$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: qRz03FbpUW+flGxt+L7rRtSse4K16nCgEwDTR33OyS0= Subject key identifier: E5:7A:73:19:94:66:A9:92:9D:18:7A:CC:67:80:E6:36:23:89:94:7B Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C1B Signing time: Thu 24 Apr 2025 18:33:08 +0000 Manifest this update: Thu 24 Apr 2025 18:33:08 +0000 Manifest next update: Thu 01 May 2025 18:33:08 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: UY3MB3kjauxAuXyDayDDEXvrknZYn3Ly4cny/a7yDX0=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iCRxHoIYmuUpTDYftZ3k58gB4Zc7olQd/IBHuDRYSeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3110 (0xc26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Apr 24 18:33:08 2025 GMT Not After : May 1 18:33:08 2025 GMT Subject: CN=680a83e4-528c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bd:d8:e1:a0:98:dc:9c:e1:d0:17:b2:ac:1a: 79:99:06:ef:7b:ce:44:73:75:df:8f:a4:3b:9f:00: b0:bf:ff:50:fb:fc:1c:1d:41:f4:cd:13:ed:81:b3: 04:05:65:aa:d9:d3:ed:8a:4a:79:3f:cf:a1:72:79: d8:c7:f6:7f:a3:e6:2b:1b:ee:ac:31:e4:72:65:90: 20:21:12:16:de:66:5b:19:b7:ba:54:9f:50:2a:0e: eb:0f:d9:f6:e3:6f:b3:c9:b8:1f:90:ba:0f:87:03: 1f:85:ab:62:17:d7:6c:53:c4:50:4d:22:09:cf:d1: 4e:ac:77:d1:03:7a:3f:9d:9c:20:f9:18:93:16:54: 20:f8:e6:f4:e4:38:ae:f5:7c:fb:0f:dd:53:3f:c6: b4:99:a9:f9:b0:d9:db:48:c2:21:8a:c7:57:37:0b: 7a:1c:3d:9c:71:c5:0e:39:1f:48:34:68:89:7c:70: 67:5e:73:6e:ce:2f:3e:dd:8e:b9:66:c4:1a:d0:c4: fb:25:d6:f1:11:7f:b3:bb:a9:db:5f:12:33:e0:cd: d6:8d:69:00:36:c6:9f:54:50:2b:0f:52:b4:75:b9: 37:f9:93:a4:08:3d:70:bb:41:3a:36:b6:9c:c8:fa: 01:64:46:e7:42:cd:6d:3e:dc:e1:03:7a:65:17:c6: 5f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:7A:73:19:94:66:A9:92:9D:18:7A:CC:67:80:E6:36:23:89:94:7B X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a1:43:f1:c2:2b:33:e3:bf:69:41:d8:78:b0:05:aa:17:94: 81:98:19:07:31:2c:16:d1:56:1b:6a:5f:a8:3f:bc:0a:d9:26: f2:09:ec:82:ca:e3:82:ab:f4:01:9e:f9:28:d8:63:68:5a:70: bb:cb:2d:55:ba:23:05:2f:5f:37:e9:9f:a3:14:3d:80:44:23: 97:d8:9d:cb:7e:6b:80:0e:b7:7c:6a:01:7c:5b:3b:05:c4:e5: 6c:41:78:fe:f2:59:55:8d:23:8b:6d:62:6a:aa:00:65:3e:38: 8d:b0:a7:0d:07:e6:e9:44:e6:8d:25:66:1c:e8:7d:4a:0d:51: 69:1e:1d:45:db:2a:58:0a:64:bf:ff:a7:6e:de:7a:eb:91:5e: 2f:c7:9e:43:21:d4:24:4e:3e:07:55:e1:e5:66:7a:32:2e:e9: 2d:0d:51:d6:f6:5d:f5:d7:46:81:4c:ef:4a:24:fd:e5:e2:c9: f1:a3:7b:0e:32:9a:53:3d:f0:9f:06:af:73:a0:7b:d3:0e:c3: f9:c3:11:95:76:46:de:2e:71:c0:fe:a8:4e:6e:75:65:30:be: 2b:a1:fa:97:05:36:1d:dd:ad:45:28:10:e6:8b:3e:43:c7:e6: 0c:69:44:71:4b:9b:ce:fc:b6:82:dd:74:ec:15:06:ba:9f:f2: a0:1e:a4:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUwNDI0MTgzMzA4WhcNMjUwNTAxMTgzMzA4WjAYMRYwFAYD VQQDEw02ODBhODNlNC01MjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5r3Y4aCY3Jzh0BeyrBp5mQbve85Ec3Xfj6Q7nwCwv/9Q+/wcHUH0zRPtgbME BWWq2dPtikp5P8+hcnnYx/Z/o+YrG+6sMeRyZZAgIRIW3mZbGbe6VJ9QKg7rD9n2 42+zybgfkLoPhwMfhatiF9dsU8RQTSIJz9FOrHfRA3o/nZwg+RiTFlQg+Ob05Diu 9Xz7D91TP8a0man5sNnbSMIhisdXNwt6HD2cccUOOR9INGiJfHBnXnNuzi8+3Y65 ZsQa0MT7JdbxEX+zu6nbXxIz4M3WjWkANsafVFArD1K0dbk3+ZOkCD1wu0E6Nrac yPoBZEbnQs1tPtzhA3plF8ZfdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOV6cxmU ZqmSnRh6zGeA5jYjiZR7MB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLoUPxwisz479pQdh4sAWqF5SBmBkHMSwW0VYbal+oP7wK2SbyCeyC yuOCq/QBnvko2GNoWnC7yy1VuiMFL1836Z+jFD2ARCOX2J3LfmuADrd8agF8WzsF xOVsQXj+8llVjSOLbWJqqgBlPjiNsKcNB+bpROaNJWYc6H1KDVFpHh1F2ypYCmS/ /6du3nrrkV4vx55DIdQkTj4HVeHlZnoyLuktDVHW9l3110aBTO9KJP3l4snxo3sO MppTPfCfBq9zoHvTDsP5wxGVdkbeLnHA/qhObnVlML4rofqXBTYd3a1FKBDmiz5D x+YMaURxS5vO/LaC3XTsFQa6n/KgHqQu -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:51 2025 by rpki-client