$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft File: he9PUr5sDQk3OGmpACI4YoIz6-8.mft (raw, json) Hash identifier: x5vCtmYEGuOCO6IzNPGPRNze5CS6JSF06d2XfMBveo8= Subject key identifier: 38:0A:C5:31:36:15:6B:CC:9F:2C:B0:EE:6F:46:AD:A0:57:D7:B7:47 Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 0566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft Manifest number: 0562 Signing time: Thu 24 Apr 2025 23:09:15 +0000 Manifest this update: Thu 24 Apr 2025 23:09:14 +0000 Manifest next update: Thu 01 May 2025 23:09:14 +0000 Files and hashes: 1: he9PUr5sDQk3OGmpACI4YoIz6-8.crl (hash: wkJwsLiRgMERrgyIF+th57p5spC97pQ4daFW5R6nSFo=) 2: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (hash: a7GzfQZpHB/FDQX8t11/W+Jq7q9b14r9hyier7paZ38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1382 (0x566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218, serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Apr 24 23:09:14 2025 GMT Not After : May 1 23:09:14 2025 GMT Subject: CN=680ac49a-a77b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:01:30:6a:eb:ca:ab:ee:81:d5:62:3f:55:d9: 54:fd:37:d3:94:f4:cd:44:c6:3e:7c:92:2c:cb:a7: 6a:12:0d:e1:7d:0a:2a:a8:c3:32:3e:4e:94:1b:82: e9:8b:e4:8c:8c:53:c1:39:cb:95:56:1a:72:4c:34: bf:89:36:a1:23:b4:d6:0a:e5:46:3c:54:d7:87:d0: 8a:a3:56:9e:d7:a8:23:3b:88:ce:97:d1:cc:5a:c4: ff:32:4b:fa:49:ee:df:d6:49:6a:e6:5f:2b:75:8a: df:17:bb:cd:53:0d:72:5a:6f:a9:8a:2e:9c:84:b0: aa:b8:0d:6b:bd:b7:f4:e4:b6:43:01:1f:32:bb:83: e2:98:fe:5a:29:1f:fb:51:18:a4:7c:61:53:10:55: c1:75:b6:10:ef:bc:80:b0:6e:cd:49:5e:78:40:e4: 91:71:6b:e0:dd:12:61:d0:57:04:ed:8b:bd:b6:c4: b4:17:b8:49:fd:14:88:c4:9c:34:e9:39:a6:e5:f5: 11:b8:5f:64:f9:b7:39:74:a9:5a:1b:e7:10:7a:8d: e7:9f:fd:a3:13:bd:1e:67:6b:4a:b4:fe:84:26:ad: 66:24:ae:48:35:91:2e:ac:79:07:a7:ed:6e:7f:0a: 15:8f:5a:f1:e9:f4:30:73:54:0a:c8:ad:42:e8:ef: 46:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0A:C5:31:36:15:6B:CC:9F:2C:B0:EE:6F:46:AD:A0:57:D7:B7:47 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:47:8b:88:9c:10:1b:3c:78:1f:d6:66:be:71:92:e5:a9:74: 73:ec:8b:96:aa:17:d8:82:12:99:76:7f:d8:44:83:8d:dd:87: 47:d7:af:d0:48:cd:f0:aa:5a:51:f7:17:08:4f:88:52:62:95: 71:0d:74:57:74:2c:fe:fd:0e:d7:7b:14:3a:de:2e:64:1b:17: ce:fb:0b:b2:8f:9c:4d:38:4f:96:b6:c3:ab:a8:3d:67:d7:9f: 72:6c:de:71:c2:d5:a0:dc:de:9c:4e:5e:64:a6:50:3a:90:6a: bc:8f:b4:c7:7e:c3:63:43:0e:ce:bf:93:23:28:59:fb:57:6b: 1a:5e:b6:c1:31:72:27:de:ae:8f:d4:08:b1:de:b0:22:08:95: 3c:be:f4:99:55:ac:36:63:39:22:c8:1c:66:65:f9:91:e7:9c: 18:6b:2b:79:89:4e:51:de:91:c0:d2:4a:83:6c:80:87:2a:28: 16:d0:a5:2f:17:10:6e:4f:f1:d7:ac:2f:38:a2:7a:7f:47:10: ee:9f:7c:6f:a1:e8:48:e2:ca:14:4c:ff:63:c5:e7:72:9f:cd: 0c:a4:88:3c:0a:3b:58:0f:b4:79:1a:c3:77:6e:a0:62:12:41: 27:30:54:ff:5a:5e:38:70:24:6a:d9:a7:9f:1e:20:4e:c7:ca: 9b:1c:66:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjUwNDI0MjMwOTE0WhcNMjUwNTAxMjMwOTE0WjAYMRYwFAYD VQQDEw02ODBhYzQ5YS1hNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAEwauvKq+6B1WI/VdlU/TfTlPTNRMY+fJIsy6dqEg3hfQoqqMMyPk6UG4Lp i+SMjFPBOcuVVhpyTDS/iTahI7TWCuVGPFTXh9CKo1ae16gjO4jOl9HMWsT/Mkv6 Se7f1klq5l8rdYrfF7vNUw1yWm+pii6chLCquA1rvbf05LZDAR8yu4PimP5aKR/7 URikfGFTEFXBdbYQ77yAsG7NSV54QOSRcWvg3RJh0FcE7Yu9tsS0F7hJ/RSIxJw0 6Tmm5fURuF9k+bc5dKlaG+cQeo3nn/2jE70eZ2tKtP6EJq1mJK5INZEurHkHp+1u fwoVj1rx6fQwc1QKyK1C6O9GlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgKxTE2 FWvMnyyw7m9GraBX17dHMB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTIxOC9EODU3QTEzRURFQkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RR azNPR21wQUNJNFlvSXo2LTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzR4uInBAbPHgf1ma+cZLlqXRz7IuWqhfYghKZdn/YRION3YdH16/Q SM3wqlpR9xcIT4hSYpVxDXRXdCz+/Q7XexQ63i5kGxfO+wuyj5xNOE+WtsOrqD1n 159ybN5xwtWg3N6cTl5kplA6kGq8j7THfsNjQw7Ov5MjKFn7V2saXrbBMXIn3q6P 1Aix3rAiCJU8vvSZVaw2YzkiyBxmZfmR55wYayt5iU5R3pHA0kqDbICHKigW0KUv FxBuT/HXrC84onp/RxDun3xvoehI4soUTP9jxedyn80MpIg8CjtYD7R5GsN3bqBi EkEnMFT/Wl44cCRq2aefHiBOx8qbHGaz -----END CERTIFICATE-----Generated at Sat Apr 26 17:06:07 2025 by rpki-client