$ rpki-client -vvf rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft File: HsQsG2nhb183xz2Bv5-rH0ukIyk.mft (raw, json) Hash identifier: 0nMMT8FGkA2hBRwTD4exZU49Py/YUSAPKsoz0BPO7zo= Subject key identifier: AC:CD:2E:E4:F8:76:BB:A9:8E:24:5E:E6:EF:9E:34:5B:5B:C6:64:23 Authority key identifier: 1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 Certificate issuer: /CN=A918C661/serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Certificate serial: 0A6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft Manifest number: 0A0D Signing time: Thu 24 Apr 2025 19:54:49 +0000 Manifest this update: Thu 24 Apr 2025 19:54:49 +0000 Manifest next update: Thu 01 May 2025 19:54:49 +0000 Files and hashes: 1: HsQsG2nhb183xz2Bv5-rH0ukIyk.crl (hash: pl4JFptyn5JKKrm7/mUlO9CHB1XXGuDoMTU5RoOwmS0=) 2: A81364AC4B0611EF91534014C4F9AE02.roa (hash: w/5bZBiXDjvqgxnP7qfHyeDTFEoVXi8DgwG0C4ccn5Q=) 3: D9AFDBC2400111EFBB30C475C4F9AE02.roa (hash: Ve3ejv62M16tRhsxP6f89AusOlZpUFORwV+rrPuD1sg=) 4: 73DC26744B0611EF8698EB13C4F9AE02.roa (hash: ybrtkQR3uxqIC7ty9/ANRKrx+CuUtT0biIda1i5SZAg=) 5: B8D18508EDE011EF88407251C4F9AE02.roa (hash: 7FKsDT71I8DwEjcBpbCZQH8HmSgZkJ2Kdkp2VjtHRzA=) 6: 6C68485C5A1D11EFA9989052C4F9AE02.roa (hash: eMC9itpv3oFgg3wC16WZV3uYeAr5DZklaR+zjZUUL1Q=) 7: A7A72BF24B0611EF91534014C4F9AE02.roa (hash: 5X86twqvrwj9rAMXwE7dxiHPJmnmzTIw/q2mjxKYTMU=) 8: D42F0D06B51611EEADC7924BC4F9AE02.roa (hash: 74YlPjSTLEaBRhMrN5akas7kNpehqYE1ysoQhZlJDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2671 (0xa6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C661, serialNumber=1EC42C1B69E16F5F37C73D81BF9FAB1F4BA42329 Validity Not Before: Apr 24 19:54:49 2025 GMT Not After : May 1 19:54:49 2025 GMT Subject: CN=680a9709-a73a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:31:23:8e:fb:31:59:24:17:8d:a1:15:64:5e: 42:b1:86:dd:6d:1c:36:55:77:b8:62:0b:29:5c:f2: 0c:28:3e:cf:15:19:91:58:99:f7:8f:f3:58:65:bb: 9e:b2:38:63:ac:aa:31:77:e5:54:09:c2:9b:78:ba: 37:0e:23:5e:5a:c5:e6:01:e6:96:1e:e1:73:88:b7: 9c:b0:14:1d:62:e9:af:a7:f4:74:39:e3:e2:86:32: cc:be:46:18:38:37:6a:a8:98:8b:aa:ff:fd:58:83: 8d:08:79:d0:cd:0c:3a:d6:d8:85:c0:ee:ad:1a:57: 85:5b:d4:d1:31:4f:5b:4c:72:f9:9e:21:58:7b:22: 70:43:1c:19:8c:84:93:f0:a1:d6:99:18:2f:66:0d: 79:f8:12:ad:21:20:64:a4:a2:c0:7e:8b:02:8e:cd: e2:0c:a1:8a:50:c0:32:71:e3:18:27:ae:26:85:12: 06:82:28:0e:95:c5:ef:5e:66:32:04:69:09:c2:21: a9:c8:d5:c7:51:ff:c5:12:27:6a:ff:62:71:6e:11: da:1f:43:81:94:be:5e:a7:d4:78:81:b2:18:3d:a3: 7a:1f:f4:04:7b:9b:18:3f:3a:f2:36:d8:1a:bf:4b: 18:3e:c5:74:06:a0:6e:d3:1c:bc:96:86:cf:94:23: bd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CD:2E:E4:F8:76:BB:A9:8E:24:5E:E6:EF:9E:34:5B:5B:C6:64:23 X509v3 Authority Key Identifier: keyid:1E:C4:2C:1B:69:E1:6F:5F:37:C7:3D:81:BF:9F:AB:1F:4B:A4:23:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HsQsG2nhb183xz2Bv5-rH0ukIyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C661/0BBD9EA2836D11EAB4A2D76DC4F9AE02/HsQsG2nhb183xz2Bv5-rH0ukIyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:11:ab:6b:8a:62:89:80:b7:6d:27:ae:93:f5:52:d3:8d:96: 01:81:10:01:14:1a:6d:1d:07:f1:fa:9c:e3:89:cd:e6:d9:81: bd:b8:50:04:ed:28:a0:c3:40:41:ec:fc:b4:8c:b1:d4:c3:39: 5b:99:dd:ec:13:25:81:7a:76:10:5d:4b:2c:10:d9:b5:b4:39: e5:f8:f5:45:73:a2:ac:9d:37:dc:2c:0d:07:fa:21:79:ec:97: 05:b4:46:05:67:fb:d0:6b:25:f3:2d:74:35:3b:f0:e2:1b:5a: 1c:13:58:b1:7d:62:49:e6:8f:c6:2d:a5:0d:ba:88:ed:63:a0: 13:04:81:52:23:30:fc:69:1e:43:1f:f0:6b:4f:c3:f6:15:aa: 7a:81:63:14:62:35:03:d0:78:26:c6:9a:ae:aa:33:3e:f5:a1: 50:b1:d3:cd:17:84:08:6f:28:23:42:0f:04:15:b9:9a:b4:8e: 56:3d:0e:17:90:00:a3:5e:4b:36:ca:98:c4:36:d0:5e:44:c4: 4e:85:9d:21:08:18:12:87:a2:bb:46:fc:cb:16:b0:d2:4a:f8: 27:c8:05:88:fb:72:2b:5c:e2:1e:bc:a4:51:c6:60:ec:0e:8a: b3:20:f9:5f:5c:04:04:08:80:c7:02:25:f2:57:a0:8d:a9:0f: 3f:2e:43:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NjExMTAvBgNVBAUTKDFFQzQyQzFCNjlFMTZGNUYzN0M3M0Q4MUJGOUZBQjFG NEJBNDIzMjkwHhcNMjUwNDI0MTk1NDQ5WhcNMjUwNTAxMTk1NDQ5WjAYMRYwFAYD VQQDEw02ODBhOTcwOS1hNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TEjjvsxWSQXjaEVZF5CsYbdbRw2VXe4YgspXPIMKD7PFRmRWJn3j/NYZbue sjhjrKoxd+VUCcKbeLo3DiNeWsXmAeaWHuFziLecsBQdYumvp/R0OePihjLMvkYY ODdqqJiLqv/9WIONCHnQzQw61tiFwO6tGleFW9TRMU9bTHL5niFYeyJwQxwZjIST 8KHWmRgvZg15+BKtISBkpKLAfosCjs3iDKGKUMAyceMYJ64mhRIGgigOlcXvXmYy BGkJwiGpyNXHUf/FEidq/2JxbhHaH0OBlL5ep9R4gbIYPaN6H/QEe5sYPzryNtga v0sYPsV0BqBu0xy8lobPlCO9CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzNLuT4 drupjiRe5u+eNFtbxmQjMB8GA1UdIwQYMBaAFB7ELBtp4W9fN8c9gb+fqx9LpCMp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY2MS8wQkJEOUVBMjgz NkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIxODN4ejJCdjUtckgwdWtJ eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hzUXNHMm5oYjE4M3h6MkJ2NS1ySDB1a0l5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY2MS8wQkJEOUVBMjgzNkQxMUVBQjRBMkQ3NkRDNEY5QUUwMi9Ic1FzRzJuaGIx ODN4ejJCdjUtckgwdWtJeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2EatrimKJgLdtJ66T9VLTjZYBgRABFBptHQfx+pzjic3m2YG9uFAE 7Sigw0BB7Py0jLHUwzlbmd3sEyWBenYQXUssENm1tDnl+PVFc6KsnTfcLA0H+iF5 7JcFtEYFZ/vQayXzLXQ1O/DiG1ocE1ixfWJJ5o/GLaUNuojtY6ATBIFSIzD8aR5D H/BrT8P2Fap6gWMUYjUD0HgmxpquqjM+9aFQsdPNF4QIbygjQg8EFbmatI5WPQ4X kACjXks2ypjENtBeRMROhZ0hCBgSh6K7RvzLFrDSSvgnyAWI+3IrXOIevKRRxmDs DoqzIPlfXAQECIDHAiXyV6CNqQ8/LkPB -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:56 2025 by rpki-client