RUE5QUY4NzY3MEE4 N0Q4NkE3MzYwHhcNMjUwNDI0MTQxNjQzWhcNMjUwNTAxMTQxNjQzWjAYMRYwFAYD VQQDEw02ODBhNDdjYy03Mjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKzxHc1SYfsM3adlAOJNDk4CzPNzKwquySaw3EItJgo9tA73cQNv7zz6Ty57 e+vjipWCQMO7sTLMm6GRmJ7PnSBor05Wzi5qG7qF6l3bqCDhfEktERgIZjQ1XqwX JdAqaFaZjrnifrb520Lcdik6RTalEgEOa+5YV9iV+g5RvPssSneJ0ysALPTa/ydM znW2VGIUYSpLaWCSGPEZhDG5aKkr6CLASSuAosf4+0KwRMtiNtTJKP0QIiwYjude xt/zjhEPDnYPheaXR+spfqXi+d2Vxopq5gnw7etwCcnuRt4Y1RwROQ+KmGzd4RRL XsmJNKOkroiBWmVkMbunnNryCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpTij5+ TgFIbgPDjIdf796SwkseMB8GA1UdIwQYMBaAFIeQYlA/0ghGb3Tqmvh2cKh9hqc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC84NDZFQzA0MDFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi9oNUJpVURfU0NFWnZkT3FhLUhad3FIMkdw elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2g1QmlVRF9TQ0VadmRPcWEtSFp3cUgyR3B6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC84NDZFQzA0MDFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi9oNUJpVURfU0NF WnZkT3FhLUhad3FIMkdwelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiXP7uGI3xBocI00IOLOX+WQVDxQzOnjAgq0l/EkVagRWzm3HGPyUk ibfCY5eeuUtUcYm70nzZOVOwqCmuTaa2eQ/bEHzRy9CzTKE+z9AvvACnL6QYHMqI 0jBvzjSuPmKyOZgmW7TxQ0UAGMoTPZI7VrFc8yhAOvxFSBJUbUhlBRevA4Sll0x0 DWZ/hGTMjWTLTuaRUfYlDyUXDHK/saULKImZgYl83x4I5eUmq96g/BnaDH+sUDzF CFRsZBVAzXGUgA2cZFtrm0oaJoYc15qP+nTpSDRNLrCN28FpkPqQec7FMAxW921a oi5Me34yT3H1tyLn5hR6Za20+HvFcASh -----END CERTIFICATE-----Generated at Sat Apr 26 12:25:52 2025 by rpki-client