$ rpki-client -vvf rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft File: HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft (raw, json) Hash identifier: agd9wP/TwFKNzQSdbKXzIOk1e/QdxzShL3SclauT1DI= Subject key identifier: 13:18:E8:B8:0F:87:AF:B9:9E:16:56:03:89:A5:20:C4:7C:DD:41:AA Authority key identifier: 1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 Certificate issuer: /CN=A918742C/serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Certificate serial: 167B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft Manifest number: 1672 Signing time: Thu 24 Apr 2025 16:43:09 +0000 Manifest this update: Thu 24 Apr 2025 16:43:08 +0000 Manifest next update: Thu 01 May 2025 16:43:08 +0000 Files and hashes: 1: HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl (hash: IaTMpkakoZQuOuauJZgE1XNcj8tniGkM3LTp9ZiCVo0=) 2: 8DFAE1DA019D11E8A7804A1EC4F9AE02.roa (hash: DwaSXkwadhXmFgNGjila+YsFoYHDPOwpBM4h3mtwuos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5755 (0x167b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918742C, serialNumber=1C3F99A0C182B58CC45B8112F291E12A153331E9 Validity Not Before: Apr 24 16:43:08 2025 GMT Not After : May 1 16:43:08 2025 GMT Subject: CN=680a6a1d-e205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8c:52:b8:ba:91:80:fe:ee:f3:fc:e0:9e:5b: 8b:78:bf:a9:70:fe:99:6f:fd:37:35:d2:13:85:f4: 8d:46:07:a2:a0:24:30:32:74:4d:8b:b4:d5:5c:e9: 23:e0:61:c1:9b:99:ce:d1:95:c3:7e:19:8a:91:08: 6a:35:f8:5e:da:71:7e:85:6e:82:96:f9:96:f1:d6: e0:55:1e:57:04:17:17:1a:8b:63:90:6d:eb:6a:17: 80:d3:d3:df:02:4a:d5:4f:ce:f6:46:60:1c:83:52: 31:68:0e:6a:25:b3:b7:4b:b4:2b:5e:a0:4b:aa:28: fd:c0:d9:d1:55:16:c9:fb:de:73:d5:5e:80:88:1f: 45:9d:cc:41:9e:7a:ec:09:27:a9:a1:d2:58:ff:76: 87:c0:23:28:2a:18:4c:31:91:57:a4:ce:ec:ab:21: 09:bf:05:ad:d3:79:46:12:ce:fd:49:90:a4:c2:7c: e1:4a:30:b7:52:70:6d:a5:ed:92:7c:71:9e:ad:be: 62:49:17:52:ea:72:31:ad:25:a3:28:9e:d1:7d:8e: 52:e2:b8:c5:d5:76:2c:33:d2:6d:71:73:26:ff:1a: c1:10:79:6f:c9:bf:df:74:89:fc:30:07:64:4e:88: 20:9f:6c:a4:f1:99:2b:32:41:a3:7a:cc:5a:57:8a: 33:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:18:E8:B8:0F:87:AF:B9:9E:16:56:03:89:A5:20:C4:7C:DD:41:AA X509v3 Authority Key Identifier: keyid:1C:3F:99:A0:C1:82:B5:8C:C4:5B:81:12:F2:91:E1:2A:15:33:31:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HD-ZoMGCtYzEW4ES8pHhKhUzMek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918742C/F28C89C4019C11E89035F919C4F9AE02/HD-ZoMGCtYzEW4ES8pHhKhUzMek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:f1:9c:7a:4c:04:4c:4c:89:aa:52:dc:a0:bf:6d:23:d5:a0: 23:9e:6e:e8:49:5c:ca:b3:f2:cd:b3:67:fc:08:dc:98:dc:16: a9:b5:9b:11:c0:e4:9d:14:63:6a:82:eb:23:c2:3e:71:e6:05: ca:25:66:86:01:c7:d4:fc:2e:a8:6f:9f:fe:98:44:85:eb:46: 6e:9a:df:6d:9e:ea:3a:dd:c6:a7:cf:46:8d:b2:37:43:dc:91: 77:06:17:50:68:d3:83:7a:30:09:88:e5:0b:61:e9:fa:de:0f: d5:c3:2b:7e:be:fe:0b:33:97:8e:44:09:33:d2:af:d7:c3:9a: 73:83:11:9c:11:b2:43:ab:f7:e7:77:56:75:5b:1b:46:26:17: ba:81:47:72:dc:c3:34:bb:88:3d:0d:8e:6f:c9:61:a7:8c:ae: c7:43:f0:9c:5f:62:f0:fd:51:73:df:4f:4f:4f:4b:7e:b7:45: c5:3b:44:02:4d:26:00:c1:21:c8:82:b2:8c:45:e3:e8:e2:98: b0:ac:88:70:76:c3:8b:78:65:4e:d8:7d:38:2f:e6:77:a0:2f: f7:b9:75:11:86:ec:10:a6:b2:a4:a4:40:79:8b:45:2b:60:73: 52:3b:f6:15:e1:d3:05:fc:49:d7:d3:24:46:d3:60:e3:cf:61: bc:e5:d1:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0MkMxMTAvBgNVBAUTKDFDM0Y5OUEwQzE4MkI1OENDNDVCODExMkYyOTFFMTJB MTUzMzMxRTkwHhcNMjUwNDI0MTY0MzA4WhcNMjUwNTAxMTY0MzA4WjAYMRYwFAYD VQQDEw02ODBhNmExZC1lMjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroxSuLqRgP7u8/zgnluLeL+pcP6Zb/03NdIThfSNRgeioCQwMnRNi7TVXOkj 4GHBm5nO0ZXDfhmKkQhqNfhe2nF+hW6ClvmW8dbgVR5XBBcXGotjkG3raheA09Pf AkrVT872RmAcg1IxaA5qJbO3S7QrXqBLqij9wNnRVRbJ+95z1V6AiB9FncxBnnrs CSepodJY/3aHwCMoKhhMMZFXpM7sqyEJvwWt03lGEs79SZCkwnzhSjC3UnBtpe2S fHGerb5iSRdS6nIxrSWjKJ7RfY5S4rjF1XYsM9JtcXMm/xrBEHlvyb/fdIn8MAdk Toggn2yk8ZkrMkGjesxaV4ozJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMY6LgP h6+5nhZWA4mlIMR83UGqMB8GA1UdIwQYMBaAFBw/maDBgrWMxFuBEvKR4SoVMzHp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQyQy9GMjhDODlDNDAx OUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZekVXNEVTOHBIaEtoVXpN ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hELVpvTUdDdFl6RVc0RVM4cEhoS2hVek1lay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQyQy9GMjhDODlDNDAxOUMxMUU4OTAzNUY5MTlDNEY5QUUwMi9IRC1ab01HQ3RZ ekVXNEVTOHBIaEtoVXpNZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk8Zx6TARMTImqUtygv20j1aAjnm7oSVzKs/LNs2f8CNyY3BaptZsR wOSdFGNqgusjwj5x5gXKJWaGAcfU/C6ob5/+mESF60Zumt9tnuo63canz0aNsjdD 3JF3BhdQaNODejAJiOULYen63g/Vwyt+vv4LM5eORAkz0q/Xw5pzgxGcEbJDq/fn d1Z1WxtGJhe6gUdy3MM0u4g9DY5vyWGnjK7HQ/CcX2Lw/VFz309PT0t+t0XFO0QC TSYAwSHIgrKMRePo4piwrIhwdsOLeGVO2H04L+Z3oC/3uXURhuwQprKkpEB5i0Ur YHNSO/YV4dMF/EnX0yRG02Djz2G85dE5 -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:10 2025 by rpki-client