$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft File: hNqJJ83vUDOW9ScgGU65MSCdPzo.mft (raw, json) Hash identifier: lq64ytXUhHNLKZFnIJ5onzO04a/7YHvCpMZIxbQk+wc= Subject key identifier: 4E:62:15:9A:61:39:22:7E:BA:42:9C:63:CD:FD:99:74:9A:D2:AB:AC Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 02FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft Manifest number: 02F2 Signing time: Fri 25 Apr 2025 01:04:23 +0000 Manifest this update: Fri 25 Apr 2025 01:04:22 +0000 Manifest next update: Fri 02 May 2025 01:04:22 +0000 Files and hashes: 1: hNqJJ83vUDOW9ScgGU65MSCdPzo.crl (hash: XdjzVltIhn9LQm7KhVPwhDmv8HnttsiGoXJMGRrwr4o=) 2: 6910E952A86A11EF89DA976DC4F9AE02.roa (hash: l1w8+0ex2ah/bqLhlgu70ROEZ3rYXLDAefLnWRzXKeM=) 3: 3EABAF20D8E311EC8F274181C4F9AE02.roa (hash: D/07ECvWp7oQg2+1KPxjiVqoD+wojBNXOMz248kJJ/8=) 4: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (hash: jCGpkTOREB2CZphvzKOSraYTHWPq9LTO8zozaxcqQy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 766 (0x2fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Apr 25 01:04:22 2025 GMT Not After : May 2 01:04:22 2025 GMT Subject: CN=680adf97-da08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:90:ae:b2:25:12:b2:e5:3e:eb:50:99:77:ed: 06:86:33:d3:13:15:84:88:c8:99:00:ec:de:f8:f0: 84:eb:dc:87:af:20:a5:28:1a:de:2a:36:f4:9f:df: a5:62:55:8e:6e:49:cf:5c:8a:69:e0:2a:28:0b:e8: 84:91:0b:f6:05:c7:29:a6:9f:d9:29:8b:09:05:30: 28:aa:9e:21:48:23:8e:25:ba:d4:2a:46:22:3e:93: db:96:1d:32:58:fc:70:db:d7:8b:97:fe:c2:fc:60: 82:b4:c4:63:94:c1:e8:a0:cc:49:b9:0c:cf:22:9e: 78:2e:7e:fd:3d:81:ab:e7:98:ee:1e:5c:93:57:ce: ae:3c:90:e9:12:2b:f9:f1:4b:b5:80:ab:f4:13:f8: 2b:4d:91:69:64:72:93:78:13:f2:c3:6c:49:ae:73: 61:b2:1a:a6:fd:bb:ed:76:ec:cf:2d:53:7e:35:12: 3e:e3:43:46:40:09:19:d2:47:d9:ca:ec:8b:be:d1: a3:ee:92:aa:27:a5:2e:98:8c:96:8c:7f:22:76:6a: 49:99:7a:a7:4f:5d:1f:9e:0b:af:25:4b:b0:c0:7c: 9e:50:fe:07:9e:33:3d:4e:20:c0:62:cb:d9:5e:70: 84:21:16:05:17:c5:da:c2:94:0b:f2:4e:37:2f:36: fd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:62:15:9A:61:39:22:7E:BA:42:9C:63:CD:FD:99:74:9A:D2:AB:AC X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:a1:b4:00:9b:9c:8a:43:8a:ba:5d:16:0c:96:e7:06:00:a5: 54:5a:ee:79:22:87:c0:af:1d:2c:9d:af:05:6c:22:2e:91:fa: d3:26:1d:85:ce:6e:7d:8c:74:7e:4b:93:d6:a0:1b:7c:6b:a9: c4:a1:31:17:56:cd:53:76:e3:eb:61:06:f7:aa:36:67:78:8b: 2c:f6:a9:fb:5b:9d:93:1b:b5:92:b4:15:a7:b8:96:35:69:eb: 96:04:7f:a6:f9:b9:59:1e:e8:62:7f:3f:df:ce:fb:ed:e8:96: ef:4c:5b:0a:4f:fe:f3:78:62:fd:ee:e1:af:0e:54:d7:71:d2: 83:b3:9d:3f:11:88:08:77:72:ab:d2:b6:9d:ea:23:7f:18:5d: 53:34:c1:d8:04:2f:f9:19:72:ea:36:e6:02:a1:ba:84:1d:7b: de:0a:62:e6:d9:d3:3f:29:a4:29:5c:0c:9c:dc:75:3e:7e:8b: 21:12:0b:5c:ce:7b:76:89:dd:a5:61:da:ed:c8:dd:59:c6:81: e9:2d:95:67:50:80:df:65:be:3f:ba:f5:ae:ea:39:47:c7:f4: bb:31:8c:5b:25:95:14:ef:65:88:03:1d:35:7b:67:44:e9:10: ac:e4:06:b2:62:ca:72:60:f2:be:8f:65:2d:5f:58:ee:86:b1: 13:fc:94:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjUwNDI1MDEwNDIyWhcNMjUwNTAyMDEwNDIyWjAYMRYwFAYD VQQDEw02ODBhZGY5Ny1kYTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pCusiUSsuU+61CZd+0GhjPTExWEiMiZAOze+PCE69yHryClKBreKjb0n9+l YlWObknPXIpp4CooC+iEkQv2Bccppp/ZKYsJBTAoqp4hSCOOJbrUKkYiPpPblh0y WPxw29eLl/7C/GCCtMRjlMHooMxJuQzPIp54Ln79PYGr55juHlyTV86uPJDpEiv5 8Uu1gKv0E/grTZFpZHKTeBPyw2xJrnNhshqm/bvtduzPLVN+NRI+40NGQAkZ0kfZ yuyLvtGj7pKqJ6UumIyWjH8idmpJmXqnT10fnguvJUuwwHyeUP4HnjM9TiDAYsvZ XnCEIRYFF8XawpQL8k43Lzb9vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5iFZph OSJ+ukKcY839mXSa0qusMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjA1MS81QUFEOUQ3RUQ4REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVE T1c5U2NnR1U2NU1TQ2RQem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApobQAm5yKQ4q6XRYMlucGAKVUWu55IofArx0sna8FbCIukfrTJh2F zm59jHR+S5PWoBt8a6nEoTEXVs1TduPrYQb3qjZneIss9qn7W52TG7WStBWnuJY1 aeuWBH+m+blZHuhifz/fzvvt6JbvTFsKT/7zeGL97uGvDlTXcdKDs50/EYgId3Kr 0rad6iN/GF1TNMHYBC/5GXLqNuYCobqEHXveCmLm2dM/KaQpXAyc3HU+foshEgtc znt2id2lYdrtyN1ZxoHpLZVnUIDfZb4/uvWu6jlHx/S7MYxbJZUU72WIAx01e2dE 6RCs5AayYspyYPK+j2UtX1juhrET/JRH -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:48 2025 by rpki-client