$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: l/lHJil8jUUMWMzKSE6Ipy9p44bRciFTPaXYp2hqjyQ= Subject key identifier: 0D:56:76:95:08:E0:4C:FF:48:BF:19:E8:0E:3D:55:7B:ED:83:E8:52 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 07C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 07B6 Signing time: Thu 24 Apr 2025 21:00:09 +0000 Manifest this update: Thu 24 Apr 2025 21:00:08 +0000 Manifest next update: Thu 01 May 2025 21:00:08 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: tCr7bhtZN0hjE0uzmsL0JHQWifKQjYcCO4MkkxOM/FQ=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1988 (0x7c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD, serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Apr 24 21:00:08 2025 GMT Not After : May 1 21:00:08 2025 GMT Subject: CN=680aa659-009c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:50:99:b2:ee:ed:b8:15:d8:4b:64:2c:ed:2a: d6:08:56:a8:6e:27:b8:36:fc:22:fb:1b:0c:5a:9c: 6c:60:fc:43:24:0d:53:d9:4e:bc:f9:5d:a7:49:f9: ed:49:07:29:6e:6f:6e:e5:6f:f0:0f:d7:0f:9f:71: 27:eb:b9:d0:f1:5a:04:90:a3:05:27:3e:e1:49:40: f5:26:63:ab:24:4f:df:c7:f1:7f:3b:c1:22:ba:4d: 5f:e9:ae:ab:44:11:de:d8:7d:8f:cb:5a:55:a8:30: 69:ce:d7:b1:eb:16:e8:08:b6:7f:92:af:3f:83:6e: 68:56:cb:48:6b:7f:41:39:e2:42:9b:a7:e2:ea:6c: b0:4f:4b:53:6f:dd:d2:b8:52:e5:e4:c5:04:a7:9b: 5b:66:8b:e3:7e:c6:e5:44:10:7e:25:d6:43:03:5c: e8:1c:de:c7:e4:a0:f4:2c:b9:24:f9:0f:34:8d:9f: 8f:45:e9:38:5d:61:8c:6c:da:dd:e5:61:bd:1c:e6: 7a:5c:81:9d:56:20:0d:35:fb:d9:3d:cc:48:45:16: f5:db:a7:49:c1:8b:ff:29:8b:f8:a7:02:52:81:fa: 33:5c:98:8f:6e:dc:51:ab:b5:b8:e0:37:03:21:22: 3f:d8:ae:ab:fe:97:68:f5:ac:c2:30:c5:e8:d1:e4: 7a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:56:76:95:08:E0:4C:FF:48:BF:19:E8:0E:3D:55:7B:ED:83:E8:52 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:cd:d7:99:6c:0b:80:4d:36:d8:8f:f9:3c:31:72:ed:15:34: f6:42:a7:54:37:70:2e:c8:d8:48:fb:95:58:52:79:c3:c1:9a: 85:7a:3a:b2:3e:2c:56:ab:d0:84:0c:6b:1f:56:85:e9:9b:9a: 55:51:d1:cd:da:72:01:cf:b1:ff:37:a1:22:13:39:ac:50:e8: 07:2d:0f:1f:f5:c7:50:20:7c:e1:13:d4:2d:18:2b:48:11:fc: f6:78:04:fe:69:1a:7a:45:95:6f:91:47:ae:c9:33:d5:49:b8: bd:43:21:8e:48:a4:fa:37:b7:c3:e3:de:60:29:13:2d:b7:3d: c2:4f:90:37:e3:88:e7:29:de:8b:e8:e8:92:2f:44:e8:6a:b9: 38:61:52:8c:a4:b7:5f:2e:de:65:aa:d8:1a:89:3e:ac:9b:da: 3a:a1:d3:88:78:28:6f:97:08:d1:bb:38:13:4e:23:cb:05:4f: 76:d0:8a:9c:c6:e7:5c:f4:48:f5:b8:4c:94:58:1f:e8:bb:b5: 9b:cc:26:cf:ec:b4:4f:91:73:d3:86:d9:0a:c2:b9:74:38:76: 02:e8:93:41:54:1b:b9:c3:8c:6e:34:31:fd:8b:f8:39:7b:77: dd:27:dc:3e:f9:83:a4:b3:d6:d3:6c:5e:c4:ba:38:a4:fa:f8: f0:d7:eb:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjUwNDI0MjEwMDA4WhcNMjUwNTAxMjEwMDA4WjAYMRYwFAYD VQQDEw02ODBhYTY1OS0wMDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVCZsu7tuBXYS2Qs7SrWCFaobie4Nvwi+xsMWpxsYPxDJA1T2U68+V2nSfnt SQcpbm9u5W/wD9cPn3En67nQ8VoEkKMFJz7hSUD1JmOrJE/fx/F/O8Eiuk1f6a6r RBHe2H2Py1pVqDBpztex6xboCLZ/kq8/g25oVstIa39BOeJCm6fi6mywT0tTb93S uFLl5MUEp5tbZovjfsblRBB+JdZDA1zoHN7H5KD0LLkk+Q80jZ+PRek4XWGMbNrd 5WG9HOZ6XIGdViANNfvZPcxIRRb126dJwYv/KYv4pwJSgfozXJiPbtxRq7W44DcD ISI/2K6r/pdo9azCMMXo0eR6XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1WdpUI 4Ez/SL8Z6A49VXvtg+hSMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTzdeZbAuATTbYj/k8MXLtFTT2QqdUN3AuyNhI+5VYUnnDwZqFejqy PixWq9CEDGsfVoXpm5pVUdHN2nIBz7H/N6EiEzmsUOgHLQ8f9cdQIHzhE9QtGCtI Efz2eAT+aRp6RZVvkUeuyTPVSbi9QyGOSKT6N7fD495gKRMttz3CT5A344jnKd6L 6OiSL0Toark4YVKMpLdfLt5lqtgaiT6sm9o6odOIeChvlwjRuzgTTiPLBU920Iqc xudc9Ej1uEyUWB/ou7WbzCbP7LRPkXPThtkKwrl0OHYC6JNBVBu5w4xuNDH9i/g5 e3fdJ9w++YOks9bTbF7Eujik+vjw1+us -----END CERTIFICATE-----Generated at Sat Apr 26 04:26:38 2025 by rpki-client