$ rpki-client -vvf rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft File: Rhwv4neii8iX8PzKT3yRCN2XSQM.mft (raw, json) Hash identifier: BA4wihr7aPa6PQn+hU/cusxG5IjRiPBBHkKFUXwJVag= Subject key identifier: 39:0F:69:9F:F8:00:EB:3C:32:C4:25:88:5E:D5:80:36:C8:FF:CC:F9 Authority key identifier: 46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 Certificate issuer: /CN=A918711E/serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Certificate serial: 0AA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft Manifest number: 0AA2 Signing time: Thu 24 Apr 2025 19:23:43 +0000 Manifest this update: Thu 24 Apr 2025 19:23:43 +0000 Manifest next update: Thu 01 May 2025 19:23:43 +0000 Files and hashes: 1: Rhwv4neii8iX8PzKT3yRCN2XSQM.crl (hash: BUJnp7p6FnSxEg0ipK2x0LauG/V7TBXCU2/C66uQPxE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2722 (0xaa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918711E, serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Validity Not Before: Apr 24 19:23:43 2025 GMT Not After : May 1 19:23:43 2025 GMT Subject: CN=680a8fbf-cf4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:23:52:d5:7c:91:15:0c:94:80:9b:27:1d:db: 50:b4:a5:e6:4e:c0:aa:3f:14:4f:c1:c8:35:e7:fc: 83:26:cd:b9:8d:25:c4:79:89:23:bb:5c:cf:1c:fb: 29:4a:1d:73:1c:cd:f8:e4:51:0a:c1:8d:bf:18:fd: 37:4d:04:f0:60:79:41:f7:b0:d2:38:7f:bb:14:a0: 2e:47:75:79:62:7e:a5:8c:30:b6:fb:94:98:74:0f: 19:d9:92:2e:c9:20:06:bb:8b:80:e7:70:83:64:5e: 26:3b:20:57:ec:a4:e5:2f:e1:7e:f7:58:49:77:06: 7a:d6:11:33:bc:05:c9:ec:47:36:38:f7:8c:c2:8b: d1:db:38:80:f4:49:1d:96:26:b6:83:29:b3:c5:e6: 0e:75:49:cc:5a:db:4d:b9:f6:0b:e3:97:b3:a3:e6: 6f:db:80:9e:b6:01:41:c2:c9:54:da:a2:64:fe:13: dc:7a:35:bf:dc:97:75:ac:99:46:57:6f:96:20:4a: a6:a1:71:a0:b1:d8:88:b0:91:73:e1:4e:3c:bc:3d: 67:2b:a6:7e:cd:91:5d:7f:17:8e:e9:7d:d5:2f:fe: 6d:17:f2:95:3d:88:49:de:3a:2b:6b:1b:7f:ee:fd: ce:f5:b6:ef:ac:71:38:da:a3:3a:16:fc:cb:19:e5: 05:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0F:69:9F:F8:00:EB:3C:32:C4:25:88:5E:D5:80:36:C8:FF:CC:F9 X509v3 Authority Key Identifier: keyid:46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:5c:c9:24:d0:1b:4d:96:5e:fd:7a:97:81:12:7f:73:a5:f7: dd:b8:9f:9b:9c:ad:51:e9:85:3a:93:d8:47:16:6b:43:7f:19: 79:bc:7e:60:1f:26:bd:f0:8b:2e:a1:f8:aa:2b:56:cb:e8:a5: 6a:39:68:75:89:f4:91:5e:b6:a4:dc:3b:15:7e:7f:12:75:1b: fb:ad:4b:c2:c6:3f:f7:f1:62:9e:25:c8:06:74:7e:da:a3:2e: 48:b9:08:cd:ab:64:38:4e:96:0e:9e:96:c8:50:78:46:94:6a: dc:b9:ea:47:fb:ca:04:ab:28:f7:6d:3e:51:9d:9e:2e:ae:4f: 80:39:72:6c:55:b3:4d:1b:b3:29:0a:ef:12:c5:a7:77:ba:72: c3:99:0e:81:c3:82:ba:40:c0:9d:5a:f1:c8:40:dd:6f:0d:b0: 45:23:49:40:df:a5:ca:2d:d5:f2:be:df:90:85:cc:a2:c4:5d: c7:a3:0a:d8:e3:dc:99:c6:65:0d:11:ab:07:ab:fb:ad:8f:c5: 63:5d:8a:08:0e:b5:78:ed:d1:63:bb:b2:f2:10:05:ad:13:a2: 7b:18:b1:dc:63:35:3a:7b:79:99:30:6d:45:8f:64:1f:b3:83: fb:87:67:76:38:6a:a6:79:97:e5:3e:3c:ee:8a:ab:87:0a:21: 76:8e:76:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcxMUUxMTAvBgNVBAUTKDQ2MUMyRkUyNzdBMjhCQzg5N0YwRkNDQTRGN0M5MTA4 REQ5NzQ5MDMwHhcNMjUwNDI0MTkyMzQzWhcNMjUwNTAxMTkyMzQzWjAYMRYwFAYD VQQDEw02ODBhOGZiZi1jZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCNS1XyRFQyUgJsnHdtQtKXmTsCqPxRPwcg15/yDJs25jSXEeYkju1zPHPsp Sh1zHM345FEKwY2/GP03TQTwYHlB97DSOH+7FKAuR3V5Yn6ljDC2+5SYdA8Z2ZIu ySAGu4uA53CDZF4mOyBX7KTlL+F+91hJdwZ61hEzvAXJ7Ec2OPeMwovR2ziA9Ekd lia2gymzxeYOdUnMWttNufYL45ezo+Zv24CetgFBwslU2qJk/hPcejW/3Jd1rJlG V2+WIEqmoXGgsdiIsJFz4U48vD1nK6Z+zZFdfxeO6X3VL/5tF/KVPYhJ3joraxt/ 7v3O9bbvrHE42qM6FvzLGeUFYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkPaZ/4 AOs8MsQliF7VgDbI/8z5MB8GA1UdIwQYMBaAFEYcL+J3oovIl/D8yk98kQjdl0kD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzExRS8wQjU4NEM3ODUx MzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4aVg4UHpLVDN5UkNOMlhT UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Jod3Y0bmVpaThpWDhQektUM3lSQ04yWFNRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzExRS8wQjU4NEM3ODUxMzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4 aVg4UHpLVDN5UkNOMlhTUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqXMkk0BtNll79epeBEn9zpffduJ+bnK1R6YU6k9hHFmtDfxl5vH5g Hya98IsuofiqK1bL6KVqOWh1ifSRXrak3DsVfn8SdRv7rUvCxj/38WKeJcgGdH7a oy5IuQjNq2Q4TpYOnpbIUHhGlGrcuepH+8oEqyj3bT5RnZ4urk+AOXJsVbNNG7Mp Cu8Sxad3unLDmQ6Bw4K6QMCdWvHIQN1vDbBFI0lA36XKLdXyvt+QhcyixF3HowrY 49yZxmUNEasHq/utj8VjXYoIDrV47dFju7LyEAWtE6J7GLHcYzU6e3mZMG1Fj2Qf s4P7h2d2OGqmeZflPjzuiquHCiF2jnZz -----END CERTIFICATE-----Generated at Sat Apr 26 15:05:42 2025 by rpki-client