$ rpki-client -vvf rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft File: h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft (raw, json) Hash identifier: wSJsWVG/S98R2jiezlme/lWJ9HKimnsBa06v8kVJ1jU= Subject key identifier: 2E:30:D0:E8:4B:07:4C:98:97:EC:E2:E2:C1:31:D6:3D:AB:C0:04:E0 Authority key identifier: 87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B Certificate issuer: /CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Certificate serial: 0B8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft Manifest number: 0B85 Signing time: Thu 24 Apr 2025 18:56:07 +0000 Manifest this update: Thu 24 Apr 2025 18:56:06 +0000 Manifest next update: Thu 01 May 2025 18:56:06 +0000 Files and hashes: 1: h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl (hash: QlDyDGNiv+HU4kzvryrHHynv6hnn6mVdJ0+hBum08Kk=) 2: 0D22F748261A11EA83CE8D17C4F9AE02.roa (hash: QngpTkCC8JSyoEjRCbNY7hFfX4Je7JGO3cicNA6+xBU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A35C, serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Validity Not Before: Apr 24 18:56:06 2025 GMT Not After : May 1 18:56:06 2025 GMT Subject: CN=680a8947-af89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ad:45:a4:5d:7a:c1:14:48:86:04:f1:4f:cc: 38:d8:5f:3b:2f:17:73:4c:35:84:b1:65:9e:d2:ed: 1b:15:ca:67:9b:01:1e:64:42:1d:bd:9a:21:42:fb: a4:92:de:23:95:cd:17:10:cd:82:c8:d6:48:3f:c2: 0c:45:8e:cb:ca:b1:5e:68:0e:a3:92:61:3d:b4:a5: 5d:48:58:15:5a:74:ef:33:76:7d:21:15:c1:94:68: cd:75:7b:81:b6:b6:da:45:31:07:29:de:1c:e1:15: d7:a1:d9:8c:68:4f:75:9a:01:3a:a0:eb:14:63:65: 44:c2:9e:47:1b:d4:23:ae:85:8e:82:da:b9:18:b2: 0f:36:bb:3e:24:96:57:00:19:76:b3:64:4c:9d:14: 18:42:36:1e:7b:a4:6a:68:c7:28:2f:2e:98:6e:8c: a6:4d:e2:41:83:9f:50:6f:f9:c6:0d:6b:e8:8e:d5: 7d:0f:b1:2c:2d:31:ad:d7:87:a2:0f:60:ae:3d:5e: 9a:1c:55:e2:04:fb:3b:94:5a:7a:af:52:51:74:8c: f8:a7:6e:e1:87:fc:9b:c7:08:19:59:82:27:1b:da: 01:78:1d:fd:4b:41:94:05:a6:d9:37:1c:6b:39:87: b6:46:8e:75:b8:e1:c1:21:cd:63:bb:a5:19:67:48: bd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:30:D0:E8:4B:07:4C:98:97:EC:E2:E2:C1:31:D6:3D:AB:C0:04:E0 X509v3 Authority Key Identifier: keyid:87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:00:fa:9a:1c:36:0d:38:38:77:6a:8d:a5:a9:e9:81:7e:1c: 4d:e2:49:4e:09:f0:69:52:fb:76:06:20:a0:e3:e1:24:01:c3: 66:5f:6e:e1:80:e1:de:ff:68:a9:dc:7d:95:a2:c9:9c:19:c4: bb:30:c7:d7:cf:e9:95:56:c4:d1:bd:5d:0d:f7:7b:38:f3:b2: bd:7b:86:8c:57:f0:61:30:da:6a:88:7f:f5:2a:3d:ca:fb:86: be:ba:e2:e6:c0:af:11:76:e6:da:23:0f:85:49:d3:c9:2d:a9: db:d1:d0:d8:90:1c:2c:18:52:89:9a:db:d7:a9:cd:81:e4:30: 1b:7d:20:1c:1c:ee:26:d1:3e:37:c8:3d:b5:23:ee:a0:e3:41: c7:d9:65:08:3d:7a:bd:3c:f4:59:75:f2:a8:14:59:81:a8:a7: 43:b4:8d:0d:8e:16:7d:0a:a1:e3:5a:21:8c:6a:e8:15:d7:59: 5b:0c:46:ab:6a:2e:48:88:c2:cd:28:14:20:fb:e0:22:80:57: 63:3b:64:c0:f8:28:c1:f4:3f:39:07:c0:61:1a:a7:9e:e9:cb: 15:48:64:6b:e9:33:3a:98:b7:97:c0:b9:5a:f0:55:ee:6b:9d: db:5a:25:0a:79:ac:0c:10:b8:c2:4e:26:8f:8e:a5:1f:26:a1: db:61:96:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzNUMxMTAvBgNVBAUTKDg3OEI4Njg2OTVGQzQ1QzlDNjNCNkZCQzU0Q0NCMzUw OUM0QjlGNEIwHhcNMjUwNDI0MTg1NjA2WhcNMjUwNTAxMTg1NjA2WjAYMRYwFAYD VQQDEw02ODBhODk0Ny1hZjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp61FpF16wRRIhgTxT8w42F87LxdzTDWEsWWe0u0bFcpnmwEeZEIdvZohQvuk kt4jlc0XEM2CyNZIP8IMRY7LyrFeaA6jkmE9tKVdSFgVWnTvM3Z9IRXBlGjNdXuB trbaRTEHKd4c4RXXodmMaE91mgE6oOsUY2VEwp5HG9QjroWOgtq5GLIPNrs+JJZX ABl2s2RMnRQYQjYee6RqaMcoLy6YboymTeJBg59Qb/nGDWvojtV9D7EsLTGt14ei D2CuPV6aHFXiBPs7lFp6r1JRdIz4p27hh/ybxwgZWYInG9oBeB39S0GUBabZNxxr OYe2Ro51uOHBIc1ju6UZZ0i9xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4w0OhL B0yYl+zi4sEx1j2rwATgMB8GA1UdIwQYMBaAFIeLhoaV/EXJxjtvvFTMs1CcS59L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTM1Qy81MkZDNkI5ODI2 MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJjbkdPMi04Vk15elVKeExu MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g0dUdocFg4UmNuR08yLThWTXl6VUp4TG4wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTM1Qy81MkZDNkI5ODI2MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJj bkdPMi04Vk15elVKeExuMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+APqaHDYNODh3ao2lqemBfhxN4klOCfBpUvt2BiCg4+EkAcNmX27h gOHe/2ip3H2VosmcGcS7MMfXz+mVVsTRvV0N93s487K9e4aMV/BhMNpqiH/1Kj3K +4a+uuLmwK8RdubaIw+FSdPJLanb0dDYkBwsGFKJmtvXqc2B5DAbfSAcHO4m0T43 yD21I+6g40HH2WUIPXq9PPRZdfKoFFmBqKdDtI0NjhZ9CqHjWiGMaugV11lbDEar ai5IiMLNKBQg++AigFdjO2TA+CjB9D85B8BhGqee6csVSGRr6TM6mLeXwLla8FXu a53bWiUKeawMELjCTiaPjqUfJqHbYZZ9 -----END CERTIFICATE-----Generated at Sat Apr 26 04:20:52 2025 by rpki-client