$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft File: H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft (raw, json) Hash identifier: fzOqzY6uXu7MC2InOr4yATyk45gj2xHkZeT86FiNe0c= Subject key identifier: 83:2F:96:FC:7A:32:86:98:08:DE:97:E1:72:46:0A:D5:A0:EC:3E:DD Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 05ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft Manifest number: 05E6 Signing time: Thu 24 Apr 2025 22:45:19 +0000 Manifest this update: Thu 24 Apr 2025 22:45:19 +0000 Manifest next update: Thu 01 May 2025 22:45:19 +0000 Files and hashes: 1: H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl (hash: /iE0q5/SrgsMuXGMf9oktMet1QHOPwEfnXJRGZnbAcY=) 2: F8CE85E2B30211EBA63AE482C4F9AE02.roa (hash: JNO//UyjyCwtO6c12uk/NjDfBJbKa4UXXgFo1EP+Qts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1517 (0x5ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Apr 24 22:45:19 2025 GMT Not After : May 1 22:45:19 2025 GMT Subject: CN=680abeff-eb91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b6:d1:4c:cf:0f:2a:9a:a1:0f:da:6d:7a:75: fe:fd:1c:27:0c:70:62:50:0e:bc:a3:9a:91:e7:f5: b4:96:48:a3:b0:6c:ab:c5:23:3f:a9:74:07:5b:98: 1e:71:92:56:6c:b4:cf:7f:4b:02:a9:5d:11:43:0f: ee:e5:53:89:47:5f:3c:4a:c8:77:6a:22:d7:6e:e6: 20:99:d5:26:4c:9b:8f:9d:f1:a8:5a:4b:f3:0b:36: 9d:50:d0:f0:a1:43:37:6d:a4:60:e0:68:d3:44:14: a9:59:52:d4:f0:f2:ee:95:99:f8:2a:30:82:69:51: 9b:ae:9c:bf:98:96:f6:f4:ec:33:b9:bb:0c:92:74: b6:43:15:eb:41:6b:27:db:f7:fb:9a:0f:6e:30:d1: b1:58:e6:30:e1:61:f7:54:36:2a:45:42:12:f5:f0: ac:e7:3a:dd:f9:22:16:52:90:e8:89:ab:31:34:ce: 68:b6:3a:31:8d:ee:a3:fb:3e:6a:de:72:df:60:bf: 90:c1:e4:34:79:e5:9d:f5:8f:f6:11:be:c4:ba:84: 0b:d9:f8:e7:cd:00:09:8d:3a:84:02:37:a3:a2:3e: 3f:0f:4a:f1:57:72:e9:59:2e:f5:b8:d8:8f:3a:e2: 84:0c:64:a2:88:d3:6d:70:84:f3:00:b8:c2:ba:6f: da:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2F:96:FC:7A:32:86:98:08:DE:97:E1:72:46:0A:D5:A0:EC:3E:DD X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:27:16:ef:0e:a9:cb:ea:db:5d:98:2a:e1:90:57:04:d7:7d: 8f:69:c4:64:f1:4e:f5:33:a4:3d:62:46:f4:02:82:ab:fd:51: b2:1f:00:c1:2c:8b:2f:16:07:a1:dd:ed:28:3f:b4:41:aa:ed: c6:14:21:67:be:79:db:4e:ef:a5:c6:72:cd:e7:b4:47:ef:45: 01:6d:b2:07:2a:ed:68:dc:87:c0:2a:ec:07:ef:b0:d4:7f:cd: 25:f1:7e:9a:e0:6e:dd:e8:b4:b6:b5:e2:00:dc:97:59:9c:ba: 10:5f:44:5f:48:73:b0:61:9a:57:ec:bc:fd:e8:df:7c:03:c3: e7:37:89:b5:92:cf:0b:c2:34:5f:f2:68:61:8d:b3:ed:33:e2: 8a:2e:ad:90:73:42:6b:78:a1:4c:24:2d:99:d8:a7:eb:ff:3d: e3:e1:c2:c7:c8:9a:f0:b0:40:83:a8:18:92:b8:94:7b:18:a6: 99:f3:8e:43:28:20:a9:3f:30:f6:f7:67:e3:46:a4:a6:fa:74: 8d:d3:3f:70:33:e6:8a:12:fc:9c:a1:22:ac:3e:4f:9a:b9:28: 55:4f:af:f1:85:f6:01:86:35:c1:5c:a3:2c:04:d2:7b:a3:c7: 77:d9:f1:55:28:b0:94:d1:52:28:02:61:6d:20:94:7c:37:98: 4f:07:b2:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjUwNDI0MjI0NTE5WhcNMjUwNTAxMjI0NTE5WjAYMRYwFAYD VQQDEw02ODBhYmVmZi1lYjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrbRTM8PKpqhD9ptenX+/RwnDHBiUA68o5qR5/W0lkijsGyrxSM/qXQHW5ge cZJWbLTPf0sCqV0RQw/u5VOJR188Ssh3aiLXbuYgmdUmTJuPnfGoWkvzCzadUNDw oUM3baRg4GjTRBSpWVLU8PLulZn4KjCCaVGbrpy/mJb29OwzubsMknS2QxXrQWsn 2/f7mg9uMNGxWOYw4WH3VDYqRUIS9fCs5zrd+SIWUpDoiasxNM5otjoxje6j+z5q 3nLfYL+QweQ0eeWd9Y/2Eb7EuoQL2fjnzQAJjTqEAjejoj4/D0rxV3LpWS71uNiP OuKEDGSiiNNtcITzALjCum/aiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMvlvx6 MoaYCN6X4XJGCtWg7D7dMB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRERi81Q0YxRjdBMkFENUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJz VXExLURndkRMUGZLb2lIamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdJxbvDqnL6ttdmCrhkFcE132PacRk8U71M6Q9Ykb0AoKr/VGyHwDB LIsvFgeh3e0oP7RBqu3GFCFnvnnbTu+lxnLN57RH70UBbbIHKu1o3IfAKuwH77DU f80l8X6a4G7d6LS2teIA3JdZnLoQX0RfSHOwYZpX7Lz96N98A8PnN4m1ks8LwjRf 8mhhjbPtM+KKLq2Qc0JreKFMJC2Z2Kfr/z3j4cLHyJrwsECDqBiSuJR7GKaZ845D KCCpPzD292fjRqSm+nSN0z9wM+aKEvycoSKsPk+auShVT6/xhfYBhjXBXKMsBNJ7 o8d32fFVKLCU0VIoAmFtIJR8N5hPB7Lt -----END CERTIFICATE-----Generated at Sat Apr 26 12:20:12 2025 by rpki-client